Maturity Score increased by 180% in the first 30 days
- >$10 billion annual revenue
- 13,000+ Global Employees
- SIEM = Splunk Enterprise, ES
- Improving detections across the Windows and Linux environment.
- Successfully executed a Red Team exercise to test the efficacy of implemented rules, catching all their activity.
- Created Threat Scenario correlating output from Windows Threat Identifiers
- Improved your alert correlation by 63% which allows for better scenario and attack pattern-based detections.
- 6.5 hours to deploy content that would have taken >175 hours to develop, test and deploy*
“Getting the windows use cases “force multiplied” helps me to maximize the development teams value. ”
–Vice President of Information Security