The Threat Hunter's Toolkit: Traits, Techniques, and Favorite Tools of the Trade

For years, most IT security organizations have waited to detect new threats and then moved swiftly to defend against them. Today, however, there is a new wave of “threat hunting,” in which the security team takes a more proactive approach --seeking out potential threats using analytical tools. How do these enterprises build threat hunting programs? How do they staff them, and what tools do they need? In this Dark Reading webinar, a top expert discusses the process for building a threat hunting program, and for optimizing the efforts of designated threat hunters in the organization.

Available:
On Demand
Duration:
1h 00min

Attend this webinar and you'll:

  • Learn how to make time for hunting threats when you're already too busy swatting at security alerts
  • Learn what clues a threat hunter looks for to track and locate active attackers
  • Discover ways to streamline secops and empower human security analysts to take on attackers when they least expect it

Featured Speakers

  • John Sawyer
    John Sawyer
    Director of Services, Red Team
    IOActive, Inc

    John has more than two decades of IT experience including an extensive background in offensive security, intrusion analysis, and forensics. He's earned numerous certifications, two DEF CON Capture the Flag black badges, and co-founded the University of Florida Student Infosec Team. John has a passion for helping others dig deeper into the complex world of security.

  • Menachem Perlman
    Menachem Perlman
    Sr Mgr, Threat Hunting
    Cortex at Palo Alto Networks

    Menachem Perlman is a Sr. Research Manager of Managed Threat Hunting at Palo Alto Networks. Menachem joined Palo Alto Networks a couple of years ago to help and mitigate advanced threats and adversaries working with customers around the world. Before joining Palo Alto Networks, Menachem worked with multiple cyber security companies helping customers improve their security environments and mitigate threats.

  • Tim Wilson
    Tim Wilson
    Editor in Chief and Co-Founder
    Dark Reading

    Tim Wilson is Editor in Chief and co-founder of Dark Reading.com, UBM Tech's online community for information security professionals. He is responsible for managing the site, assigning and editing content, and writing breaking news stories. Wilson has been recognized as one of the top cyber security journalists in the US in voting among his peers, conducted by the SANS Institute. In 2011 he was named one of the 50 Most Powerful Voices in Security by SYS-CON Media.

Sponsored By