Breakfast and Registration
Threat Detection Series Live!
New York City
Join the authors of Red Canary’s Threat Detection Report and other experts for a day of learning and discussion at SPYSCAPE. You’ll get exclusive insights into threats such as Qbot, Gootloader, and ransomware precursors, along with detection opportunities, mitigation advice, and custom atomic tests.
Meet with our experts in person and get:
- An overview of the 2023 Threat Detection Report, but notably what’s not in the report, including insights into what has already changed in the first quarter of 2023, brought to you by none other than Katie Nickels and Brian Donohue
- A look at the cloud threat landscape, including where we expect adversaries to operate and innovate in the months to come
- Our first ever Atomic Happy Hour, where we’ll share new, powerful open source tools that make adversary emulation with Atomic Red Team easier than ever
AGENDA for NYC | April 4, 2023 | SPYscape
9:00am - 10:00am
10:00am – 11:00am
Keynote: Detection showcase: Distilling the top threats, techniques, and trends | Katie Nickels, Brian Donohue
Red Canary ingested 250 petabytes of security telemetry from hundreds of organizations in 2022, triggering 32 million investigative leads and ultimately detecting more than 37,000 confirmed threats. The Threat Detection Report is our annual effort at making sense of not just the threats we detect, but the incidents we help our customers resolve, the research we conduct to improve our products and our partners’ products, and the broader threat landscape. Join keynote speakers Brian Donohue and Katie Nickels as they showcase some of their favorite findings from the report to help you and your team prioritize and thrive in 2023.
11:00am – 11:15am
15-minute break
11:15am – 12:15pm
Breakouts
#1: Train Hard, Fight Easy: Fast, effective response to modern threats | Gerry Johansen
New year, new threats. It is time to dust off the old playbooks and update them. From the endpoint to the cloud, threat actors are developing new techniques and fine-tuning old ones. In this session, you’ll learn how to create or modify response playbooks while also exploring tried-and-true methods for training your team to execute when adversaries come knocking.
New year, new threats. It is time to dust off the old playbooks and update them. From the endpoint to the cloud, threat actors are developing new techniques and fine-tuning old ones. In this session, you’ll learn how to create or modify response playbooks while also exploring tried-and-true methods for training your team to execute when adversaries come knocking.
#2: An introduction to Red Canary | Seth Geftic
Do you want to learn more about Red Canary and how we can help your organization? This is the session for you. We will explain how Red Canary eliminates alert fatigue, expands your coverage, and solves your talent and experience shortage challenge. You will hear real examples from customers who have protected more and worked smarter by working with Red Canary. Existing Red Canary customers will also benefit as you will hear about additional capabilities and features that your team may not be aware of.
Do you want to learn more about Red Canary and how we can help your organization? This is the session for you. We will explain how Red Canary eliminates alert fatigue, expands your coverage, and solves your talent and experience shortage challenge. You will hear real examples from customers who have protected more and worked smarter by working with Red Canary. Existing Red Canary customers will also benefit as you will hear about additional capabilities and features that your team may not be aware of.
12:15pm – 1:00pm
Lunch
1:00pm – 2:00pm
Breakouts
#1: Taking control of your attack surface: MDR for SaaS, identity, and cloud | Laura Hamel
Explore how Managed Detection and Response (MDR) can help you detect and thwart threats across your enterprise. This session will help you understand the threats beyond the endpoint that face your organization. You will learn how to adopt a proactive approach to securing your organization's most important digital assets and operations. Shore up your SaaS apps, identity services, cloud environments, and more all while reducing costs, eliminating alert fatigue, and increasing your team’s productivity.
Explore how Managed Detection and Response (MDR) can help you detect and thwart threats across your enterprise. This session will help you understand the threats beyond the endpoint that face your organization. You will learn how to adopt a proactive approach to securing your organization's most important digital assets and operations. Shore up your SaaS apps, identity services, cloud environments, and more all while reducing costs, eliminating alert fatigue, and increasing your team’s productivity.
#2: Holy propagation, Batman! Tracking Raspberry Robin | Stef Rand
Hear directly from the team behind the initial discovery of the Raspberry Robin activity cluster. Learn how we discovered this threat, how our understanding has evolved, and what others in the community have observed and added to this research over time.
Hear directly from the team behind the initial discovery of the Raspberry Robin activity cluster. Learn how we discovered this threat, how our understanding has evolved, and what others in the community have observed and added to this research over time.
2:00pm – 4:00pm
Partner happy hour
3:00pm – 4:00pm
Validation station: Using Atomic Red Team to test your defenses | Keith McCammon
Learn how to use Atomic Red Team to test security products, providers, and exercise your incident response program. We’ll share use cases and test plans based on the most commonly encountered threats and adversary techniques, and discuss how to perform high quality tests in a short amount of time, but also how to operationalize testing at scale using tools that integrate and enhance Atomic Red Team.