SANS OnDemand - 45+ Courses Available Today - View a Demo for an Hour of Free Content


To attend this webcast, login to your SANS Account or create your Account.

Threat Hunting and Discovery: A SANS Review of Vectra Cognito

  • Thursday, January 16th, 2020 at 1:00 PM EST (18:00:00 UTC)
  • Dave Shackleford and Tim Wade
This webcast has been archived. You can view the webcast presentation and download the slides by logging into your SANS Portal Account or creating an Account. Click the Register Now button after you have logged in to view the Webcast.


  • Vectra Networks Inc.

You can now attend the webcast using your mobile device!


Vectras Cognito platform is an intelligent, AI-driven threat detection and response system for native and hybrid cloud environments. The platform captures network metadata and enriches it with machine learning-derived security intelligence. In this SANS webcast, expert Dave Shackleford and Tim Wade, from Vectra, discuss detection of attack behaviorsincluding MITRE ATT&CK methodologies and how we need to adapt to better protect an organization. They will cover why its difficult to detect attack behavior and outline Cognitos key features, touching on such topics as Cognitos interface and how it helps analysts move faster and more effectively; how the platform finds useful data for threat hunting; and the role of network traffic analysis and AI in monitoring and responding to threats. They will also discuss the detection of unusual hosts, advanced threat hunting and how Cognitos various features (reporting, metadata, shared links and more) help simplify tasks.

Register today to be among the first to receive the associated whitepaper written by security expert Dave Shackleford.

Speaker Bios

Dave Shackleford

Dave Shackleford, a SANS analyst, instructor, course author, GIAC technical director and member of the board of directors for the SANS Technology Institute, is the founder and principal consultant with Voodoo Security. He has consulted with hundreds of organizations in the areas of security, regulatory compliance, and network architecture and engineering. A VMware vExpert, Dave has extensive experience designing and configuring secure virtualized infrastructures. He previously worked as chief security officer for Configuresoft and CTO for the Center for Internet Security. Dave currently helps lead the Atlanta chapter of the Cloud Security Alliance.

Tim Wade

Tim Wade, the Technical Director at Vectra, brings fifteen years of security operations and engineering experience into his current role as a Technical Director member of Vectra AIís CTO Team.†His background includes leading and managing the modernization of enterprise security in the Higher Education space, solution delivery and architecture services to US DoD and Federal clients, and operational activities as a decorated veteran of the US Air Force.†He holds a masterís degree in computer science from USC and maintains industry credentials from Offensive Security and (ISC)2.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.