Security Big Data & A.I. Analytic (SBDA) Training - 生产力学院
Security Big Data & A.I. Analytic (SBDA) Training
10012773-01
香港九龙达之路78号
2023-03-01
利小姐,电话:+852 2788 5704
cybersec@hkpc.org

運用大數據和人工智能強化網絡保安課程

在現今資訊量激增的時代,大數據及人工智能的解決方案變得更趨重要。與其他領域一樣,網絡保安領域也同樣面對需要於短時間內處理大量數據的挑戰。此課程適合希望了解如何透過大數據和人工智能的最新技術加強網絡保安的人。

為期5天的課程將會針對日誌分析 (Log Analysis)、網絡和計算機搜證 (Network and Computer Forensics),以及惡意軟件分析 (Malware Analysis) 等進行進階的概述,包括:如何運用統計技術和人工智能的解決方案對自動化日誌進行深入剖析,以及提供實用練習機會給所有參與的學員。

(課程內容介紹以英文為準)

Date and Time

1-3, 9-10 Mar 2023, 09:00 – 17:00

Venue

Online Broadcast

Medium

English

Course Outline

DAY 1

    • The Principal of SBDA – Log Analysis
      • SBDA. How does it help in analysing the log data?
      • The Sources. Which sources to start with and how deep to go?
      • Log Collection. What actually should we look for?
      • Quick Analysis. Big Data or “Small” Data?
      • Below the 0’s and 1’s: Network and Computer Forensics
      • Regular tools to use in Forensics
      • Evidence – The sound of the truth
      • Ways to protect your pieces of evidence

DAY 2

    • One Step Forward – Malware Analysis
      • How does malware analysis help in SBDA? Static & dynamic analysis
      • Tools for Static Analysis: Yara Rules, HexEditor, Pyew, AnalyzePE, PEscanner, PEframe, PEcheck
      • Framework for dynamic analysis: Cuckoo framework
      • Ready? Let’s start to trace the malware now!
      • Threat Analysis. What actually happened behind the malicious codes?
      • The Smarter Techniques: Automated Log Analysis with Statistical and A.I. Solutions
      • Two More Advanced Techniques: Machine Learning & Artificial Intelligence
        One Step Forward – Malware Analysis

DAY 3

    • Dig, dig, dig… The Searching Techniques
      • Managing SQL & NoSQL databases – Similarities & Differences
      • Use Elasticsearch to search for security data
      • Visualise your search with Kibana Dashboard
      • Get your hands dirty – Analyse the malware with relevant tools, pragmatically triage an incident define level of severity and uncover hidden IoCs

DAY 4

    • Minority Report: Time-based Correlations
      • The Databases
      • The Analytics
      • How do these link?
      • The Ultimate Goal – Predict the outcomes

DAY 5

    • See the Unseen – Correlation Techniques
      • Get familiar with mathematical and statistical analysis to correlate with
      • Use simple but effective correlation matrices
      • Go back to your logs again and learn something you have not thought about before
      • Realize hidden correlations among past and present events and find the source of the security incident

Fee

Early Bird Price (deadline on 1 January 2023): 

    • Staff of Organiser or Member of Supporting Organisation: HK$15,000
    • Non-member : HK$15,500

Regular Price:

    • Staff of Organiser or Member of Supporting Organisation: HK$15,500
    • Non-member : HK$16,000

Trainer

Mr Ferenc FRÉSZ
CEO, Cyber Services Plc

Ferenc FRÉSZ has gained 2 decades of experience in ethical hacking, IT and information security, also leading approximately 1,500 successfully completed international and domestic IT and information security projects, mainly related to critical information infrastructure protection.

Ferenc, as the former head of the Hungarian government cyber security centre (Cyber Defence Management Authority within the National Security Authority, Ministry of Justice and Public Administration), was the iconic figure of the creation of the national information security law in 2013. He was the most important national cyber representative in numerous NATO and EU cyber defense projects and procedures, as well as being a Core Technical Planner of NATO Cyber Coalition Exercises. In 2015, Ferenc was appointed the primary technical contact point for Hungary in the Memorandum of Understanding in Cyber Defence between NATO and Hungary. Ferenc received a ministerial award for excelling public service in 2012.

Before his remarkable public service as the Strategic Lead of the most significant private IT company in Hungary, Ferenc was responsible for Information Management and Business Intelligence business development. Prior to becoming the Head of IT at Budapest Airport, Hungary, Ferenc participated in the establishment of the IT infrastructure of HungaroControl Public Limited, the National ANSP (air traffic service provider) of Hungary.

Besides his successful public service and private business activities, Ferenc is a regular speaker at various cyber security events and conferences all over the world.

Ferenc strongly believes in business-to-business and business-to-government partnerships. As such, he actively supports knowledge transfer from the business environment to boost national capabilities. Also, Ferenc is the Course Lead Trainer at Cyber Institute Ethical Hacking Course.


Ms Anett MÁDI-NÁTOR

Vice President, Strategic Business Development, International Operations of Cyber Services Plc

Anett MÁDI-NÁTOR has more than a decade of experience in strategic and administrative layers of information security and cyber defence both as a private sector subject matter expert and as a government representative.

Her recent appointments include Hungarian MilCIRC Head of Coordination, Administrative Head of Hungarian government cyber security centre (Cyber Defence Management Authority within the National Security Authority), NATO Cyber Coalition Exercises Core Strategic and Administrative Planner, and Lead to NATO Cyber Defence Capability Team.

Up to the summer of 2015, Anett was the appointed primary policy and administrative contact point for Hungary in the Memorandum of Understanding in Cyber Defence between NATO and Hungary. Anett received a ministerial award for excelling public service in 2013. Before her successful public service, Anett as International Project Management Expert and also as Lead Internal Trainer at the most significant private IT company in Hungary participated in great business developments and contributed to project successes. Prior to public service and commercial business development, Anett started her professional career specialised in adult training mostly for the military, special forces, and IT professionals at public administration. As such, she is the Communication Module Lead at Cyber Institute Ethical Hacking Course.

Anett strongly supports cyber defence information sharing both in form of raising awareness as a qualified trainer and sharing information to enable defensive collaboration among all involved entities. As such, Anett took a significant role in launching the ‘Coordinated Vulnerability Disclosure’ Manifesto through Global Forum on Cyber Expertise, 2015. Anett takes a strong role in the European Cyber Security Organisation (ECSO) where she is leading the working group responsible for cyber range and technical education programmes for the EU, and is a member of the ECSO Board Task Force on the future EU cybersecurity. She also participates in the UN ITU regional Cyber Drill series, as a cyber drill planner and coordinator.

Besides her successful public service and private business activities, Anett is a regular speaker at various cyber security events and conferences in Europe and in the Far East.

Target Audience

The course is recommended for system administrators, incident response experts, security analysts and ethical hackers, who would like to gain up-to-date knowledge of the potential that the application of A.I. offers in their respective fields.

Certificate of Training

Participants who have attained 75% or more attendance will be awarded an Attendance Certificate.

Download Full Course Detail ▼