Get unparalleled cyber security training from industry leaders in Santa Monica. Save $200 thru 9/18.

Rocky Mountain 2016

Denver, CO | Mon, Jul 11 - Sat, Jul 16, 2016
This event is over,
but there are more training opportunities.

OPM vs. APT: How Proper Implementation of Key Controls Could Have Prevented a Disaster

  • David Kennel - Master's Degree Candidate
  • Wednesday, July 13th, 8:15pm - 8:55pm

Advanced Persistent Threat (APT) has been a leading buzz phrase in the security industry for most of the past decade. In some cases breached organizations have attempted to deflect attention away from their inadequate security by saying, in essence, the attack was APT we could not have defended ourselves. In April of 2015 the U.S. Office of Personnel Management detected a breach of its systems that would ultimately be determined to have exposed the personal information of up to 25.7 million people. While APT style attackers are very difficult to defend against not all of their attacks are as advanced as one might think. The OPM attack could have been defended against with existing tools and techniques documented in the Top 20 Critical Security Controls and in NIST 800-53. In particular two factor authentication and effective logging and activity analysis would have made the attack more difficult to perpetrate successfully.


Bonus Sessions

The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:

  • SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.
  • Special Events: SANS-hosted events and other non-technical recreational offerings. This category includes, but is not limited to, Receptions and Information Tables.
  • Vendor: Events hosted by external vendor exhibitors.
  • Lunch & Learn: Short presentations given during the lunch break.
  • Master's Degree Presentation: Presentations given by SANS Technology Institute's Master's Degree candidates.
Monday, July 11
Session Speaker Time Type
General Session - Welcome to SANS Bryan Simon Monday, July 11th, 8:15am - 8:45am Special Events
Using an Open Source Threat Model for Prioritized Defense James Tarala Monday, July 11th, 7:15pm - 9:15pm Keynote
Tuesday, July 12
Session Speaker Time Type
Women's CONNECT Event Hosted by SANS COINS program and ISSA WIS SIG Tuesday, July 12th, 6:00pm - 9:15pm Special Events
HTTPDeux Adrien de Beaupre Tuesday, July 12th, 7:15pm - 8:15pm SANS@Night
Offensive Countermeasures, Active Defenses, and Internet Tough Guys John Strand Tuesday, July 12th, 8:15pm - 9:15pm SANS@Night
Wednesday, July 13
Session Speaker Time Type
Vendor Showcase Wednesday, July 13th, 10:00am - 10:20am Vendor Event
Taking your Log Management Strategy from Good to GREAT!! Gene McGowan, CISSP, Senior Sales Engineer Wednesday, July 13th, 12:30pm - 1:15pm Lunch and Learn
Vendor Showcase Wednesday, July 13th, 3:00pm - 3:20pm Vendor Event
How Not to Suck at Cyber Attack Attribution Jake Williams Wednesday, July 13th, 7:15pm - 8:15pm SANS@Night
Hardware Keyloggers: Attack and Defense Glen Roberts - Master's Degree Candidate Wednesday, July 13th, 7:15pm - 7:55pm Master's Degree Presentation
Quality not Quantity: Continuous Monitoring's Deadliest Events Eric Conrad Wednesday, July 13th, 8:15pm - 9:15pm SANS@Night
OPM vs. APT: How Proper Implementation of Key Controls Could Have Prevented a Disaster David Kennel - Master's Degree Candidate Wednesday, July 13th, 8:15pm - 8:55pm Master's Degree Presentation
Thursday, July 14
Session Speaker Time Type
How to Commit Card Fraud G. Mark Hardy Thursday, July 14th, 7:15pm - 8:15pm SANS@Night
Implementing Secure HTTP Headers Serge Borso Thursday, July 14th, 8:15pm - 9:15pm SANS@Night
Friday, July 15
Session Speaker Time Type
Advancing the Security Agenda- Compelling Leadership to Support Security Doc Blackburn Friday, July 15th, 7:15pm - 8:15pm SANS@Night