Best Way to Set Up Elastic Security for Threat Detection and Monitoring?

Chungsup_Lim · October 1, 2024, 2:43am

Hi,

I’m looking for advice on setting up Elastic Security for real-time threat detection and monitoring. Specifically, I’d like to know:

What are the essential components needed for a solid infrastructure?
Are there recommended best practices for using Elastic Security in a scalable and efficient way, especially for large volumes of log data?
How can I best use features like threat detection, alerting, and machine learning in this setup?

Any tips or guidance would be greatly appreciated!

Thank you.

Sergi_Massaneda_Dona · October 1, 2024, 8:29am

Hello,

I can recommend some of our resources for these topics.

Elastic Security Scalability webinar:

Introduction to Elastic Security webinar

Free training on Elastic Security:

Elastic Security integrations docs:

Elastic Security guide:

system · October 29, 2024, 8:29am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Training Recomandtion SIEM	2	488	October 17, 2022
Can you guys suggest some courses or training about using ELK in soc as a SIEM, XDR, threat hunting, IR or anything related to SOC please? Elastic Security	2	31	September 23, 2024
Track Application-level Events? Elastic Security	2	230	November 9, 2021
What can Elastic SIEM be used for? Elastic Tips and Common Fixes	1	1606	November 4, 2022
Looking for a list of "Out of the Box" Use Cases for Elastic SIEM SIEM	2	2179	October 11, 2021