F0rm4t · @F0rm4t
25 followers · 29 posts · Server infosec.exchange
Plan your migration to Microsoft Sentinel
https://learn.microsoft.com/en-us/azure/sentinel/migration
#microsoft #siem #soar #microsoftsentinel #sentinel #migration #cloud #cloudnative #azure #multicloud #splunk #ArcSight #QRadar #soc #aws #gcp #cybersecurity #monitoring
#microsoft #siem #soar #MicrosoftSentinel #sentinel #migration #cloud #cloudnative #azure #multicloud #splunk #arcsight #qradar #soc #aws #gcp #cybersecurity #monitoring
Xavier «X» Santolaria :verified_paw: :donor: · @0x58
626 followers · 907 posts · Server infosec.exchangeA #Randori Recon integration for #QRadar #SOAR is now available on the #IBM App Exchange.
Integrating Randori Recon with QRadar SOAR empowers analysts with bi-directional synchronization between solutions, enabling queries of Randori Targets and the ability to create and update corresponding cases in QRadar SOAR.
#Randori #qradar #soar #ibm #cybersecurity #infosec #ibmsecurity
Mark Hunt · @thefreehunter
4 followers · 3 posts · Server infosec.exchangeMight as well do an #introduction. My name is Mark Hunt, I've been in #infosec since 2011. Historically I've worked mostly with #SIEM (#QRadar, #Spunk) as a former #IBM Security consultant, now working in #redteam, #pentesting, and #incidentresponse. I collect hobbies, mostly #programming, #music, and #digitalart.
#introduction #infosec #siem #qradar #spunk #ibm #redteam #pentesting #incidentresponse #programming #music #digitalart
Mark Hunt · @thefreehunter
20 followers · 23 posts · Server infosec.exchangeMight as well do an #introduction. My name is Mark Hunt, I've been in #infosec since 2011. Historically I've worked mostly with #SIEM (#QRadar, #Splunk) as a former #IBM Security consultant, now working in #redteam, #pentesting, and #incidentresponse. I collect hobbies, mostly #programming, #music, and #digitalart.
#splunk #introduction #infosec #siem #qradar #ibm #redteam #pentesting #incidentresponse #programming #music #digitalart
Jason "JK" Keirstead · @BlueTeamJK
15 followers · 39 posts · Server infosec.exchangeNews on AWS Security Lake, leveraging the Open Cybersecurity Schema Framework (#OCSF) is making the rounds. Proud that not only is IBM Security a launch partner, but #QRadar was one of the very few products name-dropped in the launch keynote.
Note that we have also added support for #AWS Security Lake to the Open Cybersecurity Alliance #STIX Shifter and #Kestrel projects - you can query and threat-hunt across AWS *and ~ 30 other products and clouds* all from one place, and apply out-of-the box ML and analytics... check it out if you have not.
https://opencybersecurityalliance.org/try-kestrel-in-a-cloud-sandbox/
#ocsf #qradar #aws #STIX #kestrel
Jason "JK" Keirstead · @BlueTeamJK
15 followers · 39 posts · Server infosec.exchange@dcdb I am obviously biased, but have you looked at #QRadar :) PS - if you have not looked at it in the past 3 years, it is very different.
Only comment on Elastic - and anything Elastic based, which a lot are - beware of scaling challenges. Works great for low volumes. As you scale up, Elastic infrastructure cost balloons. It is a fundamental issue with Apache Lucene base architecture of Elastic.
DJ Kenneth A · @djkennetha
12 followers · 16 posts · Server home.socialI see lots of people doing introductions and I just realized I never did one. So hello Mastodon! It’s nice to meet you. I’m DJ Kenneth A. More #producer / #remixer than DJ. (I’m also a #QRadar senior engineer for my day job.) I’ve remixed and worked with some super awesome people (Queen, Andy Hunter, various bootlegs ), and have been fortunate to have some #music in documentaries, sporting events and tv. I mostly write music for fun, but also because if I stop I’ll explode. (Which is messy)
#producer #remixer #qradar #music
infosec-jobs.com · @infosec_jobs
760 followers · 14040 posts · Server mastodon.socialHIRING: Cyber Security Threat Hunter / Martinsburg, West Virginia, United States - Remote https://infosec-jobs.com/J18715/ #InfoSec #InfoSecJobs #Cybersecurity #jobsearch #hiringnow #CyberCareer #Martinsburg #WestVirginia #RemoteJob #Analytics #APT #CISSP #Cyberdefense #CyberKillChain #EDR #Forensics #GCFA #GCIA #GCIH #GIAC #GNFA #GREM #Incidentresponse #Intrusiondetection #Logfiles #Malware #MITREATTCK #NIST #PowerShell #Privacy #Python #QRadar #Reverseengineering #Scripting #SIEM #Splunk
#infosec #infosecjobs #cybersecurity #jobsearch #hiringnow #cybercareer #martinsburg #westvirginia #remotejob #analytics #apt #cissp #cyberdefense #cyberkillchain #edr #forensics #GCFA #GCIA #GCIH #giac #gnfa #GREM #incidentresponse #intrusiondetection #logfiles #malware #mitreattck #nist #powershell #privacy #python #qradar #reverseengineering #scripting #siem #splunk
HCS ▋ · @superruserr
1273 followers · 2875 posts · Server infosec.exchangeWhile it's on IBM #QRadar https://www.ibm.com/support/knowledgecenter/en/SS42VS_DSM/com.ibm.dsm.doc/r_qradar_logsource_usecase_mappings.html they provide a useful and simple matrix mapping out log source types with the MITRE ATT&CK Framework.
I have in mind, hopefully end of this year, to refine this matrix and specifically point out some modules (ie that is open source/CE edition)
