Splunk Tech Talks
Deep-dives for technical practitioners.

Operationalize MITRE ATT&CK™ with Risk Based Alerting (RBA)

Loves-to-Learn

Register for our Tech Talk: Security Edition, Operationalize MITRE ATT&CK™ with Risk Based Alerting (RBA) on July 7. Risk Based Alerting introduces a layer of abstraction between the detection analytics and the alerting process while aligning with the MITRE ATT&CK™ framework to account for user/system/service specific context when scoring anomalous behavior. 

Tune in to learn about how Splunk Risk Based Alerting allows you:

  • To scale existing analysts to include more data/analytics
  • Increase your true positive rates
  • Improve the effectiveness of your SOC

Tech Talk discussions remain open for two weeks following the live Tech Talk event. Have more questions? Check out our  MITRE ATT&CK conversations in Splunk Answers community for more!