Recorded Live October 29, 2015
Cisco NetFlow creates an environment that gives network administrators and security professionals the tools to understand who, what, when, where, and how network traffic is flowing.
In this session, you will gain insight into how Cisco NetFlow is used for cybersecurity analytics, along with other network telemetry capabilities, such as syslogs from firewalls, routers, and switches, as well as SNMP and AAA logs. We will cover how open-source tools such as Elasticsearch, Logstash, and Kibana (ELK) can be used with NetFlow. This session will also cover the Open Security Operations Center (OpenSOC) and how it is used for big data analytics for cybersecurity.
- Introduction to Cisco NetFlow and Its Play in Big Data Analytics for Cybersecurity
- Deployment Scenarios
- Open Source NetFlow Monitoring and Analysis Software Packages
- Open Security Operations Center (OpenSOC)
- Using Cisco NetFlow for Incident Response and Forensics
Principal Engineer of Cisco’s Product Security Incident Response Team (PSIRT), CISSP Cisco