SANS Open-Source Intelligence (OSINT) Summit & Training offers immersive cyber security courses and a free Summit!

SANSFIRE 2020 - Live Online

Virtual, US Eastern | Sat, Jun 13 - Sat, Jun 20, 2020

Expert Playbooks for Non-Expert Use

  • Alex Kirk
  • Thursday, June 18th, 12:30pm - 1:15pm

Time Zone: US - Eastern

Despite advances in processes and tooling, people are still a critical element of security operations. Analysts, however, are not a monolithic group with the same set of skills or experiences, so leveraging the collective knowledge of top-tier defenders is desired.

One way to scale scarce human defender resources across the security problem is to embed their knowledge and experience into the tools used by all members of the incident detection and response team. Corelight shows that the combination of best-in-breed data and expertly-designed playbooks gives security teams the best capability to manage security incidents.

REGISTER HERE

Corelight

Bonus Sessions

The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:

  • SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.
  • Lunch & Learn: Short presentations given during the lunch break.
Monday, June 15
Session Speaker Time Type
Cybersecurity: Why Asset Management Matters Andrew Senko Monday, June 15th, 12:30pm - 1:15pm Lunch and Learn
Leverage DNS OSINT at Scale Taylor Wilkes-Pierce Monday, June 15th, 12:30pm - 1:15pm Lunch and Learn
ISC Handler Series: SANS@MIC -Arcane web and mobile application vulnerabilities Bojan Zdrnja Monday, June 15th, 3:30pm - 4:30pm SANS@Night
ISC Handler Series: SANS@MIC- A walk through logs hell Xavier Mertens Monday, June 15th, 8:30pm - 9:30pm SANS@Night
Tuesday, June 16
Session Speaker Time Type
Does Your Web Browser Need a Stunt Double? Rajiv Raghunarayan Tuesday, June 16th, 12:30pm - 1:15pm Lunch and Learn
Wednesday, June 17
Session Speaker Time Type
How Implementing SOAR Improves Efficiency In Your Organization Jay Spann Wednesday, June 17th, 12:30pm - 1:15pm Lunch and Learn
Proactive Threat Hunting with SOAR Alex Valdivia Wednesday, June 17th, 12:30pm - 1:15pm Lunch and Learn
ISC Handler Series: SANS@MIC - Catch and release: phishing techniques for the good guys Jan Kopriva Wednesday, June 17th, 3:30pm - 4:30pm SANS@Night
ISC Handler Series: SANS@MIC - Maldocs: a bit of blue, a bit of red Didier Stevens Wednesday, June 17th, 8:30pm - 9:30pm SANS@Night
Thursday, June 18
Session Speaker Time Type
Effortlessly Immunize Software - Rapidly Inoculate Compiled Code Against Software Memory Vulnerabilities Doug Britton Thursday, June 18th, 12:30pm - 1:15pm Lunch and Learn
Expert Playbooks for Non-Expert Use Alex Kirk Thursday, June 18th, 12:30pm - 1:15pm Lunch and Learn
Tracking Down the Cyber Criminals: Revealing Malicious Infrastructures with Umbrella Chris Bilodeau Thursday, June 18th, 12:30pm - 1:15pm Lunch and Learn