3 Days left to get a GIAC Certification Attempt Included with Online Training - Dont Miss Out!

San Diego 2017

San Diego, CA | Mon, Oct 30, 2017 - Sat, Nov 4, 2017
Event starts in 8 Days
 

Actionable Detects: Blue Team Cyber Defense Tactics

  • Seth Misenar
  • Monday, October 30th, 7:15pm - 9:15pm

Organizations relying on third parties to detect breaches can go almost a full year before finding out they have been compromised. Detect the breach yourself, and on average you will find it within about a month of the initial occurrence. Considering detection and defense against modern adversaries too costly to perform yourself can be a very expensive miscalculation considering the substantially increased price of response and recovery with breach duration.

Seth Misenar's ever-evolving Actionable Detects, provides you the understanding, tactics, techniques, and procedures to once again take pride in your Blue Team Cyber capabilities. Not applying these lessons learned could prove costly in the face of adapting threat actors. Dig in and learn to hold your head high when talking about your defensive cyber operations capabilities.


Bonus Sessions

The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:

  • SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.
  • Special Events: SANS-hosted events and other non-technical recreational offerings. This category includes, but is not limited to, Receptions and Information Tables.
Monday, October 30
Session Speaker Time Type
General Session - Welcome to SANS Bryan Simon Monday, October 30th, 8:00am - 8:30am Special Events
Actionable Detects: Blue Team Cyber Defense Tactics Seth Misenar Monday, October 30th, 7:15pm - 9:15pm Keynote
Tuesday, October 31
Session Speaker Time Type
State of the Dark Web Matt Edmondson Tuesday, October 31st, 7:15pm - 8:15pm SANS@Night
Anti-Ransomware: How to Turn the Tables G. Mark Hardy Tuesday, October 31st, 8:15pm - 9:15pm SANS@Night
Wednesday, November 1
Session Speaker Time Type
Introducing DeepBlueCLI; A PowerShell Module for Hunt Teaming via Windows Event Logs Eric Conrad Wednesday, November 1st, 7:15pm - 8:15pm SANS@Night