Predicting Future Attacks and
Breaches: Analytics in Action
A SANS Institute webinar sponsored by SAS
The pace and sophistication of data breaches is forcing security teams to adjust their security strategies. Where prevention once was the sole focus, now it's clear that detection and response are just as important. Organizations aren’t finding the indicators of compromise within their environments soon enough, and they aren't responding to these incidents and removing them quickly enough.
In addition to rapid event detection, correlation and response, however, organizations need the capability to predict future trends based on past and current behavior. That’s where security analytics may prove especially useful.
This webinar explores the growing necessity of security analytics and examines some examples to support its adoption.
- Why security professionals aren't asking the right questions – and what those questions are.
- Why many monitoring tools and strategies haven't worked.
- What security analytics is (and what it isn’t).
- Potential future uses of security analytics.
Dave Shackleford is a SANS analyst, instructor, course author, GIAC technical director and member of the board of directors for the SANS Technology Institute. He’s also the founder and principal consultant with Voodoo Security and has consulted with hundreds of organizations in the areas of security, regulatory compliance, and network architecture and engineering.
A VMware vExpert, Shackleford has extensive experience designing and configuring secure virtualized infrastructures. He previously worked as Chief Security Officer for Configuresoft and as Chief Technology Officer for the Center for Internet Security. He currently helps lead the Atlanta chapter of the Cloud Security Alliance.
Christopher Smith is Director of Cybersecurity Strategy at SAS. He has 22 years of information technology and security experience in the public and private sectors. Prior to joining SAS in 2010, he served as Chief Technology Officer for the US National Park Service and as the Lead Enterprise Architect for various US federal agencies, the Presidential Transition Team and the White House. Smith holds the CISSP, INFOSEC, C|CISO, CCSP, and CEH security and technology certifications.