Two Days Left to Get a Free GIAC Certification Attempt or Take $350 Off with OnDemand or vLive Training!


To attend this webcast, login to your SANS Account or create your Account.

Evolving from cyber Gatherers to cyber Hunters - Darwin was wrong about APTs

  • Tuesday, March 29th, 2016 at 1:00 PM EDT (17:00:00 UTC)
  • Darren Anstee and John Pescatore
This webcast has been archived. You can view the webcast presentation and download the slides by logging into your SANS Portal Account or creating an Account. Click the Register Now button after you have logged in to view the Webcast.


  • Arbor Networks

You can now attend the webcast using your mobile device!


What is the DNA that makes a security team effective? Many security leader take a survival of the fittest approach and focus on spending their way to perceived safety.

However performance varies widely across similarly funded and staffed security teams, even within the same industry. The missing link? Evolving to a "do less, not more" strategy that focuses on acting on truly important things first, reinforced by a quality team empowered with force multiplier platforms.

Speaker Bios

Darren Anstee

Darren Anstee has 20 years of experience in pre-sales engineering, consultancy, and support at leading security and telecom solutions providers. As Chief Security Technologist at Arbor Networks, Darren works across the research, strategy and pre-sales aspects of Arborís advanced threat platform for enterprises and service providers around the world. Prior to joining Arbor, he spent over eight years in pre-sales and post-sales engineering assignments for core routing and switching product vendors.

John Pescatore

John Pescatore joined SANS as director of emerging technologies in January 2013, bringing with him over 35 years of experience in computer, network and information security. Prior to SANS, he was Gartner's lead security analyst for more than 13 years, working with Global 5000 corporations, government agencies and major technology and service providers. In 2008, John was named one of the top 15 most influential people in security and has frequently testified before Congress on issues relating to cybersecurity.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.