SANS Community Nights are a great way to stay in touch with your local InfoSec community and to hear the latest in technical wizardry, industry intelligence, and thought leadership from our amazing instructors.
Join us at etc.venues Monument, 8 Eastcheap, London EC3M 1AE
View the agenda below:
Tuesday 7th November
17:30 – 18:00
Registration and Drinks
18:00 - 19:00
Security Culture - The Why, What and How
19:00 - 20:00
Killing Dead Memory Forensics (Live Memory Analysis with Velociraptor)
Security Culture - The Why, What and How Present by Lance Spitzner
Cybersecurity is no longer just about technology it is ultimately about people. Specifically how people not only think about security but what they prioritize and how they act, from the Board of Directors on down. Learn how leaders are building, managing and measuring a strong security culture to create a far more secure organization.
Key things you will learn include
- What is a security culture and the role it plays in security today?
Indicators of a strong security culture
Key models and how to apply them to build the culture you want, to include the Curse of Knowledge, Golden Circle and ADKAR change model.
The most common mistakes security teams and leaders make.
How to measure and quantify your security culture.
Killing Dead Memory Forensics (Live Memory Analysis with Velociraptor) Present by Marcus Guevara
For a long time, the best way for a Security Operations Center or Incident Response team to get answers was to take and analyze memory snapshots of systems that were suspected to be compromised. Increased numbers of systems in large environments that now have very large memory capacity has made this approach no longer feasible for rapid triage and enterprise incident response.
For incident responders to meet the demand of obtaining accurate answers at a rapid pace, we need a more scalable solution. Luckily, live memory analysis across an enterprise is possible. Utilizing Velociraptor, we’ll demonstrate new techniques to scale analysis to effectively hunt for modern threats in memory.