Obtén visibilidad completa y encuentra problemas de seguridad ocultos

•

0 likes•388 views

Aun las amenazas básicas pueden ser múltiples y complejas, y la visibilidad limitada de tus datos de seguridad simplemente no es suficiente. Ya sea que realices investigaciones o busques amenazas, necesitas todo el contexto relevante para la seguridad. Aprende las prácticas clave en la recopilación y normalización de datos y ve cómo puedes usar Elastic Security para clasificar, verificar y abordar problemas de forma rápida y precisa.

Technology

1
ElasticON Security
María Bolaños
Solutions Architect
Get Full Visibility

Every person and every asset is
a target

5 1B 5
Data Domains
Practitioners analyze
endpoint, cloud,
network, application,
user, and more!
Events Per Day
Most organizations
average 1 billion
events per day
SOC Analysts
Security Operation
Centers vary in size,
but most have less
than 5 analysts
THE DATA DILEMMA

Solve the dilemma by answering 4 key questions
What data do I need to collect?
1
Now that I have it, how do I manage the data?
3
How do I make it actionable?
4
How do I get that data?
2

What data do I need
to collect?
• MITRE ATT&CK™ provides the
data sources required to detect
250 adversary techniques
• There are 50 unique data
sources
• Examples include, “Process
Monitoring”, “DNS Records”,
“Authentication Logs”, and more!

What data do I need
to collect?
• MITRE ATT&CK™ provides the
data sources required to detect
250 adversary techniques
• Examples include, “Process
Monitoring”, “DNS Records”,
“Authentication Logs”, and more!
• There are 50 unique data
sources

Elastic Agent
• Centrally manage all data
collection and endpoint
protection
• Single click integration of data
sources
• Customizable configurations
for complete control and
configurability.

Elastic Security
• A single application for data
analysis across all data domains
and sources
• Configurable data lifecycle
management
• Elastic Common Schema
• No penalties for adding data
sources, endpoints or ingesting
data
• Flexible Storage Tiers

Elastic Common Schema (ECS)
How data is normalized inside Elastic
Deﬁnes a common set of ﬁelds and
objects to ingest data into
Elasticsearch
Enables cross-source analysis of
diverse data
Designed to be extensible
ECS is adopted throughout the
Elastic Stack
Contributions & feedback welcome
at https://github.com/elastic/ecs
Searching without ECS
src:10.42.42.42
OR client_ip:10.42.42.42
OR apache2.access.remote_ip:
10.42.42.42
OR context.user.ip:10.42.42.42
OR src_ip:10.42.42.42
Searching with ECS
source.ip:10.42.42.42

Threat Hunting
• Proactively Search for
embedded attacks
• Save Analysis in integrated case
management
• Customizable timeline
templates to empower even the
most junior analysts.

Automated
Detection
• Speed and scale of
Elasticsearch to detect known
and unknown threats
• Easily automate threat
detection using queries
KQL/DSL, machine learning,
thresholds, and more!
• 200 free protections;
built in the open

Threat Prevention
• Kernel Level data collection
enables deep visibility
• Protect your Windows, macOS,
and Linux hosts.
• Prevent malware

Data Dilemma Solved by Elastic Security
Common framework for data collection
1
Configurable data management with an open standard for
analysis
3
Actionable Data - Threat Hunting, Automated Detection, Threat
Prevention
4
Single agent for data collection and endpoint protection
2

19
Closing slide
This presentation includes forward-looking
statements that are subject to risks and
uncertainties. Actual results may diﬀer materially
as a result of various risk factors included in the
reports on the Forms 10-K, 10-Q, and 8-K, and in
other ﬁlings we make with the SEC from time to
time. Elastic undertakes no obligation to update
any of these forward-looking statements.

Try free on Cloud:
ela.st/security-trial
Take a quick spin:
demo.elastic.co
Connect on Slack:
ela.st/slack
Join the Elastic Security community

What's hot

Eliminar los puntos ciegos significa que tienes suficiente contexto. ¿Pero puedes obtener información importante de ese contexto cuando lo necesitas? Aprende a detectar amenazas, mientras evitas el ruido de falsos positivos, con el motor de detección de Elastic Security. Verás cómo automatizar la detección de amenazas mediante correlaciones y Machine Learning, con ejemplos reales de cada uno.

