HYATT REGENCY, SAN FRANCISCO, CALIFORNIA
SEPTEMBER 30 — OCTOBER 2, 2019

Join Exabeam users at Spotlight19, Exabeam's second user conference.
At Spotlight19 you will hear from Exabeam customers firsthand, learn new skills at Exabeam Technical Workshops, find out about Exabeam product features, and network with fellow security practitioners. Need to justify your attendance? Download our customizable justification letter.

Accommodations

A limited number of discounted rooms are available at the Hyatt Regency Sun, Sept 29, 2019 – Thur, Oct 3, 2019 - book by September 19th.

PRESENTED BY EXABEAM.
POWERED BY YOU.
PRESENTED BY EXABEAM.
POWERED BY YOU.
ADD TO CALENDAR
              
9:00 AM — 4:00 PM


Training - Exabeam Advanced Analytics: From Investigation to Threat Hunting

Presenter: Robert Bush, Manager - Exabeam University Professional Services, Exabeam

This compressed, one-day class is designed to offer value to both veteran analysts and those who are new to the Exabeam Security Management Platform.

Attendees will leave this course with a framework for all investigations, prescriptive steps for several specific investigation types, and the ability to fully leverage the threat hunting capabilities of Exabeam Advanced Analytics. General capabilities and extensibility are also covered.

Sign up for the training course when you register for Spotlight to reserve your seat. The cost of the training is an additional $450.

6:00 PM — 11:30 PM


Exabeam Hackathon

Sponsored by Grant Thornton

Come join Exabeam customers, partners, and technical staff for our first annual hackathon the evening of September 30. Teams will compete to solve challenges within Exabeam’s Security Management Platform. Snacks, drinks, WiFi, and music will be provided. Participants need to bring their own laptop, and an Exabeam sandbox will be provisioned for each team. Exabeam tech staffers will be on hand to answer questions and help out. Winners will be announced Wednesday, October 2, during the Spotlight awards ceremony. The first place team will take home a coveted Lava Lamp Trophy. Sign up for the hackathon when you register for Spotlight to reserve your seat.

Tuesday, October 1st
7:00 AM — 5:00 PM
Registration and Information Desk

7:00 AM — 5:00 PM
Spotlight19 Sponsor Expo Hall

7:00 AM — 8:30 AM
Breakfast
8:30 AM — 10:00 AM


Opening Keynotes

Welcome

Tim Matthews, Chief Marketing Officer, Exabeam

The Year in Review

Nir Polak, Chief Executive Officer, Exabeam

Recent Releases and Roadmap

Anu Yamunan, SVP Product Management and Research, Exabeam
Shahar Ben-Hador, Chief Information Officer, Exabeam
Pranay Kamat, Group Product Manager, Exabeam

10:00 AM — 10:30 AM
Customer Panel: Airline Behavioral Analytics for Security And Beyond

Anthony Lauderdale
Managing Director - Information Security
United Airlines

Don McCoy
Manager Cyber Monitoring and Incident Response
Delta Air Lines

Moderator: Joe Petrie
Editor-in-Chief
Airport Business

Ensuring passenger security is paramount for the airline industry. In this keynote panel, we’ll discuss how Delta Air Lines and United Airlines have deployed Exabeam to protect their passengers as well as their organizations more broadly. We’ll also discuss how these companies are using Exabeam Advanced Analytics for use cases beyond traditional information security, use cases that extend to employee fraud, physical security and even airline maintenance.

10:30 AM — 11:00 AM
Break

Networking in Expo Hall

11:00 AM — 11:45 AM


Train Harder than You Fight: How Exabeam Helps Blue Teams Counter Red Team Attacks

Chris Tillett
Senior Security Engineer
Exabeam

11:00 AM — 11:45 AM


SIEM Modernization: What It Looks And Feels Like to Be a Trailblazer

Ryan Clarque
Senior Manager Global Cyber Security
Levi Strauss & Co.

Rapid changes in the threat landscape and corporate digital transformations are forcing organizations to modernize their security operations. The journey can be filled with both joy and pain. In this session, Levi Strauss & Co. will share their experience being a trailblazer and an early adopter of Exabeam technology. The presentation will discuss lessons learned about deploying new technology as well as organizational issues like the need to have the right people, a willingness to adapt and the need to find humor in any situation.

