From Cyber Analysts to Cyber Hunters: GuidePoint Security Expert to Speak at Anomali Detect

Are you ready to go from your regular job as a cyber analyst to a full-fledged cyber hunter? Join GuidePoint Security at Anomali Detect Sept. 11-13, 2016, at the Westin Washington, D.C. City Center, for a special presentation, “Cyber Hunters: Operationalizing Threat Intelligence for Cyber Analysts.”

GuidePoint Security is a Gold sponsor for the conference, and Matt Keller, our vice president of federal services, will lead a session about how analysts in Security Operation Centers (SOC) can evolve from a detection and response team to proactive cyber hunters who seek out threats before damage occurs.

Matt’s presentation will be from 3:10-4 p.m. Tuesday, Sept. 13, in room National C. He will talk about how to utilize threat feeds to reduce the amount of time it takes to identify incidents and help you plan for responses within the “Cyber Golden Hour.” He will share insight on how your security team can identify threats in real time, moving from cyber analysts to full-fledged cyber hunters.

We’ll also have a table top display set up during Anomali Detect, so be sure to stop by and view a demonstration on our Virtual Security Operations Center (vSOC). By using the cloud to provide dynamic scalability and cost savings, our vSOC analysts can provide validated security incidents so your team can focus on remediation.

For more information about Anomali Detect, visit https://www.anomali.com/anomali-detect. To register for the conference, click here.

For more information about our vSOC and how we can help protect your organization from insider threats, visit www.guidepointsecurity.com.

About GuidePoint Security

GuidePoint Security LLC provides innovative and valuable cybersecurity solutions and expertise that enable organizations to successfully achieve their mission. By embracing new technologies, GuidePoint Security helps clients recognize the threats, understand the solutions, and mitigate the risks present in their evolving IT environments. Headquartered in Herndon, Virginia, GuidePoint Security is a small business, and classification can be found with the System for Award Management (SAM). Learn more at: http://www.guidepointsecurity.com.

Top GuidePoint Security Consultants to Present At Sold Out 2016 BSides Boston Training Session

Two of GuidePoint Security’s consultants will be among the featured instructors and presenters at this bsidesbos_est1year’s Security BSides Boston Conference, on May 20-21, 2016. The event, which is being held at the Microsoft NERD Building, at 1 Memorial Drive, Cambridge, MA, includes key speakers, presentations and training sessions. GuidePoint will also be a participating exhibitor on Saturday, May 21.

David Bressler and Casey Dunham, both members of the GuidePoint Application Security Team, will be leading an “Advanced Web Hacking,” all-day training session on May 20 for a sold-out audience. The pair will also be heading up a presentation titled, “Advanced XSS and Injection Attacks,” slated for May 21.

The Security BSides Boston Conference includes Friday training sessions running from 10 a.m. – 5:30 p.m., while the Conference discussions and presentations will be held from 9 a.m. – 6 p.m. on Saturday, May 21, 2016.

If you are unable to attend the events with Bressler and Dunham, be sure to stop by the GuidePoint Security table on Saturday.

About the Advanced Web Hacking Session

The all-day session involves hands-on learning through an instructor-led, simulated web application assessment against a proprietary web application that was built specifically for this course. The course moves beyond the basic OWASP Top 10 Web Application Vulnerabilities by introducing advanced forms of these common vulnerabilities, built from our own penetration testing experience. Focus is also placed on creating realistic proof of concepts to show higher impact, as well as what an attacker could do if the vulnerabilities were exposed.

About the Advanced XSS and Injection Attacks Presentation

In this presentation, Bressler and Dunham will review advanced forms of Cross Site Scripting (XSS) in the AngularJS framework through improper usage of the AngularJS templating language and injection attacks through the Hibernate Query Language (HQL), as well as breaking the HQL Lexer to run arbitrary SQL commands. They will also be presenting methods of auditing applications for these issues and preventing the vulnerabilities.

