Top Cybersecurity Training Protects Your Assets - Learn From the BEST and Apply New Knowledge Immediately!


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

The Science Behind the Hype: Machine Learning in Endpoint Security

  • Thursday, October 26, 2017 at 10:30 AM EST (2017-10-26 14:30:00 UTC)
  • David Hoelzer, Jack Danahy


  • Barkly

You can now attend the webcast using your mobile device!



Traditional machine learning models in endpoint security experience decreased efficacy over time as a result of decreased coverage of new attacks, increased false positive rates and rising management overhead.

This webinar will demystify the actual science of machine learning, and explore the next evolution in endpoint security machine learning. Responsive machine learning continuously ingests new samples of malicious and beneficial software and continually trains, tests, and distributes models that provide consistently strong and accurate endpoint protection. Join this webinar to learn:

  • An overview of traditional machine learning methods and models
  • Challenges of traditional machine learning, including decreased efficacy over time
  • Introduction to Responsive Machine Learning
  • Best practices for endpoint protection

Speaker Bios

Jack Danahy

Jack Danahy is the co-founder and CTO of Barkly, the company advancing endpoint security by combining the strongest protection with the smartest technology and simplest management. A 25-year innovator in computer, network and data security, Jack was previously the founder and CEO of two successful security companies: Qiave Technologies (acquired by Watchguard Technologies in 2000) and Ounce Labs (acquired by IBM in 2009). Jack is a frequent writer and speaker on security and security issues, and has received multiple patents in a variety of security technologies. Prior to founding Barkly, he was the Director of Advanced Security for IBM, and led the delivery of security services for IBM in North America.

David Hoelzer

David Hoelzer is a SANS fellow instructor, courseware author and dean of faculty for the SANS Technology Institute. In addition to bringing the GIAC Security Expert certification to life, he has held practically every IT and security role during his career. David is a research fellow in the Center for Cybermedia Research, the Identity Theft and Financial Fraud Research Operations Center (ITFF/ROC), and the Internet Forensics Lab. Currently, David serves as the principal examiner and director of research for a New York/Las Vegas-based incident response and forensics company and is the chief information security officer for an open source security software solution provider.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.