iPad Air 2, Samsung Galaxy Tab A, or $350 Off with SANS Online Training Right Now!

London in the Summer 2015

London, United Kingdom | Mon, Jul 13 - Sat, Jul 18, 2015
This event is over,
but there are more training opportunities.

Using an Open Source Threat Model for Prioritized Defense

  • James Tarala
  • Tuesday, July 14th, 6:00pm - 7:00pm

Threat actors are not magic and there is not an unlimited, unique list of threats for every organization. Enterprises face similar threats from similar threat sources and threat actors - so why does every organization need to perform completely unique risk assessments and prioritized control decisions? This presentation will show how specific, community-driven threat models can be used to prioritize an organization's defenses - without all the confusion.

In this presentation James Tarala will present a new, open, community-driven threat model that can be used by any industry to evaluate the risk that faces them. Then he will show how to practically use this model to prioritize enterprise defense and map to existing compliance requirements facing organizations today. Whether you are in the Department of Defense or work for a small mom-and-pop retailer, you will be able to use this model to specifically determine a prioritized defense for your organization.


Bonus Sessions

The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:

  • SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.
Monday, July 13
Session Speaker Time Type
Modern Exploitation: How Hackers Hack With Live Demonstrations & Reversing James Lyne Monday, July 13th, 6:30pm - 7:30pm SANS@Night
Tuesday, July 14
Session Speaker Time Type
Using an Open Source Threat Model for Prioritized Defense James Tarala Tuesday, July 14th, 6:00pm - 7:00pm SANS@Night
Tips for managing IR teams and Execs (in the middle of your incident)! Steve Armstrong Tuesday, July 14th, 7:00pm - 8:00pm SANS@Night
Wednesday, July 15
Session Speaker Time Type
Examining Shellcode in a Debugger through Control of the Instruction Pointer Adam Kramer Wednesday, July 15th, 6:00pm - 7:00pm SANS@Night
Three Modern Mobile Threats: The Good, the Bad and the Ugly Raul Siles Wednesday, July 15th, 7:00pm - 8:00pm SANS@Night