Immerse yourself in hands-on cyber security training at SANS Santa Monica 2019! Save $350 thru 8/28.


To attend this webcast, login to your SANS Account or create your Account.

Canadian Webcast Series Part 3: ICS Defense: It’s Not a “Copy-Paste” From an IT Playbook & Importance of Intrusion Detection in a Compromised Prone World

  • Thursday, March 8th, 2018 at 3:30 PM EST (20:30:00 UTC)
  • Dean Parsons and Nik Alleyne
This webcast has been archived. You can view the webcast presentation and download the slides by logging into your SANS Portal Account or creating an Account. Click the Register Now button after you have logged in to view the Webcast.

You can now attend the webcast using your mobile device!


Join SANS in a series of webcasts offered by our top Canadian instructors. Topics will cover Security Management, Cloud Security, CIS 20 Critical Controls, Penetration Testing, Digital Forensics and Industrial Control Systems Security. Be sure to join SANS at one of our many Canadian training events in 2018

Industrial IoT (IIoT) - What are the biggest threats and how are you dealing with them? Take the SANS Industrial IoT Survey and enter to win a $400 Amazon gift card.

Dean Parsons Presenting: ICS Defense: It's Not a "Copy-Paste" From an IT Playbook

Defending an ICS (Industrial Control System) requires additional considerations beyond the approach of traditional IT Security. Dean will touch on 5 discovered ICS targeted malware and how to get the most out of the ICS Active Cyber Defense Cycle. The ACDC is key to detecting and neutralizing the adversary while continuing to maintain the safety and reliability of ICS operations. Also discussed, are tips to smooth IT and OT convergence that promotes an effective ICS security program for reliable data acquisition and ICS incident response.

Nik Alleyne Presenting: Importance of Intrusion Detection in a Compromised Prone World

What is meant by intrusion detection in a comprise prone world? 

According to dark reading there were 4.2 billion records exposed in 2016. 

According to risk based security, for the period Jan 1, 2017 to September 30, 2017 there were over 3,833 incidents resulting in over 7 billion+ records being exposed. 

Considering the above, intrusion detection and specifically SANS SEC503: Intrusion Detection In-Depth training, makes detecting these breaches much easier.

Speaker Bios

Dean Parsons

Dean Parsons is an active member of the cybersecurity community, dedicated to educating others while also helping companies address contemporary risks to business operations that stem from ever-changing threats. He is a consultant, security practitioner and often speaks at high-profile cybersecurity events. Dean holds a Bachelor Major Computer Science degree from the Memorial University of Newfoundland, and accredited designations to include: CISSP, GSLC, GCIA, GRID. He is a SANS instructor for ICS515: ICS Active Defense and Incident Response and is also a member of the SANS/GIAC advisory board. It's common to find Dean working at both a packet and policy level.

Nik Alleyne

Nik has over 18 years in IT, with the last 9 being more focused on Security. 

He is currently employed as a Senior Manager, Cyber Security for a Managed Security Services Provider, where he is responsible for leading 3 teams supporting various security technologies including IDS/IPS, AntiMalware tools, proxies, firewals, SIEM, etc. 

He is also a SANS Instructor, teaching both the SEC503: Intrusion Detection In-Depth and SEC504: Hacker Tools, Techniques, Exploits, and Incident Handling while also making the time to actively write on his blog at

His academic credentials include a MSc Cyber Security Forensics, BSc Computer Science, along with PG Cert (Hons) specialization in VoIP and Wireless Broadband. He currently holds (and or held) various industry certifications such as CISSP, GCIA, GCIH, CCNP Security and R&S, CCMSE +VSX, SFCA, SFCE, SWSE, MCSE, MCITP/EA, BCCPA,IBM Certified Deployment Professional - Security QRadar SIEM V7.1, ITIL, ISO9001 Internal Auditor, Splunk Admin/Knowledge Manager, etc.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.