Recorded Future Predict Conference 2020

Thanks for making Predict 2020 the biggest and best security intelligence conference ever!

Recorded Future Predict 2020 featured an amazing line-up of speakers. From cyber espionage to cyber warfare to 5G conspiracy theories, we covered it all, including in-depth sessions on how security intelligence is being leveraged to anticipate and preempt adversaries across the enterprise. We hope you enjoyed it as much as we did.

If you missed any sessions or want to watch them again, they are now available on demand. To access Predict 2020 sessions on demand, go here and view them at your convenience.

Schedule and Agenda

Predict 2020 included more than 40 sessions over the course of four days.

Monday, October 5: Brand Protection / Threat Intelligence
Tuesday, October 6: SecOps and Response
Wednesday, October 7: Vulnerability Management and Third-Party Risk
Thursday, October 8: Geopolitical Risk

Day 1: October 5 – Brand Protection / Threat Intelligence

  • 8:05 – 8:30 AM ET | Novel World, Novel Threats: Disrupting Threat Actors

    Dr. Christopher Ahlberg, Co-Founder and CEO of Recorded Future explains why there has never been a better time to be a cybercriminal, and how disrupting their activities is the only way to truly defeat them. Security intelligence is the most powerful weapon that defenders have against their adversaries — from nation-states, to ransomware hostage-takers, to malicious script kiddies. In his keynote address, Dr. Ahlberg explores examples of how security intelligence has been used to identify, and ultimately stop, some of the most nefarious plots the world has ever seen. He’ll also explain how security intelligence is empowering the most influential businesses and governments on the planet to make faster, better-informed decisions to protect their organizations.

    Dr. Christopher Ahlberg CEO, Recorded Future

  • 8:30 – 8:50 AM ET | Off The Record, Live!

    Wish you had more time with our keynote speakers or want to dig deeper into our Product sessions? Here is your chance! Join us for a live Q&A, after the Keynote and Product Sessions, for a unique opportunity to ask questions, learn more from our presenters, and hear from CyberWire podcast host, Dave Bittner.

    Dave Bittner Producer and Podcast Host, CyberWire
    Dr. Christopher Ahlberg CEO, Recorded Future

  • 8:55 – 9:25 AM ET | Detect Emerging Industry Threats to Proactively Protect Your Brand

    Too often, organizations are blindsided by cyber attacks targeting their brand. Fraudulent websites, leaked data, and command-and-control attacks are all examples of how threat actors can attack your brand. The repercussions can be devastating — ranging from customer distrust to massive financial losses. Security professionals have limited visibility outside of their own organizations’ network, and of the nefarious corners of the web where cybercriminals are known to launch these attacks.

    Proactive brand protection starts with up-to-the-minute security intelligence. In this session we will walk you through how to use Recorded Future’s Brand Intelligence and Threat Intelligence modules to detect emerging threats to your industry and your peers. When threat actors target your peers, it’s likely that they’ll knock on your door next. Learn how to use elite security intelligence to proactively defend against emerging risks threatening your brand and infrastructure, once and for all.

    Gili Gonczarowski Product Manager, Recorded Future
    Neha Mehra Senior Product Marketing Manager, Recorded Future

  • 9:25 – 9:45 AM ET | Off The Record, Live!

    Wish you had more time with our keynote speakers or want to dig deeper into our Product sessions? Here is your chance! Join us for a live Q&A, after the Keynote and Product Sessions, for a unique opportunity to ask questions, learn more from our presenters, and hear from CyberWire podcast host, Dave Bittner.

    Dave Bittner Producer and Podcast Host, CyberWire
    Gili Gonczarowski Product Manager, Recorded Future
    Neha Mehra Senior Product Marketing Manager, Recorded Future

Expert Sessions
  • 9:50 – 10:20 AM ET | How to Analyze Phishing Websites

    Phishing lures through typosquat websites, link manipulation and phishing emails. All tactics pose incredible risk to your organization, your customers, and your employees. In this expert session, Jeff Barto, the CSO of Hedgefund Investors, will outline advanced phishing website techniques and methods used to steal credentials from unsuspecting victims. This includes a live walkthrough of how to use Recorded Future to capture typosquatting domains including new domain and certificate registrations. Profile real phishing sites to access what kind of malicious intent the threat actor has planned for your organization. Followed by a demonstration of what happens when credentials are entered into a phishing website and what impact that would cause for an enterprise.

