Why Sys Admins Are Not Interested in Security
Featuring: John Strand
7/20/12: TrendLabs Malware Blog article above states:
"Despite the obvious risk to the company's data and the cost of data breaches, system administrators either prefer to or are forced to keep their servers unpatched."
SANS strongly takes issue with the statement above by TrendMicro's Bernadette Irinco. On Friday, August 10, John Strand, SANS Sr. Instructor, will deliver a 1 hour talk "Some of my best friends are system administrators who do not prefer to or are being forced to keep their servers unpatched". John will discuss his belief that the most secure sites are the ones where the system administrators have the most seniority. He will also talk about the three simple keys to ensuring system administrators serve successfully as the front line on any breach: baselining, continuous monitoring for anomalies to baselines, and communicating these anomalies immediately to the organization's Incident Response Team.
Note: Send questions about this webcast to firstname.lastname@example.org.
John Strand: John Strand currently is the owner and senior security researcher with Black Hills Information Security, and a consultant with Argotek, Inc for TS/SCI programs. As a certified SANS instructor he teaches: 504 "Hacker Techniques, Exploits and Incident Handling," 517, "Cutting Edge Hacking Techniques," and 560 "Network Penetration Testing." He is a contributing author of Nagios 3 Enterprise Network Monitoring, and a regular contributor to SearchSecurity's "Ask the Expert" series on the latest information security threats. He also regularly posts videos demonstrating the latest computer attacks and defenses at vimeo.com/album/26207. He started the practice of computer security with Accenture Consulting in the areas of intrusion detection, incident response, and vulnerability assessment/penetration testing. John then moved on to Northrop Grumman specializing in DCID 6/3 PL3-PL5 (multi-level security solutions), security architectures, and program certification and accreditation. He has a masters degree from Denver University and is currently also a professor at Denver University. In his spare time he writes loud rock music and makes various futile attempts at fly-fishing.
System Administrators, Network Admins, CTOs, CIOs, CISOs, Security Engineers, Security Analyst, Auditors, Compliance, IT Operations
Contact Name: Jenn Herroon