Save $400 on 4-6 day Courses at SANS Cyber Defense Initiative 2017. Ends Tomorrow!

Webcasts

To attend this webcast, login to your SANS Account or create your Account.

The Four Types of Threat Detection for ICS Security

  • Tuesday, November 21st, 2017 at 1:00 PM EST (18:00:00 UTC)
  • Robert M. Lee

Sponsor

  • Dragos, Inc.

You can now attend the webcast using your mobile device!

Overview

Threat detection can be summarized into four types: Configuration, Modeling (Anomalies), Indicators, and Behavioral Analytics. Understanding the difference in these types and how to use each enables industrial control system (ICS) security teams to defend their environments appropriately. 

As companies try to invest in different type of security technologies they must understand what approaches are right for them before they invest poorly. This presentation will educate on the four types of detection and uses for each while also showcasing the Dragos, Inc. team's approach. The Dragos Platform, Dragos WorldView ICS Threat Intelligence, Dragos Threat Operations Center, and CyberLens assessment tool give the community unique insights into their environments, the ICS threat landscape, and how to respond.

Speaker Bio

Robert M. Lee

Robert M. Lee is the CEO and Founder of the industrial (ICS/IIoT) cyber security company Dragos, Inc. He is also a non-resident National Cybersecurity Fellow at New America focusing on policy issues relating to the cyber security of critical infrastructure. For his research and focus areas, Robert was named one of Passcode's Influencers, awarded EnergySec's Cyber Security Professional of the Year (2015), and inducted into Forbes' 30 under 30 for Enterprise Technology (2016).

A passionate educator, Robert is the course author of SANS ICS515 - "ICS Active Defense and Incident Response" with its accompanying GIAC certification GRID and the lead-author of SANS FOR578 - "Cyber Threat Intelligence" with its accompanying GIAC GCTI certification. He may be found on Twitter @RobertMLee

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.