Leveraging Elasticsearch as a SIEM solution

Join the Elastic Cleveland User Group on Monday, June 10th, at Artemis Staffing a meetup. Jagdish Gautham Krishna Kumar will present Leveraging Elasticsearch as a SIEM solution and using KQL to look for suspicious logs, followed by networking, refreshments, and pizza.

Please RSVP if you plan on attending so we can provide the venue with an estimated headcount.

⚡️ Interested in giving a talk? ⚡️
Have you ever considered presenting on your Elastic use case? We welcome 5-10 minute lightning talks, 45-minute deep dives, and everything in between. If you're interested, please submit your talk or send us an email at meetups@elastic.co.

Date & Time:
Monday, June 10th, from 5:30-7:30 pm EDT

Location:
Artemis Staffing - 6161 Oak Tree Blvd, Ste 300 Independence, OH 44131
The meetup will take place in a conference room in Suite 300 (head to the 3rd floor upon arrival)

Meetup Host:

• Eddie Mitchell (Summit Racing)

Parking:

• Please be sure to not park in the other building tenants' parking spots.
• Please park in any of Artemis' parking spots to the left of the building against the green space.

Agenda:

• 5:30 pm: Doors open
• 6:00 pm: Leveraging Elasticsearch as a SIEM solution and using KQL to look for suspicious logs - Jagdish Gautham Krishna Kumar
• 7:00 pm: Networking, pizza & refreshments
• 7:30 pm: Event ends

Talk Abstract:
Leveraging Elasticsearch as a SIEM solution and using KQL to look for suspicious logs - Jagdish Gautham Krishna Kumar

Abstract: In the evolving landscape of cybersecurity, traditional Security Information and Event Management (SIEM) solutions often struggle to keep pace with the increasing volume, variety, and velocity of data generated by modern IT environments. This presentation introduces an innovative approach to SIEM by leveraging the capabilities of ElasticSearch, an open-source, highly scalable search and analytics engine. The session will explore how the Elastic Stack (Elasticsearch, Logstash, Kibana, and Beats) transforms security data management, providing a comprehensive and cost-effective SIEM solution. Attendees will gain insights into the architecture of the Elastic Stack, its powerful real-time search capabilities, and how it facilitates proactive threat detection, incident response, and compliance monitoring.