FIRST-CTI-2019: 2019 FIRST Symposium on Cyber Threat Intelligence (CTI) BT Centre, 81 Newgate Street London, UK, March 18-20, 2019 |
Conference website | https://first.org/events/symposium/london2019/ |
Submission link | https://easychair.org/conferences/?conf=london2019 |
Shepherding Cutoff | September 30, 2018 |
Submission deadline | October 30, 2018 |
2019 FIRST Symposium on Cyber Threat Intelligence (CTI) - "Putting the Intelligence back into CTI"
A three day FIRST event focused on advancing threat intelligence-driven security operations and sharing beyond just technical indicators. There will be one day of training followed by two days of plenary sessions. Hosted by BT and Digital Shadows, this event will be open to both FIRST members and non-members.
Proceedings will not be recorded. No press will be admitted. Speakers may stipulate that their sessions be treated as confidential and all attendees are expected to respect this. Breaches of the FIRST Code of Conduct (including failing to respect the confidentiality of certain sessions) have consequences.
Information about registration and fees will be available soon.
Call for Speakers
FIRST is looking for speakers that would like to present on topics related to Cyber Threat Intelligence including:
- Metrics for assessing the effectiveness of an organization's CTI program.
- Data analysis techniques for measuring the quality of CTI.
- Finding the needle in the haystack: how do we prioritise effectively?
- Scaling the human: leveraging rare expertise in a scalable way.
- Adversary Emulation and TTPs - lessons from MITRE ATT&CK, CBEST, TIBER, and similar programs.
- Case studies that highlight failures and/or successes of using CTI.
- Operationalising CTI: effective tooling for protection, detection, and response.
- Overcoming CTI integration challenges in your security operations.
- CTI creation, enrichment, and refinement best practices.
- Collecting data: You'll never catch all the Pokemon.
- CTI in context with digital forensics.
- Intelligence tradecraft wasn't invented yesterday: cross-pollinating tools and techniques to the cyber domain.
- Protecting human rights and civil society in the context of the dual-use nature of CTI.
Call for Training
FIRST is looking for training submissions related to the above topics. There are multiple full or half-day training tracks to be filled.
Submission Details
CFP Timeline:
- Shepherding Cutoff: 30 September 2018
- CFP closes: 30 October 2018
- Submitter notifications: 30 November 2018
- Draft presentation materials due: 22 January 2019
- Final presentation materials due: 22 February 2019
How does the shepherding process work?
Program committees often receive promising submissions that ultimately fail to be accepted because they somehow just missed the mark. The shepherding process is designed to provide feedback to submitters in the hope that the revised submission is more likely to be accepted (but, like most things in life, there are no guarantees). Whether this is your first-ever submission to a conference or you are an experienced presenter, shepherding is your friend. If your submission is selected by the PC for shepherding, you will receive a few hours of mentorship by one or more PC members to help refine your submission.
Submission Guidelines:
- Only submissions received by 30 September 2018 will be considered for shepherding. All other submissions received by the CFP close 23:59 UTC 30 October 2018 will be reviewed by the PC as normal submissions.
- All talk and training proposals should be submitted via EasyChair.
- Full papers will be given preferential treatment over abstract-only submissions but all submissions will be given full consideration.
- Submissions which the Programming Committee determines to be product pitches will be rejected.
- Submissions should clearly indicate presenter's confidentiality expectations: no photos, no social media, etc.
- All submissions must be received by 23:59 UTC 30 October 2018.
Program Committee
- Denise Anderson (NH-ISAC)
- Wade Baker (Cyentia Institute)
- Sarah Brown (NATO)
- James Chappell (Digital Shadows)
- Trey Darley (CERT.be)
- Gina Doekhie (Fox-IT)
- Alexandre Dulaunoy (CIRCL)
- Merike Kaeo (Double Shot Security)
- Gary Katz (Lockheed Martin)
- Sarah Kelley (MITRE)
- Robert M. Lee (Dragos)
- Éireann Leverett (Concinnity Risks)
- Terry MacDonald (Cosive)
- Ryusuke Masuoka (Fujitsu)
- Kyle Maxwell (Accenture)
- Chris O'Brien (EclecticIQ)
- Alex Pinto (Verizon)
- Tomas Sander (Intertrust Technologies)
- Thomas Schreck (Siemens)
- Andreas Sfakianakis (Individual)
- Andrew Storms (New Context)
- Richard Struse (MITRE)
- Masato Terada (Hitachi)
- Allan Thomson (LookingGlass)
- Zachary Tudor (Idaho National Laboratory)
- Krassimir Tzvetanov (Fastly)
- Eva van der Valk (Individual)
Contact
All questions about submissions should be emailed to Trey Darley (Program Committee Chair).