all InfoSec news
About EDR/XDR like SentinelOne in general
July 10, 2022, 10 p.m. | /u/nknzz
cybersecurity www.reddit.com
I'm junior in this area but I got a question which can sound dumb but...
How do you guys allow/whitelist process that are blocked by SentinelOne for example called false positive ?
I mean what is the good process to be sure that what you gonna whitelist is truly legit and not
malicious ?
I'm scared to allow something malicious, especially if the EDR did a fine job by blocking it at first.
What I do for now is …
More from www.reddit.com / cybersecurity
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Information Security Engineers
@ D. E. Shaw Research | New York City
SOC Cyber Threat Intelligence Expert
@ Amexio | Luxembourg, Luxembourg, Luxembourg
Systems Engineer - SecOps
@ Fortinet | Dubai, Dubai, United Arab Emirates
Ingénieur Cybersécurité Gouvernance des projets AMR H/F
@ ASSYSTEM | Lyon, France
Senior DevSecOps Consultant
@ Computacenter | Birmingham, GB, B37 7YS