About GuidePoint Security LLC

GuidePoint Security LLC provides customized, innovative and valuable cybersecurity solutions and expertise that enable organizations to successfully achieve their mission. By embracing new technologies, GuidePoint Security helps clients recognize the threats, understand the solutions, and mitigate the risks present in their evolving IT environments. Headquartered in Herndon, Virginia, GuidePoint Security is a small business, and classification can be found with the System for Award Management (SAM). Learn more at: www.guidepointsecurity.com.

 

Opportunities to Meet GuidePoint Security at SecureWorld Boston

GuidePoint Security is looking forward to exhibiting, speaking, and hosting an SecureWorld Logo-Icon 2015after hours reception at the 2016 SecureWorld Expo in Boston.

You’ll find us at booth #118, where we will be hosting a Technology Showcase this year with our partners Cyberark, Cyphort, Exabeam, Tenable, and Varonis.
When: March 29-30, 2016
Where: Hynes Convention Center, Exhibit Hall D, Booth #118, Boston, MA

The software and services offered by our partners enables GuidePoint to create comprehensive security solutions for virtually any client’s network, large or small. Below you’ll discover a few reasons why we will be showcasing their technologies at SecureWorld.

  • For over a decade CyberArk has led the market in securing enterprises against cyber attacks that take cover behind insider privileges and attack critical enterprise assets.
  • Cyphort helps you respond to an avalanche of network attacks, prioritize your work, and go after the really harmful security threats that are targeting your enterprise.
  • Exabeam is a leading provider of user and entity behavior analytics, based on security-based data science and innovative Stateful User Tracking technology. Exabeam enables customers to detect and thwart cyber attacks that would otherwise go unseen by most enterprises.
  • Tenable Network Security transforms security technology for the business needs of tomorrow through comprehensive solutions that provide continuous visibility and critical context, enabling decisive actions to protect your organization.
  • Varonis protects sensitive information from insider threats, automates time-consuming tasks, and extracts valuable insights from enterprise data.

At the 2016 SecureWorld Expo in Boston, you’ll have the opportunity to attend the following GuidePoint speaking sessions:

GRC – Trials & Tribulations
Speaker: Michael Cook, Senior Security Consultant, GuidePoint Security
March 29, 1:15pm – 2:15pm
Session description: This session addresses GRC Industry status (Gartner, OCEG, CSA) and tips for planning, implementation, and maintenance of a GRC Program (learned the hard way).

Industry Expert Panel: You’ve Got Humans on Your Network
Speakers include: Michael Cook, Senior Security Consultant, GuidePoint Security
March 30, 1:15pm – 2:15pm
Session description: Breaches are expensive. So expensive that cyber insurance coverage is often lacking. This presentation explores the economics of breaches, the differences between breach and incident response and how you can align your security team’s goals with company values.

GuidePoint will also be hosting a networking event in Boston with our technology partners. Register here to connect with your peers and industry professionals.
Security Social Hour at Kings Bowling Alley
March 29, 4-7pm

For more information about the 2016 SecureWorld Expo in Boston, visit www.secureworldexpo.com/boston/home.

About GuidePoint Security

GuidePoint Security LLC provides customized, innovative and valuable information security solutions and proven cyber security expertise that enable commercial and federal organizations to successfully achieve their security and business goals. By embracing new technologies, GuidePoint Security helps clients recognize the threats, understand the solutions, and mitigate the risks present in their evolving IT environments. Headquartered in Herndon, Virginia, GuidePoint Security is a small business, and classification can be found with the System for Award Management (SAM). Learn more at: www.guidepointsecurity.com.

Ask the Insider Threat Experts at the 2015 DoDIIS Worldwide Conference

GuidePoint Security will be showcasing Insider Threat Solutions at DoDIIS Worldwide Conference on August 23rd thru Aug 26th, 2015.

GuidePoint has been working closely with the federal government over the past three years to develop PKI integrations for mission critical and business applications through F5 Networks, and integrating the resulting audit data into a Splunk application to assist in monitoring PKI access and authorization. This new capability assists in identifying users that mean harm to government networks.