Automatiza las detecciones de amenazas y evita los falsos positivos

Elasticsearch

Elastic SIEM (Endpoint Security)

Kangaroot

Palestra de abertura: Evolução e visão do Elastic Security

Elasticsearch

Elastic Security: Enterprise Protection Built on the Elastic Stack

Elasticsearch

Operacionalize com alerta, dashboards customizados e linhas do tempo

Elasticsearch

October 2020 meetup

Daliya Spasova

Keynote: Elastic Security evolution and vision

Elasticsearch

Elastic Security: Proteção Empresarial construída sobre o Elastic Stack

Elasticsearch

Security Starts at the Endpoint

Elasticsearch

Limitless xdr meetup

Daliya Spasova

This is some input for a panel discussion about "Security and Safety in Cloud-based Systems and Services" (9th International Conference on Cloud Computing, GRIDs, and Virtualization (CLOUD COMPUTING 2018) in Barcelona, Spain in February 2018). Although it might be hard to accept. By principle, attackers can establish footholds in our systems whenever they want (zero-day exploits). Cloud application security engineering efforts focus to harden the "fortress walls". Therefore, cloud applications rely on these defensive walls but seldom attack intruders actively. There is the somehow the need for a more reactive component. A component that could be inspired by biological systems. Biological systems consider by design that defensive "walls" can be breached at several layers. So, biological systems provide an additional active defense system to attack potential successful intruders - an immune system. Although several experts find this approach "intriguing", there are follow-up questions arising. What is about exploits that adapt to bio-inspired systems? How to protect the immune system against direct attacks? Are cloud immune systems prone to phenomenons like fever (running hot) or auto-immune diseases (self-attacking)?

There is no impenetrable system - So, why we are still waiting to get breached?

Nane Kratzke

Elastic Security: Enterprise Protection Built on the Elastic Stack

Elasticsearch

Using security to drive chaos engineering - April 2018

Dinis Cruz

Title: How to analyse your security data with Elastic SIEM. We define Security Analytics as the highly scalable collection, indexing, and real-time advanced analysis of all kinds of security-related data. We have introduced Elastic SIEM to provide a curated experience for security analysts and investigators to perform Security Information and Event Management, Thread Detection and Threat Hunting. In this presentation, we'll show the main technical features of the new solution and we'll make a demo to show how to start with the analysis process.

Oscar Cabanillas - Elastic - OSL19

marketingsyone

Elastic Security: Enterprise Protection Built on the Elastic Stack

Elasticsearch

Human errors and misconfiguration-based vulnerabilities have become a major cause of data breaches and other forms of security attacks in cloud-native infrastructure (CNI). The dynamic and complex nature of CNI and the underlying distributed systems further complicate these challenges. Hence, novel security mechanisms are imperative to overcome these challenges. Such mechanisms must be customer-centric, continuous, not focused on traditional security paradigms like intrusion detection. We tackle these security challenges via Risk-driven Fault Injection (RDFI), a novel application of cyber security to chaos engineering. Chaos engineering concepts (e.g. Netflix’s Chaos Monkey) have become popular since they increase confidence in distributed systems by injecting non-malicious faults (essentially addressing availability concerns) via experimentation techniques. RDFI goes further by adopting security-focused approaches by injecting security faults that trigger security failures which impact on integrity, confidentiality, and availability. Safety measures are also employed such that impacted environments can be reversed to secure states. Therefore, RDFI improves security and resilience drastically, in a continuous and efficient manner and extends the benefts of chaos engineering to cyber security. We have researched and implemented a proof-of-concept for RDFI that targets multi-cloud enterprise environments deployed on AWS and Google cloud platform.

Chaos engineering for cloud native security

Kennedy

Practical DevSecOps Using Security Instrumentation

VMware Tanzu

Architecting trust in the digital landscape, or lack thereof

Jonathan Sinclair

Automate threat detections and avoid false positives

Elasticsearch

Using security to drive chaos engineering

Dinis Cruz

What's hot (20)

Automatiza las detecciones de amenazas y evita los falsos positivos

Elastic SIEM (Endpoint Security)

Palestra de abertura: Evolução e visão do Elastic Security

Elastic Security: Enterprise Protection Built on the Elastic Stack

Operacionalize com alerta, dashboards customizados e linhas do tempo

October 2020 meetup

Keynote: Elastic Security evolution and vision

Elastic Security: Proteção Empresarial construída sobre o Elastic Stack

Security Starts at the Endpoint

Limitless xdr meetup

There is no impenetrable system - So, why we are still waiting to get breached?

