Technical Level: Intermediate Technical.

Speaker: Dave Millier, SentryMetrics
Leveraging both open source and commercial tools, discover how to transform raw logs from security and non-security devices into meaningful information. Get the information that both IT and senior management need for both day-to-day and long-term planning. Turn millions of daily events into meaningful reports, alerts, or action items. Turn down the "noise" and turn up the value from systems you've already deployed!

This presentation will also discuss some key factors related to current and pending legislation, including Bill C-198 and Sarbanes Oxley.

Speaker: Gord Taylor

Not everyone has the funding to buy vendor tools for log management, but we all know our logs are filled with a ton of information and early indicators we're missing out on. To complement the content in Dave Millier's presentation, this presentation will detail how to collect security and other logs, in near-realtime, for later analysis or post-incident review. It will also cover some of the pain points of implementing this in a very large production environment, lessons learned from a home-grown solution, and where vendor solutions fit into the big picture. Several resources will be provided to get everyone started on their way to a log consolidation infrastructure.

Dave's Presentation: Powerpoint with Speakers Notes Here
Talk Reference - CSO Online Article: PDF Here
Gord's Presentation: Powerpoint with Speakers Notes Here