PLEASE JOIN US FOR THE NEXT INSTALLMENT IN THE BLACK HAT WEBCAST SERIES |
|
|
|
You May be Smarter than You Think: Thoughts on Applying Threat Intelligence in Practice |
|
|
|
Thursday, February 20, 2020 11:00AM - 12:00PM PDT // 60 MINUTES, INCLUDING Q&A | | Sponsored By:
| There are enemies at the gate. We’re overwhelmed by faceless adversaries with apparently endless time, resources and patience that just keeps sniping at us from the comfortably anonymous cover that the internet provides.
Feeding our insatiable hunger to 'Know Thy Enemy' are threat intelligence services, which have industrialized the supply of 'intelligence' about our adversaries. It is commonly commoditized as lists of IP addresses, domains, URLs, emails or file hashes that have been spotted being naughty elsewhere. Its purpose is ultimately to reveal something about how the baddies operate, where they're coming from and the footprints we can use to use to find and stop them.
But a list of things is not 'intelligence,' its data. For your business to get value from this data and make your security program better, faster or cheaper, the data needs to be applied within your operations in a practical and meaningful way. As unit leader for Threat Detection, Vulnerability Management and Threat Intelligence at a major European security services provider, Guest Presenter Charl van der Walt, Founder of SensePost, feels it is his job to know figure out how to make that happen.
Unfortunately, he hasn't.
He has, however, accumulated some useful insights, developed some hopeful ideas, learned a lot of hard lessons and even had a few successes.
His purpose in this presentation is to share those insights with you so that you can also turn your data into intelligence and maybe even get out of the bad guys head...and under his skin. |
|
|
|
|
|
|
|
|
Charl van der Walt Charl van der Walt is the original founder of SensePost - a pen testing company in South Africa and in the UK - where he still sits on the board. He has acted in various roles there, including CEO for about five years. After they sold SensePost to SecureData, he took a diverse role with the group that includes leading its research unit, directing security strategy, and leading the "Security Intelligence Unit," which (amongst other things) runs a significant Managed SIEM and Threat Hunting (MDR) Operation. He has spoken on a variety of occasions over the duration of his career, including Black Hat, HITB, DEF CON, NATA CCDCOE, BSides, and 44Con. |
|
|
|
Ashwin Radhakrishnan Ashwin Radhakrishnan has been with Anomali for over three years and now serves as the Product Manager for Anomali's flagship product, Anomali ThreatStream. He has helped bring to market a variety of functionalities which include Investigations, Read-Only Accounts, the Software Development Kit Suite, and many other features. Ashwin also serves as a voting member of both the OASIS Cyber Threat Intelligence and Threat Actor Context Technical Committees which help promote widespread adoption of threat intelligence standards. |
|
|
|
| Upcoming Black Hat Events |
|
|
|
March 31 - April 3, 2020 | Singapore |
|
|
|
August 1-6, 2020 | Las Vegas |
|
|
|
|