11:45 AM — 12:30 PM


Using Exabeam to Put Joy Back into Threat Hunting

Andy Skrei
VP, Worldwide Sales Engineering
Exabeam

Threat hunting is often cited as analysts’ favorite task. However, it can also be a very manual and laborious undertaking. In this session Andy Skrei from Exabeam will walk through real-life threat hunting examples where Exabeam not only helped deliver results, but also took some pain out of the chase.

11:45 AM — 12:30 PM


MITRE ATT&CK: Using Exabeam for Threat Hunting and Investigations

Rocky Rashidi
Senior Product Manager
Exabeam

Abel Morales
Regional Sales Engineer
Exabeam

There has been tremendous interest in the MITRE ATT&CK framework for classifying attacker behavior. But, most security pros are only just starting to think about how to actually use it in their day-to-day practices. In this session, we'll discuss how to move beyond using IoCs to include MITRE TTPs to detect attackers. The presenters will walk through various scenarios to conduct investigations and show how Exabeam can help map data to MITRE techniques.

12:30 PM — 1:30 PM
Lunch
1:30 PM — 2:15 PM


Investigations in the Big Data Era

Peter Silberman
Chief Technology Officer
Expel

As telemetry data increases and attacker activity gets more diverse, we’re left finding a smaller needle in a larger haystack. To do this products are moving beyond rule based detections, leveraging anomaly detection and advanced analytics. This shift is putting an increasing strain on human responders. In this talk we’ll discuss how we at Expel have operationalized investigative processes to make our team effective in dealing with the wide range of anomaly-based leads we see from these new products.

1:30 PM — 2:15 PM


Deploying a New SIEM: The Path to Success

Carl Scaffidi
CISO
Baker Donelson

Carl Scaffidi, CISO at Baker Donelson recently led his firm as they rolled out the full Exabeam stack including Data Lake, Advanced Analytics and Incident Responder. Deploying a SIEM is often seen as a daunting project. Join Carl as he discusses lessons learned from Baker Donelson’s journey and shares advice on how to put your organization on a path to success. He’ll share real life examples and tips to succeed with Exabeam at each step along the way.

2:15 PM — 3:00 PM


How to Make SAP Safer and Make Your ERP Team Happy

Greg Kushmerek
Senior Sales Engineer
Onapsis

ERP systems are repositories of sensitive information. Security teams need to protect them against outside hackers looking to exploit vulnerabilities, even if patches are infrequently updated, and detect insider threats. In this session, several case studies will be used to discuss the security issues facing ERP systems including a US manufacturer who had $1 million stolen by having their transactions rerouted. We’ll also explore other use cases including “watching the watchman,” alerting on new vulnerabilities, and monitoring access to sensitive information. Along the way, we’ll explain how you can gain the support of your ERP colleagues by helping them improve operational uptime, avoid compliance and lawsuits due to regulatory violations, and speed audits with pre-built reports.

2:15 PM — 3:00 PM


Practical Strategies for UEBA to Detect Insiders & Advanced Cyber Threats

Kevin Urbanowicz
Managing Director, Cyber Risk Services
Deloitte

Join Kevin Urbanowicz, Deloitte’s Insider Threat & UEBA leader for the US for a pragmatic discussion on what enterprises are doing to scale and mature capabilities to detect both insider and cyber risks using Exabeam and run more effective operations to drive the most out of your technology investment. Topics will include use case prioritization, content import, analytics life cycle and effective operating models.

3:00 PM — 3:30 PM
Break

Networking in Expo Hall

3:30 PM — 5:00 PM
2019 Security Management Excellence Awards Ceremony

Join us as we announce the 2019 Security Management Excellence Awards and recognize Exabeam customers that distinguish themselves through excellence and innovation in security management across the following five categories: SIEM modernization, cloud security, insider threat programs, SOC automation, and IoT security. Submit for an award today! Submission deadline is Friday August 30th, 2019.

7:00 PM — 10:00 PM
Spotlight19 Cocktail Party

Join us for a fantastic evening of fun, food, drinks and networking on the rooftop of the Exploratorium. Trollies will provide shuttle service to and from the event starting at 6:45pm.