In addition, GuidePoint has partnered with multiple industry- leading vendors including Digital Guardian, Exabeam, Apcon, and Pernix Data on enhancing network and system data for identifying suspicious activity across the enterprise, ultimately supporting the identification of anomalous activity. With these capabilities, GuidePoint enables a holistic approach to insider threat and anomaly detection for government networks.

GuidePoint Security is extremely excited for the opportunity to demonstrate newly developed solutions and capabilities at DODIIS Worldwide to help our customers and partners better understand the options available when working with GuidePoint.

Information about our partners:

Digital Guardian: Digital Guardian, formerly Verdasys, is a network security company focused on securing the sensitive data of the world’s most inventive, influential companies.

Exabeam: Exabeam is a user behavior analytics solution that leverages existing log data to quickly detect advanced attacks and accelerate incident response. Exabeam’s Stateful User Tracking™ automates the work of security analysts by resolving individual security events and behavior anomalies into a complete attack chain. Built by seasoned security and enterprise IT veterans from Imperva and Sumo Logic, Exabeam is headquartered in San Mateo, California and is privately funded by Norwest Venture Partners, Aspect Ventures and Investor Shlomo Kramer.

Apcon: APCON develops innovative, scalable technology solutions to enhance network monitoring, support IT traffic analysis, and streamline IT network management and security. APCON delivers state-of-the-art IT data aggregation, filtering, and network switching products, as well as leading-edge management software. APCON is headquartered near Portland, Oregon, where it has operated since 1993.

PernixData: PernixData is fundamentally changing how storage is designed and operated in virtualized data centers. The company’s software puts storage intelligence into high speed server media, establishing a control point for optimizing application performance and managing data center operations with true scale-out growth. With PernixData software, customers can leverage any storage platform for capacity, creating a decoupled storage architecture that maximizes design flexibility while minimizing storage costs.

Event information:

When: August 23-26, 2015
Where: Henry B. Gonzalez Convention Center | San Antonio, TX

The Defense Intelligence Agency (DIA) 2015 Department of Defense Intelligence Information Systems (DoDIIS) is a conference hosted by the DIA Chief Information Officer. This year’s theme is “Accelerating Intelligence Integration-Powered by Innovation & Technology, designed to highlight the DIA CIO’s commitment and intent to unify the defense intelligence infrastructure and information sharing initiatives through innovation, collaborative partnerships and technologies. Visit https://www.ncsi.com/dia/2015/index.php for more information.

Our technical experts from GuidePoint Security look forward to the opportunity to share our knowledge and newly developed solutions with attendees. We hope to see you at DoDIIS!

About GuidePoint Security
GuidePoint Security, LLC provides customized, innovative and valuable information security solutions and proven cyber security expertise that enable commercial and federal organizations to successfully achieve their security and business goals. By embracing new technologies, GuidePoint Security helps clients recognize the threats, understand the solutions, and mitigate the risks present in their evolving IT environments. Headquartered in Herndon, Virginia, GuidePoint Security is a small business, and classification can be found with the System for Award Management (SAM). Learn more at: www.guidepointsecurity.com
.

 

 

Join GuidePoint Security and Partners at Charlotte SecureWorld 2015

SecureWorld Logo-Icon 2015

If you’re an Information Security professional looking for globally relevant education, training and networking, you don’t want to miss the Charlotte SecureWorld 2015 Conference.

GuidePoint Security will be attending the conference, along with two of our premier technology partners, Absolute Software and Varonis.

When: Wednesday, February 11, 2015
Where: Charlotte SecureWorld Conference, Booth #300, at Harris Conference Center, Charlotte, NC

GuidePoint Security is proud to partner with Absolute Software and Varonis. Both companies bring their own innovative solutions to the table, making it possible for us to match the right tools and resources to the unique information security demands of our clients.