    Jeffrey Barto CSO, Hedgefund

  • 10:20 – 10:50 AM ET | Zero Trust Outside the Wire: How to Proactively Protect Your Brand with Zero Trust Concepts

    Threat actors attack organizations’ brands in a variety of ways. They may launch direct cyberattacks that can take a bank offline or steal millions of customer records. Other times, they take a more nebulous, indirect approach in the form of AI-powered cyber influence campaigns or the viral spread of misinformation. Adversaries launch, control, and orchestrate these attacks with great precision, and most times, from outside of your secured operations. As the military calls it — “outside the wire.” Security leaders must help the business protect its most valuable asset — its brand — by extending Zero Trust concepts “outside the wire.

    Dr. Chase Cunningham VP and Principal Security & Risk Analyst, Forrester

  • 10:50 – 11:30 AM ET | Operationalizing Threat Intelligence Through Tighter Integration: Splunk & Recorded Future

    You already know about Recorded Future’s robust portal of threat intelligence, but did you know that Recorded Future has application integrations for Splunk? These integrations for Splunk Enterprise, Splunk Enterprise Security, and Splunk Phantom pull real-time threat intelligence to correlate events occurring in your environment, and execute advanced playbooks.

    Join us to learn how these integrations provide rich context, allowing analysts to effectively identify false positives, prioritize events, and automate alert response for more efficient security at your organization.

    John Stoner Principal Security Strategist, Splunk

  • 11:30 – 12:15 PM ET | Building a Master Matrix of Your Threat Landscape

    This expert session will break down how to leverage threat intelligence to create an accurate and detailed assessment of the threats, actors, and TTPs that are likely to target your organization. This innovative approach can be used to create a Master Matrix for executive teams to reference and stay aligned when they are making tactical decisions about investment priorities, resource allocation.

    Robert A. Moody Threat Intelligence Officer, Telefonica Germany
    Bence Horvath Director, Technology Consulting, Ernst & Young

  • 12:15 – 12:45 PM ET | Intelligence Response to Novel Threats

    The emergence of conspiracy theories linking the Covid 19 pandemic with the rollout of 5G technology, resulted in the emergence of novel threats against the telecoms sector. This expert session will demonstrate how BT utilised all source threat intelligence, to develop an effective and coordinated response, against an ideologically driven campaign of arson involving multiple 5G related targets.

    By identifying & understanding group ideology and geographically specific factors, it became possible to identify and predict the areas most in need of enhanced security measures. Additionally, the ability to analyse malicious online activity linked to the physical attacks, allowed take down of the actors concerned, which in turn markedly reduced the tempo of incidents . The session will show how this response was developed and how it adapted to meet the changing threat.

    David Brown Cyber Intelligence Professional, BT

  • 12:45 – 1:45 PM ET | Hands On Experience – Introduction to Recorded Future Express

    This is a live working session. In it, you’ll learn how to register and start using Recorded Future’s browser extension, Express, giving you free access to elite intelligence you can take anywhere across the web. We’ll walk through key use cases including SIEM alert prioritization, speed reading scanning security blogs, and vulnerability prioritization. You’ll walk away from this session an Express pro, using advanced tricks such as in-page risk scoring and domain-specific disablement. All participants will maintain access to express after the session.

    Wendy Swank Recorded Future

Day 2: October 6 – Secops and Response

  • 8:05 – 8:35 AM ET | Introducing Precision Intelligence: Six Ways to Achieve a Decision Advantage

    Security Intelligence changes the way we face threats and adversaries. It empowers security teams to collaborate effectively while making swift, confident decisions. And in this world of fast-moving threats coupled with a massive cyber skills shortage, every decision advantage we have makes a difference.

    To gain the advantage, intelligence needs to be tailored to the task at hand – delivering everything you need and nothing you don’t. Join this session to experience the power of Recorded Future’s technology, The Security Intelligence Graph, by diving into concrete examples of how to apply it for measurable outcomes across security teams. We will explore how six new security intelligence solutions from Recorded Future deliver this precision intelligence into existing workflows to solve real-life challenges. You will walk away with a deeper understanding of security intelligence and the technology engine at its core — and how to apply it to your role.

    Staffan Truve CTO and Co-Founder, Recorded Future
    Craig Adams Chief of Product and Engineering, Recorded Future

  • 8:35 – 8:55 AM ET | Off The Record, Live!

