Agile Defense

Presented at BSidesDC 2014, Oct. 18, 2014, 10:30 a.m. (50 minutes).

The ability to successfully mold with the evolving adversary will be critical in successfully defending an enterprise network. The open IOC community is a global framework of public, private, and government entities that embrace the open IOC concept as a method of detection and incident response. This community can baseline the entire Industrial Base presenting a unified defensive strategy enhancing the security of a nation. IOC Bucket enables everyone the search capability, where customers can search through its reputation database, for any one of the 500+ indicators in the IOC framework returning IOC matches for download. Learn how IOCs work, how to develop them, and how to use them with your current defense mechanisms.


Presenters:

  • Rob Johnston - Co-Founder at IOCBucket
    Meathead’s areas of professional expertise includes penetration testing, exploitation research, and network defensive technologies. He also has 7 years’ experience in the network security field. After graduating from the United States Naval Academy with a degree in Information Technology Meathead was selected as a data communications and satellite transmissions Officer. He is also a published author in the field of computer security his certifications include Certified Information Systems Security Professional (CISSP), Penetration Testing and Ethical Hacking (GPEN), Certified Ethical Hacker (CEH), Security +, and Network +.
  • Heather Ward - Co-Founder at IOCBucket
    WoW is currently an associate conducting assessments on applications, source code, and web assets. She has over 6 years of experience with DoD and 1 year with commercial networks. WoW has extensive knowledge on a vast number of security software tools used in the IA Community. She has a B.S. in Information Technology with a minor in Business and a graduate certificate in Project Management.
  • Nathan McBride - Co-Founder at IOCBucket
    Grrimm currently works as a CTO for Polito Inc. conducting penetration testing engagements for public and private clients. He studies a variety for languages such as Python, Java, C#, C, and the list goes on. Grrimm has over 10 years experience in the cybersecurity field within the DoD, federal agencies, and the public sector specializing in Unix security. He has obtained the GSEC, GPEN and Linux+ certifications. He has worked on numerous projects at various bases such as Quantico / Dahlgren, VA. He has both blue team and red team knowledge utilized by MCOTEA and HQMC C4 CY. He released his first android app last December called Binary Blackout and will continue to release security applications throughout this year.

Links:

Similar Presentations: