Escolar Documentos
Profissional Documentos
Cultura Documentos
Ellen Knickle
Product Manager, QRadar Integrations
March, 2014
1
INTELLIGENT
Correlation, analysis and
massive data reduction
AUTOMATED
Driving simplicity and
accelerating time-to-value
IBM QRadar
Security Intelligence
Platform
INTEGRATED
Unified architecture
delivered in a single console
Vulnerability
Are we configured
to protect against
advanced threats?
Pre-Exploit
Post-Exploit
Exploit
Remediation
Security Intelligence
The actionable information derived from the analysis
of security-relevant data available to an organization
3
Security devices
Suspected
Incidents
Automated
Offense
Identification
Prioritized Incidents
Configuration information
Activity baselining
and anomaly detection
Embedded
Intelligence
Offense detail
What was
the breach?
Was it
successful?
Who was
responsible?
How valuable
are the targets to
the business?
How many
targets
involved?
Where is all
the evidence?
Where do I
find them?
11
12