Innovative Blue Team Techniques Panel – PSW #677
We often hear that offensive security techniques are "sexier" than defensive blue team techniques. In this panel discussion, we attempt to level the playing field (on so many levels...) between attackers and defenders. Keeping the evil attackers out of our networks and systems is a daunting task that requires creative thinking and creative solutions.
This segment is sponsored by RiskSense.
Visit https://securityweekly.com/risksense to learn more about them!
Guests
David Kennedy is a Faculty member at IANS Research and Founder and Owner of TrustedSec, an information security consulting firm, and Binary Defense, a Managed Security Service Provider (MSSP) that detects attackers early to prevent large-scale invasions. In addition to creating several widely popular open-source tools, including ‘The Social-Engineer Toolkit’ (SET), PenTesters Framework (PTF), and Artillery. David has also released security advisories, including zero-days, with a focus on security research.
Prior to his work in the private sector, Dave served in the United States Marine Corps (USMC), focusing on cyber warfare and forensics analysis activities, including two tours to Iraq. He also served on the board of directors for (ISC)2, which is one of the largest security collectives and offers certifications such as the CISSP.
Brian has been writing about and researching information security for the last decade. He started his career as a journalist covering security and privacy. He later worked as a threat intelligence analyst, researching adversaries and threat techniques for a variety of major banks, retailers, and manufacturers. At Red Canary, Brian helps support open source tooling, and produces educational resources relating to threat research, intelligence, and detection engineering.
Doug Burks started Security Onion in 2008 to provide a comprehensive platform to help folks peel back the layers of their enterprise and make their adversaries cry. Today, Security Onion has over 1,000,000 downloads and is being used by organizations around the world for threat hunting, enterprise security monitoring, and log management. In 2014, Doug started Security Onion Solutions LLC to help those organizations by providing training, professional services, and hardware appliances. Doug is a CEO, public speaker, teacher, former president of the Greater Augusta ISSA, and co-founder of BSides Augusta, but what he really likes the most is catching bad guys.
Chris Abella is a Principal Systems Engineer with ExtraHop Networks, where he has spent eight years delivering network analytics and forensics at scale. His passion for data and applied machine learning shows up in the office and in his personal pursuits. Outside the office, he enjoys being a mediocre runner and passable cook.
Dr. Srinivas Mukkamala is a co-founder and the CEO of RiskSense, Inc. He has been researching and developing security technologies for over 15 years, working on malware analytics (focusing on medical control systems and nontraditional computing devices), breach exposure management, web application security, and enterprise risk reduction. Mukkamala was one of the lead researchers for Computational Analysis of Cyber Terrorism against the U.S. (CACTUS). He has been published in over 120 peer-reviewed publications in the areas of information assurance, malware analytics, digital forensics, data mining, and bioinformatics. He has a patent on Intelligent Agents for Distributed Intrusion Detection System and Method of Practicing. Mukkamala received his Bachelor of Engineering in Computer Science and Engineering from the University of Madras, before obtaining his Master of Science and Ph.D. in Computer Science from New Mexico Tech.