Rootconf Mini 2024 (on 22nd & 23rd Nov)

Geeking out on systems and security since 2012

Srujan A

@acsrujan

Security illusions and events mayhem

Submitted Oct 15, 2024

Description:

In this 40 minutes, we will start off with a brief introduction of DevSecOps and spend almost 30 minutes on the critical role of Security Information and Event Management (SIEM) components within the DevSecOps framework.

We’ll focus on why SIEM is essential part of business, and what SIEM solves and what it doesn’t solve. We’ll take a few security insights that are illusions and not necessarily important for business.

We’ll decouple the complexities of integrating SIEM in CI/CD pipelines, monitoring and adding rules for threat detection, signal vs noise on false positives, and the usual chaos of data integration. We’ll also touch upon the cost-benefit of running SIEM.

Takeaways:

  • Audience would be left with knowing how to enable proactive security detection and response, implementing their DevSecOps processes.
  • Audience would learn about trade-offs, and understand how to blend the business impacts to security events.

Audience:

Intermediate/Advanced.

  • People preferably familiar with structured logging, basics of observability including logs, events, metrics, traces and not yet sandwiched Sec in their DevOps processes.

Comments

{{ gettext('Login to leave a comment') }}

{{ gettext('Post a comment…') }}
{{ gettext('New comment') }}
{{ formTitle }}

{{ errorMsg }}

{{ gettext('No comments posted yet') }}

Hosted by

We care about site reliability, cloud costs, security and data privacy

Supported by

Platinum Sponsor

Nutanix is a global leader in cloud software, offering organizations a single platform for running apps and data across clouds.

Platinum Sponsor

PhonePe was founded in December 2015 and has emerged as India’s largest payments app, enabling digital inclusion for consumers and merchants alike.

Silver Sponsor

The next-gen analytics engine for heavy workloads.

Sponsor

Community sponsor

Peak XV Partners (formerly Sequoia Capital India & SEA) is a leading venture capital firm investing across India, Southeast Asia and beyond.

Venue host - Rootconf workshops

Thoughtworks is a pioneering global technology consultancy, leading the charge in custom software development and technology innovation.

Community Partner

FOSS United is a non-profit foundation that aims at promoting and strengthening the Free and Open Source Software (FOSS) ecosystem in India. more

Community Partner

A community of Rust language contributors and end-users from Bangalore. We have presence on the following telegram channels https://t.me/RustIndia https://t.me/fpncr LinkedIn: https://www.linkedin.com/company/rust-india/ Twitter (not updated frequently): https://twitter.com/rustlangin more