Server Security: A Reality Check
- Tuesday, March 11th, 2014 at 1:00 PM EDT (17:00:00 UTC)
- Jake Williams and Michael Bilancieri
You can now attend the webcast using your mobile device!
Regardless of how they initially enter the organization, most attackers today still aim to compromise internal servers to steal user credentials, steal sensitive data and turn compromised servers into hosting platforms used to help attackers steal even more assets. This webcast, based on a new whitepaper, will discuss the methodology of internal and external attacks on data center servers and the applications running on them. It will discuss why, even with our layers of security in place today, servers are still vulnerable (for example, unpatched vulnerabilities, unmanaged applications and poor administrative access).
This webcast will discuss how servers need to be protected from the unknown. This "unknown" category of threats includes advanced persistent threats, which can be best prevented by inventorying applications to permit what is known and trusted while denying everything else. The webcast will include discussion of real-world deployments and best practices and how to get started with inventorying applications and then controlling them, in accordance with the SANS critical security controls.
Click here to view the associated whitepaper.
Jake Williams is a technical analyst with the Department of Defense (DoD) where he has over a decade of experience in systems engineering, computer security, forensics, and malware analysis. Jake has been providing technical instruction for years, primarily with HBGary, where he was the principal courseware developer and instructor for their products. He also maintains malware reverse engineering courses for CSRgroup Computer Security Consultants. Recently, he has been researching the application of digital forensic techniques to public and private cloud environments. Jake has been involved in numerous incident response events with industry partners in various consulting roles. Jake led the winning government team for the 2011 and 2012 DC3 Digital Forensics Challenge. He has spoken at numerous events, including the ISSA events, SANS @Night, the DC3 conference, Shmoocon, and Blackhat.
Michael Bilancieri is director of product management for Bit9. He joined the company in 2012 and is responsible for defining the Bit9 server security product strategy with an emphasis on virtualization and datacenter operations. He also is responsible for defining the company?s network security integration strategy and solutions. Bilancieri has more than 12 years of experience working on and leading product management teams in several technology sectors: security, data management and data protection. He also has been a member of and led presales engineering and professional services teams. Bilancieri holds a bachelor?s degree in computer science.