Interactive Courses + DFIR NetWars Available During SANS Cyber Security Central in June. Save $300 thru 5/12.


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

3-part series: PowerShell for Audit, Compliance and Security Automation and Visualization Part 1: Introduction to Automation with PowerShell

  • Thursday, January 07, 2021 at 10:30 AM EST (2021-01-07 15:30:00 UTC)
  • Clay Risenhoover

You can now attend the webcast using your mobile device!



As the velocity of IT operations increases, automation is becoming critical for auditors and compliance professionals. In this session, we will cover the basics of using PowerShell for common infosec, compliance and audit tasks. We will make heavy use of demonstrations to explore the object-oriented nature of the shell, important commands for getting help, and how to select, sort, filter and transform results from native Windows tools. We will compare the Windows and Core versions of PowerShell and discuss when it may be appropriate to use PowerShell on non-Windows systems.


  • Foundational PowerShell commands
  • Getting help
  • Extracting system and domain data for analysis
  • Selecting, sorting, formatting and saving data
  • Exporting results in common structured formats

This material is directly related to Clay's brand new course SEC557: Continuous Automation for Enterprise and Cloud Compliance

Join us again on Thurs, January 14th at 10:30 am ET for Part 2.

Join us again on Thurs, January 21st at 10:30 am ET for Part 3.

Speaker Bio

Clay Risenhoover

Clay is the president of Risenhoover Consulting, Inc., an IT management consulting firm based in Durant, Oklahoma. Founded in 2003, RCI provides IT audit and IT management consulting services to clients in multiple sectors. Clay is a licensed Certified Public Accountant (CPA) with the Certified Information Technology Professional (CITP) designation. Since 2013 Clay has been involved with the SANS Institute and is the lead author and instructor for AUD507: Auditing & Monitoring Networks, Perimeters, and Systems, as well as a Faculty Research Advisor (FRA) for the SANS Technology Institute. Learn more about Clay here.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.