Get an iPad mini, ASUS ZenScreen LED Monitor, or $350 Off with OnDemand Training thru 5/19


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

2nd Annual Analytics and Intelligence Survey

  • Thursday, October 09, 2014 at 1:00 PM EDT (2014-10-09 17:00:00 UTC)
  • Sridhar Karnam, Dave Shackleford, Mark Allen, Ted Pan


  • AlienVault
  • HP
  • LogRhythm
  • Mcafee LLC
  • Rapid7 Inc.
  • Anomali

You can now attend the webcast using your mobile device!



In 2013 SANS conducted its first analytics and intelligence survey. In this followup survey, we derive deeper understanding of the functional role of intelligence and analytics in the enterprise security management infrastructure. We will also further delve into which tools are implemented, the role of outside third-party service providers and whether or not intelligent analysis is improving an organization's ability to detect, defend and investigate attacks in their networks.

This webcast is presented in two parts.

Part 1. Current State: Detection and Response (today's topic)

This webcast will present survey results and focus on attempting to define analytics on using them to aggregate event data, correlate analytics with vulnerabilities and breaches, and improve detection and response efforts.

Part 2. Future State: Improving Intelligence and Threat Prevention (October 14, 2014, at 1 PM Eastern)

This webcast will present survey results and focus on threat intelligence that ties in with external feeds and "big data" to find unknowns.

Register and attend both webcasts to be eligible to win a $75 American Express gift card to be awarded LIVE during the October 14 webcast.

Plan to join us for both webcasts!

View the associated whitepaper

Speaker Bios

Dave Shackleford

Dave Shackleford, a SANS analyst, instructor, course author, GIAC technical director and member of the board of directors for the SANS Technology Institute, is the founder and principal consultant with Voodoo Security. He has consulted with hundreds of organizations in the areas of security, regulatory compliance, and network architecture and engineering. A VMware vExpert, Dave has extensive experience designing and configuring secure virtualized infrastructures. He previously worked as chief security officer for Configuresoft and CTO for the Center for Internet Security. Dave currently helps lead the Atlanta chapter of the Cloud Security Alliance.

Sridhar Karnam

Sridhar Karnam is worldwide product marketing manager for HP ArcSight. He has more than 11 years of experience in product management in the IT space. Sridhar has also worked on IT operations space and has ITIL certification. Prior to joining HP, Sridhar got his MS in Engineering Management from Santa Clara University and was building robots for defense and manufacturing industries. Sridhar has also worked with Oracle Corp. and other Silicon Valley startups leading the product management efforts. Sridhar is a security blogger for and also holds an M.B.A.

Mark Allen

Mark Allen, the sales manager at AlienVault, has been engaged in information security and system administration for more than 15 years. He has extensive experience taking complex concepts and making them easier to understand. Mark has held a variety of technical roles from help desk to litigation support to systems engineer and IT director for accounting and law firms and large companies such as Epicor, Dell, and Solarwinds.

Ted Pan

Ted Pan is the technical marketing engineer for the McAfee SIEM solutions. He has worked in the technology sector for more than a decade and specializes in the implementation of McAfee security solutions at customer sites. While at McAfee, he has led the deployment of McAfee products at a large variety of organizations ranging from Fortune 10 companies to large government agencies. Ted has also spent time as a member of an incident response team responsible for discovering vulnerabilities and protecting data from being lost to outside threats. Ted graduated from the University of Wisconsin, Madison and is a CISSP.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.