Topic
Increasing Visibility
How to Get the Most out of Your Security Monitoring with the Cyber Kill Chain Model
In our personal lives, many of us try to get the most out of a tank of gasoline – waiting until the red indicator shines bright and we finally have to stop at a gas station to fill our tank. This mindset extends to many aspects of our lives, both personally and professionally. For many […]
A Journey Through _time: How to Resolve Common Time-Based Issues in Splunk
“All we have to decide is what to do with the time that is given us.” – J. R. R. Tolkien Time is one of the most critical details included in any logs, whether they are security related or not. This is doubly important for Splunk, as it can affect whether alerts trigger, whether analysis […]
6 Reasons to Prioritize Cloud Visibility in Your Cloud Security Strategy
As the saying goes, “You can’t protect what you can’t see.” That bit of wisdom couldn’t be more on point when you’re talking about enterprise data in the cloud, which is multiplying by leaps and bounds. It’s hard enough to keep track of on-premise data along with associated threats and attempted breaches. When you’ve offloaded […]
Looking to Add a Cloud Provider SIEM to Your Existing SIEM Strategy? Consider These 5 Factors to Maximize Cost Savings and Detection Capabilities
As organizations look to embrace the cloud for more of their daily workloads, they’re faced with the challenge of how best to maintain visibility across their rapidly evolving environment and keep a handle on their security posture. Many cloud providers now provide their own SIEM offerings and entice you to make the switch from your […]
How We Got Here: Will Open XDR Finally Unify Our Security Environment?
The hype cycle around XDR (cross-platform detection and response) is in full swing. But the problems it promises to solve and the outcomes security teams are looking for are nothing new. It started with security information and event management (SIEM). We needed a better way to aggregate and search our security data to run effective investigations. It helped us to […]
Top 3 Reasons to Alert Based on the Cyber Kill Chain Model
Picture this – It’s 8 AM on Monday and you’re sitting at your desk with a fresh cup of coffee, ready to start a new week. You log in to your workstation, hopeful that your team can kick-off the proactive DNS threat hunt you’ve planned out. Once you’ve opened the usual web browser tabs and […]
GreyMatter’s Partner Ecosystem: Dozens of Integrations = One Unified View
Security teams have been loading up on disparate technologies to better defend their environments for the past several years. The result: with multiple tool sets and data living in numerous locations, it’s difficult to have confidence that you have enough visibility to protect your business against threats. Not to mention, each technology has its own […]
3 Signs It’s Time to Rethink Your Security Operations Strategy
Today, the security industry is over-saturated with technologies and tools. While many enterprises have established or are setting a foundation for their security operations with Security Information and Event Management (SIEM) and Endpoint Detection and Response (EDR), there are countless point solutions arising to extend them, from SOAR to CASB, UEBA and more. Although each […]
RQP3 2020: Our Top 3 Takeaways
Last week, ReliaQuest hosted its annual user conference, RQP3 (Plan, Partner, Propel), where over 650 employees, customers, and partners came together to share industry knowledge and participate in sessions around the theme: Automating Visibility and Response. Over three days, RQP3 attendees had the chance to participate in panel discussions and breakout sessions, get hands-on experience […]
No results
