On-demand Webinar

Real-time Incident Remediation – 1E & SANS

Organizations are under constant attack leaving IT to investigate hundreds of incidents a day. If a breach or malware attack occurs, there are several steps taken before remediation can begin, causing potentially hundreds of thousands of endpoints to endure vulnerability before IT ops can respond the incident. It is important that security can investigate issues in organizational context as quickly as possible. It’s also crucial that operations have the right tools to respond to the incident cross-platform at scale within the organization. In addition, the resolution of the incident should become part of the organizational knowledge base so if the incident reoccurs, the resolution can be automated.
We will discuss:

  • EDR Solution takes too long to respond. Talking to 200 hosts is fine, but talking to 20,000 hosts takes forever.
  • EDR Solutions have blind spots on Linux clusters and some people are using Macs.
  • Scale of product is very important to be able to roll this out.
  • Software inventory is very important. We discuss 10 important factors.

Speakers

  • Andy Schmid
    Andy Schmid
    SVP Product, 1E
  • Jake Williams
    Jake Williams
    Senior Analyst, SANS

Fill in the form to watch the webinar

Share this post

Share this post on your favourite social media platform.

Find this resource useful?

If so please click here

Related Content

On-demand Webinar

Improving the Incident Response Function: SANS 2018 Incident Response Survey Results Part 2

Incident responders are catching and remediating threats faster than ever, according to past SANS surveys. Much of their success can be attributed to improving technologies, such as threat intelligence--73 percent of respondents to last year's survey said they were using…

On-demand Webinar

How Are You Responding to Threats: SANS 2018 Incident Response Survey Results Part 1

What new and continuing threats are responders uncovering in investigations, and how are they dealing with those threats? This webcast will release results from the SANS 2018 Incident Response Survey, developed by Matt Bromiley, SANS Digital Forensics and Incident Response…

Case Study

Uncle SAM: How AppClarity saved the US taxpayer millions at a leading federal agency

This US federal agency lacked the insight into their software estate required to manage their licenses. AppClarity was the answer to their troubles.

Case Study

Tachyon & ServiceNow: Driving full IT automation (with Nathan Dornbrook, ECS Security)

ServiceNow is an incredible orchestration and automation tool, while Tachyon enables users to execute almost any process on any endpoint. The integration of the two, therefore, is extremely powerful.

About 1E

Cyber security is critical. One breach could destroy your organization’s reputation and cost millions of dollars. We take that threat seriously. 1E gives you unprecedented control and visibility over your full digital estate, delivered at speed and at scale. We’re working towards a world of proactive cyber security, a world where CIOs and CISOs work together to ensure that no threat can bring down their systems.