    Wish you had more time with our keynote speakers or want to dig deeper into our Product sessions? Here is your chance! Join us for a live Q&A, after the Keynote and Product Sessions, for a unique opportunity to ask questions, learn more from our presenters, and hear from CyberWire podcast host, Dave Bittner.

    Dave Bittner Producer and Podcast Host, CyberWire
    Staffan Truve CTO and Co-Founder, Recorded Future
    Craig Adams Chief of Product and Engineering, Recorded Future

  • 9:00 – 9:25 AM ET | Automate Threat Detection and Response with SecOps Intelligence

    Today’s ever-changing security landscape makes it nearly impossible for time-strapped security operations and incident response teams to mitigate every potential threat to their organization. Overwhelmed by manual processes and high alert volume, they’re unable to take advantage of the breadth of intelligence needed to develop effective playbooks and automate security processes. Attend this session to see how Recorded Future’s new SecOps Intelligence module integrated with Palo Alto Networks Cortex XSOAR empowers organizations to automatically detect and respond to malware, C&C, and phishing threats in their environment with elite security intelligence.

    Ellen Wilson Product Marketing Manager, Recorded Future
    Mike DiBella Product Manager, Recorded Future

  • 9:25 – 9:45 AM ET | Off The Record, Live!

    Wish you had more time with our keynote speakers or want to dig deeper into our Product sessions? Here is your chance! Join us for a live Q&A, after the Keynote and Product Sessions, for a unique opportunity to ask questions, learn more from our presenters, and hear from CyberWire podcast host, Dave Bittner.

    Dave Bittner Producer and Podcast Host, CyberWire
    Ellen Wilson Product Marketing Manager, Recorded Future
    Mike DiBella Product Manager, Recorded Future

Expert Sessions
  • 9:50 – 10:05 AM ET | How to Automate Your SOC With SOAR

    There are many tasks we perform every day that can be automated to free up hours each week. In this session we will share specific examples of the mundane tasks we all perform and how we’re using Recorded Future to automate as much of that SOC activity as possible with Palo Alto Networks Cortex XSOAR.

    Darian Lewis Staff Engineer, Threat Intelligence at Relativity
    Konrad Uminski Senior Cyber Security Analyst, Relativity

  • 10:05 – 10:55 AM ET | How Cortex XSOAR and Recorded Future Automate Security Response Using Threat Intelligence

    Learn how to combine the threat intelligence of Recorded Future with Cortex XSOAR to improve threat visibility and accelerate incident response.

    • • Automate Recorded Future enrichment of IPs, domains, and file hashes as playbook-driven tasks within Cortex XSOAR.
    • • Access related entities for an indicator in Recorded Future from Cortex XSOAR in real-time.
    • • Leverage Cortex XSOAR product integrations to further, enrich Recorded Future alerts and coordinate response across security functions.
    • • Run thousands of commands (including for Recorded Future) interactively via a ChatOps interface while collaborating with other analysts and Cortex XSOAR’s chatbot.

    Wendy Swank Senior Partner Architect, Recorded Future
    Prasen Shelar Senior Product Manager, Palo Alto Networks

  • 10:55 – 11:15 AM ET | Security Monitoring and SIEM Integration of SAP Applications: How We Protect 100+ SIDs

    This session will give an overview of what challenges Tech Data has encountered during the implementation of our SAP application security monitoring and incident response, including how we overcame them.

    Megan Hargrove Cyber Defense Specialist, Tech Data Corporation

  • 11:15 – 11:45 AM ET | Ransomware Threats to the Election

    There has been lots of talk about ransomware attacks on election infrastructure, but what is the reality for the 2020 United States Election? This expert session looks at four different ransomware threats to the U.S. election. During this time, we will discuss how the attacks could work, as well as assess the risk and how likely these attacks are to happen. Don’t miss what is sure to be an interesting session; you will be telling your colleagues and friends about post-event.

    Allan Liska Intelligence Analyst, Recorded Future

  • 11:45 – 12:10 PM ET | Cyber-Espionage Report: Out of the Shadows. Into the Digital Crosshairs

    Cyber-Espionage breaches pose a unique challenge. Through advanced techniques and a specific focus, Cyber-Espionage threat actors seek to swiftly gain access to heavily defended environments, laterally move with stealth, efficiently obtain targeted assets and data, and move out smartly (or even stay back and maintain covert persistence)

    The Cyber-Espionage Report (CER) is Verizon’s first-ever data-driven publication that focuses on advanced cyberattacks as reflected in the Data Breach Investigations Report (DBIR) “Cyber-Espionage” Incident Classification Pattern. We’ve examined seven years (2014-2020) of DBIR data breach content to shed light on the state of Cyber-Espionage.

