Your organizations information is at risk. Learn how to protect it at SANS Minneapolis - August 12-17.

Boston Spring 2018

Boston, MA | Sun, Mar 25 - Fri, Mar 30, 2018
This event is over,
but there are more training opportunities.

Evaluating Windows 10 and Windows Server 2016 as an Endpoint Detection and Response Solution

  • Sebastien Godin- Master's Degree Candidate
  • Thursday, March 29th, 7:15pm - 8:00pm

Microsoft has made many noticeable advances in Windows 10 and Windows Server 2016 that improves the overall security posture of endpoints. This new modern Windows enterprise ecosystem, when utilized properly, can be leveraged like an Endpoint Detection and Response (EDR) capability. This capability can be achieved without third party software and can reduce costs to the enterprise that can be reinvested into other projects. Microsoft achieves this EDR solution by adding security measures that are native to the OS like Windows Defender, Security policy editor, and more. This talk will expose the new measures and capabilities that help protect the enterprise endpoints.

Speaker Bio: Sebastien Godin s a candidate for the Master of Science degree in Information Security Engineering from the SANS Technology Institute. Sebastien has graduated from the University of Montreal with a double major in Mathematics and Computer Science in 2006. Since then he has been a telecommunications officer in the Canadian Armed Forces (CAF) and has specialized in Cyber Defence for the last 8 years. During his time in the forces, he has worked in the CAF‚s SOC as a Cyber-planner, in the telecommunications school as an educator, and in the Canadian Operational Command as a Cyber Advisor. He is currently finishing a Master‚s with STI and also holds the following SANS certifications: GSE, GSEC, GCIH, GCPM, GCIA, GPEN, GCFA, and GSNA. The SANS Technology Institute is the only graduate program that combines SANS technical training, recognized as the industry‚s best, with leadership and management curriculum specifically developed for the unique needs of aspiring leaders. Learn more at

Bonus Sessions

The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:

  • SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.
  • Special Events: SANS-hosted events and other non-technical recreational offerings. This category includes, but is not limited to, Receptions and Information Tables.
  • Lunch & Learn: Short presentations given during the lunch break.
  • Master's Degree Presentation: Presentations given by SANS Technology Institute's Master's Degree candidates.
Sunday, March 25
Session Speaker Time Type
General Session - Welcome to SANS Seth Misenar Sunday, March 25th, 8:00am - 8:30am Special Events
Welcome Threat Hunters, Phishermen, and Other Liars Rob Lee Sunday, March 25th, 7:15pm - 9:15pm Keynote
Monday, March 26
Session Speaker Time Type
Adversary Simulations - Taking Attack Models and Penetration Testing to the Next Level Jorge Orchilles Monday, March 26th, 7:15pm - 8:15pm SANS@Night
Tuesday, March 27
Session Speaker Time Type
Splunk 4 Security Brian Heffernan, CISSP, Splunk Pitmaster Tuesday, March 27th, 12:30pm - 1:15pm Lunch and Learn
Using the Attack & Defense Matrix Scorecard Mick Douglas Tuesday, March 27th, 7:15pm - 8:15pm SANS@Night
Wednesday, March 28
Session Speaker Time Type
Infosec Rock Star: Geek Will Only Get You So Far Ted Demopoulos Wednesday, March 28th, 7:15pm - 8:15pm SANS@Night
Thursday, March 29
Session Speaker Time Type
Evaluating Windows 10 and Windows Server 2016 as an Endpoint Detection and Response Solution Sebastien Godin- Master's Degree Candidate Thursday, March 29th, 7:15pm - 8:00pm Master's Degree Presentation