Navn
Improving Threat Detection Accuracy: Leveraging Probability to Reduce False Positives
Beskrivelse
| This track tackles the challenges of false positives in early-stage attack detection within organizations. Traditional SIEM alerting often leads to a high rate of false positives, posing significant challenges for analysts. We'll explore how context-driven threat detection, powered by probability scoring, can enhance detection accuracy by consolidating relevant observations into actionable incidents. Context-driven threat detection using algorithms increases detection efficacy by fusing relevant observations to produce high-value incidents. Instead of using SIEM to write atomic alerts to detect threats, we’re discussing methods to fuse observations and create high-fidelity alerts. By alerting on incidents in combination, analysts can detect attacks early in the kill chain while eliminating false positives. |
Talere
Dato & Tid
onsdag den 1. maj 2024, 09.45 - 10.15
Sal
Sal 1
Udstiller
LogPoint
Slides fra seminaret vil være synlige på denne side, hvis den pågældende taler ønsker at dele dem. Bemærk venligst, at du skal være logget ind for at se dem.
