Cyber Resilient Infrastructure: Detect, Protect, and Mitigate Threats Against Brocade SAN FOS with IBM QRadar

Cyber Resilient Infrastructure: Detect, Protect, and Mitigate Threats Against Brocade SAN FOS with IBM QRadar
Author :
Publisher : IBM Redbooks
Total Pages : 26
Release :
ISBN-10 : 9780738460260
ISBN-13 : 0738460265
Rating : 4/5 (265 Downloads)

Book Synopsis Cyber Resilient Infrastructure: Detect, Protect, and Mitigate Threats Against Brocade SAN FOS with IBM QRadar by : IBM Storage

Download or read book Cyber Resilient Infrastructure: Detect, Protect, and Mitigate Threats Against Brocade SAN FOS with IBM QRadar written by IBM Storage and published by IBM Redbooks. This book was released on 2022-03-02 with total page 26 pages. Available in PDF, EPUB and Kindle. Book excerpt: Enterprise networks are large and rely on numerous connected endpoints to ensure smooth operational efficiency. However, they also present a challenge from a security perspective. The focus of this Blueprint is to demonstrate an early threat detection against the network fabric that is powered by Brocade that uses IBM® QRadar®. It also protects the same if a cyberattack or an internal threat by rouge user within the organization occurs. The publication also describes how to configure the syslog that is forwarding on Brocade SAN FOS. Finally, it explains how the forwarded audit events are used for detecting the threat and runs the custom action to mitigate the threat. The focus of this publication is to proactively start a cyber resilience workflow from IBM QRadar to block an IP address when multiple failed logins on Brocade switch are detected. As part of early threat detection, a sample rule that us used by IBM QRadar is shown. A Python script that also is used as a response to block the user's IP address in the switch is provided. Customers are encouraged to create control path or data path use cases, customized IBM QRadar rules, and custom response scripts that are best-suited to their environment. The use cases, QRadar rules, and Python script that are presented here are templates only and cannot be used as-is in an environment.


Cyber Resilient Infrastructure: Detect, Protect, and Mitigate Threats Against Brocade SAN FOS with IBM QRadar Related Books

Cyber Resilient Infrastructure: Detect, Protect, and Mitigate Threats Against Brocade SAN FOS with IBM QRadar
Language: en
Pages: 26
Authors: IBM Storage
Categories: Computers
Type: BOOK - Published: 2022-03-02 - Publisher: IBM Redbooks

DOWNLOAD EBOOK

Enterprise networks are large and rely on numerous connected endpoints to ensure smooth operational efficiency. However, they also present a challenge from a se
Cyber Resilient Infrastructure
Language: en
Pages: 20
Authors:
Categories: Computer networks
Type: BOOK - Published: 2022 - Publisher:

DOWNLOAD EBOOK

Enterprise networks are large and rely on numerous connected endpoints to ensure smooth operational efficiency. However, they also present a challenge from a se
Managed Code Rootkits
Language: en
Pages: 338
Authors: Erez Metula
Categories: Business & Economics
Type: BOOK - Published: 2010-11-25 - Publisher: Elsevier

DOWNLOAD EBOOK

Managed Code Rootkits is the first book to cover application-level rootkits and other types of malware inside the application VM, which runs a platform-independ
Targeted Cyber Attacks
Language: en
Pages: 159
Authors: Aditya Sood
Categories: Computers
Type: BOOK - Published: 2014-04-18 - Publisher: Syngress

DOWNLOAD EBOOK

Cyber-crime increasingly impacts both the online and offline world, and targeted attacks play a significant role in disrupting services in both. Targeted attack
Enhanced Cyber Resilience Threat Detection with IBM FlashSystem Safeguarded Copy and IBM QRadar
Language: en
Pages: 58
Authors: IBM Storage
Categories: Computers
Type: BOOK - Published: 2021-10-15 - Publisher: IBM Redbooks

DOWNLOAD EBOOK

The focus of this document is to demonstrate an early threat detection by using IBM® QRadar® and the Safeguarded Copy feature that is available as part of IBM