The Roundup

The Roundup herds together some of the sharpest minds in the industry to talk about a particular topic on the frontier of infosec. There’s no need to break (or rob) the bank, because The Roundup is entirely free to attendees. Attendees can expect speakers who:

  • Present original research
  • Analyze case studies
  • Review lessons learned
  • Introduce new, useful tools
  • Explore scenarios

Presentations will emphasize practical knowledge that attendees can readily integrate into their organizations. Attendees can also look forward to networking with industry leaders and learning about strategies for mitigating threats.


Upcoming Events


 

Upcoming Events

 

The October Roundup:
Adversary Emulation

MC: Jorge Orchilles
Date: October 22, 2020
Time: Noon to 5PM EST
Topic: Adversary Emulation
Call for Papers (CFP) Deadline: September 11, 2020
Click here to submit a paper 
Click here to register

Adversary emulation is a type of ethical hacking engagement where a Red Team imitates how an attacker operates, leveraging frameworks like MITRE ATT&CK to identify specific tactics, techniques, and procedures (TTPs) that a real threat actor might use against an organization. Rather than focusing on attacks less likely to occur, these engagements draw upon Cyber Threat Intelligence to identify adversaries with the intent, opportunity, and capability to attack. Further, adversary emulation may proceed with the Blue Team having no knowledge of the exercise or full knowledge (Purple Team).

Ultimately, every organization has blind spots, gaps, and weaknesses that adversary emulation can help to detect. The most prudent organizations will want to anticipate the best attacks against them. Why waste precious resources preparing otherwise?

Join Jorge Orchilles, CTO at SCYTHE and expert in adversary emulation, for this October’s Roundup event held from noon to 5PM EST on October 22, 2020.


 

The December Roundup:
Cloud Pentesting

MC: Beau Bullock
Date: December 10, 2020
Time: Noon to 5PM EST
Topic: Cloud Pentesting
Call for Papers (CFP) Deadline: November 2, 2020
Click here to submit a paper
Click here to register

This Roundup event will focus on practical knowledge related to penetration testing in the cloud. Over the last few years, organizations have increasingly seen compromise of sensitive data due to misconfigurations of cloud-based products and services. The perpetual evolution of cloud-hosting services seems to provide more and more opportunities for security misconfigurations. Indeed, the cloud is still a “Wild West” and needs some good ole’ fashioned wranglers to set it straight.

Not all training addresses cloud penetration testing from the perspective of both offensive and defensive teams. This Roundup, on the other hand, will feature presentations that speak to both teams. Gaining an understanding of offensive capabilities will help penetration testers adequately assess their clients who employ these services and will help cloud defenders understand the attack surface and risk companies face using cloud services.

So, it doesn’t matter whether you belong to the outlaws or to the sheriff’s posse, the Red Team or the Blue Team, you will find something of interest at this Roundup!

Join Beau Bullock, Senior Security Analyst and Penetration Tester at Black Hills Information Security, for this December’s Roundup event.