filmov
tv
[Microsoft Intune+ D3 Smart SOAR] Automatically Triage Alerts with Intune's Device Identity
Показать описание
Join D3’s Pierre Noujeim and Dave Randall from Microsoft as they show how InTune's security policies and device states can help prioritize alerts and determine the necessary level of response.
The D3 Smart SOAR platform has three tiers of alerts, events, incidents, and a unique event pipeline that can consolidate data from all security tools. The demo shows how InTune works in the event playbook and incident playbook, and how it can help identify false positives and escalate alerts. Learn how data can be normalized and queried across third-party tools. Ultimately, D3 Smart SOAR presents all alerts and incidents in a single queue for analysts to review.
00:00 Meet The Panel
03:45 Introduction to Microsoft Intune
08:48 Microsoft Intune + D3 Smart SOAR integration overview
09:34 Understanding D3's tiered approach to alerts, events, and incidents
11:20 Overview of D3's Event Pipeline and how Intune is integrated
13:05 Demo of D3's event playbook viewer and querying InTune for device information
21:35 Q&A: Can you show the compliance state check?
24:04 Q&A: Can you get details of the compliance failure if there's a compliance failure?
24:53 Q&A: How is the TTP set up during the event playbook ingestion?
26:21 Q&A: Is protection of apps and data limited to when the user is on the company's network?
27:24 Q&A: Can information can be pulled from the CrowdStrike Discover module?
▀▀▀
Meet the Panel
Dave Randall ● Microsoft
Dave Randall is a Senior Program Manager with more than 25 years of experience at Microsoft. He leads engineering feature teams, developing new and enhanced breadth features including Graph API support, role-based access control, PowerShell, auditing and network access control. Dave manages key ISV integration partnerships and represents Microsoft Intune at executive briefings, trade shows and technical events.
Pierre Noujeim ● D3 Security
Pierre Noujeim is a Product Marketing Manager with a cyber security engineering background. Having implemented SOAR at enterprise organizations as well as for D3's MSSP partners, Pierre has rich and varied insight into integrations, use cases and the cyber security vendor landscape. A dedicated product marketer, Pierre represents D3 at analyst briefings, webinar workshops and industry conferences such as RSA and Black Hat.
▀▀▀
Follow us on Twitter and Linkedin to stay tuned on the latest from D3 Security:
The D3 Smart SOAR platform has three tiers of alerts, events, incidents, and a unique event pipeline that can consolidate data from all security tools. The demo shows how InTune works in the event playbook and incident playbook, and how it can help identify false positives and escalate alerts. Learn how data can be normalized and queried across third-party tools. Ultimately, D3 Smart SOAR presents all alerts and incidents in a single queue for analysts to review.
00:00 Meet The Panel
03:45 Introduction to Microsoft Intune
08:48 Microsoft Intune + D3 Smart SOAR integration overview
09:34 Understanding D3's tiered approach to alerts, events, and incidents
11:20 Overview of D3's Event Pipeline and how Intune is integrated
13:05 Demo of D3's event playbook viewer and querying InTune for device information
21:35 Q&A: Can you show the compliance state check?
24:04 Q&A: Can you get details of the compliance failure if there's a compliance failure?
24:53 Q&A: How is the TTP set up during the event playbook ingestion?
26:21 Q&A: Is protection of apps and data limited to when the user is on the company's network?
27:24 Q&A: Can information can be pulled from the CrowdStrike Discover module?
▀▀▀
Meet the Panel
Dave Randall ● Microsoft
Dave Randall is a Senior Program Manager with more than 25 years of experience at Microsoft. He leads engineering feature teams, developing new and enhanced breadth features including Graph API support, role-based access control, PowerShell, auditing and network access control. Dave manages key ISV integration partnerships and represents Microsoft Intune at executive briefings, trade shows and technical events.
Pierre Noujeim ● D3 Security
Pierre Noujeim is a Product Marketing Manager with a cyber security engineering background. Having implemented SOAR at enterprise organizations as well as for D3's MSSP partners, Pierre has rich and varied insight into integrations, use cases and the cyber security vendor landscape. A dedicated product marketer, Pierre represents D3 at analyst briefings, webinar workshops and industry conferences such as RSA and Black Hat.
▀▀▀
Follow us on Twitter and Linkedin to stay tuned on the latest from D3 Security:
0:35:50
0:04:43
0:35:43
0:08:04
0:03:13
0:03:37
![[Webinar] SOAR to](https://i.ytimg.com/vi/oMB3omD4jhk/hqdefault.jpg)
1:02:06
0:02:17
0:01:10
1:00:31
0:03:15
0:06:42
0:30:35