Training: Developing and Using Threat Intelligence (closed)

Presented at DeepSec 2015 „DeepSec No. 9“, Unknown date/time (Unknown duration).

Traditional security defense tools are increasingly unable to protect against emerging and current attacks. The modern attacker has adopted advanced tools and techniques that are unable to be stopped with traditional firewalls, intrusion detection and anti-virus software. Meanwhile, dedicated attackers attempt intrusions over months and years, while going undetected, to steal valuable information, trade secrets and financial information. Defense techniques that leverage information about attackers and their techniques however, provide the ability to greatly enhance the security of an organization. Modern defenses can integrate intelligence and counterintelligence information which greatly increases the ability to keep attackers out and to detect their presence quickly. This course will teach students about the tools they can use to gain insight into attacks and to integrate them into their organization. This course will be a mix of lecture and hands-on training so students will be equipped on day one to go back to their work and start using threat intelligence to protect their networks.


Presenters:

  • John Bambenek - Fidelis Cybersecurity & SANS Internet Storm Center
    John Bambenek is a Sr. Threat Analyst at Fidelis Cybersecurity and an incident handler with the Internet Storm Center. He has been engaged in security for 15 years researching security threats. He is a published author of several articles, book chapters and one book. He has contributed to IT security courses and certification exams covering such subjects as penetration testing, reverse engineering malware, forensics, and network security. He has participated in many incident investigations spanning the globe. He speaks at conferences around the world and runs several private intelligence groups focusing on takedowns and disruption of criminal entities.

Links:

Similar Presentations: