Special Webcast: Vetting Your Intel – Techniques and Tools for False Positive Analysis – May 15, 2019 1:00pm US/Eastern

This post was originally published on this site

Speakers: Robert M. Lee and Tarik Saleh

For blue teams and network defenders, false positives are a common challenge, and often result in alert fatigue. A consequence of alert fatigue, according to a study conducted by Cloud Security Alliance, is that 31.9% of IT security professionals ignore alerts. Alternatively, some security professionals blindly trust all alerts, which if not validated correctly can bring dire consequences to your network . Join DomainTools Senior Security Engineer, Tarik Saleh, and SANS instructor, Robert M. Lee, to explore areas where blue teams can identify false positives, methods of validating alerts, and real world applications of these examples.

In this webinar you will learn how to:

  • Set up your own analysis environment
  • Vet your IDS alerts
  • Evaluate your A/V alerts

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.