WELCOME

Join us in the second of this 2-part webinar series of "Breaking the Attack Sequence" as we continue to delve deeper into the MITRE ATT&CK framework. We shift the focus to the capabilities of Fortinet's Central Analytics & Response Automation (CARA) which empowers organizations to gain a comprehensive understanding of cybercriminal campaigns.

We will demonstrate how Fortinet CARA centrally ingests, correlates, aggregates, investigates, and validates incidents, allowing you to grasp the full scope of threats. Furthermore, we will explore how CARA enables swift and efficient responses through predefined workflows, playbooks, and, when necessary, staff augmentation.

Don't miss this opportunity to enhance your cybersecurity knowledge and learn how FortiSIEM, FortiSOAR, and Fortinet Advisory Services (SOCaaS, MDR, and Incident Response Service) can effectively respond to complete cybercrime campaigns, rather than just addressing isolated aspects.

Join this webinar and learn to:

  • Develop a proactive detect and response strategy to discover and neutralize threats before threat actors achieve their objectives.
  • Harness the synergy of human expertise and AI to gain a holistic view of cybercriminal campaigns
  • Witness technical demonstration showcasing the capabilities of Fortinet CARA solutions

AGENDA

Thursday, 16 November 2023

SG/MY/HK/PH Time at 11:30 am (GMT +8)
ID/TH/VN/KH/LA Time at 10:30 am (GMT +7)
India Time at 09:00 am (GMT +5.30)

SPEAKERS


Alex Chan
Product Marketing Manager
Fortinet

Glen Kemp
Consulting Engineer
Fortinet

Nick Henderson
Principal Systems Engineer
Fortinet

Mark Robson
Principal Threat Analyst
Fortinet

SESSION DETAILS

Welcome Message and Introduction of Fortinet’s Central Analytics & Response Automation (CARA) solution

A breach resulting in the loss of data can occur in minutes or hours. Yet, it can take weeks or months for most security breaches to be detected. By that time, the perpetrators and your data are long gone.

To assist with this, security teams needs a combination of tools, strategy, automation and skilled professional to monitor the MITRE Att&CK knowledge base and automate as much of the process as possible so that human resources can be focused on higher-order analysis and response.

In this session, we will go through what the MITRE ATT&CK framework is and how Fortinet solutions plays their part in the framework.

Alex Chan
Full Name
Alex Chan
Job Title
Product Marketing Manager
Company
Fortinet

Demo 1 – FortiCloud SOCaaS

SOCaaS is gaining widespread popularity in the business world as it accelerates the analysis and response to security threats. FortiCloud SOCaaS is equipped with dedicated team of security experts who consistently monitor your organization's security landscape, proactively identifying potential threats and triage real-time alerts. They surgically investigate threats and employing automation and orchestration for rapid responses back to the local teams. In essence, SOCaaS empowers organisations to swiftly analyse and counter security threats, reducing the time needed to identify and mitigate potential risks.

During this demo session, Glen will delve into the following topics:
-    Overview of FortiCloud SOCaaS services and their business advantages
-    Key features of the FortiCloud SOCaaS portal
-    FortiCloud SOCaaS with a focus on FortiClient forensic services

Glen Kemp
Full Name
Glen Kemp
Job Title
Consulting Engineer
Company
Fortinet

Demo 2 – FortiSOAR

SOAR allows security operations teams of multi-vendors environment to automate the tedious and repetitive elements of workflows that do not require human oversight while retaining human action and authority when necessary. The best SOAR solutions are designed to enrich and contextualise threat data to assist SOC analysts in swiftly triaging cases based on the severity of the risk, sensitivity of the data or resources under threat, or criticality of the business functions being targeted.

In this session, Nick will elaborate on the necessity for security operations teams to incorporate a security orchestration, automation, and response (SOAR) tool in order to amplify security operation efforts and accelerate incident responses. He will specifically highlight how FortiSOAR can be leveraged for these purposes and he will showcase its critical features through several illustrative use cases.

Nick Henderson
Full Name
Nick Henderson
Job Title
Principal Systems Engineer
Company
Fortinet

Demo 3 – Fortinet Advisory Services

Understanding your cybersecurity risk posture through assessment, preparation, augmentation, and response services is crucial for identifying where your efforts have the greatest impact and provide the greatest level of protection. Fortinet Security Advisory is the expert service that you can rely on to assess your SOC, incident preparedness and find compromises that may lie hidden.

Using the real-life scenarios, Mark will illustrate how FortiGuard security experts can bolster your security operations team when necessary and provide immediate assistance during active incidents, especially when every second is critical.

Mark Robson
Full Name
Mark Robson
Job Title
Principal Threat Analyst
Company
Fortinet