Risky Business - using risk-based analysis to detect bad things (trans-tech-tent)
Chaos Computer Club - archive feed · Jaime McCallion
February 11, 202330m 44s
Audio is streamed directly from the publisher (cdn.media.ccc.de) as published in their RSS feed. Play Podcasts does not host this file. Rights-holders can request removal through the copyright & takedown page.
Show Notes
Risk-Based Analysis / Alerting is a growing approach for defensive teams and SOCs to help cut down on noise and detect bad things happening from existing data and search volumes. As vendor-neutrally as possible, this talk will walk through the concept, why it's good, what the organisational and technical weaknesses of implementations are, and how it's going to grow in 2023/24.
about this event: https://c3voc.de
Topics
import550022023Cybersec