Battle Scars And Friendly Fire: Threat Research Team War Stories

DerbyCon 3.0 - All In The Family

Presented by: Seth Geftic, Will Gragido
Date: Friday September 27, 2013
Time: 12:30 - 12:55
Location: Stable
Track: Stable Talks

Building A Threat Research Team And Making That Team An Effective Part Of Your Organization Is No Easy Task. In This Session You Will Hear Several War Stories About How To Create A Process That Will Make Your Team More Effective. You’ll Hear About What We Did Right, Learn From Our Mistakes And Hear How You Can Get The Most Impact Out Of Your Team’s Research.

Will Gragido

Mr. Gragido possesses over 18 years of information security experience. A former United States Marine, Mr. Gragido began his career in the data communications information security and intelligence communities. After USMC, Mr. Gragido worked within several information security consultancy roles performing and leading red teaming, penetration testing, incident response, security assessments, ethical hacking, malware analysis and risk management program development. Mr.Gragido has worked with a variety of industry leading research organizations including International Network Services, Internet Security Systems / IBM Internet Security Systems X-Force, Damballa, Cassandra Security, HP DVLabs, and now RSA NetWitness. Will has deep expertise and knowledge in operations, analysis, management, professional services & consultancy, pre-sales / architecture and strong desire to see the industry mature and enterprises & individuals become more secure. Will is a long-standing member of the ISC2, ISACA, and ISSA. Mr.Gragido holds the CISSP and CISA certifications, as well as accreditations in the National Security Agency’s Information Security Assessment Methodology (IAM) and Information Security Evaluation Methodology (IEM). Additionally, Mr.Gragido is a Faculty Member of the IANS Institute where he specializes in advanced threat, botnet, and malware analysis. Mr.Gragido is a graduate of DePaul University and is currently preparing for graduate school. He is the co-author of Cybercrime and Espionage: An Analysis of Subversive Multi-Vector Threats.

Seth Geftic

Seth Geftic, Associate Director, RSA Security Analytics, RSA, The Security Division of EMC Seth Geftic is an Associate Director on the RSA Analytics (RSA NetWitness) team focusing both on the product as well as the RSA FirstWatch research group. Prior to his current role he was responsible for the Federal Solutions group at RSA, The Security Division of EMC. In that role, he oversaw multiple initiatives to enhance security, manage risk, improve compliance efforts and drive IT policy in the public sector. Additionally, Mr. Geftic is an industry expert in the fields of fraud, cyber crime and cyber threats. At RSA, Mr. Geftic spent over five years in RSA’s Identity, Protection and Verification group which provided authentication and anti-fraud solutions for the majority of the United States financial sector. He is a frequent public speaker on various topics including advanced threats, security education and security operations. Mr. Geftic holds a BSBA in both Marketing and Finance from Washington University in St. Louis and is a CISSP.”


KhanFu - Mobile schedules for INFOSEC conferences.
Mobile interface | Alternate Formats