Your organizations information is at risk. Learn how to protect it at SANS Minneapolis - August 12-17.

Rocky Mountain 2019

Denver, CO | Mon, Jul 15 - Sat, Jul 20, 2019
Event starts in 28 Days
 

OODA Security: Taking Back the Advantage

  • Kevin Fiscus
  • Wednesday, July 17th, 7:15pm - 8:15pm

OODA, or Observe, Orient, Decide and Act is a concept first developed for fighter pilots. The concept states that the adversary who can effectively complete the OODA cycle first will go home while the adversary who takes longer enjoys, at best, a long, slow parachute ride to the ground. This concept can be applied to information security. In theory, we defenders should have the advantage as it is our "house" the attackers are attacking. Unfortunately, that is rarely the case. Over 50% of organizations find out they have been compromised via notification by a third party meaning that all too often defenders don't even start their OODA loop until after the attacker has completed the compromise. Making things worse, traditional security controls are failing us because attackers already know how to circumvent or evade them. Fortunately, there is a solution. By making better use of our existing technology and by using some of the attackers tools and techniques against them, we can take to deter, distract, delay, disrupt and detect attackers. Come learn how we can turn the tables on the bad guys and reclaim the OODA loop initiative.


Bonus Sessions

The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:

  • SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.
  • Special Events: SANS-hosted events and other non-technical recreational offerings. This category includes, but is not limited to, Receptions and Information Tables.
Monday, July 15
Session Speaker Time Type
General Session - Welcome to SANS Bryan Simon Monday, July 15th, 8:00am - 8:30am Special Events
Finding Attacks and Compromises Before Day Zero David Hoelzer Monday, July 15th, 7:15pm - 9:15pm Keynote
Tuesday, July 16
Session Speaker Time Type
CYA by Using CIA Correctly For A Change Keith Palmgren Tuesday, July 16th, 7:15pm - 8:15pm SANS@Night
Equifax, Congress, 148 million US taxpayer's information. What Went Wrong? What Lessons Can You Learn from This? Christopher Crowley Tuesday, July 16th, 7:15pm - 8:15pm SANS@Night
Data Protection in the Public Cloud -- a Look at the Good, the Bad, and the Ugly Kenneth G. Hartman Tuesday, July 16th, 8:15pm - 9:15pm SANS@Night
Wednesday, July 17
Session Speaker Time Type
Demystifying XXE Serge Borso Wednesday, July 17th, 7:15pm - 8:15pm SANS@Night
OODA Security: Taking Back the Advantage Kevin Fiscus Wednesday, July 17th, 7:15pm - 8:15pm SANS@Night
The Offensive Defender | Cyberspace Trapping Matthew Toussain Wednesday, July 17th, 8:15pm - 9:15pm SANS@Night