Private Event | RT IBM Syd 3 Dec 19

The Challenge: “In a world run by data, security is that thin, invisible boundary between access and abuse.”

ADAPT research shows many in our security community face attack growth and dissolving perimeters, but struggle with:

• Getting visibility into security data to understand and assess threats
• Prioritising true threats and vulnerabilities among 1000s of alerts
• The burden and fatigue of alert volumes and manual reporting
• Effectively managing threats with less security talent
• Assuring compliance and control standards

What is the roadmap to a enable an automated Security Intelligence program?

Logging and event management won’t keep up with the modern chain of internal or external attack threats, as such many SOCs already have SIEM at their core to help identify and prioritise threats at speed.

But is that enough?
To improve detection, investigation and resolution – we must also identify the symptoms of threat behaviours. Smarter tooling, Automation and AI can now stop attacks earlier and mitigate damage.

Join 15 IT security peers to learn from local research and current use cases, network and share your experience, expertly moderated by ADAPT’s Matt Boon.

New AI-analytics may also help security fatigue with better investigative cognitive capabilities and processes to augment and improve team decision making, and free them to focus on other activities.

Multiple clouds and data growth

We also live in a multi-cloud, hybrid world, with data being created at a rate that simply can’t be consumed and analysed by existing SIEM deployments.

Security operations has become more aligned around prioritisation of relevant industry focused threats, in turn demanding new ways of analysing disconnected data sets across environments.

But this is easier said than done – and requires the whole business to be on the same page.

So how do you…

1. Align increased security awareness among executive leaders with the realities of a clearly defined security intelligence strategy – when their own departments are misaligned?
2. Ensure the brand reputation, profitability and health of the organisation – when so many security teams are reporting fatigue and barely able to keep up with the current alert volumes?

Discussion Points: 

If you had a clean slate to design the work that your analysts were doing, what would that look like, and how would that differ from today’s workload?

• What is the right actionable information to measure and inform executive decision making?
• How do you measure the success or value of your tools, reporting or communications?
• What is the role of automation and AI – and how to ensure compliance?
• How to deliver holistically whilst managing disconnects across the C-suite and departments?
• Why and how to move away from large capex to an opex model?
• Raising overall staff awareness of responsibilities and interdependencies

Join 15 IT security peers to learn from local research and current use cases, network and share your experience, expertly moderated by ADAPT’s Matt Boon.

Sessions run under Chatham House Rules to enable you to share and learn best practice among peers with privacy.