Welcome to the first installment of our revamped whiteboard series! The show-and-tell nature of these videos, plus their relatively fast-paced cadence, are ideal for the busy security operations professional interested in deep diving on a topic of interest during about the time it takes to drink a cup of coffee. How-to topics will range from basic refreshers on common and core SOC disciplines to more advanced and technical concepts that you may want to ingest.
We kick off the festivities with our Arnaud Loos, who leads an in depth-exploration into Elasticsearch (and the Elastic Stack), an open-source and highly scalable engine capable of robust data searches, discovery and analysis. In the enterprise environment, Elasticsearch’s use cases are plentiful, and it has become go-to technology for log analytics and searches.
(By the way, while the presentation makes little mention of security orchestration, automation and response (SOAR), Elasticsearch can be integrated with the Siemplify Security Operations Platform.)
Enjoy the video above and see below for a still image of the whiteboard.