Final Week to Get an iPad Pro w/ Smart Keyboard, HP ProBook, or $350 Off with OnDemand and vLive Training!


To attend this webcast, login to your SANS Account or create your Account.

The Foundation of Continuous Host Monitoring

  • Wednesday, April 3rd, 2019 at 1:00 PM EDT (17:00:00 UTC)
  • Matt Bromiley and JJ Cranford
This webcast has been archived. You can view the webcast presentation and download the slides by logging into your SANS Portal Account or creating an Account. Click the Register Now button after you have logged in to view the Webcast.


  • OpenText Inc.

You can now attend the webcast using your mobile device!


Let's face it; deep dive forensics at scale is not realistic. Most enterprises lack time, experience, and other resources, and the deep dive approach does not scale well. Enterprises continue to struggle with incident scoping and remediation, in large part due to a lack of visibility and insight. In contrast, real-time, host-based visibility is crucial to detecting and defending against modern adversarial techniques.

This SANS webcast will look at the benefits of continuous host monitoring, the architecture behind successful setups, and considerations for success. Learn how to scope and implement continuous monitoring effectively, and examine examples of it in action.

Register now to attend this webcast and be among the first to receive the associated whitepaper (with tips, advice and recommendations) written by SANS community instructor and analyst, Matt Bromiley.

Speaker Bios

Matt Bromiley

Matt Bromiley is a SANS Certified Digital Forensics and Incident Response instructor, teaching Advanced Digital Forensics, Incident Response, and Threat Hunting (FOR508) and Advanced Network Forensics: Threat Hunting, Analysis, and Incident Response (FOR572), and a GIAC Advisory Board member. He is also a principal incident response consultant at a major incident response and forensic analysis company, combining experience in digital forensics, incident response/triage and log analytics. His skills include disk, database, memory and network forensics, as well as network security monitoring. Matt has worked with clients of all types and sizes, from multinational conglomerates to small, regional shops. He is passionate about learning, teaching and working on open source tools.

JJ Cranford

JJ Cranford is the Sr. Product Marketing Manager for OpenText | EnCase

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.