From the course: SIEM: Event Management with Splunk Security
Join today to access over 24,900 courses taught by industry experts.
Prioritize your security goals - Splunk Tutorial
From the course: SIEM: Event Management with Splunk Security
Prioritize your security goals
- Designating high impact cybersecurity goals for a new initiative doesn't have to be a complex process. Let's take a closer look at why risk assessments and inventory lists are such powerful resources. First, we'll take a look at the Payment Card Industry's risk assessment guidelines which are provided in their website. PCI is a great example to lean on since all companies need to protect customer payment information. Using PCI's prioritized approach tool, we're going to create a quick spreadsheet to organize and prioritize our goals. In the field, this is oftentimes referred to by auditors as a control matrix. You can find the PCI prioritized approach tool in the exercise files of this course containing Splunk and PCI links. Let's prioritize three goals from our spreadsheet. Since everyone needs backups, let's use incident response from PCI's tool section 12.10.1 as our first priority as a good use case example.…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
-
The power of a good goal3m 8s
-
(Locked)
Prioritize your security goals2m 35s
-
(Locked)
Create event management to delegate and collaborate2m 50s
-
(Locked)
Plan a case management strategy2m 37s
-
(Locked)
How to use regex for custom event filtering3m 2s
-
(Locked)
How to use GRC as a starting point2m 3s
-
-
-
-
-