The new #GÉANT #Security Operations Centre (SOC) is now up and running!

We met with Tony Barber, Head of the GÉANT Operations Centre, to talk about the recently launched GÉANT SOC, the requirements and the process that led to the set-up of this necessary resource for the #GÉANT #network and community, along with the benefits it will bring. 👉 https://connect.geant.org/2023/08/29/geant-security-operation-centre-a-vital-resource-for-the-international-re-community

#CyberSecurity #CyberSec #GÉANTnetwork #SecurityOperations #SOC

#SecOps is ripe for renewal via #generativeAI, per experts and vendors including #VMware and #Cisco. But while #genAI can have unique benefits, it can also introduce unique risks.

https://www.techtarget.com/searchitoperations/news/366549595/VMware-Cisco-prep-generative-AI-for-SecOps

#VMwareExplore
#AI #LLM #incidentresponse #securityoperations #securityautomation #cybersecurity #ITsecurity

Tip: Organize your workspaces effectively in Microsoft Sentinel to streamline incident response. Group related data sources, analytics rules, and dashboards together for easy access and collaboration. #SecurityOperations #MicrosoftSentinel

Evolution of #SOC 👇 💡

#cybersecurity #timelines #cyberdefense #securityoperations

Attention, GISEC Global attendees! Swing by booth A50 in Hall 7 for cool swag and more 👕 🖊️ 🥤 @corelight and Spire Solutions experts will be on hand to share how security teams are expanding network visibility, accelerating #incidentresponse, improving #threatdetection, and reducing #securityoperations costs with Open #NDR. Come learn how your team can do the same! Book a meeting ➡️ https://corelight.com/contact?hsCtaTracking=5ac55411-1d8c-4ad9-b3e1-811fed6bdd22%7C342049df-71c2-46e0-b967-fd4ad362f2e3

More about the event: https://www.gisec.ae/

#NetworkSecurity #Cybersecurity #DFIR #ThreatHunting

Attention, GISEC Global attendees! Swing by booth A50 in Hall 7 for cool swag and more 👕 🖊️ 🥤 @corelight and Spire Solutions experts will be on hand to share how security teams are expanding network visibility, accelerating #incidentresponse, improving #threatdetection, and reducing #securityoperations costs with Open #NDR. Come learn how your team can do the same! Book a meeting ➡️ https://corelight.com/contact?hsCtaTracking=5ac55411-1d8c-4ad9-b3e1-811fed6bdd22%7C342049df-71c2-46e0-b967-fd4ad362f2e3

More about the event: https://www.gisec.ae/

#NetworkSecurity #Cybersecurity #DFIR #ThreatHunting

Join @corelight's Timo Jobst for "Schnick-Schnack-Schnuck – Aber spielen SIE es mit Brunnen" at 5:15-5:45 p.m. GMT+1 (17:15-17:45 hrs) in Vortragsraum 1 during Nuvias & Infinigate's Information Summit North. This year's Summit theme is "Security - Gambling or Strategy," and our team of experts will be ready to share how to ensure that your program is more #securitystrategy than gamble.

More about the event:

📅 Date: 16.03.2023

📍Place: Millerntor-Stadium Hamburg

📋 Register for the Summit: https://share.hsforms.com/1VG36q5v-R_SQ5mnxT55Ktw4amju

🤝 Hosts: Nuvias - an Infinigate Group company & Infinigate Group

More about Corelight: https://corelight.com/solutions/why-evidence-based-security

#NetworkSecurity #DFIR #Cybersecurity #SecurityOperations

Come say hi to Corelight and Spire Solutions at booth A50 in Hall 7 during GISEC Global in Dubai next week! Our experts will be on hand to share how to expand network visibility, accelerate #incidentresponse, improve #threatdetection, and reduce #securityoperations costs. Plus we'll have swag — you don't want to miss it! https://www.gisec.ae/

#NetworkSecurity #Cybersecurity #DFIR #ThreatHunting

The countdown is on! ⏰ There are only 47 days left until this year's #RSAConference — have you secured your spot yet? If not, be sure to use our Corelight promo code to get $150 off of your pass to the RSA Security event. You won't want to miss it! https://www.rsaconference.com/

And be sure to stop by booth #1555 to learn how #NDR can help reduce your #securityoperations costs and round out what Gartner calls the #SOC visibility triad. Read about the complete network visibility that your organization can gain with Corelight's Open NDR Platform in advance of April 24: https://corelight.com/solutions/complete-visibility/

Check out our RSA page here ➡️ https://corelight.com/resources/events/2023/rsa

#DFIR #Cybersecurity #SecOps

AJ Nurcombe, a senior security consultant at Corelight, presented "Is Network Evidence Really Needed for #SecurityOperations?" to a full house this afternoon at the e-Crime & Cybersecurity Congress Events Series in London. If you're at #ecrimecongress, come say hi to AJ and our team of experts at the Corelight table! We've got swag and are ready to share tips on how you can drive efficiencies in your #SOC and accelerate #incidentresponse.

