Level Up Security Alerting with
Risk Based Alerting in Splunk ES
Tuesday, August 29th | 11:00am ET; 8:00am PT | 30 minutes
Join us and Will Robus, CEO of Outpost Security, for a webinar where he will do a detailed walk through or Risk Based Alerting (RBA) in Splunk Enterprise Security and how to implement it. Outpost Security is a leading Splunk partner in ES & RBA. Outpost Security was co-founded by Stuart McIntosh - the creator of RBA in ES. Will has spent the last 20 years in the operations or financial C-suites at technology and security companies focused on what drives results and successful scaling. At Outpost Security, he works with CISOs to imagine a more expansive future for their SOC once it has a solid RBA foundation.
Attendees will leave with an understanding of:
- How RBA works and why it is a game changer for security alerting and response
- Foundational elements to configure in ES and RBA - along with resources to help with those configurations
- Best practices from implementation experiences taken from over 20 Splunk customers
You will also see a brief demo of Outpost Security's Splunk App - Zero-to-One. This is a premium Splunk App available through Carahsoft that is designed to accelerate the deployment of RBA in Splunk ES. Using the app, customers are able to demonstrate end-to-end RBA functionality in their environment in less than two weeks. The result being automatically enriched RBA notables for your analysts to review and respond to. Zero-to-One includes built in best practices Outpost Security has developed by deploying RBA to over 1 million endpoints.