The Expanding Role of Data Analytics in Threat Detection
- Tuesday, October 27th, 2015 at 1:00 PM EDT (17:00:00 UTC)
- Barb Filkins and Wade Williamson
You can now attend the webcast using your mobile device!
Recent SANS studies on malware, intrusion prevention and cyberthreat intelligence agree that almost every organization, no matter how well prepared, is infected with malware to some degree and that many show signs of malicious activity. The volume and variety of traffic is so heavy, and the speed with which threats evolve make it almost impossible for current methods to identify malicious or unauthorized activity on the network. Meanwhile, traditional post-mortem methods of forensic analysis offer insufficient protection.
If they're smart enough and quick enough, sophisticated data analytics can spot tiny anomalies in the flow of server performance data that could indicate an intrusion or impending data breach. But as the long list of companies that have suffered dramatic data breaches suggests, the new generation of attacker is much stealthier and persistent. How subtle or sophisticated would analysis have to be to spot these attacks as soon as they begin? And are such analytics possible today?
This webinar and associated whitepaper may not inoculate you against data breaches, but it will provide insight and guidance with regard to:
- The characteristics of the technologies being used in this modern age of intelligence-driven threat detection
- How this new type of threat detection differs from more traditional methods
- How data analytics affect existing security frameworks and complement the Critical Security Controls
View the associated analyst white paper here.
Barbara Filkins, a senior SANS analyst who holds the CISSP and SANS GSEC (Gold), GCIH (Gold), GSLC (Gold), GCCC (Gold), GCPM (Silver) and GLEG (Gold) certifications, has done extensive work in system procurement, vendor selection and vendor negotiations as a systems engineering and infrastructure design consultant. She is deeply involved with HIPAA security issues in the health and human services industry, with clients ranging from federal agencies (Department of Defense and Department of Veterans Affairs) to municipalities and commercial businesses. Barbara focuses on issues related to automation--privacy, identity theft and exposure to fraud, as well as the legal aspects of enforcing information security in today's mobile and cloud environments.
Wade Williamson is the Director of Product Marketing at Vectra Networks. He has extensive industry experience in intrusion prevention, malware analysis, and secure mobility, and has spoken at a variety of industry conferences including the keynote address at the EICAR malware conference and led the Malware Researcher Peer Discussion at RSA. Prior to joining Vectra, he was Sr. Security Analyst at Palo Alto Networks where he led the monthly Threat Review Series and authored the Modern Malware Review. He has also led the product management team at AirMagnet where he led the development of security and network analysis tools targeted to Wi-Fi networks. He has been a steady and active researcher of new threats and techniques used to compromise enterprise networks and end-users.