155: Reviewing Logs with Joe Gross
Reviewing logs for security threats and operational functions can be a cumbersome task. Attention is a finite resource, and it is easy to miss something when faced with megabytes of data.
Today, we talk with Joe Gross, the Director of Solutions Engineering at Graylog, a leading centralized log management solution for capturing, storing, and enabling real-time analysis of terabytes of machine data. Joe guides us through SIEM (Security Information and Event Management), revealing the secrets of how the pros find the needles in the haystack.
When you finish listening to the episode, connect with Joe on LinkedIn, check out the Graylog platform, and visit Graylog Open - an online community dedicated to increasing and sharing IT knowledge to solve real-world problems.
Mentioned in this episode:
Joe on LinkedIn at https://www.linkedin.com/in/joe-gross-se/
Graylog at https://graylog.org
Graylog Open at https://graylog.org/products/source-available/