nren siem deployment project
play

NREN SIEM Deployment Project Speakers: Alex Dow, Barb Carra, Jill - PowerPoint PPT Presentation

Jun 25, 2023 •109 likes •292 views

Conference 2018 Conference 2018 NREN SIEM Deployment Project Speakers: Alex Dow, Barb Carra, Jill Kowalchuk, Todd Williams and Ivor MacKay Speakers Alex Dow, Consultant Mirai Security Barb Carra, Chief Operating Officer Cybera Jill

  1. Conference 2018 Conference 2018 NREN SIEM Deployment Project Speakers: Alex Dow, Barb Carra, Jill Kowalchuk, Todd Williams and Ivor MacKay

  2. Speakers Alex Dow, Consultant Mirai Security Barb Carra, Chief Operating Officer Cybera Jill Kowalchuk, NREN Coordination Manager CANARIE Inc. Todd Williams, Executive Director ACORN Ivor MacKay, Manager, Information Technology BCNET 2 Conference 2018

  3. Agenda 1. Background and terminology a. What is SIEM (Security Information and Event Management). Why is it important to cybersecurity? b. What is the NREN? 2. NREN SIEM Deployment Project a. Background on how the project came about; i. why the NREN is interested in security; ii. why the SIEM project was chosen. b. Description of the first phase of the project; c. Description of second phase; d. Future considerations; 6 Conference 2018

  4. Agenda cont’d 3. How is Cybera approaching the SIEM Project? 4. How is ACORN-NS approaching the SIEM project? 5. How is BCNET approaching the SIEM project? 6. Q&A 7. Workshop On SIEM Thursday 9:00 am 3 Conference 2018

  5. Background and Terminology What is SIEM (Security Information and Event Management) why is it important to cybersecurity? Data Sources Collection Analytics Consumption Syslog Security Analyst WMI/SMB Normalization & Enrichment Indexing File Asset/Network Models, DNS, GeoIP, Vuln Database, etc Transport ODBC API Caching, encryption, compression, bandwidth management 5 Conference 2018

  6. NREN SIEM Deployment Project Jill Kowalchuk, NREN Coordination Manager | BCNET Conference | April 24, 2018 canarie.ca | @ canarie_inc

  7. The NREN connects Canada’s research, education, and innovation communities via ultra high-speed (up to 100G) networks. canarie.ca | @canarie_inc 7

  8. The NREN makes access to global research instruments and vast data stores seamless so that distance is irrelevant. • Genomics Databases • 30 Meter Telescope • Neptune 2.0 • Large Hadron Collider • Worldwide sensor • Canadian Light Source networks canarie.ca | @canarie_inc 8

  9. How does the NREN operate? Governed and managed by: NREN Governance Committee (presidents of the provincial and territorial networks and of the federal partner, CANARIE) Initiatives guided by: NREN Strategic Plan (priority projects that evolve the NREN and maximize its value for stakeholders) canarie.ca | @canarie_inc 9

  10. NREN Security canarie.ca | @canarie_inc 10

  11. Security Information and Event Management (SIEM) Deployment Project People Process Technology canarie.ca | @canarie_inc 11

  12. SIEM Deployment Project Internet NREN Operational SIEM SIEM RAN(s) Alarms Infrastructure SIEM Console SIEM Monitored Admin SIEM Log IT Security Logs Collectors Skills & Training RAN(s) Network IT Security Event Response RAN End-User Member(s) Institutions canarie.ca | @canarie_inc 12

  13. SIEM Deployment Project & Institutions Internet NREN Operational SIEM SIEM RAN(s) Alarms Infrastructure SIEM Console SIEM Monitored Admin SIEM Log IT Security Logs Collectors Skills & Training RAN(s) Network IT Security Event Response RAN Monitored End-User Logs Member(s) Institutions canarie.ca | @canarie_inc 13

