| Date (in UTC) |
Title |
Sponsor |
Speaker |
| Jun 14, 2019 | DDI data a Critical Enabler of SOAR | Srikrupa Srivatsan, Dave Shackleford |
| Jun 14, 2019 | Five Keys for Successful Vulnerability Management | Jonathan Risto |
| Jun 13, 2019 | Authentication: It Is All About the User Experience | Matt Bromiley, Hormazd Romer |
| Jun 13, 2019 | How to Build a Data Protection Strategy in AWS | Dave Shackleford, David Aiken |
| Jun 12, 2019 | Using Zeek/Bro To Discover Network TTPs of MITRE ATT&CK​ | Richard Bejtlich, James Schweitzer |
| Jun 12, 2019 | SANS 2019 State of OT/ICS Cybersecurity Survey | Jason Dely, Barbara Filkins, Doug Wylie |
| Jun 12, 2019 | Cybersecurity Frameworks for CISOs | Frank Kim |
| Jun 11, 2019 | The 20 Critical Security Controls: From Framework to Operational to Implementation | Randy Marchany |
| Jun 10, 2019 | ICS Active Defense Primer | Kai Thomsen |
| Jun 7, 2019 | SIEM as Alexa How Natural Language Processing Can Transform Your Cyber Security Experience | Dave Shackleford, Avi Chesla |
| Jun 6, 2019 | Missing Information About Security Misconfiguration? Explore this often-used vulnerability category through data from 1000+ pentests | John Pescatore, Joe Sechman |
| Jun 5, 2019 | Power up your Security Operations Centers human capital with the new SEC450 Part 2 - Blue Team FundamentalsFinding and training the right people! | John Hubbard |
| Jun 5, 2019 | How SOC Superheroes Win | Salvatore Sinno, Ismael Cervantes |
| Jun 4, 2019 | Lessons From the Front Lines of AppSec: Analysis of real-world attacks from 2019 and best practices for dealing with them | Chris Brazdziunas, Will Woodson |
| Jun 4, 2019 | The Future of Authentication: How Two Factor Authentication is Dying and Whats Next | Johannes Ullrich, PhD |
| May 30, 2019 | Secure Kubernetes Application Delivery | Andrew Martin |
| May 29, 2019 | Fileless Malware Fun | Hal Pomeranz |
| May 28, 2019 | Cloud Security Automation: Monitoring and Operations | Frank Kim |
| May 28, 2019 | Streamlining Your Security Process with Orchestration & Automation | |
| May 24, 2019 | IoT vulnerability and security is the next frontier | Lee Reiber |
| May 24, 2019 | Defensible Security Architecture and Engineering Part 3: Protect your Lunch Money Keeping the Thieves at Bay | Ismael Valenzuela, Justin Henderson |
| May 23, 2019 | What Real-World Attacks Look Like and How to Stop Them in Their Tracks | Dave Shackleford, Brian Johnson |
| May 22, 2019 | Actionable IT/OT end point protection to: detect, contain, and respond to limit ICS cyber threats | Ron Brash |
| May 22, 2019 | SEC599: Defeating Advanced Adversaries Discover whats NEW in Purple Team.Latest course updates! | Erik Van Buggenhout |
| May 21, 2019 | Passive Isn't Good Enough: Moving into Active EDR | Justin Henderson, Migo Kedem |
| May 15, 2019 | Power up your Security Operations Center with the new SEC450 Part 1 - Blue Team Fundamentals: Creating an on-ramp for new defenders! | John Hubbard |
| May 15, 2019 | Vetting Your Intel - Techniques and Tools for False Positive Analysis | Robert M. Lee, Tarik Saleh |
| May 15, 2019 | Web application defense Use headers to make pentesters job difficult | Jason Lam |
| May 14, 2019 | Hacking without Domain Admin | Tim Medin, Mike Saunders |
| May 13, 2019 | Not sure that you need OT Cybersecurity? A Sentryo Assessment can quickly provide the data and guidance that you need. | Tim Conway, Michael Thompson, Bob Foley, Fayce Daira |
