View our Tech Talk: Security Edition, Operationalize MITRE ATT&CK™ with Risk Based Alerting (RBA). Risk Based Alerting introduces a layer of abstraction between the detection analytics and the alerting process while aligning with the MITRE ATT&CK™ framework to account for user/system/service specific context when scoring anomalous behavior.
Tune in to learn about how Splunk Risk Based Alerting allows you:
- To scale existing analysts to include more data/analytics
- Increase your true positive rates
- Improve the effectiveness of your SOC
Tech Talk discussions remain open for two weeks following the live Tech Talk event. Have more questions? Check out our MITRE ATT&CK conversations in Splunk Answers community for more!
