This presentation forms part of the CTA's Threat Intelligence Practitioners' Summit
Thursday 5 October 2023 11:30 - 12:00, Small Talks room
Douglas Santos (Fortinet), Kathi Whitbey (Palo Alto Networks), Noortje Henrichs (National Cybersecurity Centre, Netherlands), Righard Zwienenberg (ESET)
It is always a subtle dance between what our customers ask for and the intelligence our companies/CERTs can provide. What are the dilemmas and how can we deal with them? This panel will discuss the producer and consumer aspect of requests for information (RFIs). We will discuss how it can be useful to help clients with their formulation of the request, but also in which ways we can translate our information to match that request in the best way possible. Hereby, we’ll take into account the sharply formulated requests, as well as the broader requests that need to be filtered from different sources of information. Lastly, we'll ask: is AI really the way forward, or do we still need the human factor in matching our customer needs?
 |
Douglas Santos With more than two decades of experience in the cybersecurity field, Douglas has worked with a diverse range of organizations, from small businesses to large corporations, holding various positions in the cybersecurity industry, including security sales expert, cybersecurity and network consultant, and cybersecurity strategist. Currently, his focus is on developing innovative ways to advance the state of the art in cyber threat intelligence, while managing a team of researchers and engineers whose goal is to identify new attack vectors and develop proactive intelligence to protect against them. Douglas is driving Fortinet's partnership with MITRE CTID and participating in projects that are augmenting the state of the art when it comes to threat intelligence standards, tools, and response.
|
 |
Kathi Whitbey Kathi is Business Operations Manager at Palo Alto Networks' Unit 42 Threat Intelligence, where she focuses on cross-team collaboration, reporting on business milestones, process improvements, maintaining strong relationships with stakeholders and partners, evangelizing threat intelligence information sharing, and is the Chief Morale Officer. Kathi is passionate about sharing her story of transition into cybersecurity and working with people to make their own experiences relatable to the world of cyber. Kathi was an integral part of the process of incorporating the Cyber Threat Alliance (CTA), one of the most successful threat intelligence sharing organizations to date. In addition, she was one of three technical resources from Palo Alto Networks who worked closely with the Girl Scouts of the USA to develop 18 cybersecurity badges. In her free time, Kathi has enjoyed volunteering as an Emergency Medical Technician (EMT) and Girl Scout leader. Kathi has an M.S. degree in information systems and over 25 years of experience in information technology and software development.
|
 |
Noortje Henrichs Noortje works at the Dutch National Centre for Cybersecurity (NCSC) and leads the Threat Analysis team and the Cyber Threat Intelligence team. From collection to dissemination, she is responsible for the execution of all phases of the threat intelligence lifecycle. She aims to deliver relevant and timely information on generic as well as sector-specific digital threats to the NCSC constituency. As part of a national CERT, it is her mission to offer partners, institutions and organizations a complete national threat landscape, that combines technical information with tactical context (and vice versa).
|
 |
Righard Zwienenberg Righard Zwienenberg started dealing with computer viruses in 1988 after encountering the first virus problems. His interest thus kindled he has studied virus behaviour and presented solutions and detection schemes ever since. Starting as an independent consultant, later as R&D Manager at CSE Ltd, as a researcher for ThunderBYTE, as Chief Research Officer at Norman, and currently as Senior Research Fellow at ESET. Over the years he has served in many extra roles in different industry organizations. Currently he is still serving on the board of AVAR, on the Technical Overview Board of the WildList and as the Vice Chair of the Executive Committee of IEEE ICSG. In 2018, Zwienenberg joined the Europol European Cyber Crime Center (EC3) Advisory Group as an ESET representative. Zwienenberg has been a member of CARO since late 1991. He is a frequent speaker at conferences – among these Virus Bulletin, EICAR, AVAR, RSA, InfoSec, SANS, CFET, ISOI, SANS Security Summits, IP Expo, Government Symposia, SCADA seminars - and general security seminars.
|
Back to VB2023 conference page
