CSN22: Vulnerability Management with ArcSight ESM

Document created by jmerrill on Sep 12, 2010
Version 1Show Document
  • View in full screen mode

Vulnerability Management with ArcSight ESM
Larry Wichman, Senior Security Analyst, Unitrin
Level: Intermediate
Vulnerability scanners can provide deep insight into the network, but the amount of data can be overwhelming. This session details how the use of trend queries, query viewers, active lists, asset modeling and drill down menus can help you to quickly sort through the data to pinpoint and prioritize problems. The ability to assess threats and attacks is critical, but only half the battle. We will also discuss how to use ArcSight user groups, cases and reports to assign tasks and verify remediation. Attend this session for a great tool to help thwart hackers, malware and insider threats.