Kyle Smathers - Active Cyber Analytics Course (ACAC) - $2325 ($2175 early registration)

Trainer bio:
Kyle Smathers is a Specialist Master at Deloitte Risk & Financial Advisory and a seasoned cybersecurity professional with a knack for problem-solving and developing capabilities. He has served as an Air Force officer and continues his service as a reservist, bringing over a decade of experience with cutting-edge cybersecurity platforms, training, and missions. His innovative contributions have gained significant recognition, earning him an invitation to contribute to the design of the Air Force's ‘Interceptor’ cyber threat hunting platform. In his free time, he is either with his family, riding his bicycle or working on a house project.



Trainer social media links:
@DeloitteUS on Twitter
#deloitte on Twitter
 
Full description of the training:
This course is intended for basic qualified host or network cyber threat hunters and covers developing and refining analytic tests used in hypothesis-based hunting.  Data collection / refinement, scripting / querying essentials, descriptive statistics and visualizations will be leveraged to find “useful patterns” left behind by a potentially malicious actor. Participants will walk away armed with even more tools and techniques to detect malicious cyber actors, which can be used in established roles or opens the door to a more specialized data scientist track.
Participants will connect via a local wireless network (and web browser) to a shared Jupyter notebook instance. This environment contains multiple sample data sets where they will practice reducing, combining, and refining the data. Leveraging Python, PowerShell, and Lucene they will also write tailored scripts and queries to test hypotheses sourced from open-source repositories like the MITRE CAR (Cyber Analytics Repository) and Sigma rules. At the end of the course, the participants will not only be armed with the building blocks and tooling to build their own analytic tests but also the technical depth required to appropriately explain their process and findings with teammates and leadership.

Short description of what the student will know how to do, after completing the class:
Deloitte Advanced Cyber Training’s Active Cyber Analytics Course (ACAC) arms cyber defenders with a new set of tools and techniques to successfully analyze large collections of raw enterprise data. Collection, refinement, scripting, statistics, and visualizations come together to help the operator find “useful patterns” left behind by a potentially malicious actor. Students will learn hour to open and interact with large datasets, leverage Python to analyze raw data for useful results, and how to leverage the availability of community and open-source analytics tests.

Outline of the class:
Mapped to the NICE Framework for Data Analyst (Work Role ID: 422 / NIST: OM-DA-002) & USCYBECOM Analytic Support Officer Basic JQR (2022):
Data
Types of Data
Data Sources
Data Storage Principles
Scripting
Basics
Python
PowerShell
Data Wrangling
Common Languages & Syntax
Data Manipulation & Preparation
Tests & Statistics
Employing Analytics
Statistics Basics
Descriptive Statistics
Employing Statistics
Visualizations and Analysis
Types of visualizations
Visualization Tools
Utilizing visualizations
Capstone
Report Writing
Communication


Technical difficulty of the class (Beginner, Intermediate, Advanced):
Intermediate

Suggested prerequisites for the class:
There are no prerequisites for this class, but this course is intended for basic qualified host and network cyber threat hunters or those looking to learn new tools and techniques to detect malicious cyber actors, which can be used in established roles or opens the door to a more specialized data scientist track.
 
Items students will need to provide:
Participants will need to bring their own device with a modern web browser / keyboard. Participants will connect to a shared server to perform most of their tasks. Alternatively, many of the commands will leverage native tools and a few third party that can be installed directly on participants machines.

DATE: August 12th-13th, 2024

TIME: 8am to 5pm PDT

VENUE: Sahara Las Vegas

TRAINER: Kyle Smathers

- 16 hours of training with a certificate of completion.
- 2 coffee breaks are provided per day
- Note: Food is not included

Registration terms and conditions:

Trainings are refundable before July 1st, the processing fee is $250.

Trainings are non-refundable after July 10th, 2024.

Training tickets may be transferred. Please email us for specifics.

Failure to attend the Training without prior written notification, will be considered a No-Show. No refund will be given.

By purchasing this ticket you agree to abide by the DCT Code of Conduct and the registration terms and conditions listed above.