BETHESDA, Md., Aug. 3, 2015 /PRNewswire-USNewswire/ -- SANS Institute, the global leader in information security training, today announced cyber security expert, Paul A. Henry, will deliver the keynote address at SANS Baltimore 2015 taking place September 21 – 26. Henry will highlight recent/current developments in the evolution of both attacks and defenses.
According to Henry, "For nearly two decades defenders have fallen into the crowd mentality trap by simply settling on doing the same thing everyone else is doing. Meanwhile, attackers have clearly evolved both in terms of malware delivery vectors and attack methodology," said Henry. "By focusing efforts on the gateway and attempting to outwit attackers' delivery methods, organizations are leaving themselves woefully exposed. The Bottom line today is that if you don't control your endpoints then your endpoints will control you.
"Outdated black list methodologies such as traditional AV need to be complemented with current generation white list solutions and traditional flaw remediation policies for patching need to be complemented with virtual patching. Lastly we must shift away from port centric defenses as the Bad Guys will run any app over any port or service we leave open," concluded Henry.
SANS Baltimore offers hands-on, immersion-style security training courses taught by real-world practitioners. The course line-up includes the new SEC550: Active Defense, Offensive Countermeasures and Cyber Deception, SEC401: Security Essentials Bootcamp Style, SEC503: Intrusion Detection In-Depth, SEC504: Hacker Tools, Techniques, Exploits and Incident Handling, and FOR526: Memory Forensics In-Depth. Students participating in these courses will be able to put in to practice what they learn immediately upon returning to work.
For a complete list of courses and bonus sessions, or to register for SANS Baltimore 2015, please visit: www.sans.org/u/72a
About SANS Institute
The SANS Institute was established in 1989 as a cooperative research and education organization. SANS is the most trusted and, by far, the largest provider of cyber security training and certification to professionals at governments and commercial institutions world-wide. Renowned SANS instructors teach over 50 different courses at more than 200 live cyber security training events as well as online. GIAC, an affiliate of the SANS Institute, validates employee qualifications via 27 hands-on, technical certifications in information security. The SANS Technology Institute, a regionally accredited independent subsidiary, offers master's degrees in cyber security. SANS offers a myriad of free resources to the InfoSec community including consensus projects, research reports, and newsletters; it also operates the Internet's early warning system--the Internet Storm Center. At the heart of SANS are the many security practitioners, representing varied global organizations from corporations to universities, working together to help the entire information security community. (www.SANS.org)
SOURCE SANS Institute