Save $400 on 4-6 day Courses at SANS Cyber Defense Initiative 2017. Ends Tomorrow!

Tysons Corner Fall 2017

McLean, VA | Sat, Oct 14 - Sat, Oct 21, 2017

Industrial Control System Active Defense and Threat Intelligence

  • Robert M. Lee
  • Tuesday, October 17th, 7:15pm - 8:15pm

Industrial control systems (ICS) are some of the most defensible environments on the planet. Sure ICS tend to have legacy equipment and numerous vulnerabilities, but if you really want to make the lights blink it's going to take more than an exploit. In this presentation, the course author for ICS515 - ICS Active Defense and Incident Response and FOR578 - Cyber Threat Intelligence, will talk about what it means to make a defensible environment a defended one leveraging active defense best practices such as threat hunting and network security monitoring. In addition, what types of threat intelligence are applicable to such environments will be covered with use-cases highlighting lessons learned for both good and bad practices. Ultimately, defending these industrial environments requires a human focus.

Bonus Sessions

The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:

  • SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.
  • Special Events: SANS-hosted events and other non-technical recreational offerings. This category includes, but is not limited to, Receptions and Information Tables.
Monday, October 16
Session Speaker Time Type
General Session - Welcome to SANS Keith Palmgren Monday, October 16th, 8:00am - 8:30am Special Events
Everything You Ever Learned About Passwords Is Wrong Keith Palmgren Monday, October 16th, 7:15pm - 9:15pm Keynote
Tuesday, October 17
Session Speaker Time Type
Industrial Control System Active Defense and Threat Intelligence Robert M. Lee Tuesday, October 17th, 7:15pm - 8:15pm SANS@Night
Anti-Ransomware: How to Turn the Tables G. Mark Hardy Tuesday, October 17th, 8:15pm - 9:15pm SANS@Night
Wednesday, October 18
Session Speaker Time Type
Hunting Logic Attacks Hassan El Hadary Wednesday, October 18th, 7:15pm - 8:15pm SANS@Night
Thursday, October 19
Session Speaker Time Type
Plumbing the Depths: ShellBags Eric Zimmerman Thursday, October 19th, 7:15pm - 8:15pm SANS@Night
Windows Management Instrumentation For Good and Evil Jaime Geiger Thursday, October 19th, 8:15pm - 9:15pm SANS@Night