| May 9, 2019 | How to Secure a Modern Web Application in AWS | Shaun McCullough, David Aiken |
| May 8, 2019 | Gaining a Decisive Advantage Through Terrain Based Cyber Defense | Craig Harber, Rami Mizrahi |
| May 7, 2019 | The State of Cloud Security: Panel Discussion | Dave Shackleford, Jim Reavis, Pawan Shankar, Eric Thomas |
| May 7, 2019 | Terraforming Azure: not as difficult as planets | David Hazar |
| May 2, 2019 | Rethinking Your Global Security Platform | Matt Bromiley, Brandon Levene |
| May 2, 2019 | How Effective is Your WAF Protection? - Metrics & Key Considerations | Chris Brazdziunas, Will Woodson |
| May 2, 2019 | From Seizure to Actionable Intelligence in 90 Minutes or Less | Kevin Ripa |
| May 1, 2019 | Sharing Alerts and Threat Intelligence with MISP | Justin Henderson, John Hubbard |
| May 1, 2019 | The State of Cloud Security: Results of the SANS 2019 Cloud Security Survey | Dave Shackleford, Jim Reavis |
| May 1, 2019 | A CISO's Perspective on Presenting OT Risk to the Board | Ilan Abadi, Daniel Shugrue |
| Apr 30, 2019 | The Future of Phishing: Its all about your customers | Dave Shackleford, Elad Schulman |
| Apr 30, 2019 | What Are Fileless Attacks and How Can You Stop Them? | |
| Apr 30, 2019 | Defensible Security Architecture and Engineering Part 2: Thinking Red, Acting Blue Mindset & Actions | Ismael Valenzuela, Justin Henderson |
| Apr 24, 2019 | Take Back Control of Your DNS Traffic | Dave Shackleford |
| Apr 24, 2019 | Why Your Vulnerability Management Strategy Is Not Working and What to Do About It | Brandon Helms, Eric Olson |
| Apr 23, 2019 | Delivering Infrastructure, Security and Operations as Code across Multi-cloud Environments | Vinay Venkataraghavan, Matt Bromiley |
| Apr 19, 2019 | SANS Top New Attacks and Threat Report | John Pescatore |
| Apr 18, 2019 | New Year, Same Magecart: The Continuation of Web-based Supply Chain Attacks | Yonathan Klijnsma, Dave Shackleford |
| Apr 18, 2019 | Resolved: How to protect your organization when your perimeter fails | Tom Gillis, John Pescatore |
| Apr 17, 2019 | Simplifying Application Security with Software-Defined Security | Matt De Vincentis, Dave Shackleford |
| Apr 16, 2019 | Cryptojacking - What is it? Where is it? How to protect against it? | Brandon Helms, Brian McMahon |
| Apr 11, 2019 | How to Automate Compliance Gaps for Public Cloud | Vikram Varakantam, John Pescatore |
| Apr 11, 2019 | How to Build a Security Visibility Strategy in the Cloud | Dave Shackleford, David Aiken |
| Apr 10, 2019 | Alert Investigations in the SOC - Building Your Workflow | Justin Henderson, John Hubbard |
| Apr 10, 2019 | Vulnerability Practices of Tomorrow: Part 2 of the SANS Vulnerability Management Survey Results | Andrew Laman, David Hoelzer, Gaurav Banga, Nate Dyer |
| Apr 10, 2019 | Purple PowerShell: Current attack strategies & defenses | Erik Van Buggenhout |
| Apr 9, 2019 | Cloud Security and DevOps Automation: Keys for Modern Security Success | Eric Johnson |
| Apr 9, 2019 | Current State of Vulnerability Management: Part 1 of the SANS Vulnerability Management Survey Results | Andrew Laman, David Hoelzer, RJ Gazarek, Michael Rosen |
| Apr 9, 2019 | Next-Gen Vulnerability Management: Clarity, Consistency, and Cloud | David Hazar |
