Last day to get an iPad Air w/ Smart Keyboard or Pixel 4a Smartphone with 5-6 day course registration! View details.


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

Gearing up for 2019 - Best Practices to Consider

  • Friday, December 07, 2018 at 11:00 AM EST (2018-12-07 16:00:00 UTC)
  • John Pescatore, John Strand, Jake Williams


  • Infoblox
  • Carbon Black
  • Cybelangel
  • Cisco Systems Inc.

You can now attend the webcast using your mobile device!



Join John Strand and Jake Williams - SANS Senior Instructors along with John Pescatore, SANS Director of Emerging Security Trends for a discussion on your best strategies to consider for 2019 to build and maintain your cybersecurity defenses. This special 2 hour webcast includes talks from John Strand and Jake and is followed by a lively panel of all three experts.

11:00am - 11:15am Welcome/Opening

The key to improving security is change doing something different. While most of the press attention goes to successful breaches and ransomware, every day SANS works with security teams that have managed to evolve processes, tactics and controls to prevent or minimize business damage. John Pescatore will give an overview of the key security trends that will be driving security improvements in 2019.

John Pescatore, SANS Director of Emerging Security Trends

11:15am - 11:45am

These attacks are gonna knock you out: Don't call it a prediction, these issues have been here for years.

John Strand, SANS Senior Instructor, Owner Black Hills Information Security, CTO Active Countermeasures

11:45am - 12:15pm

How can We Make the Attacker's Job Suck More?

We're routinely told that the attacker has the advantage. Nothing could be further from the truth. You have the home court advantage. In fact, you build the court. By following some simple best practices, you can make the attacker's job suck big time. I personally enjoy the idea of an attacker having to abandon their night out or other social activities because I've stopped them from getting to their goal. In this portion of the webcast, we'll cover a few best practices you can follow that will deliver hour after hour of frustration to your attackers (while simultaneously making the attacker easier to detect).

Jake Williams, SANS Senior Instructor & Course Author, Founder Rendition InfoSec

12:15pm - 12:45pm Open Panel with John/John/Jake

John Pescatore will ask the SANS instructors a few drill down questions about their recommendations and then we will open to the microphones (well, chat windows) for your questions. We wont limit the questions to the previous presentations come prepared to ask the experts about any hot security topic on your list.

Moderator: John Pescatore

Panelists: John Strand and Jake Williams

12:45pm - 1:00pm - Wrap up

The goal of every SANS course or webinar is to give you information and advice you can put directly to use when you go back to work. We will close by summarizing the key action takeways of the session and give you a list of SANS and other resources for deeper dives.

John Pescatore

Speaker Bios

John Pescatore

John Pescatore joined SANS as director of emerging security trends in January 2013 after more than 13 years as lead security analyst for Gartner, running consulting groups at Trusted Information Systems and Entrust, 11 years with GTE, and service with both the National Security Agency, where he designed secure voice systems, and the U.S. Secret Service, where he developed secure communications and surveillance systems and "the occasional ballistic armor installation." John has testified before Congress about cybersecurity, was named one of the 15 most-influential people in security in 2008 and is an NSA-certified cryptologic engineer.

John Strand

John Strand is a senior instructor with the SANS Institute. He teaches SEC504: Hacker Techniques, Exploits, and Incident Handling; SEC560: Network Penetration Testing and Ethical Hacking; SEC580: Metasploit Kung Fu for Enterprise Pen Testing; and SEC464: Hacker Guard: Security Baseline Training for IT Administrators and Operations with Continuing Education. John is the course author for SEC464: Hacker Guard: Security Baseline Training for IT Administrators and Operations with Continuing Education and the co-author for SEC580: Metasploit Kung Fu for Enterprise Pen Testing.

When not teaching for SANS, John co-hosts PaulDotCom Security Weekly, the world's largest computer security podcast. He is also the owner of Black Hills Information Security, specializing in penetration testing and security architecture services. He has presented for the FBI, NASA, the NSA, and at DefCon. In his spare time he writes loud rock music and makes various futile attempts at fly-fishing.

Very informative! Mr. John Strand's experience shared through narrative brings course material to life. - Christopher Wilson, USAF

Follow John on Twitter @strandjs

Jake Williams

Jake Williams is a SANS analyst, senior SANS instructor, course author and designer of several NetWars challenges for use in SANS' popular, "gamified" information security training suite. Jake spent more than a decade in information security roles at several government agencies, developing specialties in offensive forensics, malware development and digital counterespionage. Jake is the founder of Rendition InfoSec, which provides penetration testing, digital forensics and incident response, expertise in cloud data exfiltration, and the tools and guidance to secure client data against sophisticated, persistent attacks on-premises and in the cloud.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.