SCOMmand And Conquer - Attacking System Center Operations Manager

Sponsored by:

The current cyber threat landscape is ever evolving. Therefore, it is key that we, as a community, collect intelligence, identify what we consider as the major cyber threats and how we build common information position. However, sharing intelligence and building a common information position is good, but the real value is in making the intelligence actionable in order to improve our cybersecurity postures and so that our resilience will grow. In this session it is shown how cyber threat intelligence can be turned into action by means of three real world examples from what we call the ONE Financial Threat Landscape. The overall message is yes, we should share, nevertheless to make it valuable and really use it to counter the major cyber threats, we must share actionable intelligence.

Vivin Sathyan

Chief Technology Evangelist and Spokesperson, ManageEngine

Vivin Sathyan, Chief Technology Evangelist and Spokesperson for ManageEngine, has 10+ years of IAM and SIEM experience. He bridges product innovation with customer success. Vivin represents ManageEngine at global conferences, sharing insights on cybersecurity, compliance, and infrastructure management.

Matt Johnson

Training Architect, SpecterOps, Inc.

Matt Johnson is a Security Consultant and Red Teamer with over eight years of experience operating in highly secure environments across Europe and Australia. For the past three years, he has been exclusively conducting Red Team engagements as part of the MDSec ActiveBreach team. He is currently a Training Architect at SpecterOps, where he focuses on developing advanced security training. In addition, Matt conducts regular security research focused on finding vulnerabilities in endpoint management software commonly deployed within enterprise networks.

Garrett Foster

Senior Security Researcher, SpecterOps, Inc

Garrett Foster is an offensive security researcher with over 6 years of experience in information technology. He has conducted successful engagements against organizations that include the finance, healthcare, and energy sectors. Garrett enjoys researching Active Directory and developing offensive security tools. His background also includes roles as a Security Operations Center Analyst and Systems Administrator.

Terry Sweeney

Moderator

Contributing Editor, Black Hat

Terry Sweeney is a Los Angeles-based writer and editor who's covered business technology for three decades. He's written about cyber security for more than 15 years and was one of the founding editors of Dark Reading. Sweeney has covered enterprise networking extensively, as well as its supporting technologies like storage, wireless, cloud-based apps and the emerging Internet of Things. He's been a contributing editor to The Washington Post, Crain’s New York Business, Red Herring, Information Week, Network World, SearchAWS.com, and Stadium Tech Report.