Last Day to get an iPad mini, Surface Go 2, or Take $300 Off with OnDemand Training

Webcasts

To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

True Detective – Autopsy of latest O365 and AWS threats

  • Wednesday, May 30, 2018 at 1:00 PM EDT (2018-05-30 17:00:00 UTC)
  • Brandon Cook, John Pescatore

Sponsor

  • SkyHigh Networks

You can now attend the webcast using your mobile device!

  

Overview

How does your organization defend against the latest O365 and AWS threats including KnockKnock and Ghostwriter?

Join CSA and McAfee to see an autopsy of two recent cloud threats: KnockKnock (O365) and Ghostwriter (AWS) uncovered by our Cloud Threats Lab. Well share practical guidance on how to address the rapidly evolving cloud threat landscape, starting with user behavior analysis and leveraging the network effect.

Specifically, we will discuss how Information Security teams can:

  • Catch third parties logging into corporate cloud service using stolen or misplaced login credentials to steal valuable corporate data
  • Detect malicious or negligent insider stealing or unintentionally exposing data from O365 and AWS
  • Identify malicious administrators accessing data out of policy, intentionally degrading security settings, or creating dummy accounts for unauthorized third party access

Speaker Bios

Brandon Cook

Brandon Cook leads the product marketing team at Skyhigh Networks and has over a decade of experience in the tech industry identifying and developing new markets. Prior to Skyhigh, Brandon worked at Sequoia Capital, Symantec, Clearwell (acquired by Symantec), and IBM. As a regular contributor to the Cloud Security Alliance (CSA) events and blogs and author of the quarterly Cloud Adoption and Risk Report, he has expertise in "shadow IT", cloud security, cloud governance, and cloud regulatory compliance. Brandon holds a B.S. in Economics from Duke University.


John Pescatore

John Pescatore joined SANS as director of emerging security trends in January 2013 after more than 13 years as lead security analyst for Gartner, running consulting groups at Trusted Information Systems and Entrust, 11 years with GTE, and service with both the National Security Agency, where he designed secure voice systems, and the U.S. Secret Service, where he developed secure communications and surveillance systems and "the occasional ballistic armor installation." John has testified before Congress about cybersecurity, was named one of the 15 most-influential people in security in 2008 and is an NSA-certified cryptologic engineer.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.