$400 Amazon Gift Card with OnDemand Training through March 10 - Learn More!


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

Defensible Security Architecture and Engineering – Part 1: How to become an All-Round Defender - the Secret Sauce

  • Friday, March 29, 2019 at 10:30 AM EDT (2019-03-29 14:30:00 UTC)
  • Ismael Valenzuela, Justin Henderson

You can now attend the webcast using your mobile device!



In this ever evolving and fast-paced environment, a security professional must be versatile and possess an arsenal of skills to protect an organizations critical data. You must be an all-round defender. What does this mean? This means that you wear many hats and that you are probably in charge of cloud security, endpoint security, network security, application security, and all things cyber. So where do you start? How do you not only be successful but thrive as an all-round defender?

Join this series of webcasts. The entire series is based on Security 530: Defensible Security Architecture & Engineering and is designed to show you how to successfully design, implement and tune a layered defense approach, balancing detection, prevention and response capabilities.

In the first part of this series, we will show some of the most common impediments to achieving a balance between network-centric and data-centric controls. This includes popular but often underutilized solutions like Next-Generation firewalls, flow data, cloud security and trying to protect custom applications.

In the second part series, Thinking Red, Acting Blue - Mindset & Actions, we will cover some key winning techniques to do practical threat modeling and how to proactively define and implement effective security architectures and controls. This will be demonstrated through the simulation of modern threat scenarios.

In the final part of this series, Protect your Lunch Money - Keeping the Thieves at Bay, we will talk about how in our industry, all too often, bad guys break into our networks and steal our lunch money, much due to the lack of data-centric controls. This webcast focuses on how to apply data-centric security through a combination of multiple security products. 

Speaker Bios

Ismael Valenzuela

SANS Certified Instructor Ismael Valenzuela (https://twitter.com/aboutsecurity) is coauthor of the CyberDefense and Blue Team Operations course, SANS SEC530: Defensible Security Architecture and Engineering, and holds many professional certifications, including the highly regarded GIAC Security Expert (GSE #132).

Since he founded one of the first IT Security consultancies in Spain, Ismael Valenzuela has participated as a security professional in numerous projects across the globe over the past 19 years. Prior to his current role as Senior Principal Engineer at McAfee, where he leads research on threat hunting using machine-learning and expert-system driven investigations, Ismael led the delivery of SOC, IR & Forensics services for the Foundstone Services team within Intel globally. Previously, Ismael worked as Global IT Security Manager for iSOFT Group Ltd, one of the world's largest providers of healthcare IT solutions, managing their security operations in more than 40 countries.

Justin Henderson

Justin Henderson is a certified SANS instructor who authored the SEC555 SIEM with Tactical Analytics course and co-authored SEC455 SIEM Design and Implementation and SEC530 Defensible Security Architecture and Engineering. He is a member of the SANS Cyber Guardian Blue Team who is passionate about making defense fun and engaging. Justin specializes in threat hunting via SIEM, network security monitoring and ad hoc scripting.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.