$400 Amazon Gift Card with OnDemand Training through March 10 - Learn More!


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

What Works in SOC/NOC Integration: Improving Time to Detect, Respond and Contain with ExtraHop Reveal(x)

  • Thursday, November 07, 2019 at 1:00 PM EST (2019-11-07 18:00:00 UTC)
  • John Pescatore, Mitch Roberson


  • ExtraHop

You can now attend the webcast using your mobile device!



The 2019 SANS Security Operations Center survey showed that SOC managers list lack of integration between security and IT and network operations as one of the major obstacles to both their effectiveness in dealing with evolving threats and their ability to efficiently protect the business in constrained budget environments. Less than 40% of SOC managers say that the SOC and the NOC are effectively integrated, and those who report higher levels of integration show improvement in reducing time to detect, respond and contain.

During this SANS What Works webcast Mitch Roberson, Director for Enterprise Systems at Curo Financial, will provide details of the selection and deployment of ExtraHops Reveal(x) to increase visibility into network traffic, gaining detailed and timely insight into performance and security issues and crossing organizational siloes by using a common tool and dashboard for application owners, network administrators and security analysts.

Join SANS Director of Emerging Security Trends John Pescatore and Mitch Roberson to hear details on the selection, deployment and experience using ExtraHop. The webcast will contain a discussion of lessons learned and best practices as well as detail the metrics used to demonstrate the value of improved email authentication and trust.

Speaker Bios

John Pescatore

John Pescatore joined SANS as director of emerging security trends in January 2013 after more than 13 years as lead security analyst for Gartner, running consulting groups at Trusted Information Systems and Entrust, 11 years with GTE, and service with both the National Security Agency, where he designed secure voice systems, and the U.S. Secret Service, where he developed secure communications and surveillance systems and "the occasional ballistic armor installation." John has testified before Congress about cybersecurity, was named one of the 15 most-influential people in security in 2008 and is an NSA-certified cryptologic engineer.

Mitch Roberson

Mitch Roberson, Director of Enterprise Systems for Curo Financial, is responsible for the majority of the companyís applications, servers, storage and hardware.†He serves on the incident response team at Curo and works closely with the security and the networking teams.†Having worked as a consultant at multiple VARís as well as Microsoft, Mitch has seen a multitude of environments and worked with network, systems and security teams. This has allowed him to broaden his knowledge in many areas of IT. Because of this broad experience, Mitch has an almost fanatical desire to have visibility into his environments. His passion is to learn how applications communicate so he can decrease mean time to resolution and uncover malicious activity as early as possible.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.