Technické školenie SecureVisio
2020-02-06
Obsah školenia
1. Building the context: Automated cybersecurity risk management:
- creating CMDB base and network map (assets & processes)
- elements of risk analysis (knowledge base, risk analysis configuration matrixes, rules of risk analysis)
- automated data collecting (assets inventory, net traffic analysis, detection rules, automation of processes’ identifying, etc.)
- results of risk analysis (consequences analysis, security recommendations, probability and risk level for assets, risk analysis for processes)
2. Vulnerability management:
- scanning vulnerabilities management (integration with scanning engines, importing results of scans, enriching scans results with context - risk analysis and CMDB data)
- vulnerability management process (workflow and statuses of detected vulnerabilities, playbooks and reaction teams, automated reaction & configuring matrix remediation times)
3. Event/Incident management:
- correlation rules and parsers
- enriching events and incidents with context - risk analysis and CMDB data
- prioritising events
- playbooks and response teams
- automated reaction & configuring matrix remediation
4. Reporting & Dashboards (Key Performing Indicators and Key Risk Indicators)
5. Methodology of implementation