View our Tech Talk: Security Edition, Operationalize MITRE ATT&CK™ with Risk Based Alerting (RBA). Risk Based Alerting introduces a layer of abstraction between the detection analytics and the alerting process while aligning with the MITRE ATT&CK™ framework to account for user/system/service specific context when scoring anomalous behavior.
Tune in to learn about how Splunk Risk Based Alerting allows you:
Tech Talk discussions remain open for two weeks following the live Tech Talk event. Have more questions? Check out our MITRE ATT&CK conversations in Splunk Answers community for more!
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.