  14. Future Considerations Imag Image e source: e: https://gbhac acker ers.com canarie.ca | @canarie_inc 14

  15. canarie.ca | @ canarie_inc

  16. The Other Regional Network Approaches How is Cybera approaching the SIEM Project? § § How is ACORN-NS approaching the SIEM project? § How is BCNET approaching the SIEM project? 3 Conference 2018

  17. Q & A Conference 2018

  18. Workshop On SIEM Thursday 9:00 am Conference 2018

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Hack the SIEM and Win the War Many Thanks to the Following... All the people that taught me this

Hack the SIEM and Win the War Many Thanks to the Following... All the people that taught me this

Hack the SIEM and Win the War Many Thanks to the Following... All the people that taught me this stuff Who the hell is this guy? In The Beginning... And Now And The Hits Keep On Coming What is a SIEM? I dont know either but Ill sell

511 views • 29 slides
NREN Service Services s and and Support Support for for Schools Schools NREN Tomi Dolenc

NREN Service Services s and and Support Support for for Schools Schools NREN Tomi Dolenc

Akademska in raziskovalna mrea Slovenije NREN Service Services s and and Support Support for for Schools Schools NREN Tomi Dolenc Academic and Research Network of Slovenia tomi.dolenc@arnes.si Outline Outline Akademska in

628 views • 18 slides
Presented by: Doretta Richardson Pre-Deployment Brief Got Deployment? 2 Pre-Deployment Workshop

Presented by: Doretta Richardson Pre-Deployment Brief Got Deployment? 2 Pre-Deployment Workshop

Presented by: Doretta Richardson Pre-Deployment Brief Got Deployment? 2 Pre-Deployment Workshop R U Ready? This is my vest this is my CORE. These are all of the things I need as a Marine to be successful during this deployment: Who

453 views • 34 slides
Presented by: Doretta Richardson Pre-Deployment Brief Got Deployment? 2 Pre-Deployment Workshop

Presented by: Doretta Richardson Pre-Deployment Brief Got Deployment? 2 Pre-Deployment Workshop

Presented by: Doretta Richardson Pre-Deployment Brief Got Deployment? 2 Pre-Deployment Workshop R U Ready? This is my vest this is my CORE. These are all of the things I need as a Marine to be successful during this deployment: Who

426 views • 25 slides
Mapping the NREN Business Model using the Business Model Canvas: the case of TENET By: Tiwonge

Mapping the NREN Business Model using the Business Model Canvas: the case of TENET By: Tiwonge

Mapping the NREN Business Model using the Business Model Canvas: the case of TENET By: Tiwonge Msulira Banda UbuntuNet Alliance WACREN 2016, Dakar, Senegal, 17-18 March 2016 1 Outline } Introduction } South Africa NREN Ecosystem } Purpose of

645 views • 22 slides
Supporting Collaboration Niels van Dijk Technical Product Manager SURFnet: the Dutch NREN

Supporting Collaboration Niels van Dijk Technical Product Manager SURFnet: the Dutch NREN

Supporting Collaboration Niels van Dijk Technical Product Manager SURFnet: the Dutch NREN SURFnet is the Dutch National Research & Education Network (NREN) Services, innovation, knowledge Not for profit Task organisation of

710 views • 28 slides
SIEM 101 Workshop Optimize IT with Security Information and Event Management Alex Dow Chief

SIEM 101 Workshop Optimize IT with Security Information and Event Management Alex Dow Chief

SIEM 101 Workshop Optimize IT with Security Information and Event Management Alex Dow Chief Research Officer Mirai Security Inc. Alex.Dow@miraisecurity.com GCIH|SCF|CISSP|OPST https://www.miraisecurity.com Agenda What is SIEM? Why

807 views • 25 slides
IPv6 Deployment WG in IPv6 Promotion Council and its Deployment Guideline 2005.2.23 IPv6

IPv6 Deployment WG in IPv6 Promotion Council and its Deployment Guideline 2005.2.23 IPv6

IPv6 Deployment WG in IPv6 Promotion Council and its Deployment Guideline 2005.2.23 IPv6 Deployment WG Chair Takashi Arano (Intec NetCore, Inc.) IPv6 Deployment Guideline solves barriers for deployment I cant see IPv6s

