Ending Soon! Get an iPad Air with Smart Keyboard, or Surface Go, or $300 Off with Online Training through Aug 21!

Baltimore Spring 2017

Baltimore, MD | Mon, Apr 24 - Sat, Apr 29, 2017
This event is over,
but there are more training opportunities.

Securing the Enterprise with Cyber Threat Hunting

  • Michael C. Long, Master's Degree Candidate
  • Wednesday, April 26th, 8:15pm - 8:55pm

Our nation is in danger. Nation-state advanced persistent threats have secured footholds in our nationās most critical information assets. They linger quietly, waiting for the perfect opportunity to deliver a crushing blow to an organization. How can an organization detect latent threats hiding in their networks? Cyber Threat Hunting is a new capability where sophisticated operators hunt for advanced adversaries in their networks. By proactively and iteratively searching for indicators of compromise, cyber threat hunters are reducing the lead time in intrusion detection while putting the advanced persistent threats on the run. This presentation will examine how the U.S. Army is incorporating cyber threat hunting into current cyberspace operations and how it can be used to secure the enterprise against advanced persistent threats.

Speaker Bio: Michael C. Long is a Soldier in the United States Army Cyber Protection Brigade with 8 years experience in Military Intelligence and Cyberspace Operations. Michael Long has experience in information security with a focus on conducting cyber threat emulation and defense counter infiltration operations. Michael Long graduated from the Joint Cyber Analysis Course with honors, has a B.S. in Information Technology, and is presently working on his M.S. in Information Security Engineering with SANS Technical Institute. Michael Long has served on several high profile incident response missions and is currently conducting national level computer network operations in support of Army Cyber Command objectives. Michael Long is a computer enthusiast who enjoys competing in capture the flag competitions and writing about hacking techniques.


Bonus Sessions

The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:

  • SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.
  • Special Events: SANS-hosted events and other non-technical recreational offerings. This category includes, but is not limited to, Receptions and Information Tables.
  • Master's Degree Presentation: Presentations given by SANS Technology Institute's Master's Degree candidates.
Monday, April 24
Session Speaker Time Type
General Session - Welcome to SANS Bryan Simon Monday, April 24th, 8:00am - 8:30am Special Events
Exploitation 101: Stacks, NX/DEP, ASLR and ROP! David Hoelzer Monday, April 24th, 7:15pm - 9:15pm Keynote
Tuesday, April 25
Session Speaker Time Type
Steganography - The Hidden Threat Kevin Fiscus Tuesday, April 25th, 7:15pm - 8:15pm SANS@Night
Security Configuration at Scale - An Introduction to Ansilble Patrick Neise, Master's Degree Candidate Tuesday, April 25th, 7:15pm - 7:55pm Master's Degree Presentation
Real World Enterprise Incident Response w/ Kansa Robert Adams, Master's Degree Candidate Tuesday, April 25th, 8:15pm - 8:55pm Master's Degree Presentation
Wednesday, April 26
Session Speaker Time Type
(Am)Cache Rules Everything Around Me Eric Zimmerman Wednesday, April 26th, 7:15pm - 8:15pm SANS@Night
Securing the Enterprise with Cyber Threat Hunting Michael C. Long, Master's Degree Candidate Wednesday, April 26th, 8:15pm - 8:55pm Master's Degree Presentation
Thursday, April 27
Session Speaker Time Type
The Node Situation Moses Hernandez Thursday, April 27th, 7:15pm - 8:15pm SANS@Night