Absolute Software was founded in 1993 on the idea that individuals and businesses should be able to track, manage and secure their mobile computers regardless of the physical location of the device. Today, their security-as-a-service solutions protect millions of computers worldwide with subscribers who range from individuals to the largest public and private sector organizations.

Varonis provides an innovative software platform that allows enterprises to map, analyze, manage and migrate their unstructured data. They specialize in human-generated data, a type of unstructured data, such as documents and audio/video files, which often contains an enterprise’s financial information, intellectual property and other forms of vital information.

To learn more and to network with GuidePoint Security and our partners, please stop by booth #300 at the Charlotte SecureWorld 2015 Conference.

For additional information about the Charlotte SecureWorld 2015 Conference, visit http://www.secureworldexpo.com/charlotte/home.

About GuidePoint Security, LLC

GuidePoint Security provides customized, innovative and valuable information security solutions and proven cyber security expertise that enable commercial and federal organizations successfully achieve their security and business goals. By embracing new technologies, GuidePoint Security helps our clients recognize the threats, understand the solutions, and mitigate the risks present in their evolving IT environments. Headquartered in Reston, Virginia, and with offices in Michigan, New Hampshire, Florida and North Carolina, GuidePoint Security is a small business and classification can be found with the System for Award Management (SAM). Learn more at www.guidepointsecurity.com.

GuidePoint Security & Tenable Host Security Social Hour at the PCI SSC Community Meeting In Orlando

GuidePoint Security and Tenable invite you to their Security Social Hour in Orlando. Come network with the largest global community dedicated to payment security, and discover the PCI compliance solutions that we offer our customers.

 When: Wednesday, September 10, 7-9PM
Where: Big River Grille and Brewing Works, Orlando, FL

Even as PCI security requirements become more stringent, GuidePoint Security offers the solutions and technologies to address them. By combining our security technology partner, Tenable, with our services and experience, we meet and exceed the security and compliance needs of our clients.

Tenable Security offers the following solutions to address today’s PCI requirements:

  • SecurityCenter Continuous View
  • Nessus Enterprise Cloud
  • Nessus Enterprise
  • Nessus
  • Passive Vulnerability Scanner

At GuidePoint Security, we lead security innovation by helping clients recognize threats, understand solutions, and mitigate risks throughout their IT environment We do this by helping each client determine the best solutions for their unique needs.

Don’t miss the Security Social Hour on September 10th with GuidePoint Security and Tenable. There will be plenty of food, cocktails, and great conversation to go around.

To register for the PCI Security Social Hour, visit: http://gpsec.me/1zRB5h6.

For additional information about the PCI Community Meeting in Orlando, also visit: http://gpsec.me/1nPjnFl.

About GuidePoint Security

GuidePoint Security, LLC provides customized, innovative and valuable information security solutions and proven cyber security expertise that enable commercial and federal organizations to successfully achieve their security and business goals. By embracing new technologies, GuidePoint Security helps clients recognize the threats, understand the solutions, and mitigate the risks present in their evolving IT environments. Headquartered in Reston, Va., and with offices in Michigan, New Hampshire, Florida and North Carolina, GuidePoint Security is a small business, and classification can be found with the System for Award Management (SAM). Learn more at: www.guidepointsecurity.com.

About Tenable Security

Tenable Network Security provides continuous network monitoring to identify vulnerabilities, reduce risk and ensure compliance. Their family of products include SecurityCenter Continuous View™, which provides the most comprehensive and integrated view of network health, and Nessus®, the global standard in detecting and assessing network data. Tenable is relied upon by more than 24,000 organizations, including the entire U.S. Department of Defense and many of the world’s largest companies and governments. For more information, go to: http://www.tenable.com/industries/pci.

 

GuidePoint Security – F5 Network’s “Federal Partner of the Year” for Two Consecutive Years

For the second year in a row, GuidePoint Security, LLC has received the UNITY™ Federal Partner of the Year award at the 2014 F5 Agility Conference in New York.

