This website uses cookies to make the content more user-friendly and effective. By using this website, you agree to the use of cookies. You can find additonal information about the use of cookies and the possibility of objecting to the use of cookies here.

8 - 10 October 2019 // Nuremberg

Posting print layout

What information should be shown in the print layout?

Create print layout
Exhibitors & Products it-sa 2018
Zoom product LOGO_SANS Analyst Program

SANS Analyst Program

LOGO_SANS Analyst Program

SANS Analyst Program

Request information Request information

Contact us

Please enter your personal information and desired appointment. You can also leave us a message.

Your personal information

Your message for us

Desired appointment during the exhibition

* Compulsory fields you must fill in.

Information on data protection can be found here.

Your message has been sent.

You do not have a registration yet? Register now and use all advantages of the Exhibitors and Products Database, the supporting programme and the TicketShop.

An error has occurred.

The threat landscape becomes more daunting by the day. Increasingly sophisticated attacks are being spotted in the wild, and security teams are scrambling to keep up with attacks targeting end users. More than ever, the attacks targeting our endpoints and servers alike are stealthier, harder to detect with traditional tools and more likely to focus on persistence and longer term damage.

In the 2018 SANS “Endpoint Protection and Response” survey, 42 percent of respondents indicated that at least one of their endpoints had been compromised in the previous 12 months, primarily through browser exploits and social engineering. Sixteen percent of those who experienced a compromise noted that they discovered it via third-party notification, which suggests that many endpoint security tools and tactics in use today are inadequate and we really need better prevention and detection tools right now. Almost 60 percent of respondents also indicated that they would like to see artificial intelligence (AI) and machine learning capabilities implemented in their endpoint protection tools but don’t currently have them.

The previous generation of signature-based detection tools is failing us. Many attacks don’t leverage malware at all: Attackers are using memory-resident techniques, compromised credentials and built-in system tools such as PowerShell to avoid detection by many of the traditional endpoint security platforms. Many endpoint tools also consume significant system resources.

SANS had the opportunity to review Cybereason’s AI hunting platform, which offers a lightweight, more behavior-focused model of host-based protection that can help intrusion analysis and investigations teams more rapidly and efficiently prevent, detect and analyze malicious behavior in their environments. The company recognizes that most enterprises are lacking analytics experts and don’t have enough time to train tier 1 analysts on the job, so one of the primary goals of the platform is to help overcome today’s security skills gap. By emphasizing ease of use, built-in intelligence
and search tools, rapid event triage, and highly capable hunting methods, Cybereason is a capable, intelligence-driven system that many security operations center (SOC) teams could leverage immediately to prevent or analyze attacks more quickly. Our review environment was set up with real exploits and malware in a testbed operated by Cybereason, and we fully analyzed numerous examples of the product in action.


The selected entry has been placed in your favourites!

If you register you can save your favourites permanently and access all entries even when underway – via laptop or tablet.

You can register an account here to save your settings in the Exhibitors and Products Database and as well as in the Supporting Programme.The registration is not for the TicketShop and ExhibitorShop.

Register now

Your advantages at a glance:

  • Advantage Save your favourites permanently. Use the instant access – mobile too, anytime and anywhere – incl. memo function.
  • Advantage The optional newsletter gives you regular up-to-date information about new exhibitors and products – matched to your interests.
  • Advantage Call up your favourites mobile too! Simply log in and access them at anytime.