CSN15: Using Whitelist Security with ArcSight ESM to Prevent Targeted Attacks and APTs

Document created by beleslie on Aug 29, 2011Last modified by beleslie on Jul 8, 2014
Version 2Show Document
  • View in full screen mode

CSN15
Using Whitelist Security with ArcSight ESM to Prevent Targeted Attacks and APTs
Speakers:
Tracy Herriotts, Senior Staff Engineer, Johns Hopkins University and Harry Sverdlove, Chief Technology Officer, Bit9, Inc.
With the ineffectiveness of traditional antivirus tools and explosion of malware, the endpoint has become a blind spot. This session will cover whitelisting, which provides a new layer of defense against advanced persistent threats. In the deployment presented, ArcSight ESM provides the correlation of information across systems, leveraging Bit9 Parity endpoint sensor data.

Outcomes