In this episode, we talk .Conf! David and I attended Splunk .conf remotely and sit down to discuss this years presentations and announcements. Unfortunately, after we finished recording, we realized we had gone on for an hour, and decided to chop the episode in two.
Here in the second part, we discussed our favorite talks we saw. Unfortunately there were way too many talks to see all of them, so there are many other worthy talks we don't discuss!
.conf homepage - Hit "Watch" at the top, and select ".conf Online" to watch the talks!
David's Picks:
SEC1163A - Proactive Risk Based Alerting for Insider Threats: Matt Snyder
SEC1643A - Splunk Security Essentials: An Approach to Industry Threat Detection Engineering - Johan Bjerke, Cynthia Li
Matthew's Picks:
SEC1249A - Accenture's Journey to Risk Based Alerting with Splunk Enterprise Security and Beyond: Chip Stearns and Marcus Boyd
SEC1441A - How We Maintain Our Correlations in Splunk Enterprise Security at Thales UK: Gabriel Vasseur
Honorable Mentions:
SEC1162A - Supercharge You Risk Based Alerting Implementation: Teresa Chila
SEC1222A - Security Triage in the Real World. The Rubber Hits the Road: Trevor Ford, Brendan Higgins
SEC1440A - Risk Based Response: Maturing your Security Operations With Risk Awareness and Splunk SOAR: Tom Wise, Hannah Cornford
If you found this interesting or useful, please follow us on Twitter @serengetisec and subscribe and review on your favorite podcast app!
In this episode, we discuss how attackers can prehijack your account on popular social media and other apps, and how a surprising number of...
In this episode, we deep dive into two articles with a wild side tangent on Cyber Letters of Marque and Reprisal. I'm really looking...
This week we discuss the SEC targeting Solarwinds Executives, the recent Teams vulnerability allowing malware to be sent to your users, and Japan's Digital...