Wednesday, October 2nd
7:30 AM — 3:30 PM
Registration and Information Desk

7:30 AM — 3:30 PM
Spotlight19 Sponsor Expo Hall

7:30 AM — 8:30 AM
Breakfast
8:30 AM — 10:30 AM


Morning Keynotes

Leveraging Exabeam for more than basic User Activity Monitoring

John Pearce, Principal, Grant Thornton Cyber Defense Solutions
Don Sheehan, Director, Grant Thornton Cyber Defense Solutions

During this session the speakers will discuss trends driving wider adoption of Exabeam technology to solve various challenges, such as leveraging and monitoring cloud infrastructure, aligning use cases to broader frameworks, as well as leveraging the solution to solve specific industry challenges.

Customer Success and Community Update

Sylvain Gil, EVP Customer Success, Exabeam

Exabeam Platform Vision

Anu Yamunan, SVP Product Management and Research, Exabeam
Inna Shalom, Senior Product Manager, Exabeam

10:30 AM — 11:00 AM
Break

Networking in Expo Hall.

11:00 AM — 11:45 AM


Modernizing Security Operations - From Detection to Response

Tom Tully
Director - Cyber Security Intelligence
Cleveland Clinic

Brad McCrillis
Cyber Security Senior Tech
Cleveland Clinic

Security operations modernize over time. This session will provide an overview of Cleveland Clinic’s journey, a journey that began 5 years ago when they became a design partner for Exabeam Advanced Analytics. The speakers will share their rationale for augmenting, and then replacing, Qradar and for moving their operations to a MDR service. They will also review several case studies – including detecting unauthorized foreign access, compromised credentials and access by departed employees – to discuss the impact of the changes on their security operations and lessons learned.

11:00 AM — 11:45 AM


Deploying Exabeam in Complex Environments: A View from Exabeam Professional Services and NTT DATA

Kevan Ford, Ryan Makamson
Professional Services Engineers
Exabeam

Seiichiro Yatake
Manager of Cyber Security Department
NTT DATA

Shota Togasaki
Assistant Manager
NTT DATA

Salvatore Perlangeli
NTT DATA

Exabeam customers tend to have complex environments with resources spread across multiple geographies and data centers, HA/DR requirements and a need to integrate with applications and infrastructure developed over many years and through M&A. In this session, Exabeam Professional Services Engineers will host an interactive discussion about deploying our platform in complex and large scale environments. They will share best practices and lessons learned from their experience in the field which will include a detailed case study of NTT DATA's global deployment. Topics will include planning and goal setting; log retention and collection; resourcing; communication and culture; and the handoff to security operations.

11:45 AM — 12:30 PM


Creating Data Lake Visualizations and Reports from Advanced Analytics Rule Triggers

Tim Lowe
Cybersecurity Analyst
Regions Bank

Kati Hatch
Sales Engineer
Exabeam

The most common deployment scenario is for organizations to run Data Lake in parallel with Advanced Analytics. However, there are situations where the products can work together. In this session, we’ll discuss one of those scenarios and how Regions Bank captures Advanced Analytics rule triggers and sends them to Data Lake. Examples will be provided demonstrated how Regions Bank uses this event data to build use case-specific visualizations, templates to present the data in a consistent manner, and regular time-based reports that are automatically emailed out to the team.

11:45 AM — 12:30 PM


Best Practices to Integrate Exabeam into Your Security Operations

Cliff Turner
Solutions Architect
Exabeam

Exabeam changes workflows and thinking processes of security operations teams and greatly enhances their ability to detect anomalous user and machine behavior. For example, Exabeam allows organizations to move from alert-focused workflows to context- and risk-based analysis. In this session, we share real-life examples about how Exabeam has been used to enhance multiple operating models. What needs to change? How do you change it? This presentation will answer these questions and more.

12:30 PM — 1:30 PM
Lunch
1:30 PM — 2:15 PM


How to Reduce the Time to Detect and Respond to Incidents

Rhett Nieto
SOC Manager
FEMSA

FEMSA recently made changes to their security operations and deployed Exabeam. As a result, they have been able to reduce the time it takes to detect threats and respond to incidents. In this session, Rhett Nieto, SOC Manager, will discuss their operational transformation, how their visibility has improved and how the security team is working more productively.

1:30 PM — 2:15 PM


Custom Use Cases And How to Build Them

John DiFederico
Senior Security Engineer
Exabeam

Exabeam not only provides hundreds of models out-of-the-box, it also makes it very easy for security teams to create custom use cases. In this session, John DiFederico will discuss how to identify areas where new use cases may be warranted, examples of use cases and how to implement them. The most popular session at Exabeam Spotlight18, this year’s session will include updated examples drawing from use cases our customers deployed over the past 12 months.

