Wednesday 27-November-2019 // 6:00 - 9:00 PMMeeting Location: Michener Auditorium at UHN, 222 St. Patrick Street, Toronto

---

November TASK

Speaker: Julian PileggiTopic: Threat Hunting with EDRAs skilled attackers focus on bypassing traditional security mechanisms, the ability to perform threat hunting has become more and more integral to a comprehensive security monitoring and response program. Many organizations have realized that deploying an Enterprise Detection & Response (EDR) platform will help their teams be more effective and provide increased visibility. This talk will go over the current threat landscape, the basics of threat hunting, a vendor-agnostic approach to using an EDR for threat hunting and some interesting examples of threat hunts that you could run in your environment right now.Speaker: Peter MaddisonTopic: Securing Pipes with TACOsTACO is an acronym I use with clients to help them map controls from their software delivery pipelines to the organizational controls. TACO stands for Traceability, Access, Compliance, and Operations. The approach consists of a base list of 25 automatable controls that are documented and the control activity, artifacts and SOR identified. After mapping how these controls are handed, we map them to the organizational controls and identify any gaps. This model allows for the creation of opinionated pipelines and helps create a common understanding across teams as to what is required in order to be secure. Taking a TACO approach can be considered a part of implementing a DevSecOps program and I’ve used this approach at multiple banks.During the talk I’ll run through the different categories of controls, how they are implemented, what the purpose of them is, how to create robust feedback loops for controls such as SAST.

---

This month's TASK is proudly sponsored by eSentire.eSentire® is the global leader in Managed Detection and Response (MDR), keeping organizations safe from cyber attacks that technology alone cannot prevent. Our 24×7 Security Operations Center (SOC), staffed by elite security analysts, hunts, investigates, and responds in real-time to known and unknown threats before they become business disrupting events.We want to cut through the hype and overblown claims surrounding AI and ML to help our customers successfully tackle their biggest digital transformation challenges. We value each person’s unique contribution, so if you love to solve difficult problems–together–eSentire is the place for you.eSentire has been recognized in Deloitte’s Technology Fast 50™ and Fast 500™, Canada’s Top Small and Medium Employers, and Gartner’s Market Guide for Managed Detection and Response. For more information, visit www.eSentire.com and follow @eSentire.Join our team of brilliant, passionate people who protect the world from cyber threats.

---

Meeting Location: Michener Auditorium, 222 St. Patrick Street, Toronto.