Ask 5 people what threat hunting is, and you’ll get 6 different answers, because when it comes to threat hunting, it’s still the Wild West. This workshop will cut through all of the nonsense and give you real world practical knowledge of why threat hunting is a critical part of any security program. We’ll discuss tactics and techniques used by world class hunters around the globe, and give you a framework for getting your analysts started, regardless of their skill level. Then we’ll jump into several hands on scenarios that will let you put into action some of the techniques we just discussed. But don’t sweat it if you feel overwhelmed, our experts will be on hand to help walk through each scenario in detail so everyone walks away with a solid grasp of the value of the hunt.  Come spend the day with us, where we’ll give you the heads up on hunting, and the hands on experience to put it into action.

WORKSHOP FOCUS: Cyber Threat Hunting Methodologies and Exercises using Security Tools
RECOMMENDED AUDIENCE: This is an educational and hands on workshop. Knowledge of network protocols is required.
CPE CREDITS: This workshop is eligible for 6 CPE credits. Certificates will be passed out at the conclusion of the workshop.

WORKSHOP DETAILS:
Tuesday, February 18, 2020
8:30 AM – 4:00 PM
UMBC Training Centers
6996 Columbia Gateway Dr #100
Room 12 / Ale Room
Columbia, MD 21046

The hands-on exercises will utilize attendees’ devices.  

AGENDA
8:30 AM – Registration & Kick off
9:00 AM – The Importance of a Threat Hunter
Hunting Methodology, The Importance of Logs, Packets and Endpoint, role of Automation
10:30 AM – Phishing Exercise
11:30 AM – Catered Lunch with RSA NetWitness Overview
12:15 PM – Hands-on Exercises – Webshell Attack & Drive by Download
2:30 PM – COMPETITION – PRIZE AWARDED
4:00 PM – Conclude

Attendance is reserved for RSA customers and prospects only. Partners and other vendors please contact Brittany.Blackburn@rsa.com to inquire about eligibility to attend.