Presentation is loading. Please wait.

Presentation is loading. Please wait.

Detecting and Mitigating Threats: The Evolving Threat Landscape in the GCC

Published byJocelyn Pitts Modified over 6 years ago

Similar presentations

Presentation on theme: "Detecting and Mitigating Threats: The Evolving Threat Landscape in the GCC"— Presentation transcript:

1

2 Detecting and Mitigating Threats: The Evolving Threat Landscape in the GCC
Presented by: STUART DAVIS | Director, Global Services & Intelligence

3 Intro Who I am: Stuart Davis
Director, Global Services & Intelligence Europe, Middle East & Africa Previously, Consulting Services Manager, McAfee [Stuart to give his intro] Before we introduce APT33, allow us to introduce ourselves. <Stuart feel free to add any more slide content)

4 What problem do we have today?
Detect Something Alert You Ask you to check it

5 What problem do we have today?
Detect Something Alert You Ask you to check it We need to triage We need context

6 What problem do we have today?
Detect Something Alert You Ask you to check it We need to triage We need context We need to timeline

7 What problem do we have today?
Detect Something Alert You Ask you to check it We need to triage We need context We need to timeline We need to fully scope

8 Steps to APT Hunting APT Hunting
Threat Intelligence Capability / Service Incident Response HUNTING Network Forensics Threat Intel / Data Analytics Logs Analytics RESPONSE On-demand CIRT Services Response Capability Threat Detection & Response Advanced Threat Protection SIEM Monitoring SIEM NG Firewall DETECTION Incident Response Retainer IDS/IPS Firewall Anti-Virus

9 Sample SOC reference architecture
Ticketing Case Mgt. Asset Mgt. NetFlow Firewall Big Data Analytics SIEM Data Store IDS/IPS Malware/AV L2/3 SOC Analyst / Incident Responder L4 Proactive Hunt Team L1 SOC Analyst Endpoint NW Gateways Orchestration & Threat Intelligence

Download ppt "Detecting and Mitigating Threats: The Evolving Threat Landscape in the GCC"

Similar presentations

Security Life Cycle for Advanced Threats

Security Life Cycle for Advanced Threats
Presentation by: Peter Thomas Blue Lance, Inc Using SIEM Solutions Effectively to meet Security, Audit, and Compliance Requirements.

Presentation by: Peter Thomas Blue Lance, Inc Using SIEM Solutions Effectively to meet Security, Audit, and Compliance Requirements.
The Most Analytical and Comprehensive Defense Network in a Box.

The Most Analytical and Comprehensive Defense Network in a Box.
USMC Veteran – 2651 Secure Comms/Intel SysAdmin +14 Years in Information Technology/Security Specialties: Incident Response/Forensics Threat Intelligence.

USMC Veteran – 2651 Secure Comms/Intel SysAdmin +14 Years in Information Technology/Security Specialties: Incident Response/Forensics Threat Intelligence.
© 2014 Level 3 Communications, LLC. All Rights Reserved. Proprietary and Confidential. Polycom event Security Briefing 12/03/14 Level 3 Managed Security.

© 2014 Level 3 Communications, LLC. All Rights Reserved. Proprietary and Confidential. Polycom event Security Briefing 12/03/14 Level 3 Managed Security.
Staying Ahead of the Curve in Cyber Security Bill Chang CEO, SingTel Group Enterprise.

Staying Ahead of the Curve in Cyber Security Bill Chang CEO, SingTel Group Enterprise.
Thursday, January 23, 2014 10:00 am – 11:30 am. Agenda  Cyber Security Center of Excellence  Project Phase  Implementation  Next Steps 2.

Thursday, January 23, :00 am – 11:30 am. Agenda  Cyber Security Center of Excellence  Project Phase  Implementation  Next Steps 2.
The Most Analytical and Comprehensive Defense Network in a Box.

The Most Analytical and Comprehensive Defense Network in a Box.
Symantec Managed Security Services The Power To Protect Duncan Evans Director, Cyber Security Services 1.

Symantec Managed Security Services The Power To Protect Duncan Evans Director, Cyber Security Services 1.
Alert Logic Security and Compliance Solutions for vCloud Air High-level Overview.

Alert Logic Security and Compliance Solutions for vCloud Air High-level Overview.
USER ACTIVITY MONITORING: MITIGATING USER-BASED RISK Presented by XXXX.

USER ACTIVITY MONITORING: MITIGATING USER-BASED RISK Presented by XXXX.
Privacy Communication Privacy Confidentiality Access Policies Systems Crypto Enforced Computing on Encrypted Data Searching and Reporting Fully Homomorphic.

Privacy Communication Privacy Confidentiality Access Policies Systems Crypto Enforced Computing on Encrypted Data Searching and Reporting Fully Homomorphic.
Alert Logic Security and Compliance Solutions for vCloud Air High-level Overview.

Alert Logic Security and Compliance Solutions for vCloud Air High-level Overview.
1© Copyright 2014 EMC Corporation. All rights reserved. Applying the Power of Data Analytics to Cyber Security Dr. Robert W. Griffin Chief Security Architect.

1© Copyright 2014 EMC Corporation. All rights reserved. Applying the Power of Data Analytics to Cyber Security Dr. Robert W. Griffin Chief Security Architect.
Empowering Organisations to Thrive in the Face of Cyber Attacks An introduction to Resilient Systems Paul Ayers – General Manager, EMEA Chris Neely - Director.

Empowering Organisations to Thrive in the Face of Cyber Attacks An introduction to Resilient Systems Paul Ayers – General Manager, EMEA Chris Neely - Director.
NTT Com Security - Welcome to the “Attack Detection & Incident Response” Security Brunch Tom Hager Country Manager.

NTT Com Security - Welcome to the “Attack Detection & Incident Response” Security Brunch Tom Hager Country Manager.
MANAGED SECURITY TESTING PROACTIVELY MANAGING VULNERABILITIES.

MANAGED SECURITY TESTING PROACTIVELY MANAGING VULNERABILITIES.
Connected Security Your best defense against advanced threats Anne Aarness – Intel Security.

Connected Security Your best defense against advanced threats Anne Aarness – Intel Security.
ARAMA TECH D A T A P R O T E C T I O N P R O F E S S I O N A L S VISION & STRATEGY.

ARAMA TECH D A T A P R O T E C T I O N P R O F E S S I O N A L S VISION & STRATEGY.
ARAMA TECH D A T A P R O T E C T I O N P R O F E S S I O N A L S VISION & STRATEGY.

ARAMA TECH D A T A P R O T E C T I O N P R O F E S S I O N A L S VISION & STRATEGY.

Similar presentations

Ads by Google