Live, interactive cybersecurity training available through SANS Live Online. View upcoming events.


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

Evolving from cyber Gatherers to cyber Hunters - Darwin was wrong about APTs

  • Tuesday, March 29, 2016 at 1:00 PM EDT (2016-03-29 17:00:00 UTC)
  • Darren Anstee, John Pescatore


  • Arbor Networks

You can now attend the webcast using your mobile device!



What is the DNA that makes a security team effective? Many security leader take a survival of the fittest approach and focus on spending their way to perceived safety.

However performance varies widely across similarly funded and staffed security teams, even within the same industry. The missing link? Evolving to a "do less, not more" strategy that focuses on acting on truly important things first, reinforced by a quality team empowered with force multiplier platforms.

Speaker Bios

Darren Anstee

Darren Anstee has 20 years of experience in pre-sales engineering, consultancy, and support at leading security and telecom solutions providers. As Chief Security Technologist at Arbor Networks, Darren works across the research, strategy and pre-sales aspects of Arborís advanced threat platform for enterprises and service providers around the world. Prior to joining Arbor, he spent over eight years in pre-sales and post-sales engineering assignments for core routing and switching product vendors.

John Pescatore

John Pescatore joined SANS as director of emerging technologies in January 2013, bringing with him over 35 years of experience in computer, network and information security. Prior to SANS, he was Gartner's lead security analyst for more than 13 years, working with Global 5000 corporations, government agencies and major technology and service providers. In 2008, John was named one of the top 15 most influential people in security and has frequently testified before Congress on issues relating to cybersecurity.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.