Running a Better Red Team Through Understanding ICS/SCADA Adversary Tactics
- Wednesday, August 10th, 2016 at 3:00 PM EDT (19:00:00 UTC)
- Robert M. Lee
You can now attend the webcast using your mobile device!
A good red team should be informed about adversary tactics to emulate them against networks to not only test the infrastructure but also the defenders. In this talk, SANS ICS515 and FOR578 course author Robert M. Lee will discuss a number of observed adversary tactics in ICS/SCADA environments for the purpose of educating the audience on tactics that red teams may consider for tests in these networks. The talk will cover some of the high profile attacks observed in the community such as the Ukraine power grid cyber-attack as well as lessons learned from incident response cases in the community.
Learn more about the latest attacks and techniques used against organizations at the SANS Pen Test HackFest Training & Summit. This year's HackFest Summit features two days of leading talks from top experts and then six days of hands-on, immersion-style pen test training in one of our nine courses to choose from! Learn and develop your offensive techniques as you strive to better defend your environment. Whether you are a penetration tester, red team member, a forensics specialist, or cyber defender, the techniques covered at HackFest represent the latest and most powerful attacks every organization needs to thwart. You NEED to be there!
Robert M. Lee
Robert M. Lee, a SANS certified instructor and author of the "ICS Active Defense and Incident Response" and "Cyber Threat Intelligence" courses, is the founder and CEO of Dragos, a critical infrastructure cyber security company, where he focuses on control system traffic analysis, incident response and threat intelligence research. He has performed defense, intelligence and attack missions in various government organizations, including the establishment of a first-of-its-kind ICS/SCADA cyber threat intelligence and intrusion analysis mission. Author of SCADA and Me and a nonresident National Cyber Security Fellow at New America, focusing on critical infrastructure cyber security policy issues, Robert was named EnergySec's 2015 Energy Sector Security Professional of the Year.