SANS Community Nights are a great way to stay in touch with your local InfoSec community and to hear the latest in technical wizardry, industry intelligence, and thought leadership from our amazing instructors.
Join us at Park Plaza Victoria London, 239 Vauxhall Bridge Road, Pimlico, London SW1V 1EQ
View the agenda below:
Monday 4th September
17:30 – 18:00
Registration and Drinks
18:00-19:00
ChatGPT and the Internet Storm Center
Presented by Johannes Ullrich
19:00 - 20:00
Incident Response in the cloud, the Good, the Bad and the Ugly
Presented by Korstiaan Stam
Thank you for your interest in our community nights. This event is at capacity – please send an email to salessupport_ukini@sans.org to confirm if spots are available. Alternatively, you can go on our waitlist.
Tuesday 5th September
17:30 – 18:00
Registration and Drinks
18:00 - 19:00
You came with that plan? You're braver than I thought?
Steve Armstrong-Godwin
19:00 - 20:00
Just In Time Cloud Permissions
Presented by Jon Zeolla
Abstracts:
ChatGPT and the Internet Storm Center by Johannes Ullrich
Ever wondered how the SANS Internet Storm Center will help you protect your network? For over 20 years, the SANS ISC has provided up-to-date threat intel and tools to make this threat intel actionable. Sources from volunteer contributors and practitioners, the ISC offers what you need to know to protect your network today. This talk will not use power points but instead offer an engaging walk through recent events, how they manifested themselves in the ISC's data, how our different data feeds work, and more. The ISC has nothing to do with ChatGPT, but I added that to the title, and the presentation will be engaging enough that you will have forgotten about it by the end of the talk. A talk not just for packet connoisseurs but for everybody interested in a good story.
Incident Response in the cloud, the Good, the Bad and the Ugly by Korstiaan Stam
This presentation aims to explore the advantages of using the cloud for incident response (the Good), while also acknowledging the novel challenges that organizations may encounter when responding to security incidents in the cloud (the Bad). Additionally, the presentation will cover real-life examples of cloud-related incidents (the Ugly) that the presenter has responded to or are widely known. Attendees can expect to receive practical advice on how to prepare and utilize the cloud for incident response, as well as guidance for incident responders and organizations. By the end of the presentation, attendees will hopefully be inspired by the possibilities the cloud presents for effective incident response.
You came with that plan? You're braver than I thought! By Steve Armstrong-Godwin
I've worked in many different organisations, as a consultant or permanent Incident Response team leader and Incident Manager and I can assure you that no plan has ever come even close to standing up to a major/critical or organisational-extinction grade incident. In this talk we'll look at some of the key holes in the plans and how you can tackle them when you get back to work. We'll also focus on the golden hour problems and the transition to the big team approach that is needed for critical incidents. Included are a few insights to the new LDR553 5-day Incident Management course that Beta's in at SANS London October.
Just In Time Cloud Permissions by Jon Zeolla
Balancing least privilege, usability, and maintenance overhead for IAM in the cloud is painful. In this talk we will show how you can use common Azure and AWS capabilities to provide your teams access to what they need right when they need it, but not before, reducing the impact of credential compromises without impacting productivity.
