QRadar
2.1K views | +4 today
Follow
Your new post is loading...
Your new post is loading...
Scooped by pmfsousa
Scoop.it!

QRadar: IBM X-Force Exchange Right-click Menu Plug-in

The purpose of the technical note is to provide a FAQ for administrators using the X-Force Exchange (XFE) right-click plug-in with IBM Security QRadar. This document covers installation and usage.
more...
No comment yet.
Scooped by pmfsousa
Scoop.it!

QRadar basics and Big Data

What is the next step in QRadar: Big Data in order to make it part of the proactive detection of attacks like APTs.
more...
No comment yet.
Scooped by pmfsousa
Scoop.it!

SIEM: 5 Best Practices for Implementation Success

Great resource for SIEM (Security Information Event Management) implementation. View this before you begin your project to increase your success level.
more...
No comment yet.
Scooped by pmfsousa
Scoop.it!

Detecting Advanced Threats and Malware with SIEM Webcast

From http://bit.ly/gSZTld Detecting Advanced Threats and Malware with SIEM While many organizations have deployed security information and event ...
more...
No comment yet.
Scooped by pmfsousa
Scoop.it!

QRadar SIEM: Fraud and Data Loss Prevention

So the fraud and data loss prevention, another scenario where you would typically use the next generation SIEM. We have found out that annotations are very ...
more...
No comment yet.
Scooped by pmfsousa
Scoop.it!

How to implement a SIEM (www.wesecure.nl)

demo of a best-practises implementation of IBM QRadar SIEM. More info or prices? Go to www.wesecure.nl.
more...
No comment yet.
Scooped by pmfsousa
Scoop.it!

Context aware security - how to find out who is doing what to your... - IT-Director.com

Some things only appear suspicious when looked at in a broader context. Context aware security back by next-gen SIEM helps IT security staff to see the big...
more...
No comment yet.
Scooped by pmfsousa
Scoop.it!

QRadar Incident Forensics

:Mack Garrison (mackgarrison.com) :Agency - Centerline Digital (centerline.net) :Client - IBM :Role - Animation :When you make intelligent analytics part of…
more...
No comment yet.
Scooped by pmfsousa
Scoop.it!

How to create custom field on Qradar SIEM

Hello. On this video I show how to create custom field on Qradar SIEM to be able to filter URL visited by Squid WebProxy users.
more...
No comment yet.
Scooped by pmfsousa
Scoop.it!

Harnessing the Cloud and Big Data for Increased Security ...

Harnessing the Cloud and Big Data for Increased Security ... | QRadar | Scoop.it
Advances in this release include massive data set correlation and also considers those that have built significant private and public cloud infrastructures and are looking for new virtual workloads to deploy in the cloud.
more...
No comment yet.
Scooped by pmfsousa
Scoop.it!

SIEM Best Practices for Daily Security Operations

From 5/25/2011 webcast at http://www.nitrosecurity.com/resources/webcasts/siem-best-practices-for-daily-security-operations/ We've all heard the claims, but ...
more...
No comment yet.
Scooped by pmfsousa
Scoop.it!

QRadar Rule creation: Baseline of trusted users

When I said QRadar is simple to use I mean what I said. No need to get a PhD on a tool. If you know IP lingo you know how to use QRadar. In this demo we ...
more...
No comment yet.
Scooped by pmfsousa
Scoop.it!

User Activity Monitoring

User Activity Monitoring -- This is very important for suspicious activity. Is typically called as internal squad. I have an employee who is accessing http site on a ...
more...
No comment yet.
Scooped by pmfsousa
Scoop.it!

QRadar BigData extension

The new extension to QRadar allows processing large volume of unstructured data. In this particular case, for DNS forensics we take a list of all the domains ...
more...
No comment yet.
Scooped by pmfsousa
Scoop.it!

The hunt for data analytics: Is your SIEM on the endangered list? - TechTarget

The hunt for data analytics: Is your SIEM on the endangered list? - TechTarget | QRadar | Scoop.it
The next generation of SIEM tools should able to detect and predict threats based on the behavior across systems.
more...
No comment yet.
Scooped by pmfsousa
Scoop.it!

How to install WinCollect on IBM Qradar

On this video we show step by step how to install WinCollect module on IBM Qradar SIEM All-In-One and add Windows log sources to them.
more...
No comment yet.
Scooped by pmfsousa
Scoop.it!

QRadar HowTo: Adjust Severity from Payload

QRadar HowTo: Adjust Severity from Payload | QRadar | Scoop.it
The way that QRadar assigns severity is based on the QID. So each event that has a specific event name gets mapped to a specific QID, then gets a specific severity. This is a very good model for ma...
more...
No comment yet.