Data is the currency of the 21st century, and as true as this is for organizations, it also trickles down to the security team. There’s a delicate balance between collecting too much and not enough data. Too much data, and your SOC is sifting through endpoint, application and network logs for days on end. Not enough of the correct data makes it impossible to spot adversaries within your environment. And with more companies shifting to the cloud, this scenario only gets worse. Travis will cover strategies to walk this tightrope of data, striking just the right balance between too much and not enough data.