319 views • 7 slides
Update on the TERENA Compendium, 2003 A talk about comparing apples with oranges in the NREN

Update on the TERENA Compendium, 2003 A talk about comparing apples with oranges in the NREN

Update on the TERENA Compendium, 2003 A talk about comparing apples with oranges in the NREN world TNC/CUC 2003, Session 7b4 Bert van Pinxteren, TERENA http://www.terena.nl/compendium Compendium: product of the COM-REN project A

602 views • 31 slides
Framework for Municipal Zero Emission Vehicle Deployment: Project Summary Clean Air Partnership

Framework for Municipal Zero Emission Vehicle Deployment: Project Summary Clean Air Partnership

Framework for Municipal Zero Emission Vehicle Deployment: Project Summary Clean Air Partnership Municipal EV Strategies Workshop June 14, 2019 Project Partners This project was made possible through generous support from: Our Work on ZEV

403 views • 14 slides
Scientific HDTV HDTV Services Services Scientific deployment in in PIONIER PIONIER

Scientific HDTV HDTV Services Services Scientific deployment in in PIONIER PIONIER

Scientific HDTV HDTV Services Services Scientific deployment in in PIONIER PIONIER deployment network network TF-Media Preparation Meeting 5-6 Nov 09 Miros aw Czyrnek majrek@man.poznan.pl PLATON project overview Project mission:

133 views • 12 slides
Deployment automation for an AWS Serverless project: SAM vs CloudFormation vs Terraform vs

Deployment automation for an AWS Serverless project: SAM vs CloudFormation vs Terraform vs

Deployment automation for an AWS Serverless project: SAM vs CloudFormation vs Terraform vs ServerlessFramework Bruno Amaro Almeida | 9 Sept 2019 @bruno_amaro Community Day 2019 Sponsors FUTURE. CO-CREATED. Nordic Roots, Global Mindset

238 views • 23 slides
Networks for Research and Edu- cation in Europe in the Age of Fibre - Where do we move? - Klaus

Networks for Research and Edu- cation in Europe in the Age of Fibre - Where do we move? - Klaus

Networks for Research and Edu- cation in Europe in the Age of Fibre - Where do we move? - Klaus Ullmann DFN GM, Chairman GN2 Exec & Dante Board Seite 1 Contents 1. NREN Constituency 2. NREN Users / advanced applications 3. Technology

556 views • 21 slides
Data Systems Modernization (DSM) Project: Development, Deployment, and Direction Robert

Data Systems Modernization (DSM) Project: Development, Deployment, and Direction Robert

Data Systems Modernization (DSM) Project: Development, Deployment, and Direction Robert Whitten Jr. OLCF/NCCS Computing Complex #2 Peak performance 2.33 PF/s Memory 300 TB Disk bandwidth > 240 GB/s Square feet 5,000 Dept. of

217 views • 17 slides
Family Communication During Deployment Please download the Family Communication during Deployment

Family Communication During Deployment Please download the Family Communication during Deployment

Family Communication During Deployment Please download the Family Communication during Deployment Worksheet before beginning this class. Family Communication during Deployment (MAR 2103) What are the options? Care E-mail Packages Letters

221 views • 9 slides
SIEM REAP CITY ANGKOR WAT TEMPLE TA PROHM TEMPLE BAYON TEMPLE TEMPLE DINNER TONLE SAP LAKE

SIEM REAP CITY ANGKOR WAT TEMPLE TA PROHM TEMPLE BAYON TEMPLE TEMPLE DINNER TONLE SAP LAKE

SIEM REAP CITY ANGKOR WAT TEMPLE TA PROHM TEMPLE BAYON TEMPLE TEMPLE DINNER TONLE SAP LAKE COUNTRYSIDE PARK HYATT SIEM REAP THE LIVING ROOM PARK KING PARK TWIN PARK DELUXE PARK SUITE ROOFTOP GARDEN SUITE PARK EXECUTIVE SUITE TWO

