Reportage

[Workshop recording] Cloud SIEM in action - a demonstration of Rapid7 InsightIDR

Reportage | 25.04.2023

Demonstration of Rapid7 InsightIDR, a security center for incident detection and response, authentication monitoring, and endpoint visibility.

InsightIDR hunts all of the top attack vectors behind breaches: the use of stolen credentials, malware, and phishing, and alerts on stealthy intruder behavior as early as possible in the attack chain. InsightIDR doesn’t just highlight point-in-time malicious behavior; it provides full context on affected users and assets, as well as threat intel around adversaries using these techniques.

In this video you will learn:

  • Basics of incident response, operating principles.
  • Security Information and Event Management (SIEM) technology architecture.
  • Deployment planning of Cloud SIEM.
  • Configuration of Rapid7 InsightIDR.
  • Features and characteristics of log management.
  • Endpoint detection with Rapid7 InsightIDR.
  • Data visibility.
  • Threat alert, incident investigation and response with InsightIDR.
  • Insight platform APIs.