Cisco Live Amsterdam 2026 SOC detected, investigated, and neutralized a malicious file delivered via email—leveraging Cisco XDR, Splunk Attack Analyzer, Secure Malware Analytics, and Endace.
Cisco Live EMEA SOC team engineered a seamless, bidirectional integration between Cisco XDR and Splunk Enterprise Security, automating escalations and investigation workflows to eliminate friction, preserve context, and unify analyst collaboration
Explore how layered defenses, deep integrations with Splunk and Endace, and real-time collaboration among experts transform Security Operations Centers into unified, resilient shields against emerging risks.
Discover how Cisco Live EMEA SOC leveraged an innovative, integrated security architecture—featuring the new Cisco Security Foundation AI Reasoning model.
Cisco XDR, Splunk, Cisco Secure Firewall, and Endace (Zeek) were used to investigate a spike in security alerts at Cisco Live EMEA, quickly distinguishing genuine threats from environmental noise through correlated incident analysis and network
Investigating indicators of compromise (IOCs) requires a unified view of security data. See how we integrated Cisco XDR with third-party tools and open-source models at Black Hat Europe.
Manual triage often slows down incident response. Learn how we integrated an 8-billion parameter security LLM into Cisco XDR to summarize alerts and trace attack paths in real time.
Building a secure network for thousands of cybersecurity experts in just three days requires intense collaboration. Discover the hardware, software, and engineering behind the Black Hat Europe NOC.
Rented hardware often carries digital baggage from previous users. Discover how our NOC team used JA3 fingerprints and Cisco XDR to track down unauthorized P2P syncing in London.
