Apache Metron Overview and Codelab: Building the next Generation Cyber Security

http://photos2.meetupstatic.com/photos/event/8/7/8/9/600_450694697.jpeg

Pizza and Beverages

Free. Register Today. Space is limited.

Apache Metron is a cyber security application framework that provides organizations the ability to ingest, process and store diverse security data feeds at scale and in real-time in order to detect cyber anomalies and enable organizations to rapidly respond to them. Apache Metron is a fantastic proxy for learning how to build a complete streaming analytics solution that scales.

This meetup will be split into two sessions. The first part will be an overview of Apache Metron followed by a Code Lab. During the first session we will cover challenges with traditional cyber applications and an introduction to Apache Metron.

During the second session and Code Lab, we will walk through the IDE setup with Metron codebase, installing Metron on a single Dev VM and adding new telemetry data sources to the platform.

A preliminary agenda is as follows (this may change as we get closer):

Overview of Cybersecurity and Apache Metron (6:15 – 7:00)

• Challenges with Today’s Security Tools to Combat Cyber Attacks

• Introduction to Apache Metron

• The User Personas for Apache Metron

• Why Apache Metron?

• Data Scientist Perspective

• SOC Analyst/Investigator Perspective

• Metron Deep Dive - Tracing a telemetry event as it flows through the platform

CodeLab (7:00 to 9:00)

• Setup Development/IDE environment with Apache Metron code base

• Build and deploy Metron application on a vagrant VM on your workstation

• Add a new security telemetry data source to Metron

• Use Apache Nifi to ingest events from new data source into Metron

• Add new Storm topology to Metron to parse events for new data source

• Build and deploy new updated Metron application with support of new telemetry data source

• Walkthrough the Metron UI and show new events from new data source as it flows into Metron

Bio

Andrew is deeply entrenched in streaming systems and obsessed with delivering insight at the speed of thought. As the author of Streaming Data (http://manning.com/psaltis/) by Manning, an international speaker and trainer, he spends most of his waking hours thinking about, writing about, and building streaming systems. When he's not busy helping Hortonworks customers solve IoT, Streaming and Cybersecurity problems with Hortonworks Data Flow and the gamut of Apache technologies, he's spending time with his lovely wife, two kids, and watching as much Lacrosse as possible.