Abstract

Approaches and Toolchains to Optimize SOC Operations

Speed is critically important to defend against today's threats and threat actors. In this talk, specific KPIs for SOC operations will be discussed as well as toolchains that defenders can leverage in order to protect their networks and data. In addition to the threat landscape, three basic phases of incident response: detection, investigation and remediation will be discussed, with specific technical approaches to improve speed in each of them in order to catch up to attackers and stop attacks before a compromise turns into a breach.


Go back to Agenda

Did you join our conference? Leave us a feedback!

Write a feedback