DragonCon 2018 - Workshop: Security Monitoring Practical Workshop
Event Information
Event description
Description
What You Will Learn
This course provides students with the knowledge and tools to fully leverage security analyst duties, ensures that you can use the functions and features of tools used in a SOC to detect and respond to security incidents and determine the extent of a compromise.
- Preparation: Know Your Environment
- Tuning your SIEM
- Threat Intelligence: Detect and Research Threats / Attack Methods
- Detection: Evaluate Alarms and Events
- Containment and Response: Minimizing Impact and Automating Response
- Root Cause Analysis: Trace Security Incident Timelines