Interactive Courses + DFIR NetWars Available During SANS Cyber Security Central in June. Save $300 thru 5/12.


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

SOC in the Cloud: A review of Arctic Wolf SOC Services

  • Wednesday, March 29, 2017 at 1:00 PM EDT (2017-03-29 17:00:00 UTC)
  • Sridhar Karnam, Sonny Sarai


  • Arctic Wolf Networks

You can now attend the webcast using your mobile device!



Security Operations Centers have gained increasing importance in today's enterprises. Fully featured SOCs are needed to protect against intrusions, damaging DDoS attacks and data security breaches, as well as to follow up, investigate and assist with remediation should a breach occur.

Midsize organizations are especially vulnerable to today's cyber threats because, according to multiple SANS surveys, midsize organizations lack the budget to hire or effectively train staff and purchase tools to cover the myriad protection, detection and response capabilities that should be centralized in their SOCs.

In this webcast, SANS reviewer Sonny Sarai discusses his experiences utilizing the Arctic Wolf Networks' CyberSOC, which is a SOC-as-a-Service primarily targeted for midsize organizations. Starting with implementation, Arctic Wolf's CyberSOC lacks the complexities of setting up a SOC, deploying in an hour instead of the years it normally takes to build a full-service SOC. While reducing complexity, Arctic Wolf also assigns dedicated engineers to alert on, investigate and even help remove vulnerabilities discovered during 24/7 monitoring.

Register for this webcast to learn:

  • Why it is important for midsize organizations to have a cost-effective threat detection strategy
  • How to get started with SOC-as-a-Service
  • Usefulness of information, reports and alerts provided through the customer portal
  • Why shortest time to detect is crucial in a cyber event
  • How dedicated security engineers can help with investigation, response and remediation

Attend this webcast and be among the first to receive access to the associated whitepaper developed by Sonny Sarai.

View the associated whitepaper here.

Speaker Bios

Sonny Sarai

Sonny Sarai, SANS GIAC Advisor, has more than 10 years' IT experience, seven of them in an information security capacity. He now works as a senior information security analyst, responsible for data governance, compliance, penetration testing, digital forensics and incident response. Sonny holds a degree in forensic investigation, specializing in computer crime. He holds a CISSP and industry-leading certifications from SANS in advanced digital forensics (GCFA), network intrusion detection (GCIA) and security essentials (GSEC). Sonny has an extensive lab dedicated to research, development and analysis, where he continually hones his skills and enhances his capabilities.

Sridhar Karnam

Sridhar Karnam is the Director of Products at Arctic Wolf Networks, a SOC for mid-market companies. He has over a decade of experience in managing critical infrastructures from both IT ops and SecOps perspective. Sri has worked at Oracle, HP and startups where he has led the product management efforts for HP ArcSight SIEM for five years and IT ops tools. He is ITIL certified and has spoken to more hundreds of Global 2000 customers and mid-market companies on their security strategies.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.