Attivo Networks Blogs

RSA Key Sessions for 2017

Reading Time: 3 minutes  |  Published: February 14, 2017 in Blogs

By Carolyn Crandall

RSA 2017  is in full swing this week and there are a number of sessions that we are classifying as “must see”.  We anticipate deception based detection technology to be covered both in formal meetings and information discussions during the conference.  However, since our ThreatMatrix platform now addresses so many vertical markets (financial, healthcare, IoT, SCADA, retail and hospitality) as well as new problems around phishing, cloud security, ransomware, unified swift collaboration in cybersecurity incident response, and assistance through our partners that can help with threat hunting and remediation, we’ve included some of those.  We’ve found some top talks for you but before you begin

Incident Response in the Public Cloud    

February 14, 2017 | 1:15 PM – 2:00 PM | Marriott Marquis | Nob Hill A

Facilitator: Alex Maestretti, Manager, Security Intelligence and Response Team, Netflix

Conducting incident response (IR) in a public cloud is the same but different. IR on servers is not new and the public cloud is just other people’s servers; however, the “other people’s” part changes things a bit. This session will discuss public cloud incident response in which “they” handle the hypervisor and below and you handle the kernel on up.

Sizzle or Fizzle: Is Threat Intelligence Really Worth My Time?     

February 14, 2017 | 1:15 PM – 2:00 PM | Marriott Marquis | Yerba Buena 8

Moderator: Dr. Anton Chuvakin, Research Vice President, Gartner

Panelist: Brian Engle, Executive Director, R-CISC

Panelist: Sean McBride, Attack Synthesis Lead, FireEye

Panelist: David Meltzer, CTO, Tripwire

This lively panel will pit the promises of security providers against the needs of enterprise defenders. Panelists will share the threat intelligence traps organizations should avoid, and how to operationalize this data for faster, more effective incident response. Attendees will leave knowing whether they’re ready to take on threat intelligence and, if so, how to get the most out of their investment.

The Future of Ransomware on the Internet of Things     

February 14, 2017 | 3:45 PM – 4:30 PM | Moscone West | 2002

Moderator: Brian Russell, Chair – Internet of Things (IoT) Working Group, Cloud Security Alliance

Panelist: Ed Fok, Transportation Technologies Specialist, Federal Highway Administration

Panelist: Aaron Guzman, Principal Security Consultant, SecureWorks

Panelist: Gib Sorebo, Chief Cybersecurity Strategist, Leidos

A panel discussion with experts across industry verticals will look at the future of ransomware for the consumer devices, health care devices, connected and autonomous vehicles that make up the IoT. We will discuss exploitation methods and impacts that future ransomware will have on these connected devices and methods that industry can work together to combat the threat from becoming pervasive.

Moving Beyond Legacy Endpoint Security Technology     

February 14, 2017 | 10:10 AM – 10:30 AM | South Expo Briefing Center

Supporting enterprises in complex and diverse environments requires technologically sophisticated security solutions to combat zero-day threats. Endpoint security providers sell legacy technology in layered formats, focusing on the reactive, as the only solution.  New products can secure a system against unknown threats in addition to threats that may hide their malicious behavior while supporting enterprises in complex and diverse environments.

Speaker: Richard Melick, Technology and Product Evangelist, Cylance

Securing IoT: Tech’s Latest Wild West    

February 14, 2017 | 11:45 AM – 12:30 PM | Marriott Marquis | Nob Hill D

IoT brings great opportunity for seamless experiences, but with few industry standards in place, it’s vulnerable to gaping security holes, evidenced in October’s DDOS attack, orchestrated via connected devices. Most don’t consider connected devices like cameras as threats, but anything connected to the Internet must be secured and protected. This talk will explore best practices for tackling IoT security.

Facilitator: David Levine, Vice President Information Security and CISO, Ricoh USA, Inc.

We hope you have a fun, inspiring and educational time at RSA.  We’ll be reporting back on what we see that you should know about but we also encourage you to provide your list of best session, demonstrations and booths to share with all our readers.  Contact us at

No Comments

Post a Comment

17 − 3 =