Deep Dive & Demo for Infrastructure and SecOps Teams:
AUTOMATING AWAY ALERT OVERHEAD
Practical examples of workload optimization through automation
May 29th, 2024 at 10:00-10:45 CET
How to Maximize Daily Efficiency with Elastic and Tines?
Together, Tines and Elastic provide security and infrastructure teams with the information they need to investigate alerts and make business-critical decisions all in one place — saving valuable time and resources.
Tines is a no-code automation platform that integrates with Elastic – providing a single view to automation workflows without a need for programming skills. By combining detection and alerting delivered by Elastic with Tines’ automation, teams can support continuous monitoring, threat detection and prevention, alert enrichment, incident response and more.
The InfoSec team at Elastic is also using Tines internally to resolve and automate a high influx of alerts, noise, and false positives.
In this technical webinar we will drill into typical Tines & Elastic use cases with practical examples.
An overview of how the integration between Elastic and Tines works
What are the most typical SIEM to SOAR use cases adopted by security teams
Live demo of selected automation workflows for Observability and Security
Live Q&A with Tines and Elastic solution specialists
Examples of typical Observability and Security use cases with Tines & Elastic
Detecting and remediating high AWS EC2 CPU usage with Elastic Observability and documenting with Tines.
★
Providing an interface for anyone to utilize an Elastic data set, retrieving information, and downloading the results.
★
Managing Elasticsearch and GKE clusters via Slack bot.
★
Parsing alerts from any source into the Elastic Common Schema [ECS] and creating tracking issues based on a known format.
★
Monitoring device performance using Elastic and sending Slack messages to alert when performance issues are detected.
★
Enabling secret scanning on GitHub project repositories that have changes in visibility and updating standard security settings when it occurs.
Schedule
Wednesday, May 29th, 2024
10:00 – 10:45 CET (Stockholm, Copenhagen, Oslo)
11:00 – 11:45 EET (Helsinki, Tallinn, Riga)
Webinar recording will be shared to all who have registered, regardless if you were able to attend or not. Even if the date doesn’t work for you, we encourage to register to receive the recording,
Session Specialists
Dave Colgan
Account Executive,
Tines
Rob Kernutt
Worldwide Ecosystem Solutions Architect,
Elastic
Michael Svendsen
Head of Presales and Services,
Nordicmind
Registration
Event will be organized as GoToWebinar online event: