SN74: CyberCrime Investigator: Forensic Use of ArcSight ESM

Document created by beleslie on Aug 25, 2011Last modified by beleslie on Jul 8, 2014
Version 3Show Document
  • View in full screen mode

SN74
CyberCrime Investigator: Forensic Use of ArcSight ESM
Speakers:
Paul Bowen, Principal Pre-Sales Engineer, HP ArcSight and Gary Freeman, Principal Pre-Sales Consulting Manager, HP ArcSight
This session explores the concept of network forensic investigations using ArcSight ESM, and how security analysts can use it to assist HR or law enforcement with network interception to gather evidence that must preserve chain-of-custody. With the challenges of cloud-based computing and mobile devices, the need for well-defined workflow and the use of industry-accepted tools is even more essential than ever.

 

Outcomes