When:
Thursday, October 28th, 6:45 – 8:00 PM
Where: Virtual
See confirmation email for information about the Zoom meeting.
If you did not receive a confirmation, please email communications @ triadnc.issa.org
Cost: Free
If you know of any other security professionals that may be interested in attending, please forward this invite on to them and copy us on your correspondence.
Agenda:
Chapter business (6:45 pm – 7:00 pm)
Presentation (7:00 pm – 8:00 pm)
Topic: Looking at Security Through the Eyes of an Attacker
Have you ever wondered how an attacker would operate in your environment? Large or small, on-premise, cloud or hybrid; understand what an attacker can see, pivot to and exploit. Learn how to differentiate vulnerable from exploitable, and focus your team or yourself on the issues that matter. We will take open-source tools and Node Zero (Free fully functional trial) to guide red-teaming, purple-teaming, or whatever color teaming you do. Placing a single docker container operating as a command-and-control node we will discover the blast radius, lateral movement and simulate many other different scenarios to help understand the risks, behaviors and products that are creating the largest attack surface. Learn new TTP’s Tactics Techniques and procedures to guide faster “find, fix and verify” loops to identify exploitable risks and close the gaps in security that really matter.
Presenter:
Michael Buehler is a Java developer turned Observability specialist, with experience in both the Intelligence and Defense fields. Michael currently works as a Senior engineer with Horizon3.ai guiding daily Site Reliability Engineering, Observability, and any additional hats as needed. Prior to being with Horizon3.ai Michael was a thought leader at Splunk working in Professional Services as a Staff Architect, as well as Tech Lead for Cloud and Core Splunk products. With Splunk, Michael guided deployments with Major US Government agencies from MDA (Missile Defense Agency) to HHS (Health and Human Services) deploying IoT, ITops, SIEM, SOAR, and Data Stream Processing.
Company:
Horizon3.ai was founded in 2019 by Snehal Antani, former CTO of Splunk and CIO of GE Capital, and Tony Pillitiere, a USAF veteran of 20+ years and former Deputy CTO of the USAF. Today more than a third of our staff is made up of US veterans who were US nation state level hackers and first-line offensive hackers hunting terrorists in cyberspace. At Horizon3.ai, our mission is to help identify and contextualize ineffective security controls and kill chains that can be exploited; all without consultants or up-front configurations. By leveraging our Autonomous Pentesting platform, we call NodeZERO, clients now have the ability to vastly improve the identification of vulnerabilities, misconfigurations, and assessment of every network device. We offer an agentless, AI-driven, and adaptive platform that “attacks” your environment benignly.
Register for this month’s meeting at https://triadnc-issa-2021-10.eventbrite.com.