    Specifically, the CER identifies targeted victims, and the attributes, assets and data they target. Just as importantly, the CER identifies who the threat actors are; the tactics, techniques and procedures (TTPs) they use; and what can be done to prevent, mitigate, detect and respond to their attacks

    John Grim Head | Research, Development, Innovation Verizon Threat Research Advisory Center

  • 12:10 – 12:45 PM ET | Applying Threat Intelligence to AWS Security Services

    Threat intelligence is a great way to detect nation state level activity, however many organizations struggle to use it effectively in their security programs. Successful threat intelligence programs integrate actionable intelligence with detection and prevention tools and gain context to guide their response. In this session we will demonstrate how to apply Recorded Future threat intelligence to AWS Security Services including GuardDuty, Security Hub and Detective to accelerate triage, threat detection, incident response and threat hunting.

    Jill Cagliostro Recorded Future
    Trish Cagliostro Amazon AWS

  • 12:45 – 1:15 PM ET | Hands On Experience – Introduction to Recorded Future Express

    This is a live working session. In it, you’ll learn how to register and start using Recorded Future’s browser extension, Express, giving you free access to elite intelligence you can take anywhere across the web. We’ll walk through key use cases including SIEM alert prioritization, speed reading scanning security blogs, and vulnerability prioritization. You’ll walk away from this session an Express pro, using advanced tricks such as in-page risk scoring and domain-specific disablement. All participants will maintain access to express after the session.

    Wendy Swank Recorded Future

Day 3: October 7 – Vulnerability and Third Party Risk

  • 8:05 – 8:55 AM ET | Security Intelligence and the Role of the Evolved CISO: a Fireside Chat with Gerard Brady, Chief Information Security Officer and Global Head, IT Security at Morgan Stanley

    Security Intelligence changes the way we face threats and adversaries. It empowers security teams to collaborate effectively while making swift, confident decisions. And in this world of fast-moving threats coupled with a massive cyber skills shortage, every decision advantage we have makes a difference.

    Join Gerard Brady, Chief Information Security Officer and Global Head, IT Security and Recorded Future CEO and Co-Founder Dr. Christopher Ahlberg in a fireside chat on how intelligence is transforming the role of the CISO. This fireside chat will be moderated by Niloofar Razi Howe, Former Chief Strategy Officer and Senior Vice President of Strategy and Operations at RSA.

    Gerard Brady Global Chief Information Security Officer, IT Security at Morgan Stanley
    Christopher Ahlberg CEO, Recorded Future
    Niloofar Razi Howe Former Chief Strategy Officer and Senior Vice President of Strategy and Operations, RSA

  • 8:55 – 9:30 AM ET | Reduce Risk at a Growing Enterprise With Vulnerability and Third-Party Intelligence

    As organizations scale, their reliance on third-party vendors and products increases. This larger, more complex ecosystem introduces more risks to business. Organizations don’t have the resources to manage everything at once, so they must learn to prioritize risk. It isn’t sustainable or scalable for your teams to frantically scramble every time they learn about the latest vendor breach or “doomsday” CVE. But it doesn’t need to be this way.

    Security Intelligence offers a solution, giving third-party risk and vulnerability management teams the boost they need to effectively scale their programs. In this webinar, you will learn how to use security intelligence to make fast, confident decisions that reduce real risk. Attendees will walk away with the knowledge of the tools necessary to have continuous visibility of both their third-party and vulnerability threat landscape, allowing them to spend their valuable time on the issues that matter most.

    David SooHoo Product Manager, Recorded Future
    Trevor Lyness Product Marketing Manager, Recorded Future

  • 9:25 – 9:45 AM ET | Off The Record, Live!

    Wish you had more time with our keynote speakers or want to dig deeper into our Product sessions? Here is your chance! Join us for a live Q&A, after the Keynote and Product Sessions, for a unique opportunity to ask questions, learn more from our presenters, and hear from CyberWire podcast host, Dave Bittner.

