Learn Effective Cyber Security Techniques at SANS Austin 2018. Save $400 thru 10/3.

Webcasts

To attend this webcast, login to your SANS Account or create your Account.
 

SANS 2017 Incident Response Survey Results - Part 1: Attack, Response and Maturity

  • Tuesday, June 13th, 2017 at 12:00 PM EDT (16:00:00 UTC)
  • Matt Bromiley, Danielle Russell, James Carder and Riana Smalberger
This webcast has been archived. You can view the webcast presentation and download the slides by logging into your SANS Portal Account or creating an Account. Click the Register Now button after you have logged in to view the Webcast.

Sponsors

  • AlienVault
  • Anomali
  • Guidance Software
  • IBM
  • LogRhythm
  • McAfee

You can now attend the webcast using your mobile device!

Overview

Expand your knowledge even further, consider attending the Threat Hunting and Incident Response Summit, April 2017 or the Digital Forensics and Incident Response Summit, June 2017

SANS' 2016 survey of incident response (IR) capabilities indicated that the IR landscape was ever changing. Advanced industries were able to maintain effective IR teams, but it identified hurdles responders face to increase the efficiency of their IR teams. This year's edition of the SANS Incident Response Survey focuses on providing insight into the maturity of IR processes and functions spanning a broad variety of environments.

Attendees at this first of two results webcasts will learn:

  • Types of attacks experienced and nature of the breaches
  • Time needed to detect, contain and remediate breaches
  • Maturity of network visibility infrastructures and security operations centers' response capabilities

The second part of this webcast, on Wednesday, June 14, will focus on the use of threat intelligence in incident response and how organizations can improve their response capabilities. Click here to register for Part 2.

Click here to be among the first to receive the associated whitepaper written by SANS Analyst and incident response expert Matt Bromiley.

Speaker Bios

Matt Bromiley

Matt Bromiley is a SANS Certified Digital Forensics and Incident Response instructor, teaching Advanced Digital Forensics, Incident Response, and Threat Hunting (FOR508) and Advanced Network Forensics: Threat Hunting, Analysis, and Incident Response (FOR572), and a GIAC Advisory Board member. He is also a principal incident response consultant at a major incident response and forensic analysis company, combining experience in digital forensics, incident response/triage and log analytics. His skills include disk, database, memory and network forensics, as well as network security monitoring. Matt has worked with clients of all types and sizes, from multinational conglomerates to small, regional shops. He is passionate about learning, teaching and working on open source tools.

Danielle Russell

Danielle Russell is a Senior Product Marketing Manager at AlienVault, responsible for product messaging and positioning, go-to-market strategy, and sales enablement. Prior to AlienVault, Danielle held a marketing leadership position with an IT software company in the telecommunications industry. Danielle earned a B.S. in life sciences communication from the University of Wisconsin.

James Carder

James Carder, CISO & VP of LogRhythm Labs, brings more than 19 years of experience working in corporate IT security and consulting for the Fortune 500 and U.S. government. At LogRhythm, he develops and maintains the company's security governance model and risk strategies; protects the confidentiality, integrity and availability of information assets; oversees both threat and vulnerability management, as well as the Security Operations Center (SOC). He also directs the mission and strategic vision for the LogRhythm Labs machine data intelligence, threat and compliance research teams.

Riana Smalberger

Riana Smalberger, Practice Lead for IR Crisis Response and Foundstone Education at Intel, has roughly 9 years’ of experience in the digital forensic and incident response field. With a strong focus on intellectual property, digital and mobile forensics, fraud and white collar crime investigations, she has assisted numerous special law enforcement agencies in the South Africa in developing their digital forensic capabilities through technology delivery and investigative techniques. Riana was instrumental in developing the Emergency Incident Response program at Intel Security NA, where she led and managed multiple concurrent incidents. She has lectured at prominent Universities in South Africa and spoken at numerous cyber and fraud conferences.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.

To attend this webcast, login to your SANS Account or create your Account.
 
Subscribe
Note to Vendors
If you are interested in sponsoring a future SANS Webcast, contact our vendor team today.
Latest Whitepapers

All-Seeing Eye or Blind Man? Understanding the Linux Kernel Auditing System
By David Kennel

SANS 2018 Threat Hunting Survey Results
By Robert M. Lee

The Need for Speed: Integrated Threat Response A SANS Whitepaper
By Matt Bromiley

Last 25 Papers »

Latest Tweets @SANSInstitute

Be sure to visit the Vendor table during registrations at th [...]
September 22, 2018 - 8:00 PM

Checking in at #SANSNetworkSecurity 2018 today? Be sure to s [...]
September 22, 2018 - 7:30 PM

Need a career boost? Learn practical #cybersecurity skills f [...]
September 22, 2018 - 7:15 PM

Contact Us

301-654-SANS(7267)
Mon-Fri 9am - 8pm EST/EDT
info@sans.org

"This has been a great way to get working knowledge that would have taken years of experience to learn."
- Josh Carlson, Nelnet

"Just amazing content and instruction, it's really a 'must do' for any info sec professional."
- Mark Austin, PHH Mortgage

"Expertise of the trainer is impressive, real life situations explained, very good manuals. Best training ever!"
- Jerry Robles de Medina, Godo CU