Continuous Monitoring - A Practical Example
- Randy Marchany
- Wednesday, September 9th, 7:15pm - 8:15pm
Continuous monitoring (aka network forensics, aka extrusion detection, aka network security monitoring) focuses on monitoring activity on your network and discovering outbound traffic patterns. We assume the network is penetrated and focus on trying to prevent sensitive data from leaving our network. This talk discusses how VA Tech is implementing a CM security architecture on its IPV4 and IPV6 networks.
The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:
- SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.
- Special Events: SANS-hosted events and other non-technical recreational offerings. This category includes, but is not limited to, Receptions and Information Tables.
- Lunch & Learn: Short presentations given during the lunch break.
Tuesday, September 8
Wednesday, September 9
Thursday, September 10
|Identity: The New Security Border in 2015 and Beyond||Jack Miles, Senior Systems Engineer, Centrify Corporation||Thursday, September 10th, 12:30pm - 1:15pm||Lunch and Learn|
|DLP FAIL!!! Using Encoding, Steganography, and Covert Channels to Evade DLP and Other Critical Controls||Kevin Fiscus||Thursday, September 10th, 7:15pm - 8:15pm||SANS@Night|
Friday, September 11
|Turning off lights with a mouse click instead of a switch||Graham Speake||Friday, September 11th, 7:15pm - 8:15pm||SANS@Night|