Go Back Up

CORRELATE EDR/XDR DATA WITH EXTERNAL SOURCES — AND AUTOMATE THE RESPONSE

Get Registered

Thursday, September 25, 2024
10:00am PDT / 1:00pm EDT

Although they have incredible telemetry, security teams often lack efficient cross-platform correlation and response capabilities.

That's why D3 enables teams to correlate their EDR and XDR data with NDR and external sources, as part of an easy, automated response workflow.

We've teamed up with experts from Microsoft Security to demonstrate how to do it. 

This webinar is perfect for:

Teams with Microsoft Stacks

Got Sentinel and Microsoft Defender in your environment? This webinar will explore how to use native functionality to generate security insights. We will also use native and external data for analysis, hunting, and response.

  • Microsoft Sentinel
  • Microsoft Defender for Endpoint
  • D3 Smart SOAR
Teams with Diverse Stacks

For those working across diverse toolsets, this webinar presents universal best practices and workflows for combining EDR/XDR data with external sources, and automating response to malicious executables. 

  • EDR/XDR + external sources
  • SOAR workflows
  • Malicious executables
Managed Security Providers

Whether we're talking MSSP, MDR and MSIEM offerings, learn how cross-vendor correlation opens up a wealth of security insights and response capabilities. Could you build a service or differentiator around it? Join the webinar to find out. 

  • Higher-value insights
  • Simplified service delivery
  • Cross-platform functionality

MEET THE EXPERTS

Pierre Noujeim


Pierre Noujeim,
Incident Response Researcher

D3 Security logo

Pierre is an Incident Response Researcher at D3 Security. He has worked on the implementation side, helping MSSPs adopt security orchestration, automation and response (SOAR) technology. Customers working with Pierre have gained both security operations and business benefits, such as improved customer-to-analyst ratios, thereby increasing profitability. Pierre is also an advisory board member of the Canadian Cybersecurity Network.

LinkedIn Logo

 

Eric Burkholder


ERIC BURKHOLDER,
SR. PROGRAM MANAGER

Microsoft logo

Eric Burkholder leads Technology Integration and Partner Strategy for Microsoft Sentinel.  A veteran of both large software companies and multiple startups, his current program enables companies, whose products contain cybersecurity signals, insights/conclusions and process guidance needed by SecOps teams, land their value via Microsoft Sentinel in addition to driving partner strategy and execution for Microsoft Sentinel.  Eric has held engineering, engineering leadership, business development and corporate strategy roles over his more than 30 years in the industry.

LinkedIn Logo

 

Josh Bregman


Josh Bregman,
Principal Product Manager

Microsoft logo

Josh Bregman is a Principal Product Manager at Microsoft on the Microsoft Defender for Endpoint (MDE) team. He oversees endpoint controls (device control, exclusions, indicators) and manages the ISV partner program. Since joining Microsoft in 2021, Josh has been instrumental in enhancing the security features of MDE.  Before joining Microsoft, Josh held leadership roles at several successful cybersecurity start-ups including CyGlass (NDR - acquired by WatchGuard), Conjur (SecDevOps - acquired by CyberArk), and Vordel (API Management - acquired by Axway). Josh began his career as a software engineer and holds 3 US patents. A life-long Bostonian, outside of work he enjoys spending time with his family.

LinkedIn Logo