Two Days Left to Get an iPad Pro w/ Smart Keyboard, HP ProBook, or $350 Off with OnDemand and vLive Training!

Webcasts

To attend this webcast, login to your SANS Account or create your Account.

SANS 2019 Threat Hunting Survey: The Differing Needs of New and Experienced Hunters

  • Tuesday, October 22nd, 2019 at 1:00 PM EDT (17:00:00 UTC)
  • Rob Lee and Robert M. Lee

Sponsors

  • Anomali
  • CarbonBlack
  • DomainTools
  • ExtraHop
  • ThreatConnect

You can now attend the webcast using your mobile device!

Overview

Organizations just starting their threat hunting journey have different needs than those who are honing their skills and programs. The SANS 2019 Threat Hunting Survey looks at those differences and how they impact the priorities set by both types of organizations. Specifically, survey authors Rob Lee and Robert M. Lee will report the survey results and explore the differing:

  • Definitions of threat hunting
  • Methodologies of performing threat hunting
  • Spending priorities and training needs
  • Tools and system data needed for a successful hunt
  • Effectiveness of hunting practices

The authors will provide actionable advice to assist organizations as they grow their programs and improve their threat hunting abilities, whether they are new to threat hunting or are simply honing their processes.

Click here to register for a panel discussion involving the authors and sponsors on Wednesday, October 23, 2019, at 1 PM (EDT) to learn more about how your organization can use these survey results to improve your threat hunting.

Be among the first to receive the associated whitepaper written by threat hunting experts Rob Lee and Robert M. Lee.

Speaker Bios

Rob Lee

Rob Lee is the curriculum lead and author for digital forensic and incident response training at the SANS Institute. With more than 15 years of experience in computer forensics, vulnerability and exploit discovery, intrusion detection/prevention and incident response, he provides consulting services in the Washington, D.C. area. Before starting his own business, Rob worked with government agencies in the law enforcement, defense and intelligence communities as a lead for vulnerability discovery and exploit development teams, a cyber forensics branch, and a computer forensic and security software development team. He also worked for a leading incident response service provider and co-authored Know Your Enemy: Learning About Security Threats, 2nd Edition.


Robert M. Lee

Robert M. Lee, a SANS certified instructor and author of the "ICS Active Defense and Incident Response" and "Cyber Threat Intelligence" courses, is the founder and CEO of Dragos, a critical infrastructure cyber security company, where he focuses on control system traffic analysis, incident response and threat intelligence research. He has performed defense, intelligence and attack missions in various government organizations, including the establishment of a first-of-its-kind ICS/SCADA cyber threat intelligence and intrusion analysis mission. Author of SCADA and Me and a nonresident National Cyber Security Fellow at New America, focusing on critical infrastructure cyber security policy issues, Robert was named EnergySec's 2015 Energy Sector Security Professional of the Year.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.