|PRESENTER:||Gunter Ollmann, Chief Technology Officer for IOActive|
|PRESENTATION:||Applying Machine Learning to Enterprise Security Problems|
|CONFERENCE:||Metro-Atlanta ISSA Conference|
|LOCATION:||Loudermilk Center, Atlanta, Georgia, USA|
|DATE & TIME:||Thursday December 5, 2013 at 12:00pm|
‘Compelling events’ kick start and drive incident response. Today’s advanced malware and outsourced delivery services – with their money-back guarantees and performance SLA’s – ensure that the layers of protection they implement and their defense-in-depth strategies will be evaded and defeated. The trick to optimizing an incident response plan lies in early detection and rapid classification. The sooner an organization can detect compelling events, the more quickly they can respond, reducing the amount of harm an infiltrator can cause.
Over the last three years a number of network-based approaches have been developed. These approaches are capable of detecting breaches as they occur – independent of the injection vector – and can help differentiate between insider threats, industrial espionage, cyber-crime, and state-sponsored attacks. In this keynote address Gunter will discuss what role big data analytics, machine learning, and automated attribution systems play in the future of incident response.
About Gunter Ollmann
IOActive’s Chief Technology Officer, Gunter Ollmann plays a key role in shaping IOActive’s services strategy as the company embarks on its next phase of growth and leadership in offering innovative services in semiconductor security, embedded software risks, and device threats. Prior to joining IOActive, Ollmann served as the Vice President of Research at Damballa, where he focused on inventing new crimeware mitigation technologies and identifying the criminal operators behind botnets and other advanced persistent threats. Before joining Damballa, Ollmann held several strategic positions at IBM Internet Security Systems (IBM ISS), most recently as Chief Security Strategist. In this role, he was responsible for predicting the evolution of future threats and helping guide IBM’s overall security research and protection strategy, as well as serving as the key IBM spokesperson on evolving threats and mitigation techniques. He also held the position of Director of X-Force and was the former Head of X-Force Security Assessment Services for EMEA while at ISS (which was acquired by IBM in 2006). Ollmann has been a contributor to multiple leading international IT and security focused magazines and journals. He has authored, developed, and delivered a number of highly technical courses on Web application security. He is a well-known industry speaker worldwide and is often invited to present at international security conferences. Ollmann is highly regarded by the press as an expert source on security threats and is frequently consulted by the international media.
About Metro-Atlanta ISSA Conference
The Metro-Atlanta ISSA chapter has developed over the years into one of the largest ISSA chapters worldwide and the largest IT Security organization in the Metro-Atlanta area. The Information Systems Security Association (ISSA)® is a not-for-profit, international organization of information security professionals and practitioners. It provides educational forums, publications, and peer interaction opportunities that enhance the knowledge, skill, and professional growth of its members.
IOActive is a comprehensive, high-end information security services firm with a long and established pedigree in delivering elite security services to its customers. Our world-renowned consulting and research teams deliver a portfolio of specialist security services ranging from penetration testing and application code assessment through to semiconductor reverse engineering. Global 500 companies across every industry continue to trust IOActive with their most critical and sensitive security issues. Founded in 1998, IOActive is headquartered in Seattle, USA, with global operations through the Americas, EMEA and Asia Pac regions. Visit www.ioactive.com for more information.