Back to videos

2842: Security Automation and Orchestration for Accelerated Threat Detection and Triage

Stop Threats and Respond Effectively

Every day, organizations receive close to 10,000 alerts, most of which go unmanaged. Security operations teams face fatigue from expanding attack surfaces, increasing event volume, decentralized security tools and limited skilled resources. Yet these teams are heavily relied upon as a core defense front to protect against attacks. This session will cover how companies can use Security Automation and Orchestration (SAO) solutions to automate time-intensive, manual processes and workflows to deliver actionable analytics and reporting that streamline threat detection and triage. It will also demonstrate practical uses cases for disrupting attacks through automation, and provide a benefits case to take to Boards and executives.

Core Curriculum Security and Resiliency Stop Threats and Respond Effectively
Security & Resiliency Theater A
Wed (February 13), 12:30PM PT


Himanshu Anand

Senior Manager, EY

Himanshu leads the cyber orchestration engineering and security information and event management (SIEM) engineering teams in North America at Ernst & Young LLP’s cybersecurity practice. He has over 10 years of experience in the areas of data management and data analysis tools for cybersecurity, web infrastructure architecture and web application performance management tools. He focuses on cyber threat management, performing architecture and design tasks for threat detection and response tools for clients, including the cyber-as-a-service (CaaS) service offering. He has experience in leading large-scale strategic IT initiatives, working directly with CISOs.

Renana Friedlich

Senior Manager, EY

Renana is the North America Incident Response leader at Ernst & Young’s Advanced Security Center (ASC) and has more than fourteen years of experience in information security. Over the last twelve years, she led breach investigations for global clients, detected nation-state APT campaigns at Fortune 500 companies, developed incident response plans and facilitated cyber simulations. Renana led EY’s response to several well-known security data breaches, where she directed the work of the technical groups and provided briefings to executives and C- Suites. Her experience includes responding to destructive malware attacks, Distributed Denial of Service (DDoS), data exfiltration, W2 fraud, and more