    Dave Bittner Producer and Podcast Host, CyberWire
    David SooHoo Product Manager, Recorded Future
    Trevor Lyness Product Marketing Manager, Recorded Future

Expert Sessions
  • 10:00 – 10:30 AM ET | Using Vulnerability Information to Seed Proactive Threat Protection

    In this session you’ll learn how Land O’Lakes uses security intelligence and automation to fill its intelligence goals across a wide variety of use cases. First, you will see how Land O’Lakes uses vulnerability intelligence to proactively monitor for high risk vulnerabilities. Next, you’ll learn how they block malware using Recorded Future’s IOC risk scores as a trigger, pushing high fidelity context around hash information directly to your endpoint protection platform for automatic blocking. Finally, you will learn how Land O’Lakes uses brand intelligence in combination with SOAR playbooks to automate action on typosquatting events.

    Chris Zeig Senior Security Engineer, Land O’Lakes
    Adam Lenart Security Engineer, Land O’Lakes

  • 10:30 – 10:50 AM ET | Rapidly Assess Risk at the Speed Your Business Needs

    In this session, Floor & Decor will cover two ways they use intelligence to rapidly identify and mitigate risk. First, you’ll hear the story of how a surprise vendor contract meant they needed to conduct an immediate third-party risk assessment. When other assessment methods failed to find anything meaningful, they turned to third-party intelligence, allowing them to quickly uncover significant security issues. You’ll see how they worked with the third-party to remediate the issues, allowing the vendor to onboard at the speed the business needed. Second, you’ll learn how Floor & Decor uses brand intelligence to identify and take down typosquat websites before they can cause lasting damage to the business.

    Kevin Morgan MIS, CISA, CISM, CSM, Floor & Decor
    Trey Tunnell Director of Cybersecurity Operations, Floor & Decor

  • 10:50 – 11:40 AM ET | The Thrill of the Hunt: A tale of Hedgehogs, Rascals and Robbers and How To Hunt them

    The talk is an experience sharing from three different hunts with a discussion on a method to do the intelligence preparation of the battlefield needed to have successful hunting trips.

    Espen Johansen Product Security Director, Visma

  • 11:40 – 12:10 PM ET | Smarter Phishing Playbooks using Threat Intelligence: Leveraging the power of Recorded Future for Security Incident Response and Threat Intelligence.

    Recorded Future’s Integration with ServiceNow’s Security Operations Module gives clients easy access to elite Threat Intelligence directly within ServiceNow’s platform, thus helping analysts save precious time by empowering them to resolve incidents quickly, with confidence. In this session we will review basic features of the integration and Recorded Future’s threat intelligence, and then quickly transition to an advanced use case: using the integration and phishing-specific risk rules, in conjunction with the ServiceNow Flow Designer, to create a powerful phishing playbook that can automatically triage suspected phishing attacks.

    Glenn Wong Director of Product Management, Technology Partnerships, Recorded Future
    Mike Plavin Technical Product Marketing Manager, Security Operations, ServiceNow

  • 12:10 – 12:30 PM ET | Hands On Experience – Introduction to Recorded Future Express

    This is a live working session. In it, you’ll learn how to register and start using Recorded Future’s browser extension, Express, giving you free access to elite intelligence you can take anywhere across the web. We’ll walk through key use cases including SIEM alert prioritization, speed reading scanning security blogs, and vulnerability prioritization. You’ll walk away from this session an Express pro, using advanced tricks such as in-page risk scoring and domain-specific disablement. All participants will maintain access to express after the session.

    Wendy Swank Recorded Future

Day 4: October 8 – Geopolitical

  • 8:05 – 8:40 AM ET | Through the Global Media Lens – A Fireside Chat with Foreign Policy Specialist David Sanger and Stuart Solomon

    Join Recorded Future’s Stuart Solomon and David Sanger, a three-time Pulitzer Prize winner and national security correspondent for The New York Times, as they discuss David’s more than 35 years as a foreign correspondent and what topics he has most recently been researching and investigating relating to geopolitics, globalization and cyber power. We will get a sneak peak into the upcoming HBO documentary he has produced, and hear about his latest book, “The Perfect Weapon: War, Sabotage, and Fear in the Cyber Age,” and its findings around how cyberwarfare is influencing elections, threatening national security, and bringing us to the brink of a global war.

