[Workshop recording] Cloud SIEM in action - a demonstration of Rapid7 InsightIDR
Reportage | 25.04.2023
Demonstration of Rapid7 InsightIDR, a security center for incident detection and response, authentication monitoring, and endpoint visibility.
InsightIDR hunts all of the top attack vectors behind breaches: the use of stolen credentials, malware, and phishing, and alerts on stealthy intruder behavior as early as possible in the attack chain. InsightIDR doesn’t just highlight point-in-time malicious behavior; it provides full context on affected users and assets, as well as threat intel around adversaries using these techniques.
In this video you will learn:
- Basics of incident response, operating principles.
- Security Information and Event Management (SIEM) technology architecture.
- Deployment planning of Cloud SIEM.
- Configuration of Rapid7 InsightIDR.
- Features and characteristics of log management.
- Endpoint detection with Rapid7 InsightIDR.
- Data visibility.
- Threat alert, incident investigation and response with InsightIDR.
- Insight platform APIs.