Elastic Security: Enterprise Protection Built on the Elastic Stack

Using security to drive chaos engineering - April 2018

Oscar Cabanillas - Elastic - OSL19

Elastic Security: Enterprise Protection Built on the Elastic Stack

Chaos engineering for cloud native security

Practical DevSecOps Using Security Instrumentation

Architecting trust in the digital landscape, or lack thereof

Automate threat detections and avoid false positives

Using security to drive chaos engineering

Similar to Obtén visibilidad completa y encuentra problemas de seguridad ocultos

Get full visibility and find hidden security issues

Elasticsearch

Eliminar los puntos ciegos significa que tienes suficiente contexto. ¿Pero, puedes obtener información importante de ese contexto cuándo lo necesitas? Aprende a detectar amenazas mientras evitas el ruido de falsos positivos, con el motor de detección de Elastic Security. Verás cómo automatizar la detección de amenazas mediante correlaciones y Machine Learning, con ejemplos reales de cada uno.

Automatiza las detecciones de amenazas y evita falsos positivos

Imma Valls Bernaus

Automatiza las detecciones de amenazas y evita falsos positivos

Imma Valls Bernaus

Automatize a detecção de ameaças e evite falsos positivos

Elasticsearch

How Elastic Security Meets SOC Needs

Anna Ossowski

Filar seymour oreilly_bot_story_

EndgameInc

eDiscovery and Microsoft Teams

Albert Hoitingh

It's an interesting exercise to look back to the year 2000 to see how we approached cyber security. We just started to realize that data might be a useful currency, but for the most part, security pursued preventative avenues, such as firewalls, intrusion prevention systems, and anti-virus. With the advent of log management and security incident and event management (SIEM) solutions we started to gather gigabytes of sensor data and correlate data from different sensors to improve on their weaknesses and accelerate their strengths. But fundamentally, such solutions didn't scale that well and struggled to deliver real security insight. Today, cybersecurity wouldn't work anymore without large scale data analytics and machine learning approaches, especially in the realm of malware classification and threat intelligence. Nonetheless, we are still just scratching the surface and learning where the real challenges are in data analytics for security. This talk will go on a journey of big data in cybersecurity, exploring where big data has been and where it must go to make a true difference. We will look at the potential of data mining, machine learning, and artificial intelligence, as well as the boundaries of these approaches. We will also look at both the shortcomings and potential of data visualization and the human computer interface. It is critical that today's systems take into account the human expert and, most importantly, provide the right data.

Delivering Security Insights with Data Analytics and Visualization

Raffael Marty

Séminaire Big Data Alter Way - Elasticsearch - octobre 2014

ALTER WAY

Data Modeling for Security, Privacy and Data Protection

Karen Lopez

Member privacy is of paramount importance to LinkedIn. The company must protect the sensitive data users provide. On the other hand, our members join LinkedIn to find each other, necessitating the sharing of certain data. This privacy paradox can only be addressed by giving users control over where and how their data is used. While this approach is extremely important, it also presents scaling challenges. In this talk, we will discuss the challenges behind enforcing compliance at scale as well as LinkedIn's solution. Our comprehensive record-level offline compliance framework includes schema metadata tracking, alternate read-time views of the same dataset, physical purging of data on HDFS, and features for users to define custom filtering rules using SQL, assigning such customizations to specific datasets, groups of datasets, or use cases. We achieve this using many open-source projects like Hadoop, Hive, Gobblin, and Wherehows, as well as a homegrown data access layer called Dali. We also show how the same Hadoop-powered framework can be used for enforcing compliance on other stores like Pinot, Salesforce, and Espresso. While there is no one-size fits all solution to guaranteeing user data privacy, this talk will provide a blueprint and concrete example of how to enforce compliance at scale, which we hope proves useful to organizations working to improve their privacy commitments. ISSAC BUENROSTRO, Staff Software Engineer, LinkedIn and ANTHONY HSU, Staff Software Engineer, LinkedIn

Data Privacy at Scale

DataWorks Summit

Securing your environment requires an understanding of the current and evolving threat landscape as well as knowledge of network technology and system design. This session will combine lecture, demo and interactive Q/A that will highlight how to build out a security plan to defend against today’s threats. Join AlienVault for this webinar to learn: • What network, system and host data you should be collecting for the quickest path to security visibility • Best practices for network, perimeter and host monitoring • Security advantages of new AlienVault Threat Alerts coming soon to SpiceWorks

SpiceWorks Webinar: Whose logs, what logs, why logs

AlienVault

2017 bio it world

Chris Dwan

InfluxEnterprise Architectural Patterns by Dean Sheehan, Senior Director, Pre...

