decrypting the security mystery with siem (part 2)
TRANSCRIPT
EventLog AnalyzerSiddharth Sharathkumar
2
Security and Auditing
One SIEM solution to rule them all.
GUARDING NETWORK PERIMETERAuditing your network devices
Is someone accessing something they shouldn't be allowed to?
Denied connections Traffic allowed
Firewall rule change
But how?
SECURING BUSINESS CRITICAL APPLICATIONS
Comprehensively audit web server errors
Request access to
web server
Request failed Too many errors?
Bad gateway errors?
Do I need to revamp my resources?
Or is someone up to no good?
Repeated requests
CUSTOM LOG PARSER
Threat Intelligence
You sha;; not pass YOU SHALL NOT PASS!!!
Preventive security solutions alone aren't going to be enough9
Backtracking a security attack
THANK YOU Queries?