SANSFIRE is right around the corner June 13-20 - Live Online, Register today!


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right.Once you register, you can download the presentaion slides below.

Machine Learning & Risk Engines for Security Data Analysis - How to Identify What's Real vs. What's Bogus

  • Tuesday, December 04, 2018 at 3:30 PM EST (2018-12-04 20:30:00 UTC)
  • Dave Shackleford, Jeremiah Cruit


  • ThreatX

You can now attend the webcast using your mobile device!



Is your security data telling a story? And if it is, do you know what it's saying? Unfortunately, many companies are unable to accurately or effectively analyze their vast amounts of security data, which provides critical information regarding their security posture and top threats.

The truth is, security data analysis is both an art and a science, which has made it challenging for organizations to take advantage of. Not to mention, in the past decade, it has evolved from a "nice to have" to a "must have" element of an effective security strategy.

Due to the evolution of machine learning and risk engines, the insights gained from security data have never been more powerful. At the same time, the growing hype around machine learning has caused more confusion and made it difficult to sort through the noise - What's real? What's truly effective? And what's bogus?

In this webinar, Jeremiah Cruit, CISO of Threat X, will address:

  1. Myth busting around the possibilities of machine learning, risk engines, and statistics in security data analysis   
  2. Tips for optimizing your strategy to obtain comprehensive and trusted application protection
  3. Tools to help you sort through the noise and make security data analysis more science than art

Speaker Bios

Dave Shackleford

Dave Shackleford, a SANS analyst, instructor, course author, GIAC technical director and member of the board of directors for the SANS Technology Institute, is the founder and principal consultant with Voodoo Security. He has consulted with hundreds of organizations in the areas of security, regulatory compliance, and network architecture and engineering. A VMware vExpert, Dave has extensive experience designing and configuring secure virtualized infrastructures. He previously worked as chief security officer for Configuresoft and CTO for the Center for Internet Security. Dave currently helps lead the Atlanta chapter of the Cloud Security Alliance.

Jeremiah Cruit

Jeremiah Cruit is a seasoned Chief Information Security Officer with 25+ years of leadership experience in the financial, telecommunications, and manufacturing sectors. Before joining Threat X, he implemented a security program that resulted in no compromised systems for over three years and has been recognized for creating innovative fraud protection and incident response programs. Professional focal points include security engineering and architecture, application security, anti-fraud programs, vulnerability management, incident response, forensics, technology solutions, and penetration testing.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.