2:15 PM — 3:00 PM


Future-Ready Security Strategy: Aligning Your Cybersecurity Practice with Long Term Business Goals

Dustin Morris
Cybersecurity Manager
Hensel Phelps

Hiroshi Honjo
Head of Cyber Security and Governance
NTT Data

Security and business alignment is paramount to ongoing success, yet due to the ever shifting nature of the security landscape, this is no mean feat to achieve. Organizations’ strategic business goals often reach years into the future, therefore security leaders must also be thinking in these terms to ensure they enable innovation and growth without compromising security. Our panelists have a wealth of experience in this space, and will share their insights into how to best navigate these waters, key areas to consider, and common pitfalls to avoid.

2:15 PM — 3:00 PM


Best Practices for Architecting and Deploying Exabeam

Jimish Shah
Senior Technical Product Manager
Exabeam

Pawan Venugopal
Senior Product Manager
Exabeam

Ray Turner
Solutions Architect
Exabeam

In this session, Exabeam product specialists will share their experiences working with engineers across the Exabeam customer base to deploy and architect Exabeam. The speakers will provide insights for small to very large environments. They will address topics including sizing, best practices for architecture and infrastructure requirements.

3:00 PM — 3:30 PM


Closing Keynote

R&D Futures

Barry Shteiman, VP Research and Innovation, Exabeam

Standard

$795
REGISTER NOW
Early bird

Tickets available until July 31, 2019

$595
Early bird

Tickets available until July 31, 2019

$595
Standard

$795

Daniel Bardenstein

Group Product Manager

Exabeam

Shahar Ben-Hador

Chief Information Officer

Exabeam

Ryan Clarque

Senior Manager Global Cyber Security

Levi Strauss & Co.

John DiFederico

Senior Security Engineer

Exabeam

Kevan Ford

Professional Services Engineer

Exabeam

Sylvain Gil

Co-founder and EVP, Customer Success

Exabeam

Kati Hatch

Sales Engineer

Exabeam

Hiroshi Honjo

Head of Cyber Security and Governance

NTT DATA

Pranay Kamat

Group Product Manager

Exabeam

Greg Kushmerek

Senior Sales Engineer

Onapsis

Anthony Lauderdale

Director - Threat Detection and Monitoring

United Airlines

Tim Lowe

Cybersecurity Analyst

Regions Bank

Ryan Makamson

Professional Services Engineer

Exabeam

Don McCoy

Manager Cyber Monitoring and Incident Response

Delta Air Lines

Brad McCrillis

Cyber Security Senior Tech

Cleveland Clinic

Abel Morales

Regional Sales Engineer

Exabeam

Dustin Morris

Cybersecurity Manager

Hensel Phelps

Rhett Nieto

SOC Manager

FEMSA

John Pearce

Principal

Grant Thornton Cyber Defense Solutions

Salvatore Perlangeli

NTT DATA

Joe Petrie

Editor-in-Chief

Airport Business

Nir Polak

CEO

Exabeam

Rocky Rashidi

Senior Product Manager

Exabeam

Carl Scaffidi

CISO

Baker Donelson

Jimish Shah

Senior Technical Product Manager

Exabeam

Inna Shalom

Senior Product Manager
Product Management & Research

Exabeam

Don Sheehan

Director

Grant Thornton Cyber Defense Solutions

Barry Shteiman

Vice President, Research and Innovation

Exabeam

Peter Silberman

Chief Technology Officer

Expel

Andy Skrei

VP, Worldwide Sales Engineering

Exabeam

Chris Tillett

Senior Security Engineer

Exabeam

Shota Togasaki

Assistant Manager

NTT DATA

Tom Tully

Director - Cyber Security Intelligence

Cleveland Clinic

Cliff Turner

Solutions Architect

Exabeam

Ray Turner

Solutions Architect

Exabeam

Kevin Urbanowicz

Managing Director, Cyber Risk Services

Deloitte

Pawan Venugopal

Senior Product Manager

Exabeam

Anu Yamunan

VP of Product Management

Exabeam

Seiichiro Yatake

Manager of Cyber Security Department

NTT DATA

PLATINUM

Interested in speaking, sponsoring or attending this event? Email
spotlight@exabeam.com or fill out the form below and we'll be in touch.