Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Make Alerts Great Again

Security BSides San Francisco via YouTube

Overview

Explore effective strategies for creating and maintaining actionable security alerts in this BSidesSF 2017 conference talk. Learn how Yelp's security team developed tools and processes to improve alert management, increase signal-to-noise ratio, and streamline incident response. Discover techniques for standardizing alert definitions, implementing self-service alerts, and establishing visibility into alert frequencies. Gain insights on overcoming common pitfalls, such as noisy or insufficient alerts, and learn how to test and maintain alert effectiveness. Understand the importance of creating run-books, assigning ownership, and measuring success in alert management. Apply these lessons to enhance your security team's efficiency and focus on more critical tasks.

Syllabus

Introduction
Microservices
Security Pipeline
Common Pitfalls
No Standards
Yelps Standards
Lack of Visibility
Actionability
Email Alerts
Email Events
Solutions
SLA
Actionable alerting service
Selfservice alerts
Selfservice alert example
Assigning ownership
Alert standardization
Testing
False Positives
Measuring Success
Recap

Taught by

Security BSides San Francisco

Reviews

Start your review of Make Alerts Great Again

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.