Join us on Thursday, May 30th for a new meetup with the Elastic Helsinki User Group!
We’ll meet each other at Putte’s Pizza again: doors open at 17.30 and the presentations begin at 18.00. Pizza’s, refreshments, and networking to follow. We wrap up at 20.30.
Address: Putte’s Bar & Pizza (downstairs), Kalevankatu 6, Helsinki
Agenda:
17.30 Doors open
18.00 Talk #1 Elasticsearch Query Language (ES|QL)
18.45 Talk #2 Operationalizing ES|QL for security use cases
19:15 Q&A
19.30 Networking, pizza and drinks
20.30 Wrap up
Talks:
Elasticsearch Query Language (ES|QL)
Elasticsearch and Kibana added a new query language: ES|QL — coming with a new endpoint (_query) and a brand new syntax. It let’s you refine your results one step at a time and adds new features like data enrichment and processing right in your query. And you can use it across the Elastic Stack — from the Elasticsearch API to Discover and Alerting in Kibana. But the biggest change is behind the scene: Using a new compute engine that was built with performance in mind.
Join us for a quick overview and look at syntax and internals.
Speaker: Anna-Maria Modee (Sr. Solutions Architect, Elastic)
Operationalizing ES|QL for security use cases
This talk will focus on how you can make use of ES|QL in the Elastic security solution. Particularly, we will focus on how you can use ES|QL to:
- Create detection rules
- Execute investigations via timeline
- Threat hunt for indicators of compromise
The talk will also include a demo of how you can use the Elastic AI assistant to generate ES|QL queries for example security use cases.
Speaker: Marvin Ngoma (Sr. Security Architect, Elastic)
NOTE: REGISTRATION FOR THIS EVENT WILL TAKE PLACE VIA MEETUP.COM (CLICK HERE)
In case you wish to join, but are unable / unwilling to create an account at meetup.com, kindly contact events@nordicmind.com for registration possibilities please.