Do you have an effective monitoring capability for your cloud assets? Can you detect and respond to an incident on cloud with the same rigor as you do it on-prem? If not, then this is a perfect session. The talk will share a step-by-step approach to building a robust security monitoring capability for your cloud, including architecture, alerts and events, use cases, skills required and workflow.

Learning Objectives:
1: Understand architecture for monitoring multiple cloud subscriptions and resources centrally.
2: Understand specific cloud events required for building use cases and conducting investigation.
3: Take away a set of specific monitoring use cases for cloud and our experience building them.

Pre-Requisites:
Basic understanding of concepts around cloud computing. Basic understanding of SOC and incident management. Basic understanding of SIEM solutions. Basic understanding of common threat vectors.

Download pdf
Participants: