Vendor Welcome Reception

Friday, December 12th: 5:00pm - 7:00pm

This informal reception allows you to visit exhibits and participate in some exciting activities. This is a great time to mingle with your peers and experience firsthand the latest in information security tools and solutions with interactive demonstrations.

Vendor Expo

Friday, December 12th: 12:00pm - 1:30pm and 5:00pm - 7:00pm

Throughout SANS Cyber Defense Initiative 2008 vendors will be hosting a number of events including presentations, a one-day vendor solutions expo and various receptions. Experience the latest in network security tools, meet industry leaders and share your thoughts on developments you would like to see in the pipeline.

Vendor Events

To Register for the following Vendor Events, please see the SANS Community Bulletin Boards at SANS CDI 2008 Student Registration, when you pick up your badge and courseware book card onsite.

Sourcefire, Inc. Lunch and Learn Presentation
- The Evolution of Network Security Technologies
- Joel Esler, Security Consultant, Sourcefire®, Inc.
- Thursday, December 11th, 2008 * 12:30pm - 1:15pm

Mr. Esler believes that network security needs to change to meet tomorrow's policy non-compliance, vulnerabilities, and threats. He will discuss the need for real-time network monitoring to see everything on a network and real-time context to know more. He will also show how Adaptive IPS can dramatically reduce false positives.

Joel Esler (GCIA, SnortCP, SFCP, SFCE) is a Senior Security Consultant at Sourcefire where he travels the world installing and configuring customer Sourcefire and Snort deployments. Joel teaches classes concerning Sourcefire and Snort, and participates in other public speaking engagements throughout the year. Joel is also an Incident Handler for SANS at the Internet Storm Center, the largest free threat analysis cell in the world. Joel is also a GIAC Gold Advisor responsible for the technical grading of the SANS Gold certification process.

Log Management Hands-on Mini Summit
- Mike Poor
- Thursday, December 11th, 2008
- 6:00pm - 7:00pm | Mike Poor Presentation
- 7:00 - 8:30pm | Hands-on demonstrations with sponsoring vendors

Participating Vendors
ArcSight
Intellitactics
RSA, The Security Division of EMC

All attendees are encouraged to attend this lively, interactive session featuring a presentation by SANS luminary Mike Poor. Mr. Poor will discuss the current state of the Log Management industry and provide actionable advice and insight on the separation of reality and hype when considering solutions. We will take a hard look at commercial and open-source solutions in this space. Join in this interactive session to make the summit work for you. Mike will address the questions every potential buyer of a Log Management solution should be asking when considering their options.

At the conclusion of the presentation by SANS attendees are invited to visit with sponsoring Log Management solution providers to discuss their organizational requirements and receive hands-on tutorials on how these solutions address Log Management challenges. Participants can work through live, real-time demonstrations with the vendors in attendance and featured SANS instructor Mike Poor.

Core Security Lunch and Learn Presentation
- Efficient Vulnerability Management with Penetration Testing
- Anthony Alves, CISSP and Sr. Systems Engineer
- Saturday, December 13th, 2008 * 12:30pm - 1:15pm

This talk will be an opportunity for attendees to see a live demonstration of automated penetration-testing. In just minutes attendees will see CORE IMPACT safely exploit vulnerabilities in a target network, replicating the kinds of access an intruder could achieve, and proving actual paths of attacks that must be eliminated.

Anthony Alves is a CISSP and a Sr. Systems Engineer for Core Security Technologies, providing pre-sales and post-sales support and training for the Core Security Technologies Impact user base. Mr. Alves has more than 8 years of experience working with network and computer security products and tools. He was a Systems Engineer with SonicWALL, Intel Corporation, and Shiva Corporation specializing in their firewall and VPN products.

LogLogic Lunch and Learn Presentation
- Log Management in a Windows Environment
- Chima Njaka, Director, Product Management
- Saturday, December 13th, 2008 * 12:30pm - 1:15 pm

****NOTE**** This Presentation is limited to the first 75 Registrants.

Are you managing your MS Windows event logs? If your organization is like most, you probably have a number of Windows systems within your environment, perhaps even hosting mission critical applications. Unfortunately, despite the ubiquity of Windows systems, many organizations have found a number of challenges in collecting and managing their Windows event logs. In this lunch-n-learn, we will discuss some of the issues, and some of the best practices associated with collecting and managing logs in a Windows Environment.

Chima Njaka has over 20 years of experience developing & leading high technology products, projects, and customer relationships in the areas of enterprise software, networking, and dynamic systems. He is currently the Director or Product Management at LogLogic, responsible for the core platform software. Prior to LogLogic, he led technical services, operations, and sales at a number of technology startups, including Webscreen Technology, a specialist in DDOS mitigation; Sphera Optical Networks; and Visual Networks.

Pen Testing Hands-On Demo Session featuring Dr. Eric Cole
- Dr. Eric Cole, Ph.D.
- Saturday, December 13
- 6:00pm - 7:00pm | Dr. Eric Cole Presentation
- 7:00pm - 8:30pm | Hands-on demonstrations with sponsoring vendors

Participating Vendors
Core Security Technologies
Tenable Network Security

Penetration Testing has received a lot of focus in the press and many organizations are talking about the best way to perform them. However in many cases penetration testing has resorted to just running a few tools and presenting a canned report. This presentation will look at achieving maximum value from a penetration test. It will also show how you can take tools and use them to develop unique solutions that can help organizations reduce to risk and secure their assets.

Following the presentation all attendees are invited to meet with leading providers of Penetration Testing solutions. Bring your laptop and prepare to engage in a "hands-on" environment featuring the latest cutting edge technologies in the Penetration Testing market. Work through live, real-time demonstrations with vendors and featured SANS instructor Dr. Eric Cole. Sponsoring vendors arrive prepared to interact with SANS' technically savvy audience, presenting examples on how to avoid current threats to your environment. Appetizers and beverages provided by sponsors.