InfluxData

It is a fascinating, explosive time for enterprise analytics. It is from the position of analytics leadership that the mission will be executed and company leadership will emerge. The data professional is absolutely sitting on the performance of the company in this information economy and has an obligation to demonstrate the possibilities and originate the architecture, data, and projects that will deliver analytics. After all, no matter what business you’re in, you’re in the business of analytics. The coming years will be full of big changes in enterprise analytics and Data Architecture. William will kick off the fourth year of the Advanced Analytics series with a discussion of the trends winning organizations should build into their plans, expectations, vision, and awareness now.

2022 Trends in Enterprise Analytics

DATAVERSITY

Introducing DataStax Enterprise 4.7

DataStax

Event logs provide valuable information to troubleshoot operational errors, and investigate potential security exposures. They are literally the bread crumbs of the IT world. As a result, a commonly-used approach is to collect logs from everything connected to the network "just in case" without thinking about what data is actually useful. But, as you're likely aware, the "collect everything" approach can actually make threat detection and incident response more difficult as you wade through massive amounts of irrelevant data. Join us for this session to learn practical strategies for defining what you actually need to collect (and why) to help you improve threat detection and incident response, and satisfy compliance requirements. In this session, you'll learn : *What log data you always need to collect and why *Best practices for network, perimeter and host monitoring *Key capabilities to ensure easy, reliable access to logs for incident response efforts *How to use event correlation to detect threats and add valuable context to your logs

How to Leverage Log Data for Effective Threat Detection

AlienVault

Indianapolis Splunk User Group Dec 22

WesComer2

Cloudera Breakfast Series, Analytics Part 1: Use All Your Data

Cloudera, Inc.

OWASP Top 10 - The Ten Most Critical Web Application Security Risks

All Things Open

Similar to Obtén visibilidad completa y encuentra problemas de seguridad ocultos (20)

Get full visibility and find hidden security issues

Automatiza las detecciones de amenazas y evita falsos positivos

Automatize a detecção de ameaças e evite falsos positivos

How Elastic Security Meets SOC Needs

Filar seymour oreilly_bot_story_

eDiscovery and Microsoft Teams

Delivering Security Insights with Data Analytics and Visualization

Séminaire Big Data Alter Way - Elasticsearch - octobre 2014

Data Modeling for Security, Privacy and Data Protection

Data Privacy at Scale

SpiceWorks Webinar: Whose logs, what logs, why logs

2017 bio it world

InfluxEnterprise Architectural Patterns by Dean Sheehan, Senior Director, Pre...

2022 Trends in Enterprise Analytics

Introducing DataStax Enterprise 4.7

How to Leverage Log Data for Effective Threat Detection

Indianapolis Splunk User Group Dec 22

Cloudera Breakfast Series, Analytics Part 1: Use All Your Data

OWASP Top 10 - The Ten Most Critical Web Application Security Risks

More from Elasticsearch

The hallmark of a great search experience is always delivering the most relevant results, quickly, to every user. The difficulty lies behind the scenes in making that happen elegantly and at a scale. From App Search’s intuitive drag and drop interface to the advanced relevance capabilities built into the core of Elasticsearch — Elastic offers a range of tools for developers to tune relevance ranking and create incredible search experiences. In this session, we’ll explore some of Elasticsearch’s advanced relevance ranking features, such as dense vector fields, BM25F, ranking evaluation, and more. Plus we’ll give you some ideas for how these features are being used by other Elastic users to create world-class, category defining search experiences.

An introduction to Elasticsearch's advanced relevance ranking toolbox

Elasticsearch

Eze Castle Integration is a managed service provider (MSP), cloud service provider (CSP), and internet service provider (ISP) that delivers services to more than 1,000 clients around the world. Different departments within Eze Castle have devised their own log aggregation solutions in order to provide visibility, meet regulatory compliance requirements, conduct cybersecurity investigations, and help engineers with troubleshooting infrastructure issues. In 2019, they partnered with Elastic to consolidate the data generated from different systems into a single pane of glass. And thanks to the ease of deployment on Elastic Cloud, professional consultation services from Elastic engineers, and on-demand training courses available on Elastic Learning, Eze Castle was able to go from proof-of-concept to a fully functioning ""Eze Managed SIEM"" product within a month! Learn about Eze Castle's journey with Elastic and how they grew Eze Managed SIEM from zero to 100 customers In less than 14 months.

