Presentation 1 (12:00 pm - 12:30 pm)
Title: Scale Team Threat Hunting with Kestrel as a Service
Abstract: Threat hunting can be slow and tedious due to the manual steps required. Kestrel is an open-source project that provides a language for humans to express what to hunt and a machine interpreter that deals with how to hunt. Although Kestrel improves the time to detect, there are limitations to team capabilities in threat hunting tools and standards. The power of team threat hunting may be able to remove the limitations, therefore, increasing the MTTD, achieved by combining Kestrel with JupyterHub hunts with Kestrel huntbooks in order to be persistent and shared by team members. Join this talk to learn about Kestrel as a Service and standing up an environment quickly.
Speaker: Kenneth Peeples, Principal Cybersecurity Architect, Red Hat
Bio: I have a passion for Cybersecurity and anything open source. I have worked on many initiatives globally for Red Hat and currently pursuing my Doctorate in Systems Engineering from CSU. Examining problems and providing solutions are enjoyable to me, especially for government agencies. I have enjoyed concentrating on Zero Trust Architecture, Edge and the Hybrid Cloud. Currently working on two community projects Kestrel-as-a-Service for Team Threat Hunting and Crowsnet-security for Zero Trust Visualization. I enjoy working with Open Source Communities including AI. I started the Kestrel as a Service Project with threat hunting with the kestrel language and Jupyterhub on Kubernetes. https://github.com/opencybersecurityalliance/
Presentation 2 (12:30 pm - 1:00 pm)
Title: Applying data science and machine learning techniques for detecting security threats in software supply chain
Abstract:The presentation will give an overview of software supply chain security threats and it will describe data science and ML oriented methods for detecting these threats.
Speaker: Pankaj Telang, Principal Engineer, Stacklok
Bio: Pankaj has over 20 years of experience in the areas of AI, ML, computer vision, cybersecurity, and software development. Prior to Stacklok, Pankaj worked as a Principal Staff Scientist for SAS, focused on cybersecurity and computer vision, where he developed ML algorithms for detecting suspicious user and device activities from network communications.