Cloud-Native SIEM Threat Detection Hands-on
In today's hybrid management architecture, enterprises face a wide range of cybersecurity threats. When an attack results in business losses, incident response teams often encounter attackers covering their tracks (Covered Track), making it impossible to trace the root cause, which can lead to repeated breaches. Managing a hybrid environment further complicates attack investigations due to architectural and policy-related challenges. Therefore, building a SIEM solution capable of monitoring various hybrid infrastructures is crucial for preserving critical logs and enhancing threat detection.
This hands-on course will guide participants through practical exercises to understand SIEM principles and explore its diverse and powerful capabilities.
Session Objectives
Learn how to leverage the SIEM platform and SOC for threat detection, monitoring, and real-time alerting. Enterprises can also create customized detection rules tailored to their unique needs, enabling their blue teams to detect, analyze, alert, and respond more effectively—ultimately enhancing overall security resilience.
Session Summary
Through a real SIEM environment, participants will experience the diverse and powerful features of Cloud SIEM. The course will be guided to help learners understand the fundamental functions of SIEM and how a SOC built on SIEM can further enhance its effectiveness for threat investigation and analysis.
Device Requirement You Should Prepared for
An internet-enabled laptop (no specific hardware requirements).
Skills Requirement You Should Have
Basic cybersecurity knowledge required.
Limit on the Number of Attendee
TOPIC / TRACK
CyberLAB
LOCATION
Taipei Nangang Exhibition Center, Hall 2
4F 4D
LANGUAGE
Chinese
CYBERSEC 2025 uses cookies to provide you with the best user experience possible. By continuing to use this site, you agree to the terms in our Privacy Policy 。