In his current position, Mr. Knight is responsible for building tailored compliance intelligence packages for regulations such as NERC CIP, SOX and PCI that are shipped as part of LogRhythmís enterprise class log and security event management solution. He is responsible for the strategic integration of network & security products to enable LogRhythm to collect, analyze, alert and report on log data.  Mr. Knight has over fifteen years experience in the field of network security with an emphasis in vulnerability management and enterprise security architectures. Prior to his current role, he held a principal security consultant position at CIBER for 4 years and managed their Managed Security Services practice.  Mr. Knight has also held positions as Software Security Architect for the North American Aerospace Defense Command (NORAD) and software development for security evaluation products for companies such as DMW Worldwide and Trident Data Systems.  During his career, he has performed security assessments and services for a wide range of industries including energy, military, financial, industrial, education, government, health, insurance, mass media and non-profit. Mr. Knight earned a B.S in Computer Information Systems from Colorado State University and a Masters of Information Systems from the University of Phoenix.

SIEMs vs Botnets: Drawing The Battle Lines

As the media grows more focused on the size and capabilities of networked hijacked computers (Botnets) controlled by criminal organizations, the looming question is ìare we protecting ourselves right?î† The most comparable defense solution against botnets are Security Information and Event Managers (SIEM) that provide pro-active cyber defense.At first, the two technologies seem similar- control systems for thousands of networked computers that assume there is strength in numbers.† However, SIEMs and Botnets both have radically different designs, purposes, advantages and weaknesses.† This presentation will show how both compare in practice, highlighting how these two ìnemesisî technologies face-off against each other in an increasingly dramatic cyber war.