Register by tomorrow to save $200 on top-notch cyber security training at SANS Santa Monica 2019!


To attend this webcast, login to your SANS Account or create your Account.

The Modern Incident Responder: Detect, Respond and Recover from a Data Breach

  • Tuesday, July 29th, 2014 at 1:00 PM EDT (17:00:00 UTC)
  • Jeffrey (J.J.) Guy - Director of Operations
This webcast has been archived. You can view the webcast presentation and download the slides by logging into your SANS Portal Account or creating an Account. Click the Register Now button after you have logged in to view the Webcast.


  • Carbon Black

You can now attend the webcast using your mobile device!


Traditional incident response is tedious, time-consuming and imperfect. Traditional IR uses log file analysis and filesystem forensics as the primary data to analyze. Incident responders are trained to use these data sources not because the data is good, but because the data is almost always available-they are the lowest common denominator. Unfortunately, these data points are incomplete and expensive to analyze. Join Jeffrey Guy, senior director of product management for Bit9 + Carbon Black, to learn:

  • How to understand the enemy, their goals and tactics used to infiltrate your organization
  • The challenges presented to incident response professionals today with targeted threats
  • New traps, strategies and capabilities to proactively arm your endpoints against advanced attacks targeting your enterprise

Speaker Bio

Jeffrey (J.J.) Guy

Jeffrey (J.J.) Guy is director of operations for Bit9 + Carbon Black. He joined the company when Bit9 merged with Carbon Black in February 2014. At Carbon Black he was customer advocate and support lead. He spent 12 years in federal cyber operations, including an active duty tour with the Air Force's Information Warfare Center and as director/general manager of one of the top providers of federal computer network operations (CNO) R&D services, with about 100 kernel programmers, reverse engineers and vulnerability researchers supporting a dozen different federal programs. Guy's time in the Air Force gave him an intimate understanding of the shortfalls of enterprise network defense technology. Frustrated by the "state of the art" and narrow thinking of industry, he has been a strong advocate for shifting security investment from protection to detection and response since 2002. As a full-stack engineer, proven leader and public speaker, he can move from the lab to the podium to the boardroom and back. Guy a bachelor's degree in computer engineering from Case Western Reserve University and a master's degree in computer science from Johns Hopkins.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.