SANS Open-Source Intelligence (OSINT) Summit & Training offers immersive cyber security courses and a free Summit!

Webcasts

To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

Single-Agent Cyber Security Analytics: A SANS Review of the Cybereason Platform

  • Tuesday, July 24, 2018 at 1:00 PM EDT (2018-07-24 17:00:00 UTC)
  • Dave Shackleford, Israel Barak

Sponsor

  • Cybereason

You can now attend the webcast using your mobile device!

  

Overview

Successfully managing an endpoint detection and response solution combined with an analytics platform can be a daunting task, with multiple agents and consoles to consult before security personnel can take any action. SANS analyst and instructor Dave Shackleford reviewed the Cybereason cyber security analytics platform because it offers a single agent, single console solution that has the potential to help security analysts manage endpoint security throughout the attack lifecycle.

Attendees at this webcast will follow an incident through the attack lifecycle and see how the Cybereason platform addresses the following issues:

  • Administrative action, including user and alert configurations, sensor profiles, and behavioral whitelisting
  • Prevention through the use of static and dynamic analysis
  • Malops detection through AI hunting, including visual reporting 
  • Investigation
  • Remediation
  • Threat hunting

Register for this webcast to be among the first to receive Dave Shackleford's in-depth review of the Cybereason analytics platform.

View the associated whitepaper here.

Speaker Bios

Dave Shackleford

Dave Shackleford, a SANS analyst, senior instructor, course author, GIAC technical director and member of the board of directors for the SANS Technology Institute, is the founder and principal consultant with Voodoo Security. He has consulted with hundreds of organizations in the areas of security, regulatory compliance, and network architecture and engineering. A VMware vExpert, Dave has extensive experience designing and configuring secure virtualized infrastructures. He previously worked as chief security officer for Configuresoft and CTO for the Center for Internet Security. Dave currently helps lead the Atlanta chapter of the Cloud Security Alliance.


Israel Barak

Israel Barak is the Chief Information Security Officer at Cybereason. Mr. Barak is a cyber defense and warfare expert, with his extensive background established at the IsraeliDefense Forces and the Government of Israel. Mr. Barak founded and headed the Israeli Defense Forces red team unit, as well as established and operated various cyber warfare teams. As part of his various roles, Mr. Barak developed cyber warfare infrastructure and proprietary technologies, including leading development of proprietary cryptographic solutions, research and analysis of security vulnerabilities, information security products and technologies, and managed enterprise-wide large scale development and implementation projects of cyber technologies.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.