Building on the successful workshop held on the 11th and 12th of December 2017, this second WLCG SOC WG workshop will tackle more in-depth topics.
To help sites decide if they would benefit from attending, we would identify these broad areas as being of particular focus for this workshop:
- Initial steps (covering most of the topics from the first workshop, particularly aimed at newcomers)
- Network topologies, traffic mirroring and optical taps
- Elasticsearch and associated tools
- Advanced aggregation, correlation and enrichment of generated alerts