Using Open Tools to Convert Threat Intelligence into Practical Defenses: Threat Hunting Summit 2016
Threat actors are not magic and there is not an unlimited, unique list of threats for every organization. Enterprises face similar threats from similar threat sources and threat actors – so why does every organization need to perform completely unique risk assessments and prioritized control decisions? This presentation will show how specific, community-driven threat models can be used to prioritize an organization’s defenses – without all the confusion. In this
presentation James Tarala will present a new, open, community-driven threat model that can be used by any industry to evaluate the risk that faces them. Then he will show how to practically
use this model to prioritize enterprise defense and map to existing compliance requirements facing organizations today. Whether you are in the Department of Defense or work for a small mom-and-pop retailer, you will be able to use this model to specifically determine a prioritized defense for your organization.
James Tarala, Principal Consultant, Enclave Security; Senior Instructor, SANS Institute
James Tarala is a principal consultant with Enclave Security and is based out of Venice, Florida. He is a regular speaker and senior instructor with the SANS Institute as well as a courseware author and editor for many SANS auditing and security courses. As a consultant, he has spent the past few years architecting large enterprise IT security and infrastructure architectures, specifically working with many Microsoft-based directory services, e-mail, terminal services, and wireless technologies. He has also spent a large amount of time consulting with organizations to assist them in their security management, operational practices, and regulatory compliance issues, and he often performs independent security audits and assists internal audit groups in developing their internal audit programs. James completed his undergraduate studies at Philadelphia Biblical University and his graduate work at the University of Maryland. He holds numerous professional certifications.
ATTEND THE 2017 THREAT HUNTING SUMMIT: http://dfir.to/ThreatHunting2017
SANS THREAT HUNTING AND INCIDENT RESPONSE COURSES
FOR508: Digital Forensics, Incident Response, & Threat Hunting: http://sans.org/FOR508
FOR572: Network Forensics: http://sans.org/FOR572
FOR578: Cyber Threat Intelligence: http://sans.org/FOR578
Видео Using Open Tools to Convert Threat Intelligence into Practical Defenses: Threat Hunting Summit 2016 канала SANS Digital Forensics and Incident Response
presentation James Tarala will present a new, open, community-driven threat model that can be used by any industry to evaluate the risk that faces them. Then he will show how to practically
use this model to prioritize enterprise defense and map to existing compliance requirements facing organizations today. Whether you are in the Department of Defense or work for a small mom-and-pop retailer, you will be able to use this model to specifically determine a prioritized defense for your organization.
James Tarala, Principal Consultant, Enclave Security; Senior Instructor, SANS Institute
James Tarala is a principal consultant with Enclave Security and is based out of Venice, Florida. He is a regular speaker and senior instructor with the SANS Institute as well as a courseware author and editor for many SANS auditing and security courses. As a consultant, he has spent the past few years architecting large enterprise IT security and infrastructure architectures, specifically working with many Microsoft-based directory services, e-mail, terminal services, and wireless technologies. He has also spent a large amount of time consulting with organizations to assist them in their security management, operational practices, and regulatory compliance issues, and he often performs independent security audits and assists internal audit groups in developing their internal audit programs. James completed his undergraduate studies at Philadelphia Biblical University and his graduate work at the University of Maryland. He holds numerous professional certifications.
ATTEND THE 2017 THREAT HUNTING SUMMIT: http://dfir.to/ThreatHunting2017
SANS THREAT HUNTING AND INCIDENT RESPONSE COURSES
FOR508: Digital Forensics, Incident Response, & Threat Hunting: http://sans.org/FOR508
FOR572: Network Forensics: http://sans.org/FOR572
FOR578: Cyber Threat Intelligence: http://sans.org/FOR578
Видео Using Open Tools to Convert Threat Intelligence into Practical Defenses: Threat Hunting Summit 2016 канала SANS Digital Forensics and Incident Response
Показать
Комментарии отсутствуют
Информация о видео
13 августа 2016 г. 10:12:19
00:37:46
Другие видео канала
The Cycle of Cyber Threat Intelligence
Tales from the Network Threat Hunting Trenches & AI Hunter Demo
Quantify Your Hunt: Not Your Parents’ Red Team - SANS Threat Hunting Summit 2018
Threat Hunting in Security Operation - SANS Threat Hunting Summit 2017
Leveraging Curiosity to Enhance Analytic Technique - SANS Cyber Threat Intelligence Summit 2018
Open Source Intelligence 101
Build it Once, Build it Right: Architecting for Detection - SANS Tactical Detection Summit 2018
Death to the IOC: What's Next in Threat Intelligence
How To Use Threat Intelligence
Find_Evil - Threat Hunting | SANS@MIC Talk
OSINT: Sharpen Your Cyber Skills With Open-source Intelligence
Vulnerability Management: You're doing it wrong
What Are STIX/TAXII?
Owning a Building: Exploiting Access Control and Facility Management Systems by Billy Rios
Facets and realities of cyber security threats | Alexandru Catalin Cosoi | TEDxBucharest
ACM Webcast: Network Threat Hunting Runbook
SirenJack: Cracking a 'Secure' Emergency Warning Siren System
Revoke-Obfuscation: PowerShell Obfuscation Detection (And Evasion) Using Science
The Dark Arts of Social Engineering – SANS Security Awareness Summit 2018