The Most Comprehensive DFIR Event of the Year: SANS DFIRCON! Save $200 thru 10/3.

Webcasts

To attend this webcast, login to your SANS Account or create your Account.
 

Security and Ops Hacks

  • Wednesday, December 6th, 2017 at 1:00 PM EST (18:00:00 UTC)
  • Sonny Sarai
This webcast has been archived. You can view the webcast presentation and download the slides by logging into your SANS Portal Account or creating an Account. Click the Register Now button after you have logged in to view the Webcast.

Sponsor

  • Rapid7 Inc.

You can now attend the webcast using your mobile device!

Overview

Today's networks are very noisy. There's too much data spilling in from IT operations and network management systems, endpoints, applications, access control, vulnerability management and security systems (IDS/IPS/SIEMs, endpoint protections, etc). Often, this data is all related, but because IT operations and security teams are working in their silos, they cannot see the connections.

For IT ops, the mission is "keeping the lights on" to avoid network and system outages. This is also the mission for Sec Ops, but security teams also need to investigate threats that do get past defenses. Sec Ops also needs to shore up vulnerabilities and continuously monitor for new ones while constantly improving their risk posture. To accomplish their missions, IT and Sec Ops often utilize the same data.

In this webcast, learn how to foster cooperation between both departments for better visibility into threats and threat pathways, while improving overall protection and network hygiene. For example:

  • Start by identifying what data each department uses to do complete their missions.
  • Consider how each department may be utilizing the same data but interpreting it differently and for different reasons (and why those reasons matter).
  • Map how security and operational data can be utilized by both groups.
  • Find allies and identify ways to foster cooperation and teamwork among groups.
  • Share technologies and implement a common interface and workload management system that operations as well as security teams can interpret and follow.
  • Leverage automation strategies to connect disparate security tools to create a single pane of glass for security and operation teams.

Register for this webcast and get early access to the associated whitepaper developed by Sonny Sarai.

View the associated whitepaper here.

Speaker Bio

Sonny Sarai

Sonny Sarai, SANS GIAC Advisor, has more than 10 years' IT experience, seven of them in an information security capacity. He now works as a senior information security analyst, responsible for data governance, compliance, penetration testing, digital forensics and incident response. Sonny holds a degree in forensic investigation, specializing in computer crime. He holds a CISSP and industry-leading certifications from SANS in advanced digital forensics (GCFA), network intrusion detection (GCIA) and security essentials (GSEC). Sonny has an extensive lab dedicated to research, development and analysis, where he continually hones his skills and enhances his capabilities.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.

To attend this webcast, login to your SANS Account or create your Account.
 
Subscribe
Note to Vendors
If you are interested in sponsoring a future SANS Webcast, contact our vendor team today.
Latest Whitepapers

All-Seeing Eye or Blind Man? Understanding the Linux Kernel Auditing System
By David Kennel

SANS 2018 Threat Hunting Survey Results
By Robert M. Lee

The Need for Speed: Integrated Threat Response A SANS Whitepaper
By Matt Bromiley

Last 25 Papers »

Latest Tweets @SANSInstitute

SANS What Works Webcast: Join SANS @john_pescatore and learn [...]
September 24, 2018 - 9:30 AM

#SANSTysons Fall 2018 is right around the corner! View detai [...]
September 24, 2018 - 8:50 AM

Need a fresh perspective? Liven up your #cybersecurity caree [...]
September 24, 2018 - 8:15 AM

Contact Us

301-654-SANS(7267)
Mon-Fri 9am - 8pm EST/EDT
info@sans.org

"It has really been an eye opener concerning the depth of security training and awareness that SANS has to offer."
- Michael Hall, Drivesavers

"As a security professional, this info is foundational to do a competent job, let alone be successful."
- Michael Foster, Providence Health and Security

"Because of the use of real-world examples it's easier to apply what you learn."
- Danny Hill, Friedkin Companies, Inc.