HYATT REGENCY, SAN FRANCISCO, CALIFORNIA
SEPTEMBER 30 — OCTOBER 2, 2019

Join Exabeam users at Spotlight19, Exabeam's second user conference.
At Spotlight19 you will hear from Exabeam customers firsthand, learn new skills at Exabeam Technical Workshops, find out about Exabeam product features, and network with fellow security practitioners. Need to justify your attendance? Download our customizable justification letter.

Accommodations

A limited number of discounted rooms are available at the Hyatt Regency Sun, Sept 29, 2019 – Thur, Oct 3, 2019 - book by September 19th.

PRESENTED BY EXABEAM.
POWERED BY YOU.
PRESENTED BY EXABEAM.
POWERED BY YOU.
ADD TO CALENDAR
              
9:00 AM — 4:00 PM


Training - Exabeam Advanced Analytics: From Investigation to Threat Hunting

Presenter: Robert Bush, Manager - Exabeam University Professional Services, Exabeam

This compressed, one-day class is designed to offer value to both veteran analysts and those who are new to the Exabeam Security Management Platform.

Attendees will leave this course with a framework for all investigations, prescriptive steps for several specific investigation types, and the ability to fully leverage the threat hunting capabilities of Exabeam Advanced Analytics. General capabilities and extensibility are also covered.

Sign up for the training course when you register for Spotlight to reserve your seat. The cost of the training is an additional $450.

6:30 PM — 11:00 PM


Exabeam Hack-a-thon

Come join Exabeam customers, partners, and technical staff for our first annual hackathon the evening of September 30. Teams will compete to create the best customization of the Exabeam Security Management Platform. Projects can include custom rules, models, parsers or playbooks. A panel of judges will select the top three entries on overall usefulness, novelty, and potential security impact. Snacks, drinks, WiFi, and music will be provided. Participants need to bring their own laptop. An Exabeam sandbox will be provisioned for each team. Exabeam tech staffers from customer success, research, and development will be on hand to answer questions and help out. Winners will be announced Wednesday, October 2, during the Spotlight awards ceremony. The first place team will take home a coveted Green Lava Trophy. Sign up for the hackathon when you register for Spotlight to reserve your seat.

Tuesday, October 1st
7:00 AM — 5:00 PM
Registration and Information Desk

7:00 AM — 5:00 PM
Spotlight19 Sponsor Expo Hall

7:00 AM — 8:30 AM
Breakfast
8:30 AM — 10:00 AM


Opening Keynotes

Welcome – Tim Matthews, Chief Marketing Officer, Exabeam

The Year in Review – Nir Polak, Chief Executive Officer, Exabeam

Recent Releases and Roadmap – Anu Yamunan, SVP Product Management and Research, Exabeam

10:00 AM — 10:30 AM
Customer Panel: Airline Behavioral Analytics for Security and Beyond

Mahmood Khan
Managing Director - Information Security
United Airlines

Don McCoy
Manager Cyber Monitoring and Incident Response
Delta Air Lines

Ensuring passenger security is paramount for the airline industry. In this keynote panel, we’ll discuss how Delta Air Lines and United Airlines have deployed Exabeam to protect their passengers as well as their organizations more broadly. We’ll also discuss how these companies are using Exabeam Advanced Analytics for use cases beyond traditional information security, use cases that extend to employee fraud, physical security and even airline maintenance.

10:30 AM — 11:00 AM
Break

Networking in Expo Hall

11:00 AM — 11:45 AM


From the Battlefield to the Board

Mick Jenkins
CISO
Brunel University

Mick Jenkins MBE takes us on a colourful journey of intelligence and counter terrorist operations, with a sprinkling of stories that will immerse us in the hybrid threats of today, right through to how he plays a key role in influencing key decision makers for cyber investment. Cyber-security is a board-level issue at most companies and either they or the company’s senior executives are the final budgetary decision makers. Over the years’, Mick learned how best to influence key decision makers, while offering intelligent thinking about balancing costs versus benefit and leveraging value and RoI. Most lately in his latest role as the CISO of Brunel University.

11:00 AM — 11:45 AM


SIEM Modernization: What it Looks and Feels Like to be a Trailblazer

Ryan Clarque
Senior Manager Global Cyber Security
Levi's

Rapid changes in the threat landscape and corporate digital transformations are forcing organizations to modernize their security operations. The journey can be filled with both joy and pain. In this session, Levi’s will share their experience being a trailblazer and an early adopter of Exabeam technology. The presentation will discuss lessons learned about deploying new technology as well as organizational issues like the need to have the right people, a willingness to adapt and the need to find humor in any situation.

