Hands-on, immersive CTI courses at the Cyber Threat Intelligence Summit & Training in January! Register for the free Summit!

Webcasts

To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

Threat Hunting and Discovery: A SANS Review of Vectra Cognito

  • Thursday, January 16, 2020 at 1:00 PM EST (2020-01-16 18:00:00 UTC)
  • Dave Shackleford, Tim Wade

Sponsor

  • Vectra Networks Inc.

You can now attend the webcast using your mobile device!

  

Overview

Vectras Cognito platform is an intelligent, AI-driven threat detection and response system for native and hybrid cloud environments. The platform captures network metadata and enriches it with machine learning-derived security intelligence. In this SANS webcast, expert Dave Shackleford and Tim Wade, from Vectra, discuss detection of attack behaviorsincluding MITRE ATT&CK methodologies and how we need to adapt to better protect an organization. They will cover why its difficult to detect attack behavior and outline Cognitos key features, touching on such topics as Cognitos interface and how it helps analysts move faster and more effectively; how the platform finds useful data for threat hunting; and the role of network traffic analysis and AI in monitoring and responding to threats. They will also discuss the detection of unusual hosts, advanced threat hunting and how Cognitos various features (reporting, metadata, shared links and more) help simplify tasks.

Register today to be among the first to receive the associated whitepaper written by security expert Dave Shackleford.

Speaker Bios

Dave Shackleford

Dave Shackleford, a SANS analyst, senior instructor, course author, GIAC technical director and member of the board of directors for the SANS Technology Institute, is the founder and principal consultant with Voodoo Security. He has consulted with hundreds of organizations in the areas of security, regulatory compliance, and network architecture and engineering. A VMware vExpert, Dave has extensive experience designing and configuring secure virtualized infrastructures. He previously worked as chief security officer for Configuresoft and CTO for the Center for Internet Security. Dave currently helps lead the Atlanta chapter of the Cloud Security Alliance.


Tim Wade

Tim Wade, the Technical Director at Vectra, brings fifteen years of security operations and engineering experience into his current role as a Technical Director member of Vectra AIís CTO Team.†His background includes leading and managing the modernization of enterprise security in the Higher Education space, solution delivery and architecture services to US DoD and Federal clients, and operational activities as a decorated veteran of the US Air Force.†He holds a masterís degree in computer science from USC and maintains industry credentials from Offensive Security and (ISC)2.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.