Threat Hunting-Modernizing Detection Operations: The SANS 2017 Threat Hunting Survey Results | Part 1

  • Wednesday, 26 Apr 2017 1:00PM EDT (26 Apr 2017 17:00 UTC)
  • Speakers: Rob Lee, Ely Kahn, Travis Farral, Zach Hill

In this webcast, SANS will release results of its second annual Threat Hunting Survey. According to our previous survey on this topic, the 2016 SANS Survey on Threat Hunting, 86% of IT departments utilized threat hunting, although only 40% had any formal threat hunting program, and 88% said their threat hunting programs needed to be improved.

Have threat-hunting programs been formalized over the past year? And if so, to what degree? Is hunting being used more proactively than in 2016? Rather than relying on indicators of compromise to start a hunt, are hunters proactively searching for the unknown?

This webcast, the first of a two-part report of the SANS Threat Hunting Survey will look at the current state of threat-hunting programs and how they have changed in the past year. In it, attendees will learn:

  • How regularly respondent organizations hunt for threats
  • Whether respondents have been more successful at hiding their hunts from adversaries
  • What improvements they've made in the time it takes to hunt for threats
  • How they utilize their hunting information (prevention, response, improved risk posture)
  • What inhibitors hold organization back from achieving proactive, continuous threat hunting

Click here to be among the first to receive access to full survey results paper, developed by SANS Fellow Rob Lee, publishing in association with the SANS Threat Hunting and Incident Response Summit.

Click here to register for the second part of the two-part results webcast on Thursday, April 27, 2017 . That webcast will focus on the skills required for threat hunters, along with best practices, tools and threat intelligence feeds that make up the hunting ecosystem.