How to Do a Computer Forensic Investigation...and Not Get Burned!
- Nick Klein
- Wednesday, October 17th, 6:30pm - 7:30pm
Sooner or later, most organisations will require some form of investigation, whether it's looking into misuse of emails or the internet, breach of company policies, investigating a computer system compromised or a rouge employee stealing company secrets. While IT staff will often have the technical skills and interest to help, they can easily get caught in the minefield of technical, legal, and procedural traps that computer forensic investigations entail.
This presentation will help you understand the proper methodology behind a computer forensic investigation, enabling you to achieve the best results while staying well clear of trouble. Based on the philosophy that it's always good to learn from mistakes - especially someone else's - this presentation will be full of real world examples and practical advice to enable you to deal with these situations clearly and confidently.
Nick Klein is the Director of Klein & Co. Computer Forensics, an independent computer forensic team based in Sydney, Australia. He has over fifteen years of experience specialising in forensic technology investigations and presenting expert evidence in legal and other proceedings. He's been engaged in hundreds of cases including commercial litigation and electronic discovery, criminal prosecution and defence, financial fraud, corruption, employee misconduct, theft of intellectual property, computer hacking and system intrusion.
He was previously a senior director in Deloitte Forensic and a team leader in the High Tech Crime Team of the Australian Federal Police, where he worked on international police investigations and intelligence operations including counter terrorism, online child abuse, computer hacking and traditional crimes facilitated by new technologies.
Nick has presented expert evidence in civil and criminal matters in Australia and overseas, including providing expert testimony in the Bali bombing trials in Indonesia in 2003. He has appeared before Australian State and Commonwealth Parliamentary Committees and participated in Government working groups on cybercrime issues including the Fraud Taskforce of the Australian Banking Association and the Critical Infrastructure Protection forum of the Australian Commonwealth Government. Nick is a regularly presenter at industry forums and is a guest lecturer of the School of Law at the University of New South Wales and the Centre for Transnational Crime Prevention, Faculty of Law at the University of Wollongong.
The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:
- SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.
Thursday, October 11
|Who's Watching the Watchers?||Mike Poor, SANS Senior Instructor||Thursday, October 11th, 6:30pm - 7:30pm||SANS@Night|
Tuesday, October 16
|Why Our Defenses Are Failing Us. One Click Is All It Takes...||Bryce Galbraith, SANS Certified Instructor||Tuesday, October 16th, 6:30pm - 8:30pm||SANS@Night|
Wednesday, October 17
|How to Do a Computer Forensic Investigation...and Not Get Burned!||Nick Klein||Wednesday, October 17th, 6:30pm - 7:30pm||SANS@Night|
Thursday, October 18
|Learning From the Mistakes of Others Lessons From 855 Data Breaches in 2011||Mark Goudie||Thursday, October 18th, 6:30pm - 8:00pm||SANS@Night|