SEC511: Continuous Monitoring and Security Operations
SANS Cloud Singapore 2024 - Live Online
Upcoming Courses
Profile
Tim currently leads the team that is tasked with Firewall review, SIEM management, and privileged access monitoring and policy compliance. Tim has worked as a Systems Engineer and DBA and has expertise in systems engineering, project management and information security principles and procedures/compliance. Tim previously worked for Intel and served in the United States Navy. Tim also works with the OnDemand team as an SME, is a mentor for the Vet Success program and provides consulting and content review for the Securing the Human project within SANS. Tim is a contributor to the Arizona Cyber Warfare Range and works with the local security community giving monthly talks, when not teaching for SANS, on information security tools and techniques.
Tim is as passionate about teaching security as he is performing it and receives the greatest joy when he sees the look in a student's eye when something they never quite understood finally makes sense.
Tim holds the CISSP, GSEC, GSLC, GISF, GMON, GAWN, GCCC, and GCED as well as the NSA-IAM certifications. He has extensive knowledge of security procedures and legislation such as Sarbanes-Oxley, GLBA, CobiT, COSO, and ISO 1779.
When Tim is not defending systems, he enjoys playing sports, snowboarding and most of all spending time with his wife and four children.
Hear Tim teach about Zeek-Bro Security Monitoring:
ADDITIONAL CONTRIBUTIONS BY TIM GARCIA:
WEBCASTS
High Fidelity Alerts: Alert vs Anomaly – A sibling rivalry, July 2018
One Detect to Win: Tactical Application Detection, April 2018
Detecting Modern PowerShell Attacks with SIEM, October 2017
SANS Asia-Pacific Webcast Series- Standard Logs Made into Actionable Detects, October 2017