F5 Photo

GuidePoint Security Receiving the UNITY Federal Partner of the Year Award from F5 in New York.

This award recognizes GuidePoint Security’s excellence in partner performance and customer service related to F5’s application delivery and security solutions. It also recognizes GuidePoint Security’s superior account management, customer service and technical expertise.

“We were honored to receive F5’s recognition in partner performance and customer service for the second consecutive year at the F5 2014 Agility Conference in New York on Aug. 6th. This award further validates our ability to provide security solutions that enable our clients to more effectively and efficiently meet the needs of their users,” said Jim Quarantillo, Federal Partner at GuidePoint Security.

About F5 Networks

F5 Networks (NASDAQ: FFIV) makes the connected world run better. F5 helps organizations meet the demands and embrace the opportunities that come with the relentless growth of voice, data, and video traffic, mobile workers, and applications—in the data center, the network, and the cloud. The world’s largest businesses, service providers, government entities, and consumer brands rely on F5’s intelligent services framework to deliver and protect their applications and services while ensuring people stay connected. Learn more at www.f5.com.

About GuidePoint Security

GuidePoint Security, LLC provides customized, innovative and valuable information security solutions and proven cyber security expertise that enable commercial and federal organizations to successfully achieve their security and business goals. By embracing new technologies, GuidePoint Security helps clients recognize the threats, understand the solutions, and mitigate the risks present in their evolving IT environments. Headquartered in Reston, Va., and with offices in Michigan, New Hampshire, Florida and North Carolina.  GuidePoint Security is a small business, and classification can be found with the System for Award Management (SAM). Learn more at www.guidepointsecurity.com.

 

GuidePoint Security Presents on Offensive Mobile Forensics and Bitcoin Transactions at BSides Boston 2014

Conference attendees will get a new experience this year at the annual Security BSides Boston 2014 Conference.  GuidePoint Security speakers will cover two new topics at BSides:  Offensive Mobile Forensics and Bitcoin Transactions.

When:  May 9-10, 2014
Where:  Security BSides Boston 2014, Cambridge, MA

First up of our two speakers is David Bressler. He will discuss Bitcoin Explorer – Visualizing/Monitoring Bitcoin Transactions.

Bitcoin was originally made public as a proof-of-concept in 2009.  Since then, Bitcoin and other crypto currencies have been gaining a vast amount of public attention with their valuation and volatility, ultimately making them a target for online criminals to steal.  Bitcoin, in particular, is both controversial and interesting to a large number of people, due to recent attacks on its exchanges. The pseudo-anonymous nature of Bitcoin has also piqued public interest because it makes tracking specific transactions and uncovering the Bitcoin address where the coins are stored difficult.  This talk will go over the basics of crypto currencies, specifically Bitcoin, and demonstrate how anyone could visualize Bitcoin transactions by utilizing the public Bitcoin block chain (general ledger).

Our next Speaker, Joey Peloquin, will discuss Offensive Mobile Forensics.

Offensive Mobile Forensics is a process in which an analyst employs the same techniques and tools potential attackers or criminals use on lost or stolen devices, to determine the actual risk of that loss or theft to the enterprise.  What data is accessible? This talk will educate attendees on some of the tools that can be used, where the most interesting data is stored on the device, and examples of data leakage from actual analysis.  Finally, he’ll perform a couple of live technical demos.

Be sure to visit the Security BSides Boston Conference to hear these accomplished speakers.  Also, stop by to see GuidePoint Security in the exhibit hall.

For additional information about the Security Bsides Boston 2014 Conference, visit http://gpsec.me/1iGR4Ff.

About GuidePoint Security, LLC

GuidePoint Security provides customized, innovative and valuable information security solutions and proven cyber security expertise that enable commercial and federal organizations to successfully achieve their security and business goals. By embracing new technologies, GuidePoint Security helps clients recognize the threats, understand the solutions, and mitigate the risks present in their evolving IT environments. GuidePoint Security is a small business. Classification can be found with the System for Award Management (SAM). Learn more at www.guidepointsecurity.com.

