What kind of attack techniques have been observed in security breaches and how would you defend against the said techniques?
The presentation will go through a few real life security breaches shortly and then discuss how these could have been potentially stopped.
Jouni Mikkola, DFIR & SOC development manager at Nixu
Jouni is currently working as a manager at Nixu, being responsible for SOC solutions and the DFIR function. Before being promoted to the current role Jouni was leading the DFIR team of which he was part of for five years. Jouni started on the team as a technical Incident Response investigator and moved to lead the team some years later. Jouni has been included in incident response for years and has also been doing threat hunting assignments for a long time now.
Before joining Nixu Jouni has been doing technical consulting with the focus in Microsoft server technologies, mostly with the messaging products but with a fair bit with technologies like Active Directory. In total, Jouni has worked in IT for 15 years.
Jouni is also hosting a podcast known as Uhkametsä (In Finnish) and has a threat hunting blog that he is writing occasionally, https://threathunt.blog/.