From MSP to MSSP using Elastic

Elasticsearch

Descubre lo fácil que es crear búsquedas relevantes y enriquecidas en sitios web de cara al público para impulsar las conversiones, incrementar el consumo de contenido y ayudar a los visitantes a encontrar lo que necesitan. Realiza un recorrido por las herramientas de Elastic a las que puedes sacar partido para transformar con facilidad tu sitio web, lo que incluye nuestro nuevo y potente rastreador web.

Cómo crear excelentes experiencias de búsqueda en sitios web

Elasticsearch

Al igual que la mayoría de las organizaciones modernas, tus equipos probablemente usan más de 10 aplicaciones basadas en la nube a diario, pero dedican demasiado tiempo a buscar la información que necesitan en todas estas. Gracias a las características integradas de Elastic Workplace Search, podrás comprobar lo sencillo que resulta poner el contenido relevante al alcance de tus equipos gracias a la búsqueda unificada para todas las aplicaciones que usan para llevar a cabo su trabajo.

Te damos la bienvenida a una nueva forma de realizar búsquedas

Elasticsearch

Découvrez pourquoi Elastic Cloud est la solution idéale pour exploiter toutes les offres d'Elastic. Bénéficiez d'une flexibilité d'achat et de déploiement au sein de Google Cloud, de Microsoft Azure, d'Amazon Web Services ou des trois à la fois. Apprenez quels avantages vous apporte une offre de service géré et déterminez la solution qui vous permet de la gérer par vous-même grâce à des outils intégrés d'automatisation et d'orchestration. Et ce n'est pas tout ! Familiarisez-vous avec les fonctionnalités qui peuvent vous aider à scaler vos opérations au fur et à mesure de l'évolution de votre déploiement, à stocker vos données d'une manière rentable et à optimiser vos recherches. Ainsi, vous n'aurez plus à abandonner de données et obtiendrez les informations exploitables dont vous avez besoin pour assurer le fonctionnement de votre entreprise.

Tirez pleinement parti d'Elastic grâce à Elastic Cloud

Elasticsearch

Comment transformer vos données en informations exploitables

Elasticsearch

À l'instar de la plupart des entreprises modernes, vos équipes utilisent probablement plus de 10 applications hébergées dans le cloud chaque jour, mais passent aussi bien trop de temps à chercher les informations dont elles ont besoin dans ces outils. Grâce aux fonctionnalités prêtes à l'emploi d'Elastic Workplace Search, découvrez combien il est facile de mettre le contenu pertinent à portée de la main de vos équipes grâce à une recherche unifiée sur l'ensemble des applications qu'elles utilisent pour faire leur travail.

Plongez au cœur de la recherche dans tous ses états.

Elasticsearch

Modernising One Legal Se@rch with Elastic Enterprise Search [Customer Story]

Elasticsearch

An introduction to Elasticsearch's advanced relevance ranking toolbox

Elasticsearch

Like most modern organizations, your teams are likely using upwards of 10 cloud-based applications on a daily basis, but spending far too many hours a day searching for the information they need across all of them. With the out-of-the-box capabilities of Elastic Workplace Search, see how easy it is to put relevant content right at your teams’ fingertips with unified search across all the apps they rely on to get work done.

Welcome to a new state of find

Elasticsearch

Building great website search experiences

Elasticsearch

Keynote: Harnessing the power of Elasticsearch for simplified search

Elasticsearch

Cómo transformar los datos en análisis con los que tomar decisiones

Elasticsearch

Spécialisée dans le développement et la gestion de solutions de veille documentaire et commerciale, Explore offre à ses clients une lecture précise et organisée de l’actualités des marchés et projets sur leurs territoires d'intervention. Afin de rendre leur offre plus agile et performante, Explore a choisi l’offre Elastic Cloud hébergée sur Microsoft Azure. Découvrez comment les équipes de production et de développement sont désormais en mesure de mieux exploiter les données pour les clients d’Explore et gagnent du temps sur la gestion de leur infrastructure.

Explore relève les défis Big Data avec Elastic Cloud

Elasticsearch

Comment transformer vos données en informations exploitables

Elasticsearch

Transforming data into actionable insights

Elasticsearch

"Elastic enables the world’s leading organization to exceed their business objectives and power their mission-critical systems by eliminating data silos, connecting the dots, and transforming data of all types into actionable insights. Come learn how the power of search can help you quickly surface relevant insights at scale. Whether you are an executive looking to reduce operational costs, a department head striving to do more with fewer tools, or engineer monitoring and protecting your IT environment, this session is for you. "

Opening Keynote: Why Elastic?

