2023 Training Class Descriptions - Information Security Summit

Monday Training Classes

Beyond IOCs: How to Effectively Threat Hunt using TTPs and Behaviors – 8:30 am – 5:00 pm
Instructor: Lee Archinal, Sr. Threat Hunter and Content Developer, Cyborg Security
This course is designed to provide the students with hands-on experience in behavioral threat hunting. This includes covering common models and how they relate to threat hunting, how to operationalize an intel report focusing on tactics, techniques, and procedures (TTPs), how to leverage intelligence to initiate and conduct a hunt, data pivoting from initial query to results, proper documentation techniques to compile and organize findings in a repeatable manner. The culmination of this process will be a series of simulated attack chains using real world adversary TTPs, that we like to call the crawl phase. The crawl phase will provide students with the opportunity to go hands-on with the data in a step-by-step hunting tutorial. This practical session will allow students to experience threat hunting in a structured and controlled manner, and allow them to practice the topics that were covered.

Students will be required to bring a laptop that meets these requirements: OS: Windows/OSX/Linux Memory: 8 GB RAM CPU: 4 cores Free Space: 50 GB Recommended Browser(s): Google Chrome / Microsoft Edge Virtual Box already installed on their machine. Other recommended applications: A way to view a pdf. A way to view and edit an Excel type document. As an optional requirement, if the student would want to leverage the Hunter platform before, during, or after the training, they would have to register for a community account well before the training.

Certified Enterprise Resiliency Practitioner Certification (Day 1 of 2) – 8:30 am – 5:00 pm
Instructor: John DiMaria, CSA STAR Program Director, Cloud Security Alliance
ISS has updated and resurrected their CERP certification training. This 2-day class will introduce students to the practice of resiliency and the concept of Enterprise Resiliency. Students will receive a copy of the BS 65000:2022 Organizational Resilience – Code of practice. Throughout the 2-day class students will discover and document how they can contribute to their organization’s/department’s resiliency strategy, as well as achieve their CERP certification.

To get the most out of the training class, students should have an understanding of their organization’s strategic goals, and/or their department/division goals . Laptops are permitted. All other required materials will be supplied by the instructor.

Tuesday Training Classes

Certified Enterprise Resiliency Practitioner Certification (Day 2 of 2) – 8:30 am – 5:00 pm
Instructor: John DiMaria, CSA STAR Program Director, Cloud Security Alliance
ISS has updated and resurrected their CERP certification training. This 2-day class will introduce students to the practice of resiliency and the concept of Enterprise Resiliency. Students will receive a copy of the BS 65000:2022 Organizational Resilience – Code of practice. Throughout the 2-day class students will discover and document how they can contribute to their organization’s/department’s resiliency strategy, as well as achieve their CERP certification.