Running a Global SOC - Challenges and Learnings
Time & Location
About the Event
In this era of highly complex and targeted security threats, Security Operation Center (SOC) has proven to be an essential tool in the arsenal of the security team in the race against threat actors and complex malware attacks. This session is focused on sharing the experiences and lessons learnt while managing a global SOC. Topics in focus, · What type of threats are seen by the SOCs recently?; · Inner workings of a SOC; · Internal SOC vs MSSP, which one fits my requirement better?; · Machine Learning in threat detection; · Threat intelligence and Threat hunting; and · Building and operating a successful SOC. Operating successful continuous monitoring and a threat detection program is not an easy feat, whether you decide to implement it internally or outsource it to a MSSP. This session will try to answer some of the questions around a successful SOC operation.