Maximizing Your Tanium Alerting with Splunk

Expanding on last year’s presentation at Converge 2021, Dan Quilter will dive into the latest developments made at the National Grid CSIRT from 2022. In this session, Dan will present on how Tanium’s powerful detection capabilities can provide high value and actionable insights when used with Splunk correlation searches. Through reimagining the use of labels, and categorizing signals within Tanium, National Grid has been able to better ensure that only the highest fidelity signals are driving heavily burdened analyst activities. In this season you’ll learn how to do the same in your own organization.

Additional details:

Session Tag
Threat Hunting
Session Type
In-Person, Breakout