2020 Boston Virtual Super Symposium
MITRE ATT&CK & Zero Trust

#IANSBoston #IANSEvents

Thursday, June 4, 2020 | 10:00 AM - 12:30 PM
Web Conference, Boston, MA

Select a track to see more information:


with Dave Kennedy

IANS has run multiple workshops on threat hunting, purple teaming and tool selection, but MITRE ATT&CK has opened up a new range of possibilities for how to approach these areas.

This symposium will begin with an overview of how the framework works and then delve into several key areas. The agenda will include:

  • What MITRE ATT&CK is and how it works
  • Its applications for purple teaming, threat modeling/hunting, tool selection, and vulnerability management
  • Sigma, Caldera and Red Canary, and where they fit in
  • Commercial tools for attack simulation
  • Making MITRE ATT&CK part of your daily process

with Jake Williams

The Zero Trust vendor bandwagon is spilling over and organizations can’t keep up. They need help understanding which technologies fit into the concept and how best to configure them.

This symposium will break down Zero Trust principles into the basic components and help attendees place the pieces into an action plan that fits their organizations. The agenda will include:

  • Establishing the need for Zero Trust and examining the risks that organizations face
  • Knowing your capabilities: how cloud and mobile computing have changed security and the capabilities security teams now have in the cloud; how the landscape is changing for things like SIEM, SOAR, UEBA, SOAP and authentication protocols; and where Zero Trust principles come into play
  • A deep dive on Zero Trust and people, the risks it addresses, the journey to implement it, and metrics to measure success and drive the program forward
  • A look at apps that fit into Zero Trust programs
  • How to apply Zero Trust principles when managing IoT and other devices, including printers and those used for medical and manufacturing purposes

Audience

This regional in-person symposium has been updated to a virtual event and is intended for practitioners from the Boston metro area. For people outside of the region who wish to join, attendance is subject to capacity. We will inform out-of-metro registrants on the status of their registration one week in advance of the symposium.

This event is for IANS clients and invited guests — there is no vendor sponsorship or presence.

Let your colleagues know you're coming!

Register Now

* Required Fields

2020 Boston Virtual Super Symposium Facilitators

jake-williams

Jake Williams

IANS Faculty
Jake Williams, the founder of Rendition Infosec, has almost two decades of experience in secure network design, penetration testing, incident response, forensics and malware reverse engineering. Prior to founding Rendition Infosec, Williams worked with various government agencies in information security and CNO roles. He also works with SANS where he teaches and authors courses in Malware Reverse Engineering, Memory Forensics, Cyber Threat Intelligence, and Advanced Exploit Development. He is the two-time victor of the annual DC3 Forensics Challenge. He has spoken at Blackhat, DEFCON, Shmoocon, CEIC, RSA, EnFuse, and DC3 Conference (among others). His research areas include automating incident response throughout the enterprise, threat modeling and analysis, binary analysis, and malware C2. The primary focus of his work is increasing enterprise security by presenting complex topics in a way that anyone can understand.
dave-kennedy

Dave Kennedy

CEO, TrustedSec & IANS Faculty

Dave is the President and CEO of TrustedSec, an information security consulting company. David was a Chief Security Officer for an international Fortune 1000 company located in over 77 countries with over 18,000 employees. David developed a global security program with a large dedicated team. He is considered a thought leader in the security field and has presented at many conferences worldwide and had guest appearances on FoxNews, BBC, and other high-profile media outlets. David is the Founder of DerbyCon, a large-scale security conference in Louisville, KY. He also authored Metasploit: The Penetration Testers Guide, which was number one on Amazon.com in security for over 6 months. David is a founding member of the "Penetration Testing Execution Standard (PTES)," the industry leading methodologies and guidelines for performing penetration tests. Dave received a BA of Arts from Malone University in Ohio. Dave has many certifications including OSCE, QSA, OSCE, OSCP, CISSP, ISO 27001, GSEC, and MCSE. Dave also served in the Marines for five years working on intelligence related missions. He enjoys scuba diving, handy work, Destiny, fine bourbons and getting away to the country without cell reception.

Web Conference

Registrants will receive a logistics email with web conference meeting information one day prior to the event.

Attendee Qualification

This Symposium is produced by IANS, which reserves the right, in its sole discretion, to limit or deny access to the Symposium to any entity or individual. IANS’ receipt of a registration application does not constitute acceptance. Individuals from Information Security Solution Providers (software, hardware, and consulting companies) are not eligible to attend. Symposiums are open to IANS clients that are Credential Holders and qualified Information Security Practitioners identified by IANS.

Attendee Contact

ians@iansresearch.com

Check out IANS other upcoming events