Cybeers | The role of SIEM, XDR, CTI product categories and MTTD, MTTR and MTTP metrics
Cybeers por Triskele Labs
Notas del episodio
- 00:00 Cybeers
- 05:49 What's the difference between SIEM and XDR solutions?
- 10:08 About XDR product category, Extended Detection and Response
- 12:48 And what is CTI?
- 14:24 The best way to 'action' CTI (Cyber Threat Intelligence)
- 15:50 All SIEM solutions are the same?
- 17:28 Open source layer
- 19:42 Importance of monitoring all hours of the day
- 20:37 'Friday night special' at Triskele Labs
- 22:03 How many compromised organisations had SIEM in place?
- 22:56 'The mailbox', security@
- 23:43 Roll out your Defender
- 24:36 MDR service, people expertise, false positives, Mean time to detect (MTTD), Mean time to respond (MTTR) and Mean time to protect (MTTP)
Palabras clave
SIEMXDRCTI