Ending Soon: Get a MacBook Air or Surface Pro 7 with 5 or 6 Day Training - Best Offers of the Year!


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Sorry, the slides for this webcast are not available for download.

The Expanding Role of Data Analytics in Threat Detection

  • Tuesday, October 27, 2015 at 1:00 PM EDT (2015-10-27 17:00:00 UTC)
  • Barbara Filkins, Wade Williamson


  • Vectra Networks Inc.

You can now attend the webcast using your mobile device!



Recent SANS studies on malware, intrusion prevention and cyberthreat intelligence agree that almost every organization, no matter how well prepared, is infected with malware to some degree and that many show signs of malicious activity. The volume and variety of traffic is so heavy, and the speed with which threats evolve make it almost impossible for current methods to identify malicious or unauthorized activity on the network. Meanwhile, traditional post-mortem methods of forensic analysis offer insufficient protection.

If they're smart enough and quick enough, sophisticated data analytics can spot tiny anomalies in the flow of server performance data that could indicate an intrusion or impending data breach. But as the long list of companies that have suffered dramatic data breaches suggests, the new generation of attacker is much stealthier and persistent. How subtle or sophisticated would analysis have to be to spot these attacks as soon as they begin? And are such analytics possible today?

This webinar and associated whitepaper may not inoculate you against data breaches, but it will provide insight and guidance with regard to:

  • The characteristics of the technologies being used in this modern age of intelligence-driven threat detection
  • How this new type of threat detection differs from more traditional methods
  • How data analytics affect existing security frameworks and complement the Critical Security Controls

View the associated analyst white paper here.

Speaker Bios

Barbara Filkins

Barbara Filkins, SANS Analyst Program Research Director, holds several SANS certifications, including the GSEC, GCIH, GCPM, GLEG and GICSP, the CISSP, and an MS in information security management from the SANS Technology Institute. She has done extensive work in system procurement, vendor selection and vendor negotiations as a systems engineering and infrastructure design consultant. Barbara focuses on issues related to automation—privacy, identity theft and exposure to fraud, plus the legal aspects of enforcing information security in today’s mobile and cloud environments, particularly in the health and human services industry, with clients ranging from federal agencies to municipalities and commercial businesses.

Wade Williamson

Wade Williamson is the Director of Product Marketing at Vectra Networks. He has extensive industry experience in intrusion prevention, malware analysis, and secure mobility, and has spoken at a variety of industry conferences including the keynote address at the EICAR malware conference and led the Malware Researcher Peer Discussion at RSA. Prior to joining Vectra, he was Sr. Security Analyst at Palo Alto Networks where he led the monthly Threat Review Series and authored the Modern Malware Review. He has also led the product management team at AirMagnet where he led the development of security and network analysis tools targeted to Wi-Fi networks. He has been a steady and active researcher of new threats and techniques used to compromise enterprise networks and end-users.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.