-
Operational Security Intelligence
Security
Security intelligence, threat intelligence, cyber threat intelligence, or “intel” for short is a popular topic these days in the
Read More -
Using a “Playbook” Model to Organize Your Information Security Monitoring Strategy
Security
CSIRT, I have a project for you. We have a big network and we’re definitely getting hacked constantly. Your
Read More -
![]()
To SIEM or Not to SIEM? Part II
SecurityThe Great Correlate Debate SIEMs have been pitched in the past as “correlation engines” and their special algorithms can take
Read More -
![]()
To SIEM or Not to SIEM? Part I
SecuritySecurity information and event management systems (SIEM, or sometimes SEIM) are intended to be the glue between an organization’s
Read More -
![]()
Getting a Handle on Your Data
Security
When your incident response team gets access to a new log data source, chances are that the events may
Read More -
![]()
Making Boring Logs Interesting
SecurityIn the last week alone, two investigations I have been involved with have come to a standstill due to
Read More
csirt-playbook
-
Connect with Security
-
Latest Rewards
