UNC CAUSE 2016 has ended
Back To Schedule
Friday, October 7 • 11:15am - 12:00pm
Onions Have Layers: An Intro to SecurityOnion

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Security Operations is a difficult field. We have responsibility for knowing what every asset of interest is doing on our networks, knowing when anomalies occur and determining whether those were malicious using contextual network information.

SecurityOnion offers SecOps teams a simple way to manage common open source security tools like Snort, Bro and OSSEC while limiting the system administration experience necessary. I'll discuss why we use SecurityOnion, how we manage it with a SecOps team of one and how to get started with it in a test environment.


Kevin Wilcox

Appalachain State University
I am an Information Security Specialist at Appalachian State University with a background in Unix and Linux administration, intrusion detection and network security monitoring. You can find my blog at http://opensecgeek.blogspot.com

Friday October 7, 2016 11:15am - 12:00pm EDT
North Main Hall F