Description
We've seen recreations and online exploits presented from the attacker's point of view, but what do these attacks look like on the defender's side? In this informative session, a top security operations center (SOC) expert will show, step-by-step, how an attack appeared in an organization and the steps to correlate information about the attack and develop an effective mitigation strategy.
Get a look into the detection process from the defender's perspective, including behind-the-scenes of a SOC, real-time correlation against indicators of compromise (IOC), analysis, hunt, remediation and more. Hear war stories about specific incidents and attacks, along with how they were identified and remediated. You'll also gain insight on how a SOC can identify a sophisticated attack sooner in its evolution, helping minimize the damage it might cause.
Presenter
Brandon Harms is a Pre-Sales Systems Engineer at Arctic Wolf Networks with over 18 years of experience working at large telecom and financial firms in technology roles including network security engineering. Previous positions have included six years as a penetration tester for a cybersecurity firm, a Russian linguist and network engineer for the Department of Defense, and CTO of an MSSP. Brandon is a member of the GIAC Advisory Board and has held many industry certifications including GPEN: GIAC Penetration Tester, CISSP: Certified Information Systems Security Professional and C|EH: Certified Ethical Hacker.
Lunch Sponsor
Arctic Wolf Networks and Cambridge Computer
#Columbus
#Security
#ServerOperationsandSecurity
#LegalSEC