Elasticsearch

It has now been four years since the beta release of Elastic Cloud Enterprise which kicked off a wave of the Elastic public sector community running Elastic as a service within Government rather than utilizing purely hosted solutions. Fast forward to 2021 and we have multiple options for multiple mission needs. Learn top tips from Elastic architects and their experience enabling their teams with the automation and provisioning of Elastic tech to change the game in how government delivers solutions.

Empowering agencies using Elastic as a Service inside Government

Elasticsearch

The opportunities and challenges of data for public good

Elasticsearch

Enterprise search and unstructured data with CGI and Elastic

Elasticsearch

More from Elasticsearch (20)

An introduction to Elasticsearch's advanced relevance ranking toolbox

From MSP to MSSP using Elastic

Cómo crear excelentes experiencias de búsqueda en sitios web

Te damos la bienvenida a una nueva forma de realizar búsquedas

Tirez pleinement parti d'Elastic grâce à Elastic Cloud

Comment transformer vos données en informations exploitables

Plongez au cœur de la recherche dans tous ses états.

Modernising One Legal Se@rch with Elastic Enterprise Search [Customer Story]

An introduction to Elasticsearch's advanced relevance ranking toolbox

Welcome to a new state of find

Building great website search experiences

Keynote: Harnessing the power of Elasticsearch for simplified search

Cómo transformar los datos en análisis con los que tomar decisiones

Explore relève les défis Big Data avec Elastic Cloud

Comment transformer vos données en informations exploitables

Transforming data into actionable insights

Opening Keynote: Why Elastic?

Empowering agencies using Elastic as a Service inside Government

The opportunities and challenges of data for public good

Enterprise search and unstructured data with CGI and Elastic

Recently uploaded

MINDCTI Revenue Release Quarter One 2024

MIND CTI

Artificial Intelligence Chap.5 : Uncertainty

Khushali Kathiriya

As privacy and data protection regulations evolve rapidly, organizations operating in multiple jurisdictions face mounting challenges to ensure compliance and safeguard customer data. With state-specific privacy laws coming up in multiple states this year, it is essential to understand what their unique data protection regulations will require clearly. How will data privacy evolve in the US in 2024? How to stay compliant? Our panellists will guide you through the intricacies of these states' specific data privacy laws, clarifying complex legal frameworks and compliance requirements. This webinar will review: - The essential aspects of each state's privacy landscape and the latest updates - Common compliance challenges faced by organizations operating in multiple states and best practices to achieve regulatory adherence - Valuable insights into potential changes to existing regulations and prepare your organization for the evolving landscape

TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments

TrustArc

Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving

Edi Saputra

In the thrilling conclusion to 2023, ransomware groups had a banner year, really outdoing themselves in the "make everyone's life miserable" department. LockBit 3.0 took gold in the hacking olympics, followed by the plucky upstarts Clop and ALPHV/BlackCat. Apparently, 48% of organizations were feeling left out and decided to get in on the cyber attack action. Business services won the "most likely to get digitally mugged" award, with education and retail nipping at their heels. Hackers expanded their repertoire beyond boring old encryption to the much more exciting world of extortion. The US, UK and Canada took top honors in the "countries most likely to pay up" category. Bitcoins were the currency of choice for discerning hackers, because who doesn't love untraceable money?

Ransomware_Q4_2023. The report. [EN].pdf

Overkill Security

Webinar Recording: https://www.panagenda.com/webinars/why-teams-call-analytics-is-critical-to-your-entire-business Nothing is as frustrating and noticeable as being in an important call and being unable to see or hear the other person. Not surprising then, that issues with Teams calls are among the most common problems users call their helpdesk for. Having in depth insight into everything relevant going on at the user’s device, local network, ISP and Microsoft itself during the call is crucial for good Microsoft Teams Call quality support. To ensure a quick and adequate solution and to ensure your users get the most out of their Microsoft 365. But did you know that ‘bad calls’ are also an excellent indicator of other problems arising? Precisely because it is so noticeable!? Like the canary in the mine, bad calls can be early indicators of problems. Problems that might otherwise not have been noticed for a while but can have a big impact on productivity and satisfaction. Join this session by Christoph Adler to learn how true Microsoft Teams call quality analytics helped other organizations troubleshoot bad calls and identify and fix problems that impacted Teams calls or the use of Microsoft365 in general. See what it can do to keep your users happy and productive! In this session we will cover - Why CQD data alone is not enough to troubleshoot call problems - The importance of attributing call problems to the right call participant - What call quality analytics can do to help you quickly find, fix-, and prevent problems - Why having retrospective detailed insights matters - Real life examples of how others have used Microsoft Teams call quality monitoring to problem shoot problems with their ISP, network, device health and more.

