Next Meeting

First  Presentation:  Demystifying proactive threat hunting – What is threat hunting?

Speaker: Brian Gittinger, Senior Sales Engineer, Endgame

Abstract: Threat hunting is the process of actively looking for signs of malicious activity within enterprise networks without prior knowledge of those signs. It is a proactive approach to uncovering bad actors before they can steal your data or disrupt your business. Endgame’s hunt expert Brian Gittinger will be presenting on a practitioners guide to threat hunting for analysts who want to begin hunting today. This presentation provides analysts with hands-on tips on how to start hunting for techniques across the MITRE ATT&CK matrix.

* Basics of standing up a threat hunting operation

* What skills, data + tools are useful for reaching success

* Can I do this with the staff I have? What about external consulting services?

* Advanced Hunting: Evolving the threat hunting program

Bio: Brian brings a diverse background in InfoSec experience defending Fortune 100 Global IT ecosystems in addition to providing Cyber Security solutions to organizations in the form of managed security services and security products. Brian has 10 years of diverse IT Security and secure network architecture experience from his time at GE, as a Sales Engineer for Morphick Inc, (part of Booz Allen Hamilton thru acquisition in October 2017) and now currently as a Senior Sales Engineer with Endgame. While at GE as the WAN Architecture Program Manager, Brian led the first secure WAN re-design project that merged tested networking methodologies with emerging IT Security best practices together in one cohesive design that was implemented across the entire GE global WAN backbone. Brian also consulted for several Fortune 500 organizations while a Business and Technology consultant for Systems Evolution Incorporated. As a consultant, Brian advised and led IT and IT Security strategic initiatives when organizations were thinking about how to advance their productivity through IT solutions while remaining secure from the evolving threat landscape. Currently, Brian works for Endgame, an Endpoint Security Company headquartered in Arlington, VA, as a Senior Sales Engineer. In the role Brian consults with organizations to identify the best way to secure the end user and server compute environments with the Endgame technology. Brian holds a Bachelor of Communications degree in Communication Systems Management from Ohio University.

Second Presentation: IoT – Exploring the Threat Surface

Speaker: Jason Ortiz, Senior Integration Engineer, Pondurance

Abstract: The internet of things is now a household term and technologists have come to grips with the fact that there will be billions of non traditional devices connecting to the internet in the coming years. These devices will produce petabytes of data and require more and more advancements in infrastructure. The simplicity, ubiquity, availability and relatively low cost of these devices along with the unprecedented size of their network creates an enormous new threat surface. We are going to explore that threat surface with special emphasis on implementing security on the edge for these devices.

Bio: Jason is a Senior Integration Engineer at Pondurance and has worked in related roles for nine years since graduating from Purdue University with a BS in Computer Science in 2009. In his role at Pondurance, Jason divides his time evenly between supporting operations, performing research and development and integrating new capabilities. Jason is currently leading several distinct Pondurance efforts in IoT security. He is also developing new capabilities to combat emerging threats in new threat landscapes such as the medical industry, utilities and consumer grade systems.

Prior to joining Pondurance, Jason worked as a defense contractor in the Washington D.C. area. In addition to daily responsibilities of developing and integrating new capabilities to support an intelligence mission, he ran an IoT security lab for nearly 3 years. That lab was established to test security of a wide variety of IoT devices including consumer systems, infrastructure systems and SCADA systems. Prior to joining the Department of Defense, Jason was a mission control intern with NASA at Johnson Space Center where he worked to improve operational and security functions of shuttle and station software.

Jason loves the challenges brought forward by a career in cyber security and working to secure national infrastructure. Outside of cyber security, he considers himself a maker with a particular passion for educational technology, an amateur cartographer, an urban enthusiast and is fascinated by aerospace engineering and everything related to space exploration. He also enjoys playing soccer and basketball as well as rooting for the Colts, Pacers, Caps and Blues! Jason is excited to be “Back Home Again in Indiana” and to be part of the rising Indy tech community!