Following a hugely successful initial run of the new security operations leadership course, MGT551, some of SANS best blue team minds have come together to build a brand new 5-day version of Building and Leading Security Operations Centers! Expanding upon the initial course themes of SOC design, organization, evaluation, and improvement, the new MGT551 offers an in-depth look at what it takes to build and manage next-level cyber defenses inclu...

Take a new look at Cisco Secure Email. We've radically simplified the way email is protected and how companies choose to migrate to the cloud. We've enhanced our comprehensive protection to defend against all attack methods with pinpoint accuracy. And we've raised the bar on integration with coordinated, multi-layered email security controls and the built-in capabilities of SecureX. We've optimized Secure Email to live up to its name more fully.

This SANS survey explored the types of services organizations are using, what types of controls and tools provide the most value, and how effective cloud security brokering is for a range of use cases. in this webcast, SANS analyst Dave Shakleford will join sponsor speakers to explore how survey results can inform and improve your cloud security posture. Register for this webcast to be among the first to receive the associated whitepaper writt...

The cybersecurity community is evolving from a fortress mentality of "network defense" to a "threat-informed defense" approach to achieve cybersecurity effectiveness, with purple team operations at the center. Why is this happening and what does this transition mean? Over the last decade, the U.S. military has been at the forefront of the transition to threat-informed defense operations, first in the intelligence-operations bond that developed...

Wondering which ICS assets are most commonly targeted and which assets to obtain security logs for your OT SOC? Looking for ICS incident response tabletop ideas? How to start an ICS assessment (pen test vs. vulnerability assessment) or see how the NIST CSF Categories map to whats important in ICS? We have recently published a series of ICS Cheat Sheets to guide the community in answering these questions. Join us in this webcast as Dean provide...

Join us for an update on the 2012 classic Thirteen Ways to Break a Firewall. We review an updated list of 13 common kinds of breaches, with a host of real-life examples. These intrinsic weaknesses are the big reason secure sites demand at least one layer of unidirectional protection in their defense-in-depth architectures.

Designed for security leaders tasked with managing a growing attack surface, the SANS Attack Surface Management Virtual Conference will take place on April 14, 2021 as a virtual event. This half-day event will bring together thought leaders, subject matter experts and practitioners to discuss, share and discover best practices for addressing the operational challenges associated with work-from-home transitions, cloud migrations, M&A, shado...

*To attend this webcast, login to your SANS Account or create your Account on the SANS website. In addition to the challenge brought on by the global pandemic, civil and social unrest, and a contentious political climate, organizations are also experiencing a massive spike in cybersecurity attacks related to their use of third parties ("Solargate"). This environment is systemically increasing the level of difficulty facing cybersecurity profes...

Network detection and response (NDR) platforms built on open source technologies like Zeek and Suricata offer SOCs greater flexibility and choice compared to closed platforms. Moreover, an open NDR platform can act as a security team force multiplier via the power of their global communities, such as the ability to accelerate responses to zero-day exploits via community-driven detection engineering. This technical webcast will review popular o...

As more organizations shift their IT strategies to cloud-based infrastructure, security teams are also evolving to use cloud security services that offer new and more effective controls and capabilities. These may include services and tools that provide network connectivity and security for end users and office locations, security monitoring and policy controls, and identity services, among others. This SANS survey explored the types of servic...