Live, interactive cybersecurity training available through SANS Live Online. View upcoming events.

Cyber Defense Initiative® 2019

Washington, DC | Tue, Dec 10 - Tue, Dec 17, 2019
This event is over,
but there are more training opportunities.

Evolving Threats

  • Paul Henry
  • Friday, December 13th, 7:15pm - 8:15pm

For nearly two decades defenders have fallen into the "Crowd Mentality Trap" and have simply settled on doing the same thing everyone else was doing. While at the same time attackers have clearly evolved both in terms of malware delivery vectors and attack methodology. Today our defenses focus primarily on the gateway and upon attempting to outwit attackers' delivery methods. This leaves us woefully exposed and according to a recent Data Breach Report has resulted in 3,765 incidents, 806 million records exposed, and $157 billion (USD) in data breach costs in only the past 6 years. The Evolving Threats presentation is updated monthly and provides insight in to mitigations of our most current threats.


Bonus Sessions

The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:

  • SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.
  • Special Events: SANS-hosted events and other non-technical recreational offerings. This category includes, but is not limited to, Receptions and Information Tables.
  • Vendor: Events hosted by external vendor exhibitors.
  • Lunch & Learn: Short presentations given during the lunch break.
Wednesday, December 11
Session Speaker Time Type
Welcome Reception & Early Check-In Wednesday, December 11th, 5:00pm - 7:00pm Special Events
Thursday, December 12
Session Speaker Time Type
General Session - Welcome to SANS Bryan Simon Thursday, December 12th, 8:00am - 8:30am Special Events
One Stop Shopping - Evaluating and Integrating External Sources Joe Gehrke, Solutions Architect Thursday, December 12th, 12:30pm - 1:15pm Lunch and Learn
Secure and Protect Your Users Everywhere Olauhdo Stubbs, Technical Solutions Specialist Thursday, December 12th, 12:30pm - 1:15pm Lunch and Learn
Prioritizing Investigations with Domain & DNS-Based Adversary Intelligence Jackie Abrams, Principal Product Manager Thursday, December 12th, 12:30pm - 1:15pm Lunch and Learn
Defeat Cyber Insider Threats with IBM's Threat Management Solutions Christopher Fritz, Z/OS UNIX Function Test Lead & Alexandra Hurtado, Cybersecurity Technical Specialist Thursday, December 12th, 12:30pm - 1:15pm Lunch and Learn
Breach Prevention by Reducing Attack Surfaces Chris Carlson, VP, Product Management Thursday, December 12th, 12:30pm - 1:15pm Lunch and Learn
Evade Me If You Can: An Inside Look at Malware Evasion Techniques Ben Abbott, Solutions Engineer Thursday, December 12th, 12:30pm - 1:15pm Lunch and Learn
IBM Product Test Drive Christopher Fritz, Z/OS UNIX Function Test Lead Thursday, December 12th, 6:30pm - 8:30pm Vendor Event
Windows Exploratory Surgery with Process Hacker Jason Fossen Thursday, December 12th, 7:15pm - 9:15pm Keynote
Friday, December 13
Session Speaker Time Type
Solutions Expo Friday, December 13th, 12:00pm - 1:30pm Vendor Event
Solutions Expo Friday, December 13th, 5:15pm - 6:15pm Vendor Event
GIAC Overview Presentation Kim Lucht Friday, December 13th, 6:15pm - 7:00pm Special Events
Women's CONNECT Reception Friday, December 13th, 6:15pm - 7:15pm Reception
OSINT Missing Persons CTF Hosted by Micah Hoffman in partnership with Trace Labs Friday, December 13th, 6:30pm - 9:30pm Special Events
Evolving Threats Paul Henry Friday, December 13th, 7:15pm - 8:15pm SANS@Night
Cloud Security Automation: From Infrastructure to App Frank Kim Friday, December 13th, 7:15pm - 8:15pm SANS@Night
Virtuous Cycles: Rethinking the SOC for Long-Term Success John Hubbard Friday, December 13th, 8:15pm - 9:15pm SANS@Night
SIEMtervention - Moving SIEM from collection to detection Justin Henderson Friday, December 13th, 8:15pm - 9:15pm SANS@Night
Saturday, December 14
Session Speaker Time Type
Coffee & Donuts with the College Students Saturday, December 14th, 7:30am - 9:00am Reception
Bulletproof Proxies: How Large Scale Attacks Hide in Plain Sight Laz Macias, Field Solutions Engineer Saturday, December 14th, 12:30pm - 1:15pm Lunch and Learn
Elevating Enterprise Security: Simplifying the Life of a Security Analyst Jerry Mancini, SVP of Engineering Saturday, December 14th, 12:30pm - 1:15pm Lunch and Learn
OSINT Missing Persons CTF Hosted by Micah Hoffman in partnership with Trace Labs Saturday, December 14th, 6:30pm - 9:30pm Special Events
Failing to Succeed in Cyber Security and Risk Management My-Ngoc Nguyen Saturday, December 14th, 7:15pm - 8:15pm SANS@Night
Building and Operating an OT/ICS SOC Robert M. Lee Saturday, December 14th, 7:15pm - 8:15pm SANS@Night
Who's in your wallet? Capital One Debrief & Post Mortem Eric Johnson Saturday, December 14th, 8:15pm - 9:15pm SANS@Night
Putting MITRE ATT&CK™ into Action with What You Have, Where You Are Katie Nickels Saturday, December 14th, 8:15pm - 9:15pm SANS@Night