Presented By O’Reilly and Intel Nervana
Put AI to work
September 17-18, 2017: Training
September 18-20, 2017: Tutorials & Conference
San Francisco, CA

Incident response evolved: How AI is revolutionizing how we combat cyberthreats

Aaron Goldstein (Cylance)
11:05am–11:45am Wednesday, September 20, 2017
Impact on business and society
Location: Yosemite A
Secondary topics:  Security, Technical best practices
Average rating: *****
(5.00, 3 ratings)

Prerequisite Knowledge

  • A basic understanding of security

What you'll learn

  • Understand current cyberthreats and how they have adapted to avoid detection
  • Learn how machine learning is revolutionizing malware detection and incident response
  • Hear insight from the trenches on how to address these threats and improve your organization's security posture


The current threat landscape is in a state of evolution that poses a significant risk to organizations’ assets, reputations, and identities. Nation states and cybercriminals are poised to take advantage of organizations’ weaknesses to carry out their malicious objectives, as proved by the recent surge in ransomware.

Aaron Goldstein explores new and existing threat vectors such as ransomware and nation state attacks (and why traditional defenses fail to address them) and explains how leveraging AI techniques can improve the speed and efficiency of incident response tactics, even when combating the toughest threat actors. Aaron discusses his team’s unique approach to incident response, which has proven effective for hundreds of organizations across all verticals—particularly with regard to the OPM breach, in which his team played a pivotal role. Aaron also covers how enhanced processes and tools allow organizations to take their security program to the next level by employing a preventative methodology.

Photo of Aaron Goldstein

Aaron Goldstein


Aaron Goldstein is the practice director for incident response and forensics at Cylance, where he leverages his unique experience in complex, large-scale breaches to provide strategic solutions to secure environments of all sizes. Aaron has over nine years’ experience in incident response and digital forensics investigations, during which he has responded to several high-profile investigations and led over 150 security engagements, ranging from incident response to creating and customizing full-scale training exercises. He is highly skilled in translating difficult topics into easy to understand training sessions on the ever-growing challenge of securing critical systems. Aaron holds a bachelor’s degree from the University of Central Florida and several industry certifications, including GREM, GCFA, GCIH, and CISSP.