Visit GuidePoint Security at InfoSec World, Orlando

Join GuidePoint Security as we highlight and showcase two of our technology partners, Bromium and Skybox.

When:  Monday, April 7-8, 2014
Where:  InfoSec World Conference & Expo, Booth #219, at Disney’s Contemporary Resort, Orlando, FL

GuidePoint Security partners with vendors that offer unique technologies that address the security needs of our clients.  With the complexity of security threats ever increasing, GuidePoint Security offers the right solutions and technologies for our clients’ specific needs. 

These two technology partners offer the following solutions to address today’s advanced security threats.

Bromium provides protection at the endpoint with vSentry, an innovative product that protects against all advanced malware. vSentry automatically creates hardware-isolated micro-VMs that secure every user task – such as visiting a web page, downloading a document, or opening an email attachment.

Skybox delivers cutting-edge risk analytics for enterprise security management.  Their solutions give complete network visibility, help to eliminate attack vectors, and optimize security management processes. Protecting the network and the business.

GuidePoint Security uses their expertise to lead security innovation by helping clients recognize threats, understand solutions, and mitigate risks throughout their IT environment by determining which solutions fit their clients’ needs.  GuidePoint Security offers the people, processes, technologies, and oversight that deliver results to your organization.

Be sure to visit GuidePoint Security at the InfoSec World conference in Orlando, booth #219.

For additional information about the InfoSec World Conference and Expo, visit http://gpsec.me/1hmTEAm.

About GuidePoint Security, LLC
GuidePoint Security provides customized, innovative and valuable information security solutions and proven cyber security expertise that enable commercial and federal organizations successfully achieve their security and business goals. By embracing new technologies, GuidePoint Security helps our clients recognize the threats, understand the solutions, and mitigate the risks present in their evolving IT environments. Headquartered in Reston, Virginia, and with offices in Michigan, New Hampshire, Florida and North Carolina, GuidePoint Security is a small business and classification can be found with the System for Award Management (SAM). Learn more at www.guidepointsecurity.com.

Going to RSA? Start it Off Right.

Come meet GuidePoint Security, CloudPassage, Co3Systems and Kaspersky at the GuidePoint Security Social Hour.

When:  Monday, February 24, 2014 from 6:00 PM to 8:00 PM (PST)

Where: John Colins
138 Minna St
San Francisco, CA 94105

GuidePoint Security works with these partners to help organizations use the following solutions to address today’s most challenging information security risks.

CloudPassage addresses the number one inhibitor to cloud adoption – security. They provide server security products purpose-built for dynamic public and hybrid cloud hosting environments.

Kaspersky is one of the fastest growing IT security vendors in the world. Firmly positioned as one of the top four leading vendors of security solutions for endpoint users.

Co3 Systems is an Incident Response Management platform. From privacy breaches, to malware outbreaks, to system intrusions, to Distributed Denial-of-Service (DDoS) attacks – they automate incident response management.

GuidePoint Security uses their expertise to lead security innovation by helping clients recognize threats, understand solutions, and mitigate risks throughout their IT environment by determining which solutions fit their clients’ needs. GuidePoint Security offers the people, processes, technologies and oversight that deliver results to your organization.

Make sure to visit the GuidePoint Security Social Hour and talk to the experts and discuss the latest and greatest risks, trends and technologies in information security.

For additional information about the GuidePoint Security Social Hour, visit http://gpsec.me/1bRwdNH and for more information about the RSA Conference, visit http://gpsec.me/1gdWsQS.

About GuidePoint Security

GuidePoint Security provides customized, innovative and valuable information security solutions that enable commercial and federal organizations to more successfully achieve their security and business goals. By embracing new technologies, GuidePoint Security helps our clients recognize the threats, understand the solutions, and mitigate the risks present in their evolving IT environments. Learn more at www.guidepointsecurity.com.