Talk With an Expert

Fall Cyber Solutions Fest 2025: Threat Track

  • Thu, Nov 6, 2025
  • 8:00AM - 4:00PM EST
  • English
  • Ismael Valenzuela
  • Solutions Forum
Webcast Hero

Thank you to our Sponsors

Moving from clicking alerts to actively hunting threats takes planning, the right data, and the right tools. In 2025, with AI and automation everywhere, it’s more important than ever to stay ahead of attackers, arming yourself with clear intelligence, full visibility, and smart processes to catch problems before they become crises.

Attackers are now making effective use of AI too, creating fake identities, automated phishing, and constantly changing malware. Still, behind every tool is still a real person (or group) with goals. Organizations need to have a balance of automated analysis with human judgment so you can spot true threats in the noise.

There’s no shortage of threat intelligence sources either: open source, commercial, vendor, and community. Yet many teams struggle to turn intelligence into real defense. In this track, you’ll learn to plug intelligence directly into your security tools, while equipping humans to do better analysis: enriching alerts instantly, mapping threats to the MITRE ATT&CK framework, and sharpening your hunting approach based on what adversaries actually do.

Key Takeaways for 2025:

  • Plan regular, data-driven hunt campaigns instead of one-off investigations
  • Embed threat intelligence into SIEM, SOAR, XDR, and NDR workflows
  • Use AI to speed up indicator triage and add context fast
  • Combine automated analytics with focused human-led hunts
  • Focus on high-quality intelligence that fits your environment

What to Expect:

  • Smart Alert Enrichment: Automatically add useful context to indicators without flooding your team.
  • Next-Gen XDR & MDR: Learn how managed services and orchestration speed up hunts.
  • Live CTI Demos: See real examples of turning raw threat feeds into detection rules.
  • Automated Hunting Playbooks: Create repeatable tasks across XDR, NDR, and cloud logs.
  • Actionable Intelligence Guides: Pick the best data sources and turn them into playbooks your team will use.

Join Ismael Valenzuela, author and SANS senior instructor, as we explore the most successful strategies and opportunities for implementing these tactics in your organization.

Full Fall Cyber Solutions Fest Track List:

Meet the speaker

Ismael Valenzuela
Ismael Valenzuela

Ismael Valenzuela

Vice President Threat Research & Intelligence

Ismael Valenzuela, VP of Threat Research & Intelligence at Arctic Wolf, has fortified global cybersecurity by leading critical threat intelligence initiatives and pioneering defenses against AI-driven threats like deepfakes and ransomware.

Read more about Ismael Valenzuela