Cyber Skills Training at SANS Seattle Fall 2018. Save $400 thru 8/22!


To attend this webcast, login to your SANS Account or create your Account.

Canadian Webcast Series Part 3: ICS Defense: It’s Not a “Copy-Paste” From an IT Playbook & Importance of Intrusion Detection in a Compromised Prone World

  • Thursday, March 8th, 2018 at 3:30 PM EST (20:30:00 UTC)
  • Dean Parsons and Nik Alleyne
This webcast has been archived. You can view the webcast presentation and download the slides by logging into your SANS Portal Account or creating an Account. Click the Register Now button after you have logged in to view the Webcast.

You can now attend the webcast using your mobile device!


Join SANS in a series of webcasts offered by our top Canadian instructors. Topics will cover Security Management, Cloud Security, CIS 20 Critical Controls, Penetration Testing, Digital Forensics and Industrial Control Systems Security. Be sure to join SANS at one of our many Canadian training events in 2018

Industrial IoT (IIoT) - What are the biggest threats and how are you dealing with them? Take the SANS Industrial IoT Survey and enter to win a $400 Amazon gift card.

Dean Parsons Presenting: ICS Defense: It's Not a "Copy-Paste" From an IT Playbook

Defending an ICS (Industrial Control System) requires additional considerations beyond the approach of traditional IT Security. Dean will touch on 5 discovered ICS targeted malware and how to get the most out of the ICS Active Cyber Defense Cycle. The ACDC is key to detecting and neutralizing the adversary while continuing to maintain the safety and reliability of ICS operations. Also discussed, are tips to smooth IT and OT convergence that promotes an effective ICS security program for reliable data acquisition and ICS incident response.

Nik Alleyne Presenting: Importance of Intrusion Detection in a Compromised Prone World

What is meant by intrusion detection in a comprise prone world? 

According to dark reading there were 4.2 billion records exposed in 2016. 

According to risk based security, for the period Jan 1, 2017 to September 30, 2017 there were over 3,833 incidents resulting in over 7 billion+ records being exposed. 

Considering the above, intrusion detection and specifically SANS SEC503: Intrusion Detection In-Depth training, makes detecting these breaches much easier.

Speaker Bios

Dean Parsons

Dean Parsons continues his passion for Information and Cybersecurity with goals of continuous education and giving back to the community. His passion for security started in the 90s in high-school with writing C in vi and, using and writing educational hacking tools on early distributions of Linux. He funded his studies at Memorial University of Newfoundland by working as a security consultant performing Linux Security hardening, writing networking code in C, performing ethical hacks and vulnerability assessments for local enterprises. Also during this time he taught programming and data constructs to high-school students that would go on to compete in programming competitions.

After earning a Bachelor's degree in Computer Science he worked for a Canadian Telecommunications company as Security Analyst, and Senior Security Specialist in an incident handling role for over a decade. Dean is an active member of the security community, coaching students in the field, mentoring and encouraging others to obtain renowned professional certifications, attending well known conferences (DefCon, Blackhat, SANS events and summits, etc.), and speaking at Bsides on the ICS/SCADA threat landscape including Stuxnet, Havex, BlackEnergy3.

Dean has a natural way of engaging the audience and his students, taking every opportunity to encourage others to expand their knowledge in the security field. Dean has been a student of SANS for over a decade, currently the Information Security Officer for an Energy and Utility organization in Canada, and holds the following security designations - CISSP, GSLC, GCIA.

While working at a high-level most of the time, Dean still keeps his technical skills sharp paying close attention to the 'devil in the details' by overseeing Security Operations. In the run of a day its common for Dean to be working at the packet level or the policy level at the same time.

When not focused on security, he spends his time boating and exploring the coast of Newfoundland, jumping icebergs, playing piano or riding motorcycles year-round through all weather. After taking on the adventure of riding a motorcycle year-round, including the harsh conditions of Newfoundland winters, Dean, an accomplished motorcycle instructor, published a book, The Evergreen Rider on his motorcycle touring adventures as he rediscovered his homeland. Favourite quote: Do. Or do not. There is no try. - Yoda

Nik Alleyne

Nik has over 18 years in IT, with the last 9 being more focused on Security. 

He is currently employed as a Senior Manager, Cyber Security for a Managed Security Services Provider, where he is responsible for leading 3 teams supporting various security technologies including IDS/IPS, AntiMalware tools, proxies, firewals, SIEM, etc. 

He is also a SANS Instructor, teaching both the SEC503: Intrusion Detection In-Depth and SEC504: Hacker Tools, Techniques, Exploits, and Incident Handling while also making the time to actively write on his blog at

His academic credentials include a MSc Cyber Security Forensics, BSc Computer Science, along with PG Cert (Hons) specialization in VoIP and Wireless Broadband. He currently holds (and or held) various industry certifications such as CISSP, GCIA, GCIH, CCNP Security and R&S, CCMSE +VSX, SFCA, SFCE, SWSE, MCSE, MCITP/EA, BCCPA,IBM Certified Deployment Professional - Security QRadar SIEM V7.1, ITIL, ISO9001 Internal Auditor, Splunk Admin/Knowledge Manager, etc.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.