    David E. Sanger Foreign Policy Specialist
    Stuart Solomon Chief Operating Officer, Recorded Future

  • 8:45 – 9:25 AM ET | Profiling Physical Risks with Geopolitical Intelligence

    To effectively mitigate risks to their organization and assets, physical security teams and all-source analysts must continuously monitor for and report on new geopolitical event findings in real-time. However, most analysts spend too much time manually collecting, analyzing, and visualizing a vast amount of intelligence — making it impossible to prevent and respond to geopolitical threats quickly or effectively. Recorded Future’s Geopolitical Intelligence Module offers a number of capabilities that can help OSINT analysts quickly identify and investigate current events. This session will explore several of these key functionalities, using the August 4 explosion in Beirut, Lebanon as a use case.

    Ellen Wilson Recorded Future
    Brendan Gibson Recorded Future
    David Peduto Recorded Future
    Nathan McKeldin Recorded Future

  • 9:25 – 9:45 AM ET | Off The Record, Live!

    Wish you had more time with our keynote speakers or want to dig deeper into our Product sessions? Here is your chance! Join us for a live Q&A, after the Keynote and Product Sessions, for a unique opportunity to ask questions, learn more from our presenters, and hear from CyberWire podcast host, Dave Bittner.

    Dave Bittner Producer and Podcast Host, CyberWire
    Ellen Wilson Recorded Future
    Brendan Gibson Recorded Future
    David Peduto Recorded Future
    Nathan McKeldin Recorded Future

Expert Sessions
  • 9:50 – 10:10 AM ET | Manipulation Detection Using Social Features and How to Integrate it with Infrastructure Features

    While social media presents a valuable means to communicate information at scale, these social networks also accelerate the propagation of disinformation (intentional), misinformation
    (unintentional), and other threats. Various actors take advantage of this potential and can create
    confusion and barriers to information. This can negatively impact the online and news infrastructure,
    businesses and economies, civil society, and democracy worldwide. MITRE continues to purchase and
    partner with many of the leading tool providers, serving as an integrator of cross-social media platform
    efforts. A unique set of features have been built to support topic-based monitoring across numerous
    online and social media sources. Our US Election detection of manipulated topics will be presented with
    a focus on sharing links and subsequent discussion of its content. Our work will be discussed as it
    complements the detection of manipulated websites, e.g., using infrastructure features [1]. This work
    allows for earlier detection of dis/mis information and threats – and, eventually, could enable a
    coordinated response.

    Jennifer Mathieu, PhD, Chief Technologist for Social Analytics and Integrity, MITRE

  • 10:10 – 10:30 AM ET | Mexican Cartels Are Altering Business Practices in Response to Coronavirus, Too

    You have heard about the effects COVID-19 has had on restaurants, travel & tourism, and even the tech industry; but have you considered how illicit organizations in Latin America, particularly cartels, popular gangs, and militia groups, have responded to the COVID-19 pandemic? This presentation dives into the world of Mexican cartels and investigates the short- and long-term impacts of a global pandemic on these organizations. You will learn how these cartels have modernized operations to accommodate rapid changes in their supply chain and leveraged these challenging times to garner support from locals. This is a side of the pandemic you haven’t heard on your local news station, and it’s one session you won’t want to miss!

    ANONYMOUS Threat Intelligence Analyst at Recorded Future

  • 10:30 – 10:50 AM ET | Fireside Chat with David Allen CISO at the State of Georgia and Stuart Solomon

    Join Recorded Future’s Stu Solomon and David Allen, CISO for the State of Georgia, as they sit down to discuss David’s experiences leading strategic and operations across a federated environment for the State of Georgia. David shares how his team has evolved from governance operation focusing solely on policies and standards to adding an intelligence, incident response, and workforce development. We will also hear how the team at the State of Georgia leverages Recorded Future in their toolkit as they work to further define their threat model. Finally, David shares some lessons learned from his time serving as the CTO and Chief of Cybersecurity for the Georgia Army National Guard.

    David Allen Chief Intelligence Security Officer, State of Georgia
    Stuart Solomon Chief Operating Officer, Recorded Future

  • 10:50 – 11:20 AM ET | Russian-Related Threats to the 2020 US Presidential Election

    There has been lots of talk about ransomware attacks on election infrastructure, but what is the reality for the 2020 United States Election? This expert session looks at four different ransomware threats to the U.S. election. During this time, we will discuss how the attacks could work, as well as assess the risk and how likely these attacks are to happen. Don’t miss what is sure to be an interesting session; you will be telling your colleagues and friends about post-event.

