Ending Soon: Get a MacBook Air or Surface Pro 7 with 5 or 6 Day Training - Best Offers of the Year!


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

Pre-Runtime vs. Runtime Protection: What's Best for your IaaS Security?

  • Tuesday, April 14, 2020 at 10:30 AM EDT (2020-04-14 14:30:00 UTC)
  • Dave Shackleford, Itai Tevet


  • Intezer

You can now attend the webcast using your mobile device!



The old way of protecting endpoints and servers doesn't translate well to the modern era of IT. Cloud environments require speed, scale, and most importantly, a security solution that doesn't degrade performance.

To meet the unique performance needs of the cloud, companies often conduct pre-runtime security scanning before deployment. This approach has been proven to mitigate certain attack vectors really well, especially known vulnerabilities. However, pre-runtime protection provides limited coverage and leaves organizations blind in runtime. In recent years, CISOs have expressed increasing concerns over a lack of visibility into what code is actually running on their cloud servers.

This poses several questions. Pre-runtime vs. runtime protection if you can only have one, which do you choose? Do organizations typically have both? Should they have both in order to protect against a wide range of attack vectors? Which do you prioritize?

Virtualization security expert and SANS analyst Dave Shackleford and Intezer CEO Itai Tevet will answer these questions in this upcoming webinar about best practices for securing your cloud workloads. Intezer provides protection and visibility for cloud workloads.

Speaker Bios

Dave Shackleford

Dave Shackleford, a SANS analyst, senior instructor, course author, GIAC technical director and member of the board of directors for the SANS Technology Institute, is the founder and principal consultant with Voodoo Security. He has consulted with hundreds of organizations in the areas of security, regulatory compliance, and network architecture and engineering. A VMware vExpert, Dave has extensive experience designing and configuring secure virtualized infrastructures. He previously worked as chief security officer for Configuresoft and CTO for the Center for Internet Security. Dave currently helps lead the Atlanta chapter of the Cloud Security Alliance.

Itai Tevet

Itai carries out Intezerís vision of improving organizationsí security operations and accelerating their incident response. Tevet previously served as the Head of the Israeli Defense Forceís cyber incident response team (IDF CERT), combining technical expertise and leadership experience to mitigate state-sponsored cyber threats. During this time, Itai led an elite group of cybersecurity professionals in digital forensics, malware analysis, incident response and reverse engineering.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.