Sharpen your Skills at SANS San Francisco Winter 2017. Save $200 thru 10/25.

Cyber Defense Initiative 2017

Washington, DC | Tue, Dec 12 - Tue, Dec 19, 2017
Event starts in 50 Days
 

Actionable Detects: Blue Team Cyber Defense Tactics

  • Seth Misenar
  • Friday, December 15th, 7:15pm - 8:15pm

Organizations relying on 3rd parties to detect breaches can go almost a full year before finding out they have been compromised. Detect the breach yourself, and on average you will find it within about a month of the initial occurrence. Considering detection and defense against modern adversaries too costly to perform yourself can be a very expensive miscalculation considering the substantially increased price of response and recovery with breach duration.

Seth Misenar's ever evolving, Actionable Detects, provides you thoughts, tactics, techniques, and procedures to once again take pride in your Blue Team Cyber capabilities. Not applying these lessons learned could prove costly in the face of adapting threat actors. Dig in and learn to hold your head high when talking about your defensive cyber operations capabilities.


Bonus Sessions

The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:

  • SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.
  • Special Events: SANS-hosted events and other non-technical recreational offerings. This category includes, but is not limited to, Receptions and Information Tables.
  • Vendor: Events hosted by external vendor exhibitors.
  • Lunch & Learn: Short presentations given during the lunch break.
Thursday, December 14
Session Speaker Time Type
General Session - Welcome to SANS Bryan Simon Thursday, December 14th, 8:00am - 8:30am Special Events
Qualys Lunch and Learn Thursday, December 14th, 12:30pm - 1:15pm Lunch and Learn
Domain Tools Lunch and Learn Thursday, December 14th, 12:30pm - 1:15pm Lunch and Learn
VMRay Lunch and Learn Thursday, December 14th, 12:30pm - 1:15pm Lunch and Learn
Recorded Future Lunch and Learn Thursday, December 14th, 12:30pm - 1:15pm Lunch and Learn
Exploitation 101: Stacks, NX/DEP, ASLR and ROP! David Hoelzer Thursday, December 14th, 7:15pm - 9:15pm Keynote
Friday, December 15
Session Speaker Time Type
Vendor Solutions Expo Friday, December 15th, 12:00pm - 1:30pm Vendor Event
Women's CONNECT Event Hosted by SANS COINS program and ISSA WIS SIG Friday, December 15th, 4:00pm - 9:15pm Special Events
Vendor Solutions Expo Friday, December 15th, 5:30pm - 7:30pm Vendor Event
GIAC Program Presentation Scott Cassity Friday, December 15th, 6:15pm - 7:15pm Special Events
Actionable Detects: Blue Team Cyber Defense Tactics Seth Misenar Friday, December 15th, 7:15pm - 8:15pm SANS@Night
The Three C's to Building a Mature Awareness Program Lance Spitzner Friday, December 15th, 7:15pm - 8:15pm SANS@Night
Using an Open Source Threat Model for Prioritized Defense James Tarala Friday, December 15th, 7:15pm - 8:15pm SANS@Night
The 14 Absolute Truths of Security Keith Palmgren Friday, December 15th, 7:15pm - 8:15pm SANS@Night
Securing Your Kids Lance Spitzner Friday, December 15th, 8:15pm - 9:15pm SANS@Night
Control Things Platform Justin Searle Friday, December 15th, 8:15pm - 9:15pm SANS@Night
Blockchain: the New Digital Swiss Army Knife? G. Mark Hardy Friday, December 15th, 8:15pm - 9:15pm SANS@Night
An Interactive Look at Defeating Advanced Adversaries and Implementing Kill Chain Controls Stephen Sims Friday, December 15th, 8:15pm - 9:15pm SANS@Night
Saturday, December 16
Session Speaker Time Type
How to Become a SANS Instructor Eric Conrad Saturday, December 16th, 12:30pm - 1:15pm Lunch and Learn
Introducing DeepBlueCLI, a PowerShell Module for Hunt Teaming Via Windows Event Logs Eric Conrad Saturday, December 16th, 7:15pm - 8:15pm SANS@Night
Malware Analysis for Incident Responders: Getting Started Lenny Zeltser Saturday, December 16th, 7:15pm - 8:45pm SANS@Night
Building an Effective Security Monitoring Program Jake Williams Saturday, December 16th, 7:15pm - 8:15pm SANS@Night
Industrial Control System Active Defense and Threat Intelligence Robert M. Lee Saturday, December 16th, 8:15pm - 9:15pm SANS@Night
The Security Impact of IPv6 Johannes Ullrich, Ph.D. Saturday, December 16th, 8:15pm - 9:15pm SANS@Night
When IoT Attacks: Understanding the Safety Risks Associated With Connected Devices Billy Rios Saturday, December 16th, 8:15pm - 9:15pm SANS@Night
Sunday, December 17
Session Speaker Time Type
Fortune 100 InfoSec on a Budget Eric Capuano Sunday, December 17th, 7:15pm - 8:15pm SANS@Night