Training
Featured CourseView All Courses
Get a free hour of SANS training

Experience SANS training through course previews.

Learn More
Learning Paths
FeaturedView all Focus Areas
Cloud Security Training
Can't find what you are looking for?

Let us help.

Contact us
Community Resources

SANS Community Benefits

Connect, learn, and share with other cybersecurity professionals

AI Risk & Readiness

Explore expert-driven guidance, training, and tools to help defend against AI-powered threats and adopt AI securely.

Join the SANS Community

Become a member for instant access to our free resources.

Sign Up
For Organizations

Public Sector

Mission-focused cybersecurity training for government, defense, and education

Partnerships

Explore industry-specific programming and customized training solutions

Sponsorship Opportunities

Sponsor a SANS event or research paper

Interested in developing a training plan to fit your organization’s needs?

We're here to help.

Contact Us
Talk With an Expert
Talk With an Expert

Fall Cyber Solutions Fest 2025: Threat Track

  • Thu, Nov 6, 2025
  • 8:00AM - 4:00PM EST
  • English
  • Ismael Valenzuela
  • Solutions Forum
Login to register
Webcast Hero

Thank you to our Sponsors

Moving from clicking alerts to actively hunting threats takes planning, the right data, and the right tools. In 2025, with AI and automation everywhere, it’s more important than ever to stay ahead of attackers, arming yourself with clear intelligence, full visibility, and smart processes to catch problems before they become crises.

Attackers are now making effective use of AI too, creating fake identities, automated phishing, and constantly changing malware. Still, behind every tool is still a real person (or group) with goals. Organizations need to have a balance of automated analysis with human judgment so you can spot true threats in the noise.

There’s no shortage of threat intelligence sources either: open source, commercial, vendor, and community. Yet many teams struggle to turn intelligence into real defense. In this track, you’ll learn to plug intelligence directly into your security tools, while equipping humans to do better analysis: enriching alerts instantly, mapping threats to the MITRE ATT&CK framework, and sharpening your hunting approach based on what adversaries actually do.

Key Takeaways for 2025:

  • Plan regular, data-driven hunt campaigns instead of one-off investigations
  • Embed threat intelligence into SIEM, SOAR, XDR, and NDR workflows
  • Use AI to speed up indicator triage and add context fast
  • Combine automated analytics with focused human-led hunts
  • Focus on high-quality intelligence that fits your environment

What to Expect:

  • Smart Alert Enrichment: Automatically add useful context to indicators without flooding your team.
  • Next-Gen XDR & MDR: Learn how managed services and orchestration speed up hunts.
  • Live CTI Demos: See real examples of turning raw threat feeds into detection rules.
  • Automated Hunting Playbooks: Create repeatable tasks across XDR, NDR, and cloud logs.
  • Actionable Intelligence Guides: Pick the best data sources and turn them into playbooks your team will use.

Join Ismael Valenzuela, author and SANS senior instructor, as we explore the most successful strategies and opportunities for implementing these tactics in your organization.

Full Fall Cyber Solutions Fest Track List:

Meet the speaker

Ismael Valenzuela
Ismael Valenzuela

Ismael Valenzuela

Vice President Threat Research & Intelligence

Ismael Valenzuela, VP of Threat Research & Intelligence at Arctic Wolf, has fortified global cybersecurity by leading critical threat intelligence initiatives and pioneering defenses against AI-driven threats like deepfakes and ransomware.

Read more about Ismael Valenzuela