SIEM and Elasticsearch for absolute beginners
Details
Curious about SIEM and/or Elastic? You heard about it, but don't really know what it is? You know what it is, but curious about what to do next? This is the talk for you!
We will have a few subjects for you:
- SIEM as a concept
- Elastic as platform and it's usability
- Introduction to Elastic SIEM
- Introduction to TheHive - a security incident response platform that can help you get the most out of your Elastic platform.
Elastic is available for free - so is TheHive. So everybody can be on board here.
Schedule:
20.00 OWASP Copenhagen intro (Klaus Agnoletti)
20.05 Introduction to SIEM in general and Elastic as platform (David Thejl-Clayton, SOC manager @JN Data)
20.40 Introduction to Elastic SIEM (James Spiteri, Principal Product Manager of Elastic SIEM, Elastic)
21.15 Introduction to TheHive (Nabil Adouani, TheHive Project)
21.55 Thanks and goodbye
After each talk there'll be dedicated Q&A time for questions from the youtube chat.
Links:
Elastic SIEM (https://www.elastic.co/siem)
TheHive (https://thehive-project.org)
Stay tuned!
SIEM and Elasticsearch for absolute beginners