What happens on the endpoint doesn’t stay on the endpoint. To effectively defend against advanced threats and lateral movement, you need visibility beyond individual devices. By using Cribl’s enrichment and routing capabilities to combine Corelight’s comprehensive network telemetry with your EDR telemetry, you can gain comprehensive visibility of what happens on and in between all of the devices on your network. Join our webinar to learn how the combined solution expands visibility, bolsters detection, and accelerates investigations while maintaining data fidelity.
Attendees will learn how to:
• Consolidate IDS, PCAP, and other network sources to provide a single comprehensive source of network telemetry
• Correlate, enrich, and route both endpoint (EDR) and network (NDR) data into your SIEM
• Enable real-time threat detection and seamless ingestion, normalization, and enrichment of security data into any SIEM
East and Federal SE Director, Corelight
James Schweitzer is the East and Federal SE Director at Corelight. Previously, he worked at The MITRE Corporation in the security center for over a decade supporting multiple US Government agencies. James is a graduate of Virginia Tech and The George Washington University.
Director Of Technical Alliances, Cribl
Kam Amir is the Director of Technical Alliances at Cribl, based in the Washington DC area. He builds that partnerships with sources, destinations and enrichment technologies that help customers adopt the right solutions for their businesses and get the most value out of their observability data. If you need to find him, just look for him hiking in Rock Creek Park with his family and husky or in the Cribl Slack Community.