Breakfast and Registration
Threat Detection Series Live!
Chicago
Join the authors of Red Canary’s Threat Detection Report and other experts for a day of learning and discussion at American Airlines Conference Center at Wrigley Field. You’ll get exclusive insights into threats such as Qbot, Gootloader, and ransomware precursors, along with detection opportunities, mitigation advice, and custom atomic tests.
The day will wrap up with a happy hour to connect with like-minded individuals and private tours of the historic Wrigley Field.
Meet with our experts in person and get:
- An overview of the 2023 Threat Detection Report, but notably what’s not in the report, including insights into what has already changed in the first quarter of 2023, brought to you by security experts
- A look at the cloud threat landscape, including where we expect adversaries to operate and innovate in the months to come
- Our first ever Atomic Happy Hour, where we’ll share new, powerful open source tools that make adversary emulation with Atomic Red Team easier than ever
AGENDA for Chicago | May 3, 2023 | Wrigley Field
9:00am - 10:00am
10:00am – 11:00am
Keynote: Ready, Detect, Respond - Building confidence in your defenses | Keith McCammon
Explore the concept of security readiness, and what it means for security teams to be ready when it comes time to respond to modern threats, framed by a harrowing real-life scenario. Learn how we can model, mature, and operationalize readiness activities, enhancing foundational security practices that improve defensive capabilities.
11:00am – 11:15am
15-minute break
11:15am – 12:15pm
Breakouts
#1: Swimming upstream: Moving from detection to prevention | Adina Bodkins
We instinctually move from detection to response; now that I’ve detected this threat, how do I respond to it? What if we instead used detection opportunities to establish a prevention-engineering discipline? In this talk, we’ll examine detections with an eye specifically toward the identification of prevention opportunities while addressing common hurdles to implementing prevention controls.
We instinctually move from detection to response; now that I’ve detected this threat, how do I respond to it? What if we instead used detection opportunities to establish a prevention-engineering discipline? In this talk, we’ll examine detections with an eye specifically toward the identification of prevention opportunities while addressing common hurdles to implementing prevention controls.
#2: An introduction to Red Canary | Alex Spiliotes
Do you want to learn more about Red Canary and how we can help your organization? This is the session for you. We will explain how Red Canary eliminates alert fatigue, expands your coverage, and solves your talent and experience shortage challenge. You will hear real examples from customers who have protected more and worked smarter by working with Red Canary. Existing Red Canary customers will also benefit as you will hear about additional capabilities and features that your team may not be aware of.
Do you want to learn more about Red Canary and how we can help your organization? This is the session for you. We will explain how Red Canary eliminates alert fatigue, expands your coverage, and solves your talent and experience shortage challenge. You will hear real examples from customers who have protected more and worked smarter by working with Red Canary. Existing Red Canary customers will also benefit as you will hear about additional capabilities and features that your team may not be aware of.
12:15pm – 1:15pm
Lunch
1:00pm – 2:00pm
Breakouts
#1: Holy propagation, Batman! Tracking Raspberry Robin | Stef Rand
Hear directly from the team behind the initial discovery of the Raspberry Robin activity cluster. Learn how we discovered this threat, how our understanding has evolved, and what others in the community have observed and added to this research over time.
Hear directly from the team behind the initial discovery of the Raspberry Robin activity cluster. Learn how we discovered this threat, how our understanding has evolved, and what others in the community have observed and added to this research over time.
#2: Taking control of your attack surface: MDR for SaaS, identity, and cloud | Laura Hamel
Explore how Managed Detection and Response (MDR) can help you detect and thwart threats across your enterprise. This session will help you understand the threats beyond the endpoint that face your organization. You will learn how to adopt a proactive approach to securing your organization's most important digital assets and operations. Shore up your SaaS apps, identity services, cloud environments, and more all while reducing costs, eliminating alert fatigue, and increasing your team’s productivity.
Explore how Managed Detection and Response (MDR) can help you detect and thwart threats across your enterprise. This session will help you understand the threats beyond the endpoint that face your organization. You will learn how to adopt a proactive approach to securing your organization's most important digital assets and operations. Shore up your SaaS apps, identity services, cloud environments, and more all while reducing costs, eliminating alert fatigue, and increasing your team’s productivity.
2:00pm – 4:00pm
Partner happy hour + private tours of Wrigley Field
3:00pm – 4:00pm
Validation station: Using Atomic Red Team to test your defenses | Paul Michaud
Learn how to use Atomic Red Team to test security products, providers, and exercise your incident response program. We’ll share use cases and test plans based on the most commonly encountered threats and adversary techniques, and discuss how to perform high quality tests in a short amount of time, but also how to operationalize testing at scale using tools that integrate and enhance Atomic Red Team.