Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

devo

Confessions of a CISO

Apr 29, 2021 By Devo In Devo

Ever wonder what really bugs a CISO. Well, do we have a story for you. In this Log’s Honest Truth podcast, presented in partnership with ITSP Magazine, Devo CISO JC Vega discusses the confessions of “Mr. T” (we disguised his face to protect his identity) a veteran CISO. Listen to the podcast. “Mr. T” faced three primary challenges: Next up, the confessions of “Mr. V,” a digital security and fraud director.

Read Post
netwrix

SIEM vs Log Management

Apr 28, 2021 By Jeff Melnick In Netwrix

It now takes organizations 207 days to identify and 73 days to contain security breaches, according to IBM’s 2020 Cost of a Data Breach Report. That means the average “lifecycle” of an incident is a staggering 280 days — 7 months! Moreover, cybercrimes are becoming increasingly sophisticated and attackers are quicker than ever when it comes to finding cracks in corporate infrastructure.

Read Post
coralogix

Using Coralogix to Gain Insights From Your FortiGate Logs

Apr 28, 2021 By Shuki Shahrabany In Coralogix

FortiGate, a next-generation firewall from IT Cyber Security leaders Fortinet, provides the ultimate threat protection for businesses of all sizes. FortiGate helps you understand what is happening on your network, and informs you about certain network activities, such as the detection of a virus, a visit to an invalid website, an intrusion, a failed login attempt, and myriad others. This post will show you how Coralogix can provide analytics and insights for your FortiGate logs.

Read Post
splunk

Splunk and Zscaler Utilize Data and Zero Trust to Eradicate Threats

Apr 26, 2021 By Jane Wong In Splunk

The past year has challenged us in unimaginable ways. We kept our distance for the greater good, while companies faced the daunting task of transforming their workforce from in-person to remote — practically overnight. This presented a unique challenge for cybersecurity teams. How would they ensure employees retained access to critical data in a secure way? Working in the cloud has made remote work easier for many organizations, but has also presented new risks.

Read Post

Dynamic Observability: Troubleshooting Techniques for 2021

Apr 23, 2021 By Coralogix In Coralogix
A new generation of troubleshooting techniques are making their way into the mainstream. These techniques make observability more dynamic, configurable, and intuitive. In this webinar, we discussed the importance of these new techniques, how they enable you to solve customer issues faster and increase your velocity.
View Video
chaossearch

How to Plan a Threat Hunt: Using Log Analytics to Manage Data in Depth

Apr 22, 2021 By Thomas Hazel In ChaosSearch
Security analysts have long been challenged to keep up with growing volumes of increasingly sophisticated cyberattacks, but their struggles have recently grown more acute. Only 46% of security operations leaders are satisfied with their team’s ability to detect threats, and 82% of decision-makers report that their responses to threats are mostly or completely reactive — a shortcoming they’d like to overcome.
Read Post
splunk

Monitoring Pulse Connect Secure With Splunk (CISA Emergency Directive 21-03)

Apr 21, 2021 By Dave Herrald In Splunk

To immediately see how to find potential vulnerabilities or exploits in your Pulse Connect Secure appliance, skip down to the "Identifying, Monitoring and Hunting with Splunk" section. Otherwise, read on for a quick breakdown of what happened, how to detect it, and MITRE ATT&CK mappings.

Read Post
chaossearch

6 Data Cleansing Strategies For Your Organization

Apr 15, 2021 By Dave Armlin In ChaosSearch
The success of data-driven initiatives for enterprise organizations depends largely on the quality of data available for analysis. This axiom can be summarized simply as garbage in, garbage out: low-quality data that is inaccurate, inconsistent, or incomplete often results in low-validity data analytics that can lead to poor business decision-making.
Read Post
splunk

Endpoint Security Data Collection Strategy: Splunk UF, uberAgent, or Sysmon?

Apr 13, 2021 By Matthias Maier In Splunk

Many threats originate from the endpoint and detecting them requires insights into what happens on the endpoint. In this post we look at different endpoint activity data sources, comparing the benefits and capabilities of Splunk Universal Forwarder with vast limits uberAgent and homegrown solutions.

Read Post

Enhancing Event Log Analysis with EvtxEcmd using KAPE

Apr 9, 2021 By Kroll In Kroll
How much time are you spending manually parsing and sorting event logs? With EvtxECmd, digital forensics professionals can optimize Windows event log analysis through its unique mapping feature. Created by Eric Zimmerman, EvtxECmd can be called via the EZParser module in KAPE (another tool created by Eric Zimmerman) to process thousands of events in seconds and create structured CSV files that are much easier to read and manipulate.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.