Data Science Way to Deal With Advanced Threats

Explore data science methods for addressing advanced cybersecurity threats in this 28-minute conference talk from NorthSec 2021. Learn how to combine unsupervised and supervised machine learning techniques using Elastic and Scikit-Learn to reduce false positives and streamline security operations center (SOC) workflows. Discover advanced visualization techniques using Python and Plotly dashboards for rapid anomaly triage and environment monitoring. Follow along as the speaker demonstrates how these methods successfully detected distributed credential attacks that evaded other solutions. Gain insights into leveraging machine learning for flexible threat detection, overcoming limitations of static rule-based approaches, and efficiently analyzing large volumes of security data. See real-world examples of how these techniques can save time for SOC analysts and improve overall threat detection capabilities.

NSEC2021 - Igor Kozlov - Data Science way to deal with advanced threats