** Join us for our second August Chapter Meeting **
Topic: Anatomy of a Cyber Attack
The presentation will focus on a common attack vector which highlights how an external attacker can exploit basic Windows functionality to gain temporary access to an O365 tenant, move laterally to establish an on-premises foothold, escalate privileges, and gain access to sensitive enterprise data. The first part of the presentation will walk through the attack scenario. Once the attack is complete, we will shift gears to the Blue Team and show how an analyst would be able to use the Data Security Platform to perform a forensic investigation, piecing this timeline back together. Using threat detection capabilities, the analyst will be able to understand the malicious actions performed by the attacker and analyze how an automated response would be able to prevent a similar scenario from occurring again in the future.
Speaker: Ryan O'Boyle, Security Analytics Manager
Ryan O’Boyle, GCIH is a Team Lead for the Incident Response and Security Architecture team at Varonis. Ryan has an engineering background with experience in IT infrastructure, Incident Response, and Data Protection. Varonis’ team of security professionals provide complementary Incident Response services to all existing customers. In addition, they work with customers to operationalize the Varonis Data Security Platform and integrate Varonis into the security ecosystem.
Location: Go To Meeting Link:
When: Friday, August 28, 11:30 AM to 1:00 PM
We will have two giveaways per online chapter meeting:
Contact us via email by clicking on the following
InfoSec Nashville Chair
If you prefer postal mail, our address is:
Middle Tennessee ISSA Chapter
P.O. Box 1431
Brentwood, TN 37027-1431