Ending Soon! Get an iPad Air with Smart Keyboard, or Surface Go, or $300 Off with Online Training through Aug 21!

Webcasts

To attend this webcast, login to your SANS Account or create your Account.

Best Practices for Leveraging Security Threat Intelligence

  • Wednesday, June 4th, 2014 at 1:00 PM EDT (17:00:00 UTC)
  • Russell Spitler & Dave Shackleford
This webcast has been archived. You can view the webcast presentation and download the slides by logging into your SANS Portal Account or creating an Account. Click the Register Now button after you have logged in to view the Webcast.

Sponsor

  • AlienVault

You can now attend the webcast using your mobile device!

Overview

The state of threat intelligence in the information security community is still very immature. Many organizations are still combating threats in a reactive manner, only learning what they're dealing with, well...when they're dealing with it. There is a wealth of information in the community, and many organizations have been gathering data about attackers and trends for years. How can we share that information, and what kinds of intelligence are most valuable? In this presentation, we'll start with a brief overview of AlienVault's Open Threat ExchangeT (OTX), and then we'll discuss attack trends and techniques seen in enterprise networks today, with supporting data from AlienVault OTX. We'll also take a look at some new models for collaboration and improving the state of threat intelligence going forward.

Speaker Bios

Dave Shackleford

Dave Shackleford, a SANS analyst, instructor, course author, GIAC technical director and member of the board of directors for the SANS Technology Institute, is the founder and principal consultant with Voodoo Security. He has consulted with hundreds of organizations in the areas of security, regulatory compliance, and network architecture and engineering. A VMware vExpert, Dave has extensive experience designing and configuring secure virtualized infrastructures. He previously worked as chief security officer for Configuresoft and CTO for the Center for Internet Security. Dave currently helps lead the Atlanta chapter of the Cloud Security Alliance.


Russell Spitler

Russell Spitler comes to AlienVault with a strong desire to help the world build more secure systems. After spending years helping to secure the largest financial, military, and commercial organizations, Russ is now working with AlienVault to help bring those same security products to the rest of us. Russ started his career as a programmer at Fortify Software. As a programmer he designed, developed, and deployed many of the core products that comprise the Fortify product suite. Leveraging his experience with the development of those products, and his relationships with customers, Russ transitioned into Product Management. During his tenure in Product Management he oversaw a 5x growth in product revenue and helped Fortify to develop strong partnerships with other players in the market, leading to the eventual acquisition of Fortify. At Hewlett Packard, Russ played an integral role in the formation of HP Enterprise Security Products, aiding in the creation of technical integrations between ArcSight, Fortify and TippingPoint. Russ began his career in security at Colby College, where, for his honors thesis, he developed a static analysis engine embedded in the eclipse IDE. He has a BA in Computer Science.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.