In this episode, we discuss Risk Based Alerting, a new paradigm in alerting released in a talk at Splunk .conf in 2018. We're big fans, and we discuss it from start to finish, and share some stats on how much it improved alerting at the companies who have implemented it.
You have to register at Splunk's .conf site to watch the talks, but it's free. The talks themselves can be found here: https://conf.splunk.com/watch/conf-online.html
After registration and logging in, search for "Risk Based Alerting" and that will get you the majority of the talks.
If you found this interesting or useful, please like and subscribe, and follow us @serengetisec for more! Without that social validation, we just sulk around the house all day.
In this episode, we discuss conferences. What are they? When should you go? Which ones should you go to? Included is some discussion of...
We discuss The Red Report, a malware focused report from Picus Security. They analyzed just over half a million malware samples from 2022, and...
In this week's episode, we discuss indicted Chinese hackers, more lawyer discussion and backups. Test your backups. TEST THEM. Article 1 - US Accuses...