11:45 AM — 12:30 PM


The Top Ten Must Haves (and Must Nots) For an Effective Insider Threat Program

Shawn Thompson
Founder and President
ITMG

In this session, insider threat expert and CEO Shawn M. Thompson, Esq. will draw on ITMG’s experience training and building insider threat programs for over 500 companies. Shawn will discuss how to baseline your current capabilities, assess risk and select the right tools and staff to support your program. He will also discuss how to eliminate unintended and deleterious consequences as knowing what not to do is perhaps the most important success factor.

11:45 AM — 12:30 PM


Custom Use Cases and How to Build Them

Nevo Laron
VP Customer Success Engineering
Exabeam

Exabeam not only provides hundreds of models out-of-the-box, it also makes it very easy for security teams to create custom use cases. In this session, Nevo Laron will discuss how to identify areas where new use cases may be warranted, examples of use cases and how to implement them. The most popular session at Exabeam Spotlight18, this year’s session will include updated examples drawing from use cases our customers deployed over the past 12 months.

12:30 PM — 1:30 PM
Lunch
1:30 PM — 2:15 PM


Investigations in the Big Data Era

Peter Silberman
Chief Technology Officer
Expel

As telemetry data increases and attacker activity gets more diverse, we’re left finding a smaller needle in a larger haystack. To do this products are moving beyond rule based detections, leveraging anomaly detection and advanced analytics. This shift is putting an increasing strain on human responders. In this talk we’ll discuss how we at Expel have operationalized investigative processes to make our team effective in dealing with the wide range of anomaly-based leads we see from these new products.

1:30 PM — 2:15 PM


Deploying a New SIEM: The Path to Success

Carl Scaffidi
CISO
Baker Donelson

Carl Scaffidi, CISO at Baker Donelson recently led his firm as they rolled out the full Exabeam stack including Data Lake, Advanced Analytics and Incident Responder. Deploying a SIEM is often seen as a daunting project. Join Carl as he discusses lessons learned from Baker Donelson’s journey and shares advice on how to put your organization on a path to success. He’ll share real life examples and tips to succeed with Exabeam at each step along the way.

2:15 PM — 3:00 PM
Track Sessions

3:00 PM — 3:30 PM
Break

Networking in Expo Hall

3:30 PM — 5:00 PM
2019 Security Management Excellence Awards Ceremony

Join us as we announce the 2019 Security Management Excellence Awards and recognize Exabeam customers that distinguish themselves through excellence and innovation in security management across the following five categories: SIEM modernization, cloud security, insider threat programs, SOC automation, and IoT security. Submit for an award today! Submission deadline is Friday August 30th, 2019.

7:00 PM — 10:00 PM
Spotlight19 Cocktail Party
Wednesday, October 2nd
7:30 AM — 3:30 PM
Registration and Information Desk

7:30 AM — 3:30 PM
Spotlight19 Sponsor Expo Hall

7:30 AM — 8:30 AM
Breakfast
8:30 AM — 10:30 AM


Morning Keynotes

Customer Success and Community Update – Sylvain Gil, EVP Customer Success, Exabeam

R&D Futures – Barry Shteiman, VP Research and Innovation, Exabeam

Exabeam Platform Vision – Anu Yamunan, SVP Product Management and Research, Exabeam

10:30 AM — 11:00 AM
Break

Networking in Expo Hall.

11:00 AM — 11:45 AM


Using Exabeam to put joy back into Threat Hunting

Matt Schindler
VP Security Operations
2U

Andy Skrei
VP, Worldwide Sales Engineering
Exabeam

Threat hunting is often cited as analysts’ favorite task. However, it can also be a very manual and laborious undertaking. In this session, Matt Schindler, VP Security Operations at 2U and Andy Skrei from Exabeam will walk through real-life threat hunting examples where Exabeam not only helped deliver results, but also took some pain out of the chase.

11:00 AM — 11:45 AM


Deploying Exabeam in Complex Environments: A View from Exabeam Professional Services and NTT

Kevan Ford, Ryan Makamson
Professional Services Engineers
Exabeam

Exabeam customers tend to have complex environments with resources spread across multiple geographies and data centers, HA/DR requirements and a need to integrate with applications and infrastructure developed over many years and through M&A. In this session, Exabeam Professional Services Engineers will host an interactive discussion about deploying our platform in complex and large scale environments. They will share best practices and lessons learned from their experience in the field which will include a detailed case study of NTT's global deployment. Topics will include planning and goal setting; log retention and collection; resourcing; communication and culture; and the handoff to security operations.

