BETHESDA, Md., March 21, 2019 /PRNewswire/ — SANS Institute, the global leader in cyber security training, today announced the agenda for SANS Atlanta 2019 (#SANSAtlanta) taking place May 28-June 2 in Georgia. Courses will cover cyber defense, penetration testing, digital forensics, ICS security, and more. Cyber security expert Peter Szczepankiewicz (@_s14) will give an evening talk on Automating NIST Risk Management Framework (RMF) / 800-53.
According to Szczepankiewicz, “Doing good cyber security is so much more than inspection compliance. We’ve all seen it. You’re 100% compliant and can still get hacked! But after decades of gathering security information from your global enterprise, measured in gross tonnage, the converse is also true. Weighed down with lakes of data, very interesting things start to happen when you view portions of your data through the lens of the NIST Risk Management Framework. You realize that there are phantom scripts running around in your network, written by your own staff. People on vacation have accounts that are somehow still actively logging in and out, from many VPNs! Your vulnerabilities, coupled with your outbound packets reveal file-less malware that doesn’t use command and control. As a standard course of action, one should be detecting violations in real time, as well as searching with this lens. Come learn about specific real time correlation rules that your peers are using for NIST RMF and join in this discussion about what is working in the field. While not all of NIST RMF can be automated, what can be automated should be automated.”
In addition to his talk, Szczepankiewicz will teach SEC504: Hacker Tools, Techniques, Exploits, and Incident Handling. Attackers are targeting systems with increasing viciousness and stealth. This course helps students turn the tables on computer attackers by teaching a time-tested, step-by-step process for responding to computer incidents. A detailed description of how attackers undermine systems will help students prepare, detect, and respond to them.
SANS Atlanta 2019 features courses for all skill sets. Those new to cyber security will benefit from SEC401: Security Essentials Bootcamp Style. More courses to help you accelerate your career will be offered like SEC487: Open-Source Intelligence (OSINT) Gathering and Analysis, SEC542: Web App Penetration Testing and Ethical Hacking, and ICS456: Essentials for NERC Critical Infrastructure Protection.
For a complete list of courses and evening talks, or to register for SANS Atlanta 2019, visit:
About SANS Institute
The SANS Institute was established in 1989 as a cooperative research and education organization. SANS is the most trusted and, by far, the largest provider of cyber security training and certification to professionals at governments and commercial institutions world-wide. Renowned SANS instructors teach over 60 different courses at more than 200 live cyber security training events as well as online. GIAC, an affiliate of the SANS Institute, validates a practitioner’s qualifications via over 30 hands-on, technical certifications in cyber security. The SANS Technology Institute, a regionally accredited independent subsidiary, offers master’s degrees in cyber security. SANS offers a myriad of free resources to the InfoSec community including consensus projects, research reports, and newsletters; it also operates the Internet’s early warning system–the Internet Storm Center. At the heart of SANS are the many security practitioners, representing varied global organizations from corporations to universities, working together to help the entire information security community. (https://www.sans.org)
SOURCE SANS Institute