The Strategic Advantage of Adaptive Multi-Engine Advanced Threat Protection (RSA Conference 2017)
The dramatic rise in malicious code designed to evade detection, specifically from network sandboxes, caused industry analysts to suggest the deployment
ghting Cybercrime Using the Blockchain (RSA Conference 2017)
Bitcoin is sometimes described as the “currency of criminals,” and we all see stories about how criminals use bitcoin to move money and extract ransoms. But did you know that law enforcement
Intelligence-Led Security: Powering the Future of Cyber-Defense (RSA Conference 2017)
A new class of intelligence-led security is powering the future of cyber-defense, driven by deeper and broader visibility into the attacker ecosystem. This session w
What We’ve Learned Building a Cybersecurity Operation Center: du Case Study (RSA Conference 2017)
The cybersecurity landscape is rapidly evolving, with new threats and threat actors emerging, and traditional security operations centers (SOCs) need to
A Vision for Shared, Central Intelligence to Ebb a Growing Flood of Alerts (RSA Conference 2017)
Despite the positive advancements in machine learning and intelligence, security professionals remain overwhelmed. How is it that we keep wasting time and
Expanding your Blue Team by Creating Security Culture (RSA Conference 2017)
In 2012, Salesforce launched a program aimed at increasing the difficulty of a successful phishing attack on their employees. By driving vulnerability reporting through posit
Keeping Up with the Adversary: Creating a Threat-Based Cyber-Team (RSA Conference 2017)
With advanced cyber-actors evolving quickly and becoming more stealthy, it has become imperative to question the status quo of our existing cyber-operations. This
A Fully Automated SOC: Fact or Fiction (RSA Conference 2017)
Organizations continuously look to drive more value with less resources for their security operations. The deluge of data and lack of skilled security professionals highlight the critical ne
Learnings from the Cloud: What to Watch When Watching for Breach (RSA Conference 2017)
Protecting against account breach and misuse when using a cloud service can be challenging, as the cloud service decides what tooling is available, and control may
Isolating the Ghost in the Machine: Unveiling Post Exploitation Threats (RSA Conference 2017)
During the past year IR teams and security researchers around the world witnessed a rise in the use of legitimate tools and common scripts in malware and APT
Your Sector Doesn’t Matter: Achieving Effective Threat Prioritization ( RSA Conference 2017)
Many organizations’ security functions determine what threats they care about based on what threats are known to be affecting their sector, or comparably sim
The Human Exploitation Kill Chain (RSA Conference 2017)
Whenever a user falls victim to a phishing or other social engineering attack, or makes an error, critics claim awareness efforts are useless. However, if a single user action can compromise an e
Lessons from Billions of Breached Records (RSA Conference 2017)
What motivates attackers to dump data publicly? How is it sold, traded and redistributed? These are questions the presenter dealt with while running the ethical data breach search service
Weaponizing Intelligence: Interdiction in Today’s Threat Landscape (RSA Conference 2017)
The threat environment is evolving every single day. As adversaries find more efficient and effective ways of making money they will reinvest that money to create
Achieving and Measuring Success with the Security Awareness Maturity Model (RSA Conference 2017)
Far too often security awareness officers are not sure what stage their awareness program is at, what success looks like or what path to take to achieve
Opening the Door to DoD Perspectives on Cyber Threat Intelligence (RSA Conference 2017)
Cyber threats are growing in volume and variety. It is critical for the security industry to understand how to help DoD improve its cyber-intelligence. Defence In
How To Improve Phishing Awareness by 300% in 18 Months (RSA Conference 2017)
Employees are our front line of defence, but it is our responsibility as security professionals to educate and equip them with the tools and knowledge they need in order to
Can I Get a Witness? Technical Witness Bootcamp (RSA Conference 2017)
As the stakes rise in data breach litigation, more and more information security professionals will be called upon to testify on behalf of their organization. This boot camp will te
Deep Impact: Explore the Wide-Reaching Impact of a Cyberattack (RSA Conference 2017)
The impacts of a cyberattack are long-lasting and extend well beyond technology. In this cyber-wargame, participants will test their assumptions and incident response
Au Natural: Adventures in NLP and Threat Intel (RSA USA 2017)
In July 2016, Google released their Cloud Natural Language API; multilingual entity extraction sounded like a fun thing to play with and it was cheap. This led to a series of experiments t
The Atlanta Pen Test Chapter has officially begun and is now actively underway.
Atlanta CISOs and security teams have kicked off Pen Test Chapter #1 (Virtual), an ongoing working series focused on drafting Pen Test Maturity Model v0.1, designed for an intel-led, exploit-validated, and AI-assisted security reality. The chapter was announced at …
