Achilles Systems, a fictitious IT service provider to human resources teams in medium and large businesses, has fallen victim to an attack in which sensitive customer data and, potentially, customer networks, have been compromised. Achilles has a small security team who has historically focused on basic controls and compliance. However, it seems clear this attack was the work of a sophisticated adversary capable of circumventing the controls i...

The cloud has changed infrastructure for all organizations and Federal agencies are no exception. However, it’s not as easy as simply “flipping the switch” because there are a myriad of regulatory requirements and considerations to navigate, and it requires careful planning and implementation. Join us on March 26, 2024, at 10:30 ET where SANS analyst Matt Bromiley and Cisco’s Technical Marketing Engineer, Christian Clau...

The modern threat landscape is a maze of complexity and adversaries that want to impact your organization. The time of “good enough” security is over. We’ve got to look elsewhere in our environments, integrating as many sources of telemetry as possible into your security program. We’re calling for a paradigm shift, combining observability and security data to gain and operate on a holistic view of your environment. Join...

Cyberattacks are evolving, and your defenses need to, too. Join SEC401 author Bryan Simon, GSE, for this webcast unveiling the game-changing 2024 update to SEC401 Security Essentials: Network, Endpoint, and Cloud. Get hands-on with next-generation labs: 20 brand-new exercises based on real-world security breaches Master essentials skills to combat cloud server compromise, data leakage, phishing attacks, and rushed development See the scenarios...

We know that the threat landscape is ever-changing and that organizations are constantly looking for technologies and tools to help guide and augment their security efforts. In this survey, we look at spending habits, priorities, and decision-making processes when it comes to security technology. What drives organizations to spend the way they do? Is it risk factors, compliance needs, or looking to defend against the latest threats? Furthermor...

The Dragos OT Cybersecurity Year in Review is a mainstay for ICS asset owners and defenders to stay abreast of cyber threats, vulnerabilities, and frontline observations from the previous year. Covering the key OT cybersecurity events that shaped the threat landscape for industrial sectors, how the ICS community is performing, areas of improvement for safe and reliable operations. Join Dragos CEO and SANS Senior Instructor Robert M. Lee for a...

In the final part of the Cloud Security Flight Simulator series, join SEC540 lead author and instructor Eric Johnson to learn how to enable workload identity for AWS Elastic Kubernetes Service (EKS) and Azure Kubernetes Service (AKS). Rather than issuing long-lived credentials to individual pods or inheriting excessive permissions from the node, Kubernetes service accounts can use an internal OpenID Connect (OIDC) provider to obtain a signed i...

This is a 2 hour hands-on workshop. As with any enterprise environment, we can (and should) focus on hardening our defenses to keep the adversaries out, but these defenses may some day be evaded via a variety of methods. Cloud is no different. In this workshop, we will work through the process of creating a detection that we can use as defenders to spot an adversary performing attack techniques against our Azure environments. The overall proce...

Join us in Washington, DC or Free Live Online and walk away from Cyber Threat Intelligence Summit with new perspectives and learn from case studies that challenge CTI assumptions and result in a shift in your understanding. No matter your background or skill level, you’ll have the chance to learn, connect, and share with thousands of cybersecurity professionals in attendance from around the globe. Ask any of the returning attendees - a k...

Part 3: Continuing the Cloud Security Flight Simulator series, join SEC540 Cloud Security & DevSecOps Automation instructor Jon Zeolla for a webcast on software supply chain security. In a recent Sonatype State of the Supply Chain report, a 750% year-over-year increase in supply chain attacks was observed. In response to the increase in supply chain attacks, an Executive Order led to the development of supply chain security guidance includ...