World-class instructors teaching today's, critical cyber skills - SANS Online Training


To attend this webcast, login to your SANS Account or create your Account.

How to Build an Effective Cloud Threat Intelligence Program in the AWS Cloud

  • Tuesday, February 09, 2021 at 1:00 PM EST (2021-02-09 18:00:00 UTC)
  • Dave Shackleford, Nam Le


  • AWS Marketplace
  • CrowdStrike, Inc.

You can now attend the webcast using your mobile device!



Learn how to improve your Cloud Threat Intelligence (CTI) program by gathering critical cloud-specific event data, relevant types of indicators of compromise (IoCs), and adversarial tactics, techniques, and procedures (TTPs). Tailoring your CTI program to your company's processes, workflows, and security investments allows you to reduce risk and accelerate the resolution of security events with actionable context and minimal noise.

In this prerecorded webcast, SANS and AWS Marketplace will discuss CTI detection and prevention metrics, finding effective intelligence data feeds and sources, and determining how best to integrate them into security operations functions. 

Attendees at this webcast will learn how to:

* Understand cloud-specific data sources for threat intelligence, such as static indicators and TTPs.

* Efficiently search for compromised assets based on indicators provided, events generated on workloads and within the cloud infrastructure, or communications with known malicious IP addresses and domains. 

* Place intelligence and automation at the core of security workflows and decision making to create a comprehensive security program.

Register today to be among the first to receive the associated whitepaper written by SANS senior instructor and cloud security expert Dave Shackleford.

Speaker Bios

Dave Shackleford

Dave Shackleford, a SANS analyst, senior instructor, course author, GIAC technical director and member of the board of directors for the SANS Technology Institute, is the founder and principal consultant with Voodoo Security. He has consulted with hundreds of organizations in the areas of security, regulatory compliance, and network architecture and engineering. A VMware vExpert, Dave has extensive experience designing and configuring secure virtualized infrastructures. He previously worked as chief security officer for Configuresoft and CTO for the Center for Internet Security. Dave currently helps lead the Atlanta chapter of the Cloud Security Alliance.

Nam Le

Nam is a Specialist Solutions Architect at AWS covering AWS Marketplace, Service Catalog, Migration Services and Control Tower. He helps customers implement security and governance best practices using native AWS Services and Partner products. He is an AWS Certified Solutions Architect, and his skills include security, compliance, cloud computing, enterprise architecture and software development. Nam has also worked as a consulting services manager, cloud architect, and as a technical marketing manager.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.