11:45 AM — 12:30 PM


Creating Data Lake Visualizations and Reports From Advanced Analytics Rule Triggers

Tim Lowe
Cybersecurity Analyst
Regions Bank

Kati Hatch
Sales Engineer
Exabeam

The most common deployment scenario is for organizations to run Data Lake in parallel with Advanced Analytics. However, there are situations where the products can work together. In this session, we’ll discuss one of those scenarios and how Regions Bank captures Advanced Analytics rule triggers and sends them to Data Lake. Examples will be provided demonstrated how Regions Bank uses this event data to build use case-specific visualizations, templates to present the data in a consistent manner, and regular time-based reports that are automatically emailed out to the team.

11:45 AM — 12:30 PM


Best Practices to Integrate the Exabeam into your Security Operations

Cliff Turner
Solutions Architect
Exabeam

Exabeam changes workflows and thinking processes of security operations teams and greatly enhances their ability to detect anomalous user and machine behavior. For example, Exabeam allows organizations to move from alert-focused workflows to context- and risk-based analysis. In this session, we share real-life examples about how Exabeam has been used to enhance multiple operating models. What needs to change? How do you change it? This presentation will answer these questions and more.

12:30 PM — 1:30 PM
Lunch
1:30 PM — 2:15 PM


How to reduce the time to detect and respond to incidents

Rhett Nieto
SOC Manager
FEMSA

FEMSA recently made changes to their security operations and deployed Exabeam. As a result, they have been able to reduce the time it takes to detect threats and respond to incidents. In this session, Rhett Nieto, SOC Manager, will discuss their operational transformation, how their visibility has improved and how the security team is working more productively.

1:30 PM — 2:15 PM


Defense in Depth: Using Exabeam to Fill in the Gaps

Scott Dungan
Manager Insider Threat
5/3 Bank

5/3 Bank uses technology and an experienced cyber team to protect the bank from internal and external cyber threat. Exabeam extends the bank’s defense in depth strategy to identify threat behaviors that are difficult to detect in disconnected point solutions. In this session, Scott Dungan, Manager Insider Threat will discuss how 5/3 has used Exabeam to strengthen the bank’s current operating model when it comes to use cases like channel probing for data exfiltration and monitoring account management activities. Topics will include how they’ve brought logs into the system, tuned models and integrated with a third party ticketing system for incident response.

2:15 PM — 3:00 PM
Track Sessions

3:00 PM — 3:30 PM


Closing Keynote

Standard

$795
REGISTER NOW
Early bird

Tickets available until July 31, 2019

$595
Early bird

Tickets available until July 31, 2019

$595
Standard

$795

Daniel Bardenstein

Group Product Manager

Exabeam

Shahar Ben-Hador

Chief Information Officer

Exabeam

Ryan Clarque

Senior Manager Global Cyber Security

Levi's

Scott Dungan

Manager Insider Threat

5/3 Bank

Kevan Ford

Professional Services Engineer

Exabeam

Kati Hatch

Sales Engineer

Exabeam

Mick Jenkins

CISO

Brunel University

Mahmood Khan

Managing Director - Information Security

United Airlines

Pranay Komat

Group Product Manager

Exabeam

Nevo Laron

VP Customer Success Engineering

Exabeam

Tim Lowe

Cybersecurity Analyst

Regions Bank

Ryan Makamson

Professional Services Engineer

Exabeam

Don McCoy

Manager Cyber Monitoring and Incident Response

Delta Air Lines

Rhett Nieto

SOC Manager

FEMSA

Nir Polak

CEO

Exabeam

Carl Scaffidi

CISO

Baker Donelson

Matt Schindler

VP Security Operations

2U

Peter Silberman

Chief Technology Officer

Expel

Andy Skrei

VP, Worldwide Sales Engineering

Exabeam

Shawn Thompson

Founder and President

ITMG

Cliff Turner

Solutions Architect

Exabeam

Anu Yamunan

VP of Product Management

Exabeam

GOLD
SILVER

Interested in speaking, sponsoring or attending this event? Email
spotlight@exabeam.com or fill out the form below and we'll be in touch.