| Apr 8, 2019 | The Cyber Kill Chain and MobileIron Threat Defense | James Saturnio, Ilya Geller |
| Apr 3, 2019 | The Foundation of Continuous Host Monitoring | Matt Bromiley, JJ Cranford |
| Apr 2, 2019 | Vulnerability Management for the Enterprise and Cloud | Jonathan Risto |
| Apr 2, 2019 | Building a Zero Trust Model in the Cloud with Microsegmentation | John Kindervag, Salvatore Sinno |
| Apr 2, 2019 | All Your Data Belongs to Us: How to Defend Against Credential Stuffing | Johannes Ullrich, PhD |
| Mar 29, 2019 | Defensible Security Architecture and Engineering Part 1: How to become an All-Round Defender - the Secret Sauce | Ismael Valenzuela, Justin Henderson |
| Mar 28, 2019 | Best Practices for Network Security Resilience | Jon Oltsik, Keith Bromley |
| Mar 27, 2019 | Taming the Endpoint Chaos Within: A Review of Panda Security Adaptive Defense 360 | Justin Henderson, James Manning |
| Mar 26, 2019 | Security Gets Smart with AI: A SANS Survey | G.W. Ray Davidson, PhD, Barbara Filkins, Bret Lenmark |
| Mar 25, 2019 | Playing Moneyball in Cybersecurity | Matt Soderlund |
| Mar 22, 2019 | Empowering Incident Response via Automation | Matt Bromiley |
| Mar 21, 2019 | Alternative Network Visibility Strategies for an Encrypted World | Gregory Bell, Matt Bromiley |
| Mar 21, 2019 | What's Next in Automation Support: Part 2 of the SANS Automation and Integration Survey | Barbara Filkins, Matt Bromiley, Emily Laufer, Nick Tausek |
| Mar 21, 2019 | 2018 Holiday Hack Challenge Winner Announcement and More! | Ed Skoudis, Joshua Wright |
| Mar 20, 2019 | Osquery: A Modern Approach to CSIRT Analytics | Dave Shackleford, Milan Shah |
| Mar 20, 2019 | Hiding in Plain Sight: Dissecting Popular Evasive Malware Techniques | Jake Williams, Rohan Viegas, Tamas Boczan |
| Mar 19, 2019 | The State of Automation/Integration Practice: Part 1 of the SANS Automation and Integration Survey | Barbara Filkins, Matt Bromiley, Dan Cole, Stan Engelbrecht, Darren Thomas |
| Mar 18, 2019 | Securing Your Endpoints with Carbon Black: A SANS Review of the CB Predictive Security Cloud Platform | Dave Shackleford, Tristan Morris |
| Mar 15, 2019 | How to Automate Compliance and Risk Management for Cloud Workloads | Matt Bromiley, David Aiken |
| Mar 14, 2019 | USBs Behaving Badly - How to Control USB Usage in Operational Networks | Sam Wilson, Matt Wiseman |
| Mar 13, 2019 | Overcoming Obstacles to Secure Multi-cloud Access | Rajoo Nagar, John Pescatore |
| Mar 12, 2019 | Maximizing SOC Effectiveness and Efficiency with Integrated Operations and Defense | John Pescatore, Arabella Hallawell |
| Mar 11, 2019 | Purple Kerberos: Current attack strategies & defenses | Erik Van Buggenhout |
| Mar 7, 2019 | Investigating WMI Attacks | Chad Tilbury |
| Mar 6, 2019 | The State of Kubernetes Security | Liz Rice |
| Mar 5, 2019 | SOF-ELK(R): A Free, Scalable Analysis Platform for Forensic, Incident Response, and Security Operations | Philip Hagen |
| Mar 1, 2019 | Taking SIEM to the Cloud: A SANS Review of Securonix Next-Gen SIEM | Nitin Agale, Dave Shackleford |
| Feb 28, 2019 | NIST Recommendations for ICS & IIoT Security | Phil Neray, Michael Powell, Jim McCarthy, Tim Zimmerman |
| Feb 27, 2019 | Improving Detection and Understanding the Adversary with Deception Technology | Matt Bromiley, Ori Bach |
