在安全分析中构建、证明和扩展检测.pdf

《在安全分析中构建、证明和扩展检测.pdf》由会员分享，可在线阅读，更多相关《在安全分析中构建、证明和扩展检测.pdf（73页珍藏版）》请在三个皮匠报告上搜索。

1、#CiscoLive#CiscoLiveRobert Harris,Technical Marketing EngineerBRKSEC-2931Building,Proving,and Extending Detectionsin Secure Analytics 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveYou can do more with yourSecure Analytics detectionsBRKSEC-29313 2023 Cisco and/or its affi

2、liates.All rights reserved.Cisco Public#CiscoLiveSession abstractDetections are the first half of the battle in Network Detection and Response(NDR),and they must grow to be kept current as tactics evolve over time.We will perform a deep dive into Secure Network Analytics(on premise)and Secure Cloud

3、Analytics(SaaS)to learn about the behind-the-scenes work involved in building new telemetry-based detections,testing detections with a variety of methods to prove an alert,leveraging Talos intelligence to build higher confidence,multi-telemetry ingest for extended detection efficacy and context,MITR

4、E ATT&CK mapping,and delivering better XDR outcomes with Cisco XDR.Participants should have a good understanding of network-based detections,NetFlow/IPFIX,and other forms of telemetry.BRKSEC-29314 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public10-minute car ride to Las Vegas airpor

5、tRideshare pickup is at the Mandalay Bay Convention Center entranceSync your watch via NTP129.6.15.27129.6.15.28129.5.15.29End of week reminderBRKSEC-29315 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveEnter your personal notes hereCisco Webex App Questions?Use Cisco Web

6、ex App to chat with the speaker after the sessionFind this session in the Cisco Live Mobile AppClick“Join the Discussion”Install the Webex App or go directly to the Webex spaceEnter messages/questions in the Webex spaceHowWebex spaces will be moderated by the speaker until June 30,2023.12346https:/