Why Teams call analytics are critical to your entire business

panagenda

Architecting Cloud Native Applications

WSO2

GenAI Risks & Security Meetup 01052024.pdf

lior mazor

"I see eyes in my soup": How Delivery Hero implemented the safety system for ...

Zilliz

Data Cloud, More than a CDP by Matt Robison

Anna Loughnan Colquhoun

Created by Mozilla Research in 2012 and now part of Linux Foundation Europe, the Servo project is an experimental rendering engine written in Rust. It combines memory safety and concurrency to create an independent, modular, and embeddable rendering engine that adheres to web standards. Stewardship of Servo moved from Mozilla Research to the Linux Foundation in 2020, where its mission remains unchanged. After some slow years, in 2023 there has been renewed activity on the project, with a roadmap now focused on improving the engine’s CSS 2 conformance, exploring Android support, and making Servo a practical embeddable rendering engine. In this presentation, Rakhi Sharma reviews the status of the project, our recent developments in 2023, our collaboration with Tauri to make Servo an easy-to-use embeddable rendering engine, and our plans for the future to make Servo an alternative web rendering engine for the embedded devices industry. (c) Embedded Open Source Summit 2024 April 16-18, 2024 Seattle, Washington (US) https://events.linuxfoundation.org/embedded-open-source-summit/ https://ossna2024.sched.com/event/1aBNF/a-year-of-servo-reboot-where-are-we-now-rakhi-sharma-igalia

A Year of the Servo Reboot: Where Are We Now?

Igalia

In this session, we will delve into strategic approaches for optimizing knowledge management within Microsoft 365, amidst the evolving landscape of Copilot. From leveraging automatic metadata classification and permission governance with SharePoint Premium, to unlocking Viva Engage for the cultivation of knowledge and communities, you will gain actionable insights to bolster your organization's knowledge-sharing initiatives. In this session, we will also explore how to facilitate solutions to enable your employees to find answers and expertise within Microsoft 365. You will leave equipped with practical techniques and a deeper understanding of how there is more to effective knowledge management than just enabling Copilot, but building actual solutions to prepare the knowledge that Copilot and your employees can use.

Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...

Drew Madelung

MS Copilot expands with MS Graph connectors

Nanddeep Nachan

This presentations targets students or working professionals. You may know Google for search, YouTube, Android, Chrome, and Gmail, but did you know Google has many developer tools, platforms & APIs? This comprehensive yet still high-level overview outlines the most impactful tools for where to run your code, store & analyze your data. It will also inspire you as to what's possible. This talk is 50 minutes in length.

Powerful Google developer tools for immediate impact! (2023-24 C)

wesley chun

How to Troubleshoot Apps for the Modern Connected Worker

ThousandEyes

ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke

Product Anonymous

Real Time Object Detection Using Open CV

Khem

EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER

MadyBayot

Effective data discovery is crucial for maintaining compliance and mitigating risks in today's rapidly evolving privacy landscape. However, traditional manual approaches often struggle to keep pace with the growing volume and complexity of data. Join us for an insightful webinar where industry leaders from TrustArc and Privya will share their expertise on leveraging AI-powered solutions to revolutionize data discovery. You'll learn how to: - Effortlessly maintain a comprehensive, up-to-date data inventory - Harness code scanning insights to gain complete visibility into data flows leveraging the advantages of code scanning over DB scanning - Simplify compliance by leveraging Privya's integration with TrustArc - Implement proven strategies to mitigate third-party risks Our panel of experts will discuss real-world case studies and share practical strategies for overcoming common data discovery challenges. They'll also explore the latest trends and innovations in AI-driven data management, and how these technologies can help organizations stay ahead of the curve in an ever-changing privacy landscape.

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery

TrustArc

AXA XL - Insurer Innovation Award Americas 2024

The Digital Insurer

Recently uploaded (20)

MINDCTI Revenue Release Quarter One 2024

Artificial Intelligence Chap.5 : Uncertainty

TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments

Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving

Ransomware_Q4_2023. The report. [EN].pdf

Why Teams call analytics are critical to your entire business

Architecting Cloud Native Applications

GenAI Risks & Security Meetup 01052024.pdf

"I see eyes in my soup": How Delivery Hero implemented the safety system for ...

Data Cloud, More than a CDP by Matt Robison

A Year of the Servo Reboot: Where Are We Now?

Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...

