Last week to get a GIAC Certification Attempt Included with Online Training - Ends Soon!

Webcasts

To attend this webcast, login to your SANS Account or create your Account.

Application White-listing through Bit9 aka Parity aka Carbon Black Protect - A Masters Candidate Webcast

  • Tuesday, February 21st, 2017 at 8:00 PM EST (01:00:00 UTC)
  • Michael Weeks
This webcast has been archived. You can view the webcast presentation and download the slides by logging into your SANS Portal Account or creating an Account. Click the Register Now button after you have logged in to view the Webcast.

You can now attend the webcast using your mobile device!

Overview

Security professionals have espoused the shortfalls of Anti-Virus for detecting and deterring modern threats since APT became an industry term. One such solution is Carbon Black Protect (Formerly Bit9 Parity) an application white-listing vendor who was one of the first companies to offer a solution in the space. Cyber security professionals looking to implement an application white-listing solution should pay particular attention to some of the shortfalls and implementation issues regarding Carbon Black Protect. However, the proper implementation of the solution can significantly decrease infections and greatly improve an organizations security posture. Another interesting product from the same company is Carbon Black Response, a product that fits in the Enterprise Detection and Response (EDR - Gartner term) space. This solution can significantly expand information security focused forensics investigations at an enterprise scale. The ability to isolate systems for analysis, immediate process-tree analysis, and memory resident network connections - are a necessary capability for high-level Incident Response personnel. Both products also complement each other significantly and provide next-generation incident response capabilities.

Speaker Bio

Michael Weeks

Michael Weeks is a security practitioner specializing in cyber security with over 15 years of experience. Starting in the intelligence field in the United States Air Force and continuing into the present as a Cyber Operator for the USAF Reserve. Michael has varied civilian experiences including in-depth legal experience in investigations supporting a variety of proceedings for corporate, criminal and family law and technical experience in the credit card processing fields and banking environment specializing in online banking operation. He is currently working as a Security and Threat Intelligence Analyst in Critical Infrastructure in the electric sector. Michael has published multiple papers while enrolled as a student at SANS Technology Institute. He has experience deploying and operating a variety of technologies and custom development. His current projects include a dshield project working with Dr. Johannes Ullrich and the involvement in the adaption of STIX/TAXII for the deployment in Critical Infrastructure.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.