The daunting task for CISOs is to conduct threat hunting activity within a vulnerable Windows environment and identify any unusual behavior that could indicate the presence of malicious activity.

Since the Windows OS is predominantly used in endpoints and servers in an enterprise, it is critical to build deep visibility. Security teams must be aware of the Windows processes to enable them to identify threats on a system even without using expensive enterprise endpoint security solutions.

A proactive threat hunting built around an “assume breach” principle is crucial for CISOs to harness their knowledge and resources to outthink attackers.

The session will cover:

• The Windows threat scenario
• Tools and strategies to identify the adversary hiding in your environment
• Preparing for proactive threat hunting and building the right defenses