Last Day to Get an iPad mini, Surface Go 2, or Take $300 Off with OnDemand Training - Register Today!


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

SANS 2017 Incident Response Survey Results—Part 2: Threat Intelligence and Improving Incident Response Capabilities

  • Wednesday, June 14, 2017 at 12:00 PM EDT (2017-06-14 16:00:00 UTC)
  • Matt Bromiley, Anthony Di Bello, George Mina, Travis Farral


  • AlienVault
  • Anomali
  • Guidance Software
  • IBM
  • LogRhythm
  • Mcafee LLC

You can now attend the webcast using your mobile device!



Expand your knowledge even further, consider attending the Threat Hunting and Incident Response Summit, April 2017 or the Digital Forensics and Incident Response Summit, June 2017

SANS' 2016 survey of incident response (IR) capabilities indicated that the IR landscape was ever changing. Advanced industries were able to maintain effective IR teams, but it identified hurdles responders face to increase the efficiency of their IR teams. This year's edition of the SANS Incident Response Survey focuses on providing insight into the maturity of IR processes and functions spanning a broad variety of environments.

Part 1 of this two-part webcast, held on Tuesday, June 13, will focus on attacks, responses and the maturity of IR teams. Click here to register for the Part 1 webcast.

Attendees at this webcast will learn about:

  • Use of threat intelligence
  • Improving IR response capabilities

Click here to be among the first to receive the associated whitepaper written by SANS Analyst and incident response expert Matt Bromiley.

Speaker Bios

Matt Bromiley

Matt Bromiley is a SANS digital forensics and incident response (IR) instructor, teaching FOR508 Advanced Incident Response, Threat Hunting, and Digital Forensics and SANS FOR572 Advanced Network Forensics: Threat Hunting, Analysis, and Incident Response. He is also an IR consultant at a global IR and forensic analysis company, combining experience in digital forensics, log analytics, and incident response and management. His skills include disk, database, memory and network forensics; incident management; threat intelligence and network security monitoring. Matt has worked with organizations of all shapes and sizes, from multinational conglomerates to small, regional shops. He is passionate about learning, teaching and working on open source tools.

Anthony Di Bello

Anthony Di Bello, an 11-year veteran of Guidance Software, is a senior director security strategist. He is responsible for the voice of the customer and go-to-market strategy for Guidance Software forensic security, data risk management and digital investigations products. Previously, Anthony was director of strategic partnerships at Guidance and was responsible for building and delivering end-to-end solutions around the Guidance product portfolio through partnerships and integrations with adjacent technologies such as Blue Coat, ArcSight, ThreatGRID and DropBox. Before joining Guidance, he spent 7 years with Towers Watson, a global professional service firm specializing in risk and financial management.

George Mina

George Mina serves as the Program Director of Marketing and Strategy for Endpoint Security within IBM Security. In this role, he oversees product marketing and program direction for IBM’s portfolio of endpoint security offerings, including BigFix. He has over 18 years of experience in the development, management and marketing of technology products and services across IBM. Prior to this, he held senior positions in IBM’s Software, Global Financing and Semiconductor business units. George hold a bachelor’s degree in electrical engineering and an MBA from the University of Vermont.

Travis Farral

Travis Farral is the director of security strategy for Anomali. With over 20 years of security industry experience, he has developed a strong background in threat intelligence, incident response and industrial control systems security. Previously Travis ran the Cybersecurity Intelligence & Strategic Services team at ExxonMobil and spent several years at companies such as Nokia and XTO Energy.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.