The Importance of NDR Detection-in-Depth
Detection engineering has evolved into an art, contributing to the success rates of endpoint and network detection and response tooling capabilities. Used to effectively counter the increasing complexity of today’s cyber threat actors, high-fidelity detections can help an organization discover threats earlier, neutralizing them before further damage can occur.
Not all detections are created equally, however, and neither are detection opportunities. While many security stacks focus on endpoint detections, NDR capabilities continue to prove essential for effectively detecting modern threats within an environment.
Join SANS Instructor Matt Bromiley and Corelight’s Senior Director of Product Marketing John Gamble as they discuss the importance of NDR detections-in-depth. They not only will delve into the various available NDR detection methods, examining the benefits and drawbacks of each, but they will also examine key implementation ideas and detection laddering.