The DFIR Summit will run ahead of SANS first dedicated European Digital Forensics training event offering a full emersion experience over a 7 day event combining experts’ presentations and four IT forensics courses.
“The Summit includes respected experts from the IT security and forensics community sharing their knowledge and expertise to help senior practitioners fight cybercrime more effectively.” explains Jess Garcia, Lead SANS Forensic Instructor EMEA and a Summit organiser, “Many of our experts have pioneered new techniques and have worked in a wide range of operational environments. They are ready and willing to share their knowledge and experience, and engage with like-minded peers.”
Garcia believes that the event provides insights from some of the top experts in the field on how to react to attacks and potentially prevent them through a deep understanding of their strategies. The current line-up of presenters includes:
Bojan Zdrnja works at INFIGO IS in Croatia where he leads the technical team responsible for penetration testing, forensics and managed security services. Besides his day job, he is probably most well-known for his SANS Internet Storm Center diaries and as co-authoring SANS' popular GREM course/certificate as well as the “AVIEN Malware Defense Guide for the Enterprise” book where he wrote a chapter on malware analysis.
Righard J. Zwienenberg, former Chief Research Officer at Norman and now Senior Research Fellow with ESET, is also a board member at several anti-malware associations. Richard has more than 20 years’ experience in malware analysis with excellent communication skills that make highly regarded speaker.
Amanda C. F. Thomson, a former computer forensic analyst with the U.S. Department of Homeland Security and author of one of the first Windows 8 Forensic Guides. Thomson will offer a look at the new Windows 8 Artifacts and Registry, and she will show how the upcoming operating system offers new forensic challenges.
Christian Wojner a core team member of the national and governmental computer emergency response team of Austria with responsibility for malware analysis, reverse engineering and forensic investigations on Microsoft Windows platforms. Wojner will provide a brief overview of CERT.at's Malware Analysis Tools.
Jeff Hamm is a Senior Consultant with MANDIANT where he conducts forensic examinations and incident response. Hamm is also an adjunct lecturer at Gjøvik University College in Gjøvik, Norway where he provides intense practical labs based on real world computer forensic incidents using both Windows and Linux hosts and attackers.
David Kovar, a manager in Ernst & Young’s Advisory Center of Excellence around digital forensics and incident response, will offer insight into the development and deployment of a secure, self-contained incident response environment built on a portable private cloud.
The agenda will be expanding and evolving over the coming weeks, right up to the event itself, to ensure that it covers the most up to date and cutting edge information.
Following on from the Summit, SANS will be running the hands-on immersion courses covering Computer Forensic Analysis, Incident Response, Mobile Device Forensics and Malware Analysis Tools and Techniques.
SANS Forensics Prague will also provide bonus sessions each evening featuring additional forensics related presentations and discussion groups after classes finish, as well as other amenities such as the Forensic Netwars, a hands-on challenge directed to test participants' Forensic skills.