Note: this recorded content is for EBU Members only. Please log in or create an account to authenticate.
In this webinar Andreas Schneider, CISO at SRG SSR (Switzerland) and Chair of the EBU Media Cyber Security programme will demonstrate how to filter and analyse information on clients and central infrastructures in order to detect potential threats, attack vectors and infections.
In a short demo using concrete examples, Schneider will also show how to use an SIEM (Security Information and Event Manager software) to interpret this information correctly.
Tools used in this webinar: Sysinternals Sysmon, Microsoft Defender, Microsoft Applocker, ZScaler Proxy, Bluecoat Proxy, Splunk, Splunk Enterprise Security, Limacarlie, Checkpoint Antibot.