Embed Size (px)
Citation preview
1
SANS Elastic SecurityJames Spiteri, Mike NicholsElastic Security
2
Security is a data problem
Lack of data fidelity
Cost and complexity of data completion
5
How did we get here?Going where our users are
2,000 employees in 40 countries
IPO 2018, NYSE “ESTC”
Founded 2012
A Brief OverviewAbout Elastic
World’s #1 databasesearch engine (DBEngines)
2010
TodayElasticsearch 0.4
released
ECS 1.0released
Elasticsearch 1.0 released
Growing use of ELK for threat hunting
SIEM appreleased
Perched acquired
Endgameacquired
Logstashjoins forces
Kibanajoins forces
Beats to collectall the data
Prelert acquiredElastic Cloudlaunched
Elastic Security
Unified security
for all
Monitoring and Compliance
Hunting and Incident Response
Threat Prevention and Detection
SIEM & Endpoint
Elastic Security
Shay (Add slide picture)
If our mission is to protect the world’s data from attack,
the world needs access to our software.
Democratizing SecurityElastic for everyone
Build on the free and open Elastic (ELK
Stack
1 2 3 4 5
Democratizing SecurityElastic for everyone
Build on the free and open Elastic (ELK
Stack
Release a free and open SIEM
1 2 3 4 5
Democratizing SecurityElastic for everyone
Build on the free and open Elastic (ELK
Stack
Release a free and open SIEM
Eliminate antiquated
pricing models
1 2 3 4 5
Democratizing SecurityElastic for everyone
Build on the free and open Elastic (ELK
Stack
Release a free and open SIEM
Eliminate antiquated
pricing models
Develop protections in the open with
the community
1 2 3 4 5
Democratizing SecurityElastic for everyone
Build on the free and open Elastic (ELK
Stack
Release a free and open SIEM
Eliminate antiquated
pricing models
Develop protections in the open with the community
Release free and open endpoint
protection
1 2 3 4 5
Shay (Add slide picture)
It's dangerous to go alone! Take them.
16
● Security orchestration, automation, response
● Security incident response
● General ticket & case management
These are just some of our partners and community members. The presence of a vendor logo doesn’t imply a business relationship with Elastic.
Elastic community – scale your security program
Kibana
Elasticsearch
● Host sources
● Network sources
● Cloud platforms & applications
● User activity sources
● SIEMs & centralized security data stores
● Internal context
● External context● Consulting
● Education & training
Solutions Integrators,
Value-added Resellers,
MSPs & MSSPs
LogstashBeatsAgent
17
Demo
● One Agent - One ClickOnly Elastic Security provides a free agent to instantly collect and protect
● Elastic SMEs + the Community Unparalleled protectionProtections are developed in the open with community engagement and contributions
● Action all data, for all timeOnly Elastic empowers seamless searching across data anywhere, including snapshots
Elastic SecurityThe foundation of modern security teams
SIEM, endpoint security,threat hunting, and more
Register for our Global ElasticON eventhttps://www.elastic.co/elasticon/global
20
Try free on Cloud: ela.st/security-trial
Take a quick spin:demo.elastic.co
Connect on Slack: ela.st/slack
Join the Elastic Security community
