![Survival of the Fastest: The 1-10-60 Rule [Splunk Enterprise, Splunk Enterprise Security, Phantom]](https://s3.castbox.fm/42/b4/88/6de118a42264bad73e2611343fe123ff59_scaled_v1_400.jpg "Survival of the Fastest: The 1-10-60 Rule [Splunk Enterprise, Splunk Enterprise Security, Phantom]")
Survival of the Fastest: The 1-10-60 Rule [Splunk Enterprise, Splunk Enterprise Security, Phantom]
Update: 2019-12-24
Description
Winston Churchill once said, “Success is not final, failure is not fatal: it is the courage to continue that counts." Then again, Churchill wasn’t in cybersecurity...While our successes are certainly never final, our failures can absolutely be fatal—to a company and our continued employment. What's a good way to actually measure success and failure, though, outside of not appearing on the front page of the paper? Well, as CrowdStrike notes, you have on average one minute to detect an attack in progress, ten minutes to understand it, and sixty minutes to contain it. We will show how to use this 1-10-60 Rule as a measuring metric and leverage the data and capabilities within Splunk and its ecosystem to ensure that we win the survival of the fastest.
Speaker(s)
Wissam Ali-Ahmad, Lead Solutions Architect, Splunk
Tim Sullivan, Global Senior Strategic Solutions Architect, CrowdStrike
Slides PDF link - https://conf.splunk.com/files/2019/slides/SEC1573.pdf?podcast=1577146239
Product: Splunk Enterprise, Splunk Enterprise Security, Phantom
Track: Security, Compliance and Fraud
Level: Intermediate
Speaker(s)
Wissam Ali-Ahmad, Lead Solutions Architect, Splunk
Tim Sullivan, Global Senior Strategic Solutions Architect, CrowdStrike
Slides PDF link - https://conf.splunk.com/files/2019/slides/SEC1573.pdf?podcast=1577146239
Product: Splunk Enterprise, Splunk Enterprise Security, Phantom
Track: Security, Compliance and Fraud
Level: Intermediate
Comments
In Channel
Download from Google Play
Download from App Store
United States00:00
00:00
x
