Final Week to Get an iPad Pro w/ Smart Keyboard, HP ProBook, or $350 Off with OnDemand and vLive Training!


To attend this webcast, login to your SANS Account or create your Account.

Threat Intelligence: What It Is, and How to Use It Effectively

  • Tuesday, September 20th, 2016 at 1:00 PM EDT (17:00:00 UTC)
  • Matt Bromiley and Stephen Gates
This webcast has been archived. You can view the webcast presentation and download the slides by logging into your SANS Portal Account or creating an Account. Click the Register Now button after you have logged in to view the Webcast.



You can now attend the webcast using your mobile device!


Security practitioners are hearing more and more about threat intelligence (TI). But what exactly is it, and how can TI be effectively deployed as part of an organization's defenses against advanced malware and cyberattacks?

In this webcast, you will learn just what constitutes threat intelligence, the different kinds of TI and why companies are implementing it. Attendees will also learn how and when to integrate intelligence into their security posture, the role of this intelligence in incident response and when to use it to identify critical security events.

Join us to get a clearer understanding of this powerful tool and to learn how you can make the best use of it. And be the first to get the new associated SANS whitepaper on the topic of threat intelligence.

Speaker Bios

Matt Bromiley

Matt Bromiley is a SANS Certified Digital Forensics and Incident Response instructor, teaching Advanced Digital Forensics, Incident Response, and Threat Hunting (FOR508) and Advanced Network Forensics: Threat Hunting, Analysis, and Incident Response (FOR572), and a GIAC Advisory Board member. He is also a principal incident response consultant at a major incident response and forensic analysis company, combining experience in digital forensics, incident response/triage and log analytics. His skills include disk, database, memory and network forensics, as well as network security monitoring. Matt has worked with clients of all types and sizes, from multinational conglomerates to small, regional shops. He is passionate about learning, teaching and working on open source tools.

Stephen Gates

Stephen Gates is chief research intelligence analyst with NSFOCUS IBD. A recognized subject-matter expert on DDoS attack tools and methodologies, he has been instrumental in solving the DDoS problem for service providers, hosting providers and enterprises. He has more than 25 years of computer networking and security experience and an extensive background in the deployment and implementation of next-generation security solutions. He came to NSFOCUS from Corero Network Security, where he served as the chief security evangelist. He frequently provides insight, editorial, industry thought leadership and presentations on the latest security topics at RSA, SecureWorld, SANS, Black Hat, IANS, ISSA, InfraGard, ISACA, etc.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.