Threat Hunting, how do you know if you’re doing it right? How do you define a successful threat hunting program? Where do you start? There are a lot of questions and preconceived notions about how threat hunting should work. Many organizations make the same mistakes without achieving their cybersecurity goals. This talk is summation of my threat hunting journey with the intent of inspiring others by sharing what has and has not worked for me and the organizations I help. By the end of the talk, attendees will walk away with a better understanding of threat hunting and actionable next steps to get an ROI.
Michael Wylie, MBA, CISSP is the Director of a 24/7/365 global managed threat hunting team – CrowdStrike’s Falcon OverWatch Elite. Prior to his current role, he was the Director of Cybersecurity Services at a top 100 CPA firm where he built the offensive and defensive security service practices. Michael has developed and taught numerous courses for the U.S. Department of Defense, DEFCON, Universities, and for clients around the world. Michael is the winner of numerous SANS challenge coin and holds the following credentials: CISSP, CCNA R&S, CCNA CyberOps, GPEN, GMON, GCFE, TPN, CEH, CEI, VCP-DCV, CHPA, PenTest+, Security+, Project+, CNVP, Microsoft Azure