Digital transformation plays a fundamental role in meeting Repsol’s goal of being a net-zero emissions company by 2050. But this increased reliance on technology also brings additional risk due to a significant increase in the attack surface, both in the cloud and in physical facilities.
Combined with the continuously-evolving threat landscape, global geopolitical tensions, and the scarcity of cybersecurity talent, this requires a strategic focus on maximizing the effectiveness of security operations. The goal is to scale the organization’s detection and response capabilities in order to provide operational cyber-resilience and minimize the risk of an attack that can have a material impact on the business.
In this webinar, Javier García Quintela, Global CISO of Repsol, a Global 2000 multi-energy company with 24,000 employees, will discuss how his organization is:
- Using automation, analytics, and threat intelligence to reduce the risk of ransomware, data breaches, and insider threats.
- Implementing both on-premises and cloud-native SIEMs, combined with multiple data lakes to collect and analyze telemetry from diverse sources including endpoint, network, email, identity, cloud, and OT security monitoring solutions.
- Leveraging CardinalOps’ detection posture management platform to continuously assess its MITRE ATT&CK coverage and eliminate gaps caused by missing or misconfigured detections for the latest threats and APT groups most relevant to the organization.
Michael Mumcuoglu, CEO & Co-Founder of CardinalOps, will discuss:
- Why he founded CardinalOps to address the triple challenge of security tool complexity, rapid and constant change in adversary techniques, and hiring and retaining skilled SecOps personnel.
- How Gartner recently recognized CardinalOps as a Sample Vendor for Automated Security Controls Assessment (ASCA) in the 2023 Gartner® Hype Cycle™ Report for Security Operations1.
- Insights from the company’s Third Annual Report on the State of SIEM Detection Risk. Based on a data-driven analysis of more than 4,000 rules across diverse SIEM platforms in production environments — including Splunk, Microsoft Sentinel, IBM QRadar, and Sumo Logic — the report provides some interesting benchmark data about typical data ingestion metrics, MITRE ATT&CK coverage, and rule health in enterprise SOCs.