Active Security: Building Hunt Operations

Posted on in Presentations

Advanced adversaries require advanced defenders to seek out and “hunt” them down—but we (the defenders) are often at a loss for how to truly implement a sustainable hunting practice. This session will encourage the defenders to share nontechnical lessons for how to organize, focus and staff a truly effective and responsive security hunting operation.
Joseph Slowik


Incident Response Lead, Los Alamos National Laboratory

Security Strategy & Architecture Analytics Intelligence & Response

intrusion prevention/detection network security security operations threat management incident response



Share With Your Community