309 views • 30 slides
Knox County Digital Cadastral Project Request for Qualifications Release Date: May 17 th , 2002 Due

Knox County Digital Cadastral Project Request for Qualifications Release Date: May 17 th , 2002 Due

Knox County Digital Cadastral Project Request for Qualifications Release Date: May 17 th , 2002 Due Date: June 14 th , 2002 Administrative: Alan Hallberg Knox County Administrator 121 S Prairie St Suite 4 Galesburg IL 61401 E-mail:

208 views • 7 slides
Acushnet Holdings Corp. Second Quarter and First Half 2020 Earnings Call August 5, 2020 Sondra

Acushnet Holdings Corp. Second Quarter and First Half 2020 Earnings Call August 5, 2020 Sondra

Acushnet Holdings Corp. Second Quarter and First Half 2020 Earnings Call August 5, 2020 Sondra Lennon Vice President, FP&A and Investor Relations DISCLAIMERS FORWARD-LOOKING STATEMENTS The forward-looking statements contained in this

508 views • 18 slides
John Weil & Dr. Stacy Sechrist North Carolina Network for Safe Communities, University of

John Weil & Dr. Stacy Sechrist North Carolina Network for Safe Communities, University of

John Weil & Dr. Stacy Sechrist North Carolina Network for Safe Communities, University of North Carolina at Greensboro UNCG has been the PSN MDNC research and training/technical assistance partner for over 15 years. Their role in PSN has

166 views • 13 slides
Smart ink not working in powerpoint presentation mode and does not represent a commitment on the

Smart ink not working in powerpoint presentation mode and does not represent a commitment on the

Smart ink not working in powerpoint presentation mode and does not represent a commitment on the part of SMART. This product. Chapter 4: Working with the SMART Ink Document Viewer. 21. About the. This doesnt change how you use ink in PowerPoint

222 views • 3 slides
Developing The Case for NRENs ( A BI T MORE) revised 0 8 -October-2 0 0 8 W here did w e get up

Developing The Case for NRENs ( A BI T MORE) revised 0 8 -October-2 0 0 8 W here did w e get up

TF-MSP / TF-PR Z rich 30 September 2008 John DYER TERENA John.Dyer@terena.org Developing The Case for NRENs ( A BI T MORE) revised 0 8 -October-2 0 0 8 W here did w e get up to since 1 8 May 2 0 0 8 ? DRAFT for DI SCUSSI ON version

405 views • 27 slides
HONG KONG OPEN EXCHANGE (HKOX) UPDATES Wai Man CHEUNG, Francis FONG Joint Universities Computer

HONG KONG OPEN EXCHANGE (HKOX) UPDATES Wai Man CHEUNG, Francis FONG Joint Universities Computer

HONG KONG OPEN EXCHANGE (HKOX) UPDATES Wai Man CHEUNG, Francis FONG Joint Universities Computer Centre Limited (JUCC) 8 August 2018 HKOX Initiatives Global Network Architecture (GNA) Vision: Sustainable high performance global

558 views • 22 slides
IaaS Framework Agreements Pan-European Cloud Services ready for adoption Dr. Jakob Tendel GANT

IaaS Framework Agreements Pan-European Cloud Services ready for adoption Dr. Jakob Tendel GANT

IaaS Framework Agreements Pan-European Cloud Services ready for adoption Dr. Jakob Tendel GANT Cloud Service Delivery Team German Research Network DFN Belnet Networking Conference, Brussels 18 th Oct. 2018 Networks Services People

293 views • 25 slides
NRENs as Enablers of eResearch 8 October 2013 Leon Staphorst Manager: SANReN What are NRENs?

NRENs as Enablers of eResearch 8 October 2013 Leon Staphorst Manager: SANReN What are NRENs?

NRENs as Enablers of eResearch 8 October 2013 Leon Staphorst Manager: SANReN What are NRENs? NRENs are specialised network infrastructure and service providers that exclusively supports a countrys research and education communities

214 views • 20 slides

More recommend