Extended detection and response (XDR) is more than a simple integration of multiple sources. An effective XDR strategy can help you build stronger detection capabilities and better response orchestration across device and traffic types.
In this webinar, SANS and AWS Marketplace will break down each component of XDR to provide practical guidance on approaches, tools, and implementation strategies. They will also talk about areas where you can introduce automation in response and remediation activities and provide various examples of use cases for XDR.
Register today to be among the first to receive the accompanying whitepaper written by SANS senior instructor, Matt Bromiley.
Attendees will learn how to:
- Identify differences and clarify misconceptions of XDR versus endpoint and network detection and responses (EDR and NDR)
- Build an effective XDR strategy that can encompass tools and technologies currently in place
- Utilize and integrate data sources, threat intelligence, and security platforms to help detect vulnerabilities earlier
- Improve response orchestration and introduce automation to remediation processes
Who Should Attend?
Security Analysts, Security Architects, Security Engineers, Cloud Security Architects, and the office of the CISO
Matt Bromiley, Digital Forensics and Incident Response Instructor at SANS
Matt Bromiley is a SANS digital forensics and incident response (IR) instructor, teaching FOR508 Advanced Incident Response, Threat Hunting, and Digital Forensics and SANS FOR572 Advanced Network Forensics: Threat Hunting, Analysis, and Incident Response. He is also an IR consultant at a global IR and forensic analysis company, combining experience in digital forensics, log analytics, and incident response and management. His skills include disk, database, memory and network forensics; incident management; threat intelligence and network security monitoring. Matt has worked with organizations of all shapes and sizes, from multinational conglomerates to small, regional shops. He is passionate about learning, teaching and working on open source tools.
Nam Le, Specialist Solutions Architect at AWS
Nam Le is a Specialist Solutions Architect at AWS covering AWS Marketplace, Service Catalog, Migration Services, and Control Tower. He helps customers implement security and governance best practices using native AWS Services and Partner products. He is an AWS Certified Solutions Architect, and his skills include security, compliance, cloud computing, enterprise architecture, and software development. Nam has also worked as a consulting services manager, cloud architect, and technical marketing manager.
Register for the webinar
About the SANS Institute:
The SANS Institute was established in 1989 as a cooperative research and education organization. Its programs now reach more than 165,000 security professionals around the world—from auditors and network administrators, to chief information security officers—sharing the lessons they learn and jointly finding solutions to the challenges they face.
About AWS Marketplace:
AWS Marketplace is a digital software catalog that makes it easy to find, try, buy, deploy, and manage software that runs on AWS. AWS Marketplace has a broad and deep selection of security solutions offered by hundreds of independent software vendors, spanning infrastructure security, logging and monitoring, identity and access control, data protection, and more. These products can be integrated with AWS Services and other existing technologies, enabling you to deploy a comprehensive security architecture across your AWS and on-premises environments. Visit aws.amazon.com/marketplace to learn more.