Digital Forensics in Modern Times: A SANS Survey
- Thursday, July 18 at 1:00 PM EDT
- Paul Henry and Ben Wright, SANS Senior Instructors, Ilana Goddess, Bit9, Buddy Tidwell, Cellebrite, Rudolph Araujo, FireEye, and Ken Mizota, Guidance Software
Forensic analysis is never as simple as television makes it look, and that goes double for forensic analysis of computer systems. Now, thanks to the advent of cloud-based computing services and the explosive proliferation of mobile devices, computer forensics has become more complicated than ever.
This webcast will discuss a SANS survey on forensic systems analysis that examines the key issues encountered when tracking the behavior of devices that, by design, are not under the complete or direct control of the IT organization. The discussion will cover those areas that need the most attention and how IT organizations are responding to the challenge of cloud, as seen through the experiences of forensics practitioners taking the survey.
Register now for this webcast, and be among the first to receive a new SANS Analyst Program Whitepaper on this subject.
Click here to view the associated whitepaper.
Benjamin Wright is the author of several technology law books, including Business Law and Computer Security, published by the SANS Institute. With over 25 years in private law practice, he has advised many organizations, large and small, private sector and public sector, on privacy, computer security, e-mail discovery and records management and been quoted in publications around the globe, from the Wall Street Journal to the Sydney Morning Herald. He teaches the law of data security and investigations at the SANS Institute. Wright maintains a matrix of popular blogs accessible at benjaminwright.us. Wright graduated from Georgetown University Law Center in 1984. Russian banking authorities recently tapped him for advice on the law of technology and electronic payments.
Paul A. Henry
Paul Henry is one of the world's foremost global information security and computer forensic experts with more than 20 years' experience managing security initiatives for Global 2000 enterprises and government organizations worldwide. Paul is a principle at vNet Security, LLC. Throughout his career, Paul has played a key strategic role in launching new network security initiatives to meet our ever-changing threat landscape. Paul also advises and consults on some of the world's most challenging and high-risk information security projects, including the National Banking System in Saudi Arabia, the Reserve Bank of Australia, the Department of Defense's Satellite Data Project (USA), and both government as well as telecommunications projects throughout Southeast Asia. Paul is frequently cited by major and trade print publications as an expert in computer forensics, technical security topics, and general security trends and serves as an expert commentator for network broadcast outlets, such as FOX, NBC, CNN, and CNBC. In addition, Paul regularly authors thought leadership articles on technical security issues, and his expertise and insight help shape the editorial direction of key security publications, such as the Information Security Management Handbook, where he is a consistent contributor. Paul serves as a featured and keynote speaker at seminars and conferences worldwide, delivering presentations on diverse topics including anti-forensics, network access control, cyber crime, DDoS attack risk mitigation, firewall architectures, security architectures, and managed security services.
Ilana Goddess is product marketing manager for Bit9. In this role, she manages the all aspects of the Bit9 security platform, including marketing strategy, brand awareness and product positioning. She has over 10 years of experience in the software industry and she received her MA in communications in 2005 from American University in Washington, DC.
As director of forensic training for Cellebrite, Buddy Tidwell oversees the development, delivery and branding of industry standard training in mobile device forensic collection and analysis. Drawing on his broad range of real world investigative and courtroom experience, Buddy manages the delivery of training solutions for local, state, federal and international law enforcement agencies as well as worldwide corporate entities involved in the prevention, investigation and prosecution of high-technology crime. Throughout his career, he has developed curriculum for major global forensic companies and internationally recognized training organizations, and is also engaged in standardization and certification development.
Rudolph Araujo is managing principal, focusing on the FireEye Dynamic Threat Intelligence Service as well as the assessment services, and is the FireEye Labs lead for developing the unique FireEye Threat Intelligence based offerings. He is also responsible for service delivery and sales in the Western United States. Prior to joining FireEye, Rudolph was director of professional services at McAfee, where his responsibilities ranged from providing leadership on large IR engagements to managing complex deployments of multiple security technologies. Rudolph earned his MS degree from Carnegie Mellon University, specializing in information security. He also served as a researcher at CMU's CYLAB, investigating virus and worm threats, especially over peer-to-peer networks. His research interests span the areas of reverse engineering, malware analysis and security data analytics. He is a recognized speaker and contributor to a number of industry journals.
Ken Mizota is a product manager with Guidance Software and is responsible for the direction and delivery of EnCase Enterprise, EnCase Forensic and EnCase Portable. He has spent more than 15 years, designing, building, installing, configuring, testing, troubleshooting and improving software to benefit a full spectrum of customers, from the world's largest to the single-person startup.