Digital Forensics in Modern Times: A SANS Survey
- Thursday, July 18, 2013 at 1:00 PM EDT (17:00:00 UTC)
- Paul Henry and Ben Wright, SANS Senior Instructors, Ilana Goddess, Bit9, Buddy Tidwell, Cellebrite, Rudolph Araujo, FireEye, and Ken Mizota, Guidance Software
You can now attend the webinar using your mobile device!
Forensic analysis is never as simple as television makes it look, and that goes double for forensic analysis of computer systems. Now, thanks to the advent of cloud-based computing services and the explosive proliferation of mobile devices, computer forensics has become more complicated than ever.
This webcast will discuss a SANS survey on forensic systems analysis that examines the key issues encountered when tracking the behavior of devices that, by design, are not under the complete or direct control of the IT organization. The discussion will cover those areas that need the most attention and how IT organizations are responding to the challenge of cloud, as seen through the experiences of forensics practitioners taking the survey.
Register now for this webcast, and be among the first to receive a new SANS Analyst Program Whitepaper on this subject.
Click here to view the associated whitepaper.
Benjamin Wright is the author of several technology law books, including Business Law and Computer Security, published by the SANS Institute. With 26 years in private law practice, he has advised many organizations, large and small, on privacy, e-commerce, computer security, and e-mail discovery and has been quoted in publications around the globe, from the Wall Street Journal to the Sydney Morning Herald. Mr. Wright is known for spotting and evaluating trends, such as the rise of whistleblowers https://plus.google.com/113714308152841400614/posts/9CoHNG7qjmG wielding small video cameras. In 2010, Russian banking authorities tapped him for experience and advice on the law of cyber investigations and electronic payments. Wright maintains a popular blog at http://hack-igations.blogspot.com. Currently, Mr. Wright is a senior instructor for the SANS Institute.
Paul A. Henry
Paul Henry is one of the world's foremost global information security and computer forensic experts with more than 20 years' experience managing security initiatives for Global 2000 enterprises and government organizations worldwide. Paul is a principle at vNet Security, LLC. Throughout his career, Paul has played a key strategic role in launching new network security initiatives to meet our ever-changing threat landscape. Paul also advises and consults on some of the world's most challenging and high-risk information security projects, including the National Banking System in Saudi Arabia, the Reserve Bank of Australia, the Department of Defense's Satellite Data Project (USA), and both government as well as telecommunications projects throughout Southeast Asia. Paul is frequently cited by major and trade print publications as an expert in computer forensics, technical security topics, and general security trends and serves as an expert commentator for network broadcast outlets, such as FOX, NBC, CNN, and CNBC. In addition, Paul regularly authors thought leadership articles on technical security issues, and his expertise and insight help shape the editorial direction of key security publications, such as the Information Security Management Handbook, where he is a consistent contributor. Paul serves as a featured and keynote speaker at seminars and conferences worldwide, delivering presentations on diverse topics including anti-forensics, network access control, cyber crime, DDoS attack risk mitigation, firewall architectures, security architectures, and managed security services.
Ilana Goddess is product marketing manager for Bit9. In this role, she manages the all aspects of the Bit9 security platform, including marketing strategy, brand awareness and product positioning. She has over 10 years of experience in the software industry and she received her MA in communications in 2005 from American University in Washington, DC.
As director of forensic training for Cellebrite, Buddy Tidwell oversees the development, delivery and branding of industry standard training in mobile device forensic collection and analysis. Drawing on his broad range of real world investigative and courtroom experience, Buddy manages the delivery of training solutions for local, state, federal and international law enforcement agencies as well as worldwide corporate entities involved in the prevention, investigation and prosecution of high-technology crime. Throughout his career, he has developed curriculum for major global forensic companies and internationally recognized training organizations, and is also engaged in standardization and certification development.
Rudolph Araujo is managing principal, focusing on the FireEye Dynamic Threat Intelligence Service as well as the assessment services, and is the FireEye Labs lead for developing the unique FireEye Threat Intelligence based offerings. He is also responsible for service delivery and sales in the Western United States. Prior to joining FireEye, Rudolph was director of professional services at McAfee, where his responsibilities ranged from providing leadership on large IR engagements to managing complex deployments of multiple security technologies. Rudolph earned his MS degree from Carnegie Mellon University, specializing in information security. He also served as a researcher at CMU's CYLAB, investigating virus and worm threats, especially over peer-to-peer networks. His research interests span the areas of reverse engineering, malware analysis and security data analytics. He is a recognized speaker and contributor to a number of industry journals.
Ken Mizota is a product manager with Guidance Software and is responsible for the direction and delivery of EnCase Enterprise, EnCase Forensic and EnCase Portable. He has spent more than 15 years, designing, building, installing, configuring, testing, troubleshooting and improving software to benefit a full spectrum of customers, from the world's largest to the single-person startup.