Cybersecurity skills shortage soars nearing 3 million. Keep your skills current. Train with SANS.

SANS 2019

Orlando, FL | Mon, Apr 1 - Mon, Apr 8, 2019
Event starts in 12 Days
 

CYA by Using CIA Correctly For A Change

  • Keith Palmgren
  • Wednesday, April 3rd, 8:15pm - 9:15pm

Everyone in cyber security has heard of the CIA triad. In fact, addressing Confidentiality, Integrity, and Availability as a triad of three equal parts is part of every cyber security book and class. But how many of us really have the resources to address all three of these in equal measure? Perhaps an even better question is, "Should you address these three in equal measure?" In most organizations, the answer is a resounding "NO!" But wait - it gets even more confusing! Should every department of your company address the elements of CIA the same? This time the answer is "Absolutely Not!"

In this talk, Keith Palmgren explains how to apply CIA to your company, as well as to the individual departments of your company. Doing so will not only allow you to CYA (Cover Your Assets) but also make far better use of the limited resources available in your security program while doing so.


Bonus Sessions

The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:

  • SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.
  • Special Events: SANS-hosted events and other non-technical recreational offerings. This category includes, but is not limited to, Receptions and Information Tables.
  • Vendor: Events hosted by external vendor exhibitors.
  • Lunch & Learn: Short presentations given during the lunch break.
Monday, April 1
Session Speaker Time Type
General Session - Welcome to SANS Bryan Simon Monday, April 1st, 8:00am - 8:30am Special Events
Windows Exploratory Surgery with Process Hacker Jason Fossen Monday, April 1st, 7:15pm - 9:15pm Keynote
Tuesday, April 2
Session Speaker Time Type
Stellar Cyber Lunch and Learn Tuesday, April 2nd, 12:30pm - 1:15pm Lunch and Learn
Intelligence Made Simple- a simpler way to identify the severity of your Threat Intelligence matches Daniel Katz, Sr Solutions Engineer Tuesday, April 2nd, 12:30pm - 1:15pm Lunch and Learn
Advantages of Deploying Zero Trust, Mobile-Centric Security Cory Lund, Sr. Solutions Engineer Tuesday, April 2nd, 12:30pm - 1:15pm Lunch and Learn
Cisco Lunch and Learn Tuesday, April 2nd, 12:30pm - 1:15pm Lunch and Learn
GIAC Overview Presentation Jeff Frisk Tuesday, April 2nd, 6:15pm - 7:00pm Special Events
The Data Privacy Imperative Ben Wright Tuesday, April 2nd, 7:15pm - 8:15pm SANS@Night
Moving Past Just Googling It: Harvesting and Using OSINT Micah Hoffman Tuesday, April 2nd, 7:15pm - 8:15pm SANS@Night
Let's Go Hunting Bad Guys John Strand Tuesday, April 2nd, 8:15pm - 9:15pm SANS@Night
Modern Information Security: Forget Cyber, It's All About AppSec Adrien de Beaupre Tuesday, April 2nd, 8:15pm - 9:15pm SANS@Night
Wednesday, April 3
Session Speaker Time Type
Coffee & Donuts with the Graduate Students Wednesday, April 3rd, 7:30am - 9:00am Reception
Vendor Solutions Expo Wednesday, April 3rd, 12:00pm - 1:30pm Vendor Event
Vendor Solutions Expo Wednesday, April 3rd, 5:15pm - 6:15pm Vendor Event
How to Become an All-Round Defender...the Secret Sauce Justin Henderson & Ismael Valenzuela Wednesday, April 3rd, 7:15pm - 8:15pm SANS@Night
Come to the Dark Side: Python's Sinister Secrets Mark Baggett Wednesday, April 3rd, 7:15pm - 8:15pm SANS@Night
A View from the C-Suite: An Insider APT Case Study Gary Berman Wednesday, April 3rd, 7:15pm - 8:15pm SANS@Night
CYA by Using CIA Correctly For A Change Keith Palmgren Wednesday, April 3rd, 8:15pm - 9:15pm SANS@Night
Oh, You Got This? Practical Attacks on Modern Infrastructure Moses Frost Wednesday, April 3rd, 8:15pm - 9:15pm SANS@Night
DevSecOps: Key Controls For Modern Security Success Eric Johnson Wednesday, April 3rd, 8:15pm - 9:15pm SANS@Night
Thursday, April 4
Session Speaker Time Type
Detecting the Encrypted Threat Peter Scheffler, Solution Architect Thursday, April 4th, 12:30pm - 1:15pm Lunch and Learn
Qualys Lunch and Learn Thursday, April 4th, 12:30pm - 1:15pm Lunch and Learn
BluVector Lunch and Learn Travis Rosiek, Chief Technology and Strategy Officer Thursday, April 4th, 12:30pm - 1:15pm Lunch and Learn
Crowdstrike Lunch and Learn Thursday, April 4th, 12:30pm - 1:15pm Lunch and Learn
Authority to Operate on AWS: Compliance as Code Tim Sandage, Senior Security Partner Strategist Thursday, April 4th, 12:30pm - 1:15pm Lunch and Learn