MS Copilot expands with MS Graph connectors

Powerful Google developer tools for immediate impact! (2023-24 C)

How to Troubleshoot Apps for the Modern Connected Worker

ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke

Real Time Object Detection Using Open CV

EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery

AXA XL - Insurer Innovation Award Americas 2024

Obtén visibilidad completa y encuentra problemas de seguridad ocultos

1. 1 ElasticON Security María Bolaños Solutions Architect Get Full Visibility

2. Blind spots are everywhere

3. Every person and every asset is a target

4. 5 1B 5 Data Domains Practitioners analyze endpoint, cloud, network, application, user, and more! Events Per Day Most organizations average 1 billion events per day SOC Analysts Security Operation Centers vary in size, but most have less than 5 analysts THE DATA DILEMMA

5. Solve the dilemma by answering 4 key questions What data do I need to collect? 1 Now that I have it, how do I manage the data? 3 How do I make it actionable? 4 How do I get that data? 2

6. What data do I need to collect? • MITRE ATT&CK™ provides the data sources required to detect 250 adversary techniques • There are 50 unique data sources • Examples include, “Process Monitoring”, “DNS Records”, “Authentication Logs”, and more!

7. What data do I need to collect? • MITRE ATT&CK™ provides the data sources required to detect 250 adversary techniques • Examples include, “Process Monitoring”, “DNS Records”, “Authentication Logs”, and more! • There are 50 unique data sources

8. Solve the dilemma by answering 4 key questions What data do I need to collect? 1 Now that I have it, how do I manage the data? 3 How do I make it actionable? 4 How do I get that data? 2

9. Elastic Agent • Centrally manage all data collection and endpoint protection • Single click integration of data sources • Customizable configurations for complete control and configurability.

10. Solve the dilemma by answering 4 key questions What data do I need to collect? 1 Now that I have it, how do I manage the data? 3 How do I make it actionable? 4 How do I get that data? 2

11. Elastic Security • A single application for data analysis across all data domains and sources • Configurable data lifecycle management • Elastic Common Schema • No penalties for adding data sources, endpoints or ingesting data • Flexible Storage Tiers

12. Elastic Common Schema (ECS) How data is normalized inside Elastic Deﬁnes a common set of ﬁelds and objects to ingest data into Elasticsearch Enables cross-source analysis of diverse data Designed to be extensible ECS is adopted throughout the Elastic Stack Contributions & feedback welcome at https://github.com/elastic/ecs Searching without ECS src:10.42.42.42 OR client_ip:10.42.42.42 OR apache2.access.remote_ip: 10.42.42.42 OR context.user.ip:10.42.42.42 OR src_ip:10.42.42.42 Searching with ECS source.ip:10.42.42.42

13. Solve the dilemma by answering 4 key questions What data do I need to collect? 1 Now that I have it, how do I manage the data? 3 How do I make it actionable? 4 How do I get that data? 2

14. Threat Hunting • Proactively Search for embedded attacks • Save Analysis in integrated case management • Customizable timeline templates to empower even the most junior analysts.

15. Automated Detection • Speed and scale of Elasticsearch to detect known and unknown threats • Easily automate threat detection using queries KQL/DSL, machine learning, thresholds, and more! • 200 free protections; built in the open

16. Threat Prevention • Kernel Level data collection enables deep visibility • Protect your Windows, macOS, and Linux hosts. • Prevent malware

17. Demo

18. Data Dilemma Solved by Elastic Security Common framework for data collection 1 Configurable data management with an open standard for analysis 3 Actionable Data - Threat Hunting, Automated Detection, Threat Prevention 4 Single agent for data collection and endpoint protection 2

19. 19 Closing slide This presentation includes forward-looking statements that are subject to risks and uncertainties. Actual results may diﬀer materially as a result of various risk factors included in the reports on the Forms 10-K, 10-Q, and 8-K, and in other ﬁlings we make with the SEC from time to time. Elastic undertakes no obligation to update any of these forward-looking statements.

20. Try free on Cloud: ela.st/security-trial Take a quick spin: demo.elastic.co Connect on Slack: ela.st/slack Join the Elastic Security community

21. Thank You Search. Observe. Protect.

Obtén visibilidad completa y encuentra problemas de seguridad ocultos

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Similar to Obtén visibilidad completa y encuentra problemas de seguridad ocultos

Similar to Obtén visibilidad completa y encuentra problemas de seguridad ocultos (20)

More from Elasticsearch

More from Elasticsearch (20)

Recently uploaded

Recently uploaded (20)

Obtén visibilidad completa y encuentra problemas de seguridad ocultos