Automating Event Triage in the Cloud
- Jay Spann
- Wednesday, September 23rd, 12:30pm - 1:15pm
Every day, organizations shift more resources to the cloud, leading to new and increased security risks. These risks leave analysts struggling to stop attacks before they turn into full-fledged breaches. Security operations centers (SOCs) must build their security infrastructure on top of automated and actionable intelligence to reduce their workload and the amount of time an attacker can remain active within the organizationās network. By automating mundane tasks and critical processes, SOCs can alleviate the burden of trying to keep up with the constantly evolving cloud space and gain the ability to respond to alerts and incidents at machine speeds. Organizations that optimize their automation solutions even have the opportunity to get ahead of potential threats.
Bonus Sessions
The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:
- SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.
- Special Events: SANS-hosted events and other non-technical recreational offerings. This category includes, but is not limited to, Receptions and Information Tables.
Monday, September 21
| Session | Speaker | Time | Type |
|---|---|---|---|
| Influencing a Software Vendor's Roadmap | James Nixon | Monday, September 21st, 12:30pm - 1:15pm | Special Events |
| Back to the (Cyber) Future: Tomorrow's Cybersecurity Relies on Today's Asset Management | Andrew Senko | Monday, September 21st, 12:30pm - 1:15pm | Special Events |
| Network Security Monitoring vs Encryption | Richard Bejtlich | Monday, September 21st, 12:30pm - 1:15pm | Special Events |
| SANS@Mic PowerShell 2020: State of the Art / Hack / Infection | Jason Fossen | Monday, September 21st, 7:30pm - 9:30pm | Keynote |
Tuesday, September 22
| Session | Speaker | Time | Type |
|---|---|---|---|
| SANS.edu Undergraduate & Graduate Programs Information Session | — | Tuesday, September 22nd, 8:00am - 8:30am | Special Events |
| Solving Network and Security Challenges with SASE | Nitin Kumar, Eric Trolan | Tuesday, September 22nd, 12:30pm - 1:15pm | Special Events |
| Defense Against the Dark Arts: Dissecting Sandbox Evasion Techniques | Ben Abbott | Tuesday, September 22nd, 12:30pm - 1:15pm | Special Events |
| Moving Left: Driving Proactive Defense through Threat Investigation | Jackie Abrams | Tuesday, September 22nd, 12:30pm - 1:15pm | Special Events |
Wednesday, September 23
| Session | Speaker | Time | Type |
|---|---|---|---|
| Automating Event Triage in the Cloud | Jay Spann | Wednesday, September 23rd, 12:30pm - 1:15pm | Special Events |
| Confidence in Security Intelligence | John Wetzel | Wednesday, September 23rd, 12:30pm - 1:15pm | Special Events |
| The Myths of Network Security | Matt Cauthorn | Wednesday, September 23rd, 12:30pm - 1:15pm | Special Events |
| SANS@Mic - OSINT Geolocation Techniques and How to Prevent Them | Micah Hoffman | Wednesday, September 23rd, 7:30pm - 8:30pm | SANS@Night |
Thursday, September 24
| Session | Speaker | Time | Type |
|---|---|---|---|
| Leveraging Asset Visibility to Enhance Security Operations | Mehul Revankar | Thursday, September 24th, 12:30pm - 1:15pm | Special Events |
