Leveraging Generative AI & the MITRE ATT&CK Framework for Enhanced Threat Detection ISMG%%sep%%Events ismg.events

Wednesday, January 24th, 2024

Improving Threat Detection: Managing SIEM Costs, Data Platform Flexibility, and Generative AI

5:30pm – 8:00pm ET | Washington D.C

Event Overview

SIEMs remain the workhorse for many enterprise SOCs, but they are not without challenges. Rising costs, the ability to detect high-risk threats, and aging architecture that combines security analytics, logging, and data storage all in one monolithic and often vendor-specific stack, are contributing to enterprises seeking ways of using their data in more effective ways.

One area of particular interest is the adoption of modern, cost-effective security data lakes that have shown utility in advanced data science use cases.

However, it’s not always clear how enterprise organizations can take advantage of these new security data lakes, what the first steps are to get started, and what assurances there are that you will be able to adopt security data lakes alongside your existing SIEM without the need to rip and replace.

DISCUSSION POINTS

How can I reduce SIEM costs without disrupting the years of work that my security team has invested?
How can we gain detection coverage for data sources that cannot be collected in our SIEM due to cost limitations?
How can I use MITRE ATT&CK framework priorities and Generative AI to better my threat detection and response capabilities?
What are the challenges associated with adopting security data lakes? How do I overcome those with our existing team and skill set?

Join our Events Community ISMG Connect

Continue the conversation with your industry peers

Share your Feedback

Complete a brief 5-minute survey here

Moderator

John Banghart

Senior Director for Cybersecurity Services

Venable

Mackenzie Kyle

VP of Product

Anvilogic

Speakers

Join John Banghart for a moderated discussion that will feature insight from Mackenzie Kyle, VP of Product event sponsor Anvilogic, and will also draw upon the experiences of the attendees. Participants will explore strategies for data lake migration, reskilling teams, and managing migration risk.

This session will be:

Chatham house rules
Peer driven
Pitch free

Subject matter expert

Mackenzie Kyle

VP of Product

Anvilogic

Prior to Anvilogic, Kyle led the Cybersecurity Operations Center team at one of the largest financial institutions in the U.S. He has over a decade of experience in cybersecurity and threat detection.

Exclusive Sneak Peek: Get a Preview of this Roundtable

Venue

Del Frisco's Double Eagle Steakhouse

950 I St NW Washington, DC 20001

Underwritten by

Anvilogic is a Palo Alto-based AI cybersecurity startup founded by security veterans and data scientists from Fortune 500 companies. Our mission is to democratize threat detection and hunting for today’s SOC teams to easily be done across hybrid, multi-clouds and security data lakes without needing to centralize data or rip and replace tools. Further, with our investments in AI-powered automation of detection-as-code to create, test, tune and deploy detections, SOC users can implement high-efficacy detection and hunting techniques without writing a single line of code nor manually wrangling data.

Rules of Engagement

By taking part in this discussion you agree that:

These events follow Chatham House Rule. Nothing shared will be recorded or distributed anywhere online.
If for any reason you need to cancel your reservation, we ask you to let us know 48 hours prior to the event commencing so we can open your seat up to someone else.
These are interactive discussions, so we ask that all attendees participate in the discussion. If this is a virtual event, we ask all attendees to join via video.