GreyMatter In Your Enterprise€¦ · Across Your Enterprise Acceleration in Threat Hunting....
Transcript of GreyMatter In Your Enterprise€¦ · Across Your Enterprise Acceleration in Threat Hunting....
GreyMatter In Your Enterprise
B R I AN MU R P H YFounder and CEO
WELCOME
GREYMATTER USER INTERFACE IS HERE
Conquering Vendor Sprawl
Improving Security Outcomes
Faster Alert Triageand Response
Times
Increase in VisibilityAcross Your Enterprise
Acceleration in Threat Hunting
SECURITY IS A TEAM SPORT
GreyMatter In Your Enterprise
B R I AN P H I L I P MU R P H YChief Architect
J O E PAR T L O WChief Technology Officer
UNINTENDED CONSEQUENCES
Data Pipelines & Parsing
Multiple Sources of Data
Searching Across Hybrid Environments
Bringing Data Together
Multiple Forms of Data & Context
Universal Query Language
Speed of Searching the Actionable Data
Creating the Rosetta Stone
Sharing Playbooks & Searches
Common Methodologies
Getting ROI from Existing Tools
Making Automation Work
BRINGING IT ALL TOGETHER
GreyMatter In Your Enterprise
J AS O N P F E I F F E RVP Product Management
GREYMATTERINVESTIGATE
Traditional Investigation Capabilities
Fall Short
No True Single Source
Endless Pivoting
Wasted Time & Effort
Simplified Data Aggregation & Normalization
Speed & Efficiency
Action Oriented
GreyMatter’s Approach
GREYMATTERHUNT
Challenges of Threat Hunting
Slow, Tedious Data Aggregation
Limited Data Sets
Limited Analysis Capabilities
Customized, Automated Data Aggregation
Comprehensive Data Sets
Simplified Insights & Analytics
GreyMatter Hunt
GreyMatter HuntLimitless Number of Use Cases
Retroactive IOC Hunting
Malicious DNS
Cyber Hygiene Issues
Insider Threat
Fraud
Firewall Denies
Firewall Allows
User Authentication
PowerShell Usage
WMI Usage
IDS Trends
File Execution
Hash Analysis
Data Exfiltration
GREYMATTERAUTOMATE
Challenges in
Automation & Orchestration
Endless Configuration & Maintenance
Requires Enhanced Skillsets
Garbage In…Garbage Out
GreyMatter Automate
Integrated Automation & Orchestration
Seamless execution by RQ or the Customer
Access to Entire Catalog of Plays for Enrichment,
Containment or Remediation
JUST THE BEGINNING…
Bringing GreyMatter
To Your Enterprise
Get Hands On
Give Us Your Use Cases & Feedback
Unleash the Power of GreyMatter