Deep Dive & Demo for Infrastructure and SecOps Teams:

AUTOMATING AWAY ALERT OVERHEAD

Practical examples of workload optimization through automation

May 29th, 2024 at 10:00-10:45 CET

How to Maximize Daily Efficiency with Elastic and Tines?

Together, Tines and Elastic provide security and infrastructure teams with the information they need to investigate alerts and make business-critical decisions all in one place — saving valuable time and resources.

Tines is a no-code automation platform that integrates with Elastic – providing a single view to automation workflows without a need for programming skills. By combining detection and alerting delivered by Elastic with Tines’ automation, teams can support continuous monitoring, threat detection and prevention, alert enrichment, incident response and more.

The InfoSec team at Elastic is also using Tines internally to resolve and automate a high influx of alerts, noise, and false positives.

 

In this technical webinar we will drill into typical Tines & Elastic use cases with practical examples.

An overview of how the integration between Elastic and Tines works

What are the most typical SIEM to SOAR use cases adopted by security teams

Live demo of selected automation workflows for Observability and Security

Live Q&A with Tines and Elastic solution specialists

Examples of typical Observability and Security use cases with Tines & Elastic

Detecting and remediating high AWS EC2 CPU usage with Elastic Observability and documenting with Tines.

Providing an interface for anyone to utilize an Elastic data set, retrieving information, and downloading the results.

Managing Elasticsearch and GKE clusters via Slack bot.

Parsing alerts from any source into the Elastic Common Schema [ECS] and creating tracking issues based on a known format.

Monitoring device performance using Elastic and sending Slack messages to alert when performance issues are detected.

Enabling secret scanning on GitHub project repositories that have changes in visibility and updating standard security settings when it occurs.

Schedule

 

Wednesday, May 29th, 2024
10:00 – 10:45 CET (Stockholm, Copenhagen, Oslo)
11:00 – 11:45 EET (Helsinki, Tallinn, Riga)

Webinar recording will be shared to all who have registered, regardless if you were able to attend or not. Even if the date doesn’t work for you, we encourage to register to receive the recording,

Session Specialists

Dave Colgan
Account Executive,
Tines

Rob Kernutt
Worldwide Ecosystem Solutions Architect,
Elastic

Michael Svendsen
Head of Presales and Services,
Nordicmind

Registration

Event will be organized as GoToWebinar online event:

PLEASE CLICK HERE TO REGISTER