While our security and IT systems generate enormous amount of logs and we have many nice tools for their analysis, we still miss many critical incidents or notice them way too late. Increasing use of virtualization opens up new attack vectors, complicating the situation even further.
Join this workshop to discover how the leading SIEM (Security Information and Event Management) solution from EMC — RSA enVision — can help you to ensure the security of your information infrastructure. enVision works in both virtualized and non-virtualized environments, providing relevant and timely notifications of security incidents and offering rapid forensic analysis thereof.
We will show you how enVision can be used to discover “low-profile” malicious activity and new class of virtualization enabled attacks.
The workshop is targeted to managers, architects and administrators in charge of their organizations’ IT security.
| 09:30 — 09:45 | Morning coffee |
| 09:45 — 10:00 | Welcome to ByteLife Solution Center; the day’s agenda |
| 10:00 — 11:00 | RSA enVision introduction, technical concepts, user interface demo |
| 11:00 — 11:15 | Coffee break |
| 11:15 — 11:45 | Discovering and tracing incidents in virtualized environments (with demo) |
| 11:45 — 12:15 | Shortening investigation time using Relational Charting (with demo) |
| 12:15 — 12:30 | Q&A and feedback |
Duration : 3 h