Navn
Improving Threat Detection Accuracy: Leveraging Probability to Reduce False Positives
Beskrivelse
| This track tackles the challenges of false positives in early-stage attack detection within organizations. Traditional SIEM alerting often leads to a high rate of false positives, posing significant challenges for analysts. We'll explore how context-driven threat detection, powered by probability scoring, can enhance detection accuracy by consolidating relevant observations into actionable incidents. Context-driven threat detection using algorithms increases detection efficacy by fusing relevant observations to produce high-value incidents. Instead of using SIEM to write atomic alerts to detect threats, we’re discussing methods to fuse observations and create high-fidelity alerts. By alerting on incidents in combination, analysts can detect attacks early in the kill chain while eliminating false positives. |
Talere
Dato & Tid
onsdag den 1. maj 2024, 09.45 - 10.15
Sal
Sal 1
LogPoint
Slides fra seminaret vil være synlige på denne side, hvis den pågældende taler ønsker at dele dem. Bemærk venligst, at du skal være logget ind for at se dem.
