Join us on Thursday, May 30th for a new meetup with the Elastic Helsinki User Group!

We’ll meet each other at Putte’s Pizza again: doors open at 17.30 and the presentations begin at 18.00. Pizza’s, refreshments, and networking to follow. We wrap up at 20.30.

Address: Putte’s Bar & Pizza (downstairs), Kalevankatu 6, Helsinki

Agenda:
17.30 Doors open
18.00 Talk #1 Elasticsearch Query Language (ES|QL)
18.45 Talk #2 Operationalizing ES|QL for security use cases
19:15 Q&A
19.30 Networking, pizza and drinks
20.30 Wrap up

Talks:

Elasticsearch Query Language (ES|QL)

Elasticsearch and Kibana added a new query language: ES|QL — coming with a new endpoint (_query) and a brand new syntax. It let’s you refine your results one step at a time and adds new features like data enrichment and processing right in your query. And you can use it across the Elastic Stack — from the Elasticsearch API to Discover and Alerting in Kibana. But the biggest change is behind the scene: Using a new compute engine that was built with performance in mind.

Join us for a quick overview and look at syntax and internals.

Speaker: Anna-Maria Modee (Sr. Solutions Architect, Elastic)

Operationalizing ES|QL for security use cases

This talk will focus on how you can make use of ES|QL in the Elastic security solution. Particularly, we will focus on how you can use ES|QL to:

  1. Create detection rules
  2. Execute investigations via timeline
  3. Threat hunt for indicators of compromise

The talk will also include a demo of how you can use the Elastic AI assistant to generate ES|QL queries for example security use cases.

Speaker: Marvin Ngoma (Sr. Security Architect, Elastic)

 

NOTE: REGISTRATION FOR THIS EVENT WILL TAKE PLACE VIA MEETUP.COM (CLICK HERE) 

In case you wish to join, but are unable / unwilling to create an account at meetup.com, kindly contact events@nordicmind.com for registration possibilities please.