Schedule

tir. 16. nov.

9:00 - 16:00
7 timer
Training Workshop: Microsoft Security Tools | Microsoft
The HUB - Spectrum

ons. 17. nov.

9:00 - 9:30
30 minutter
Registration and Coffee
Auditorium Voice
9:30 - 9:40
10 minutter
Introduction
9:40 - 10:40
1 time
Ransomware? Ransomeverywhere! | Andy Snowball, BAE systems
10:40 - 10:50
10 minutter
Break
10:50 - 11:35
45 minutter
Forensic Expert's Bias – Challenges and Proposed Solutions | Nina Sunde, The Norwegian Police University College
11:35 - 11:45
10 minutter
Break
11:45 - 12:15
30 minutter
Building Your Own Security Analytics Platform in Azure | Trond Selland, Equinor
12:15 - 13:15
1 time
Lunch
13:15 - 14:00
45 minutter
Deploying and Managing Azure Sentinel as Code | Truls Dahlsveen, Sopra Steria
14:00 - 14:10
10 minutter
Break
14:10 - 14:40
30 minutter
Adversary Emulation Planner Based On MITRE ATT&CK | Siri Bromander, mnemonic
14:40 - 14:50
10 minutter
Break
14:50 - 15:20
30 minutter
RDP Bitmap Cache: How to Puzzle the Pieces | Bjørn Henninen, Orange Cyberdefense
15:20 - 15:30
10 minutter
Break
15:30 - 16:00
30 minutter
The Value of FIRST and Information Sharing | Margrete Raaum & Mona Elisabeth Østvang
16:00 - 16:20
20 minutter
Quiz, Price Ceremony and Closing Remarks
18:00 - 22:00
4 timer
Community Dinner (Not Sponsored)
Brygg, Storgata 7, Oslo

tor. 18. nov.

9:00 - 9:30
30 minutter
Registration and Coffee
Auditorium Voice
9:30 - 9:40
10 minutter
Intro
9:40 - 10:40
1 time
Comparative Studies in Remediation: Lessons from 3 years of APT Remediation | Angela Wong, Telenor
10:40 - 10:50
10 minutter
Break
10:50 - 11:35
45 minutter
IRT Team Leader When Democracy Is under Attack | Frode Rein, Norwegian Parliament
11:35 - 11:45
10 minutter
Break
11:45 - 12:15
30 minutter
Keeping Tabs on TA505 | Torbjørn Lium, DNB
12:15 - 13:05
50 minutter
Lunch
13:05 - 13:50
45 minutter
Hacking-and-Leaking-for-Hire: The India Story | Saher Naumaan, BAE Systems
13:50 - 14:00
10 minutter
Break
14:00 - 14:30
30 minutter
Experience Related to the Kaseya Ransomware Attack | Espen Håkonsen, Visma
14:30 - 14:40
10 minutter
Break
14:40 - 15:40
1 time
Choose Your Pwn Adventure | Steven Adair, Volexity
15:40 - 16:00
20 minutter
Quiz, Price Ceremony and Closing Remarks

Schedule

tir. 16. nov.

Training Workshop: Microsoft Security Tools | Microsoft

ons. 17. nov.

Registration and Coffee

Introduction

Ransomware? Ransomeverywhere! | Andy Snowball, BAE systems

Break

Forensic Expert's Bias – Challenges and Proposed Solutions | Nina Sunde, The Norwegian Police University College

Break

Building Your Own Security Analytics Platform in Azure | Trond Selland, Equinor

Lunch

Deploying and Managing Azure Sentinel as Code | Truls Dahlsveen, Sopra Steria

Break

Adversary Emulation Planner Based On MITRE ATT&CK | Siri Bromander, mnemonic

Break

RDP Bitmap Cache: How to Puzzle the Pieces | Bjørn Henninen, Orange Cyberdefense

Break

The Value of FIRST and Information Sharing | Margrete Raaum & Mona Elisabeth Østvang

Quiz, Price Ceremony and Closing Remarks

Community Dinner (Not Sponsored)

tor. 18. nov.

Registration and Coffee

Intro

Comparative Studies in Remediation: Lessons from 3 years of APT Remediation | Angela Wong, Telenor

Break

IRT Team Leader When Democracy Is under Attack | Frode Rein, Norwegian Parliament

Break

Keeping Tabs on TA505 | Torbjørn Lium, DNB

Lunch

Hacking-and-Leaking-for-Hire: The India Story | Saher Naumaan, BAE Systems

Break

Experience Related to the Kaseya Ransomware Attack | Espen Håkonsen, Visma

Break

Choose Your Pwn Adventure | Steven Adair, Volexity

Quiz, Price Ceremony and Closing Remarks

FIRST Norway

oslo2021@first.org

About FIRST Norway

FIRST

Forum of Incident Response and Security Teams

first-sec@first.org

About FIRST

Shortcuts