Join us at the Rocky Mountain Hackfest, Live Online!! Virtual summit and courses take place June 4-13.


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right.Once you register, you can download the presentaion slides below.

Practical and Open Source Threat Intelligence

  • Tuesday, May 17, 2016 at 3:00 PM EDT (2016-05-17 19:00:00 UTC)
  • James Tarala

You can now attend the webcast using your mobile device!



Threat actors are not magic and there is not an unlimited, unique list of threats for every organization. Enterprises face similar threats from similar threat sources and threat actors - so why does every organization need to perform completely unique risk assessments and prioritized control decisions? This presentation will show how specific, community driven threat models can be used to prioritize an organization's defenses - without all the confusion.

Industry pundits often present the idea that every organization and every industry is unique in their own special way. They present that enterprises need to hire specialists and subscribe to up to the minute threat intelligence to defend themselves against cyber-attack. While such commentary can be beneficial, the majority of attacks still take place using common methods and tools, exploiting weaknesses that can be found in any industry.

In this presentation attendees with learn about an open, community-driven threat model that can be used by any industry to evaluate the risk that faces them. Then they will learn how to practically use this model to prioritize enterprise defense and map to existing compliance requirements facing organizations today. Whether you are in the Department of Defense or work for a small mom and pop retailer, you will be able to use this model to specifically determine a prioritized defense for your organization.

Speaker Bio

James Tarala

James Tarala is a principal consultant with Enclave Hosting, LLC and is based out of Venice, FL. He is a regular speaker and senior instructor with the SANS Institute as well as a courseware author and editor for many of their auditing and security courses. As a consultant he has spent the past few years architecting large enterprise IT security and infrastructure architectures, specifically working with many Microsoft based, directory services, e-mail, terminal services, and wireless technologies. He has also spent a large amount of time consulting with organizations to assist them in their security management, operational practices, and regulatory compliance issues and often times performs independent security audits and assists internal audit groups to develop their internal audit programs. James completed his undergraduate studies at Philadelphia Biblical University, his graduate work at the University of Maryland, and holds numerous professional certifications.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.