This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

SecOps Customer Newsletter - May 2023

Posted on 05-03-2023 08:47 AM
Lesleymustari
Staff
Reply posted on --/--/---- --:-- AM

 

Lesleymustari_0-1683039989760.png


Hello SecOps Community,

Stay up to date with everything going on in Chronicle SIEM and SOAR by reading the SecOps Customer Newsletter! Updated every other month, you can find a summary of major Product Updates, Learning and Training, Community Announcements, Best Practices, and Upcoming Events.

 

SecOps Community Spotlight

For a quick start guide on Getting Started With Chronicle SIEM, check out this video with Program Manager, Nick Troutini. Included in the content: Where to find self help resources, how to get help with your technical questions or issues, what’s included and how to access Chronicle documentation, and the features and benefits of the SecOps Community.

Chronicle Security Updates

We’ve been busy on the Chronicle Security Operations front, and have been hustling to continue to add more innovative and practical features. To find a comprehensive list of our Q1 additions to Chronicle Security Operations, visit this blog. To find a comprehensive list of recent Chronicle Release Notes/Changes, go here.

Google named a 2023 Strong Performer in the Gartner Peer Insights™ Voice of the Customer for Security Information and Event Management

  • We are thrilled to be named a "Strong Performer" in the Gartner Peer Insights Voice of the Customer for SIEM with a 4.8/5 star rating and 89% of customers saying they would recommend Chronicle.
  • Thank you to each of you who took the time to share your candid feedback with us. 
  • Check out the reviews 
  • Read the Gartner research (subscription required)
Looker-based Advanced Reports Module in Chronicle SOAR
  • GCP customers now have access to advanced business intelligence capabilities that are completely embedded in the platform via Looker.
  • You can now access, analyze, and act on up-to-date data with the new Google Looker integration.
Expanded Cloud Support
  • You can now grant Google’s support team permission to access your Chronicle SOAR system and define exact permissions for more timely, audited and secure support.
Integrated Chronicle SIEM Alerts
  • Quickly see relationships between  events and known bad or suspected bad activity with integrated alerts in UDM search.  
  • Explore all alerts associated with a search, gain context, and pivot to the dedicated alerts view or case view in Chronicle SOAR.
Expanded Regional Support in Australia
  • Meet long-term compliance and jurisdictional requirements with expanded regional support and attainment of IRAP Protected in Australia. 
Schedule Reports
  • Easily schedule a Chronicle SIEM dashboard to be sent as a report at recurring intervals.
  • Reports can only be sent to your company domain to help protect your data from being unintentionally or maliciously sent outside of the organization.

To find a comprehensive list of recent Chronicle Release Notes/Changes, go here.

 

SecOps Events, Training, and Content

Google Cloud Security Summit (June 13)

Explore the latest technologies and strategies that can protect your business, your customers, and your cloud transformation from emerging threats. Join this event to get frontline insights from Google Cloud and Mandiant experts. And dive into cutting-edge innovations that can enhance your security posture everywhere you operate.

By the Numbers of Today's Top Cyber Developments and Attacks: M-Trends 2023 (May 23)

The M-Trends 2023 report is packed with timely data from Mandiant’s frontline incident response investigations and unparalleled threat intelligence, offering an inside look into trending response metrics and attacker operations from some of the most impactful breaches around the world.

Cyber Attacks During War and Peace: How the Threat Landscape Was Altered in 2022 (May 24)

The Russia Ukraine war developed in a myriad of unexpected ways that impacted nearly every aspect of the cyber threat landscape. See what’s changed, what hasn’t, and why it matters significantly to the protection of your organization moving forward.

What you need to know: 2023 State of Cloud Threat Detection and Response (On-Demand)

This webinar shares insights from Google Cloud’s recent survey of 400 security leaders and security operations practitioners, digging into the capabilities, procedures, and behaviors of protecting against, identifying, and remediating cloud-based threats.

3 Actions IT Leaders Can Take to Improve Software Supply Chain Security (On-Demand)

This webinar explores the most notorious software supply chain attacks, discusses lessons learned, and offers actions you can take right now to prevent similar attacks from happening.

How to Optimize SLA Execution With Chronicle SOAR - Blog

Measuring the effectiveness of security operations programs can be challenging. Since time is of the essence when it comes to effective threat detection and response, one metric that is commonly used by security operations teams is service level agreements (SLAs). SLAs define the desired amount of time it should take a security operations team to investigate and address a “case.” One way for you to accelerate SLA execution is by leveraging Chronicle SOAR’s new parallel actions capability. Blog by Ahnna Schini (Security Operations, Product Marketing Manager)

2 1 678
Topic Labels
1 REPLY 1

Posted on --/--/---- --:-- AM
Willie_Turney
Community Manager
Community Manager
Reply posted on --/--/---- --:-- AM

Lots of great information here! Thanks @Lesleymustari 👍

0 Likes