For more on how evidence-based #cybersecurity helps organizations mitigate #cyberrisk, visit our website: https://corelight.com/solutions/why-evidence-based-security

#NetworkSecurity #NDR #ThreatHunting #DFIR

Will you be at the Information Security for London Annual Conference tomorrow? If so, swing by our @corelight table to learn how you can consolidate your #securitysolutions without sacrificing network visibility or #threathunting capabilities. Our team of experts will be ready to share how Corelight’s Open NDR Platform:

💪 Reduces operational redundancies
🔌 Powers SIEM, XDR, and other solutions with network evidence
⚡ Supercharges security stacks with a single source of network truth

Read more about our Open NDR Platform: https://corelight.com/products/open-ndr/

Learn more about this year’s ISfL Annual Conference theme of “doing more with less” in #securityoperations: https://www.isfl.org.uk/isfl-annual-conference-2023/

#NetworkSecurity #NDR #Cybersecurity #DFIR

Join us live for Synapse 101 on March 1st, 2023 at 12:30 pm ET!

Who Should Sign Up:
Synapse community members, leaders of established cyber threat intelligence teams, or organizations in the beginning phases of starting one. This webinar is designed to be a 101 introduction to The Vertex Project's commercial offering, Synapse Enterprise.

What To Expect:
Security operations and incident response teams want intelligence alerts on newly emerging threats in real-time. During Part 1 (~30 min.), a Vertex analyst will walk attendees through this familiar scenario for CTI teams, all from within the Synapse central intelligence system. We’ll demonstrate how an analyst receives an IR support request via JIRA, performs analysis, and provides data back to the IR team without ever opening another browser tab.

During Part 2 (60 min.), attendees will learn how Synapse works in more detail. Because Synapse is a shared environment with a unified view into your data and organizational knowledge, users within your organization can perform their own research directly - whether the IR team, SOC team, etc. You’ll also hear how using the Synapse central intelligence system provides seamless fusion of data across platforms and teams, promoting more efficient and reproducible processes.

For more information and to register, visit https://v.vtx.lk/syn101!

#securityoperations #threatintelligence #threatintel #threathunting #CTI #incidentresponse #SecOps #infosec

The 'R' in 'SIEM' stands for 'Response'.

#cybersecurity #security #incidentresponse #csirt #soc #securityoperations #infosec

The 'R' in 'SIEM' stands for 'Response'.

#cybersecurity #security #incidentresponse #csirt #soc #securityoperations

#infosec twi….. I mean #mastodon… showed up. 71% got it correctomundo. Backup and disaster recovery techniques and technology is indeed a security function. Confidentiality, Integrity, and AVAILABILITY is key. #NIST function of #RECOVER is there for a reason. This is NOT to say it’s a #SecurityOperations action item but rather a more holistic approach to #informationtechnology. If you’re in the 29%, read up. Google is your friend. Thanks for participating. This poll will be used in my further engagements.

Join our CISO Bernard Brantley as he shares more about Corelight's data security strategy, and how he chose to partner with Normalyze to bring clarity to opaque and disconnected cloud environments. Register today: https://www.brighttalk.com/webcast/19862/570988

In this session:

1. An overview of Corelight's Open Network Detection and Response platform

2. A deep dive into how Corelight uses Normalyze's data-first cloud security platform

3. How to gain information superiority and decision advantage over adversaries that target systems and information

#CloudSecurity #DataSecurity #DSPM #DataSecurityPostureManagement #CybersecuritySolutions #SecurityOperations #SecOps #NetworkSecurity #Cybersecurity #NetworkDetectionandResponse #NDR #DFIR

New from Corelight💡:

1. Enhanced IDS rules management functionality

1. Extended analyst visibility around hosts, devices, users, and more

3. Upgraded the Corelight Software Sensor to give customers more NDR deployment flexibility

Learn how these new developments from Corelight can seamlessly integrate with and complement your adjacent security in this blog ➡️ https://corelight.com/blog/replace-ids-and-extend-entity-visibility

#CybersecuritySolutions #SecurityAnalytics #NTA #SecurityAnalysts #IncidentResponse #IncidentResponders #NetworkData #NetworkEvidence #SecurityOperations #SecOps #NetworkSecurity #CloudSecurity #Cybersecurity #NetworkDetectionandResponse #NDR #DFIR

Security Operations in a nutshell:

#cybersecurity #securityoperations #cybertips #concepts

Join Corelight, @cribl_io, and @elastic on Jan. 25 as they share how security teams can monitor network traffic and increase the effectiveness and efficiency of front-line analysts. Register for the live webcast today: https://events.elastic.co/from-noise-to-signal-elastic-cribl-corelight/corelight During the session, you'll learn how this joint solution enables security teams to:

1. Enrich data for more context and better analyst investigations

2. Route data to the best destinations based on business needs

3. Access high-fidelity alerting that provides uncompromising visibility and powerful analytics

4. Get top-tier correlation, alerting, and incident response that highlights

#SecurityAnalysts #SecurityOperations #SecOps #NetworkSecurity #NetworkForensics #NetworkAnalytics #NetworkMonitoring #NDR #DFIR #Cybersecurity #ThreatHunting #ThreatIntelligence #IncidentResponse #Cribl #Elastic

to all those stuck in #SecurityOperations over this holiday weekend:

May your ticket queues be empty
May your threat feed be quiet
May your alerts be minimal
May your incidents be P4

Happy Holidays!