| Feb 26, 2019 | 72-Hours-to-Disclose Survival Guide: Accurate Scoping and Impact Assessment of Breaches | John Matthews, John Pescatore |
| Feb 22, 2019 | Top 10 Writing Mistakes in Cybersecurity and How You Can Avoid Them | Lenny Zeltser |
| Feb 21, 2019 | Leveraging MITRE ATT&CK and ATT&CK Navigator | Erik Van Buggenhout |
| Feb 21, 2019 | Prioritizing Security Operations in the Cloud through the Lens of the NIST Framework | John Pescatore, David Aiken |
| Feb 20, 2019 | It's All About Scale! Succeeding in Enterprise Defense | Alissa Torres, Jeff McJunkin |
| Feb 20, 2019 | Identifying Emerging Threats with Security Analytics | Chris McNab |
| Feb 19, 2019 | Modern AppSec Tools for Modern AppSec Problems: A Practical Introduction to the Next-Gen WAF | Kelly Brazil |
| Feb 18, 2019 | The SANS ICS Summit 2019 and What to Expect | Tim Conway, Robert M. Lee, Michael Assante |
| Feb 14, 2019 | Dispelling GDPR Myths: Avoid the Compliance Trap, Make Real Security/Privacy Gains | Brian Honan, John Pescatore, Gal Shpantzer, Mark Weatherford |
| Feb 13, 2019 | MITRE ATT&CK and Sigma Alerting | Justin Henderson, John Hubbard |
| Feb 13, 2019 | Challenges we face, repeatedly | Dave Shackleford, Ron Schlecht, Jr. |
| Feb 12, 2019 | Offensive WMI | Tim Medin |
| Feb 12, 2019 | Dealing with Remote Access to Critical ICS Infrastructure | Justin Searle |
| Feb 8, 2019 | SANS Automation & Integration Security Briefing: SOARing to New Heights - Using Orchestration & Automation Tools in the Way They're Intended | Chris Crowley |
| Feb 7, 2019 | CTI Tools, Usage and a Look Ahead: Part 2 of the 2019 SANS Cyber Threat Intelligence Survey | Rebekah Brown, Jonathan Couch, Nicholas Hayden |
| Feb 5, 2019 | CTI Requirements and Inhibitors: Part 1 of the 2019 SANS Cyber Threat Intelligence Survey | Robert M. Lee, Nick Hayes, Helen Johnson, Allan Liska |
| Jan 31, 2019 | Best Practices to Get You CloudFit- 12 AWS Best Practices for Cloud Security | John Martinez, Matt Bromiley |
| Jan 30, 2019 | Game Changing Defensive Strategies for 2019 | Alissa Torres, Dr. Abdul Rahman, Tom Clare |
| Jan 24, 2019 | Remediating Threats by Bridging Islands of Security | John Pescatore, Chintan Udeshi |
| Jan 23, 2019 | Enterprise Security with a Fluid Perimeter | Matt Bromiley, Larry Lunetta |
| Jan 23, 2019 | Network Visualizations: Understand what's happening faster and easier than ever! | Mick Douglas |
| Jan 22, 2019 | Malicious or Negligent? How to Understand User Intent to Stop Data Exfiltration | Brad Green, John Pescatore |
| Jan 22, 2019 | The Hitchhikers Guide to Evidence Sources | Nick Klein |
| Jan 17, 2019 | Using Data Science to Secure Cloud Workloads | Mikkel Hansen, Aaron Bryson |
| Jan 17, 2019 | Falcon and the MITRE ATT&CK Framework Better Together; Feature Update | Ken Warren |
| Jan 16, 2019 | Lessons learned after Hundreds of Breach Investigations | Robert Reyes, Gerard Johansen, Jake Williams |
| Jan 16, 2019 | Breaking Bad Bots - The New #1 Threat and How to Stop Them | Shreyans Mehta, Franklyn Jones |
| Jan 14, 2019 | Whats new with FOR526 Advanced Memory Forensics and Threat Detection | Alissa Torres |
| Jan 11, 2019 | 24/7 CTI: Operationalizing Cyber Threat Intelligence | Xena Olsen |
| Jan 9, 2019 | Assumption of a breach: How a new notion can help protect your enterprise | Tim Medin |
| Jan 8, 2019 | Defeating Attackers with Preventive Security | Dave Shackleford, Alex Berger |