    ANONYMOUS Threat Intelligence Analyst at Recorded Future

  • 11:20 – 12:00 PM ET | Intelligence Led Security Operations in Microsoft Azure Sentinel

    It is not easy to prevent, detect or respond to threats, especially now when their volume and complexity is increasing rapidly. Focusing only on company assets (on-premise or cloud), does not provide the needed threat information to efficiently take decisions and actions. Complementing current capabilities and approach, with an intelligence led perspective, enables informed decisions and proper identification, prioritisation and mitigation of risks.

    Microsoft and Recorded Future, have understood the value of an Intelligence Led Approach. Thus we will present how mixing the capabilities and functionality of Microsoft’s Azure Sentinel cloud SIEM, with tailored Threat Intelligence from Recorded Future, enables business to reach higher levels of prevention, detection and response. We will share some examples of leveraging Threat Intelligence inside Azure Sentinel, and on how you can better tailor your capabilities to match various relevant TTPs of potential threats.

    Adrian Porcescu Senior Manager – Solutions Engineering – EU, META & APJ
    Jason Wescott Principal Program Manager, Microsoft Azure

  • 12:00 – 1:00 PM ET | Hands On Experience – Introduction to Recorded Future Express

    This is a live working session. In it, you’ll learn how to register and start using Recorded Future’s browser extension, Express, giving you free access to elite intelligence you can take anywhere across the web. We’ll walk through key use cases including SIEM alert prioritization, speed reading scanning security blogs, and vulnerability prioritization. You’ll walk away from this session an Express pro, using advanced tricks such as in-page risk scoring and domain-specific disablement. All participants will maintain access to express after the session.

    Wendy Swank Recorded Future

Keynote Presenters

Christopher Ahlberg

Christopher Ahlberg

CEO, Recorded Future

Staffan Truve

Staffan Truve

CTO and Co-Founder, Recorded Future


Craig Adams

Craig Adams

Chief of Product and Engineering, Recorded Future

Dave Bittner

Dave Bittner

Producer and Podcast Host, CyberWire


Niloofar Razi Howe

Niloofar Razi Howe

Former Chief Strategy Officer and Senior Vice President of Strategy and Operations, RSA

Gerard Brady

Gerard Brady

Global Chief Information Security Officer, IT Security at Morgan Stanley


David E. Sanger

David E. Sanger

Foreign Policy Specialist

Expert Presenters

Jeffrey Barto
Jeffrey Barto

CSO, Hedgefund

Chris Zeig
Chris Zeig

Senior Security Engineer, Land O’Lakes

Adam Lenart
Adam Lenart

Security Engineer, Land O’Lakes

Darian Lewis
Darian Lewis

Staff Engineer, Threat Intelligence at Relativity

Konrad Uminski
Konrad Uminski

Senior Cyber Security Analyst, Relativity

Allan Liska
Allan Liska

Intelligence Analyst, Recorded Future

Megan Hargrove
Megan Hargrove

Cyber Defense Specialist, Tech Data Corporation

Espen Johansen
Espen Johansen

Product Security Director, Visma

David Brown
David Brown

Cyber Intelligence Professional, BT

Wendy Swank
Wendy Swank

Senior Partner Architect, Recorded Future

Prasen Shelar
Prasen Shelar

Senior Product Manager, Palo Alto Networks

Robert A. Moody
Robert A. Moody

Threat Intelligence Officer, Telefonica Germany

Bence Horvath
Bence Horvath

Director, Technology Consulting, Ernst & Young

David Allen
David Allen

Chief Intelligence Security Officer, State of Georgia

Stuart Solomon
Stuart Solomon

COO, Recorded Future

Kevin Morgan
Kevin Morgan

Sr. Manager, Data Privacy & Assurance, Floor & Decor

Trey Tunnell
Trey Tunnell

Director of Cybersecurity Operations, Floor & Decor

John Stoner
John Stoner

Principal Security Strategist, Splunk

Dr. Chase Cunningham
Dr. Chase Cunningham

VP and Principal Security & Risk Analyst, Forrester

Jennifer Mathieu
Jennifer Mathieu

PhD, Chief Technologist for Social Analytics and Integrity, MITRE

Adrian Porcescu
Adrian Porcescu

Senior Manager – Solutions Engineering – EU, META & APJ

Jason Wescott
Jason Wescott

Principal Program Manager, Microsoft Azure

Glenn Wong
Glenn Wong

Director of Product Management, Technology Partnerships, Recorded Future

Mike Plavin
Mike Plavin

Technical Product Marketing Manager, Security Operations, ServiceNow

John Grim
John Grim

Head | Research, Development, Innