homepage
Open menu
Contact Sales

WhatWorks in Detecting and Blocking Advanced Threats at a Large Research Organization

  • Tuesday, 06 Aug 2013 1:00PM EDT (06 Aug 2013 17:00 UTC)
  • Speaker: John Pescatore

Learn how a leading national research lab ensures effective operations and cybersecurity capabilities, and how advanced threat protection from FireEye helps get the job done.

About the User

The user interviewed for this case study has requested anonymity to maintain confidentiality, but has allowed us to refer to him as a Cyber Security Analyst at a National Laboratory. The WhatWorks program can help more users make more informed decisions if we allow seasoned professionals from major user organizations to share their stories without revealing the name of the organization.

SANS Summary

A leading national research lab must allow users to collaborate online, manage their own IT environments, and rely on the Internet to perform their day to day activities - all high risk activities. The desire to take a more aggressive approach to detecting security incidents prompted them to look at new threat detection systems. The team found that FireEye performed as a proactive advanced threat protection platform that actively inspected traffic on their high speed networks and detected malicious events that were unseen by other installed network security systems. The FireEye solution installed easily, is monitored and maintained with very little personnel overhead, and has a very low rate of false positives.

Login to Register
Analyst_Program_-_WhatWorks.jpg

Related Content

Blog
N2C_blog_image.png
Security Awareness, Cybersecurity Leadership, Cloud Security, Open-Source Intelligence (OSINT), Industrial Control Systems Security, Digital Forensics, Incident Response & Threat Hunting, Cybersecurity and IT Essentials, Cyber Defense, Offensive Operations, Pen Testing, and Red Teaming, CyberLive, Workforce Development, Career Development, Why Certify, Imposter Syndrome, NetWars, Mentorship, Job Hunting, Operating System & Device In-Depth, Artificial Intelligence (AI)
A Visual Summary of SANS New2Cyber Summit 2024
Check out these graphic recordings created in real-time throughout the event for SANS New2Cyber Summit 2024
370x370-person-placeholder.png
Alison Kim
read more
Blog
MGT_-_Blog_-_A_Tale_of_the_Three_ishings_Part_03_–_What_is_Vishing_340_x_340.jpg
Cybersecurity Leadership, Security Awareness
A Tale of the Three *ishings: Part 3 – What is Vishing?
Cyber attackers can create a greater sense of trust and/or urgency when conducting vishing attacks.
370x370_Lance-Spitzner.jpg
Lance Spitzner
read more
Blog
MGT_-_Blog_-_A_Tale_of_the_Three_ishings_Part_02_–_What_is_Smishing_340_x_340.jpg
Cybersecurity Leadership, Security Awareness
A Tale of the Three *ishings: Part 02 – What is Smishing?
Smishing is one of the primary attack methods used today simply because it works.
370x370_Lance-Spitzner.jpg
Lance Spitzner
read more