1. AI Based Attack Detection
In recent years it has become extremely difficult to support the role of SOC analysts that need to monitor and inspect an extremely large volume of events. Techniques relying on signature-based detection tools and rule-based correlation in the SIEM are no longer sufficient to keep up with the growing complexity of cyberattacks. In this webinar, we explain how the SOCCRATES AAD component tackles these challenges by combining alerts (events) from different AI-based detection tools to perform event-based reasoning about potential root causes of those alerts.