Prove Skill Mastery with GIAC Certs - Free Cert Attempt Included with OnDemand Training


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

Are Your Security Controls Yesterday's News?

  • Tuesday, October 22, 2019 at 11:00 AM EDT (2019-10-22 15:00:00 UTC)
  • Matt Bromiley, Eyal Ahraoni


  • Cymulate

You can now attend the webcast using your mobile device!



Today's security testing techniques, including perimeter vulnerability scanning, pen testing, managed security services and red teaming, are only as effective as their scope and frequency. More often than not, security pros wait to be notified or alerted to a problem, rather than being proactive. Given the number, criticality and potential damage of attacks, how can you better protect your organization against the very latest threats? And with so many solutions in your arsenal, how can you ensure that security controls are integrated seamlessly to defend you in the moment of truth against attacks?

In this webcast, SANS senior instructor Matt Bromiley and Cymulate's Eyal Aharoni will discuss issues with security effectiveness testing and how to improve control validation to shorten testing cycles, accelerate remediation and improve your organization's security posture--faster. How can you automate the process of challenging your security controls and measuring their performance? How can you simulate attacks? And what specific steps will help you optimize security in a more proactive, continuous way?

Register now and be among the first to receive the associated white paper written by Matt Bromiley.

The first of two papers on the topic of effective security controls can be found here. The second spotlight paper, "What Security Practitioners Really Do When It Comes to Security Testing," focuses on the input SANS received from a poll that gathered opinions from the SANS community on this topic.

Speaker Bios

Matt Bromiley

Matt Bromiley is a SANS digital forensics and incident response (IR) instructor, teaching FOR508 Advanced Incident Response, Threat Hunting, and Digital Forensics and SANS FOR572 Advanced Network Forensics: Threat Hunting, Analysis, and Incident Response. He is also an IR consultant at a global IR and forensic analysis company, combining experience in digital forensics, log analytics, and incident response and management. His skills include disk, database, memory and network forensics; incident management; threat intelligence and network security monitoring. Matt has worked with organizations of all shapes and sizes, from multinational conglomerates to small, regional shops. He is passionate about learning, teaching and working on open source tools.

Eyal Ahraoni

As VP Customer Success, Eyal Ahraoni, CISSP, CISA, is part of Cymulate's founding team. Prior to joining Cymulate, he managed worldwide security consulting projects for HP Enterprise and global data security consulting firm Avnet. He has 14 years of information security leadership, auditing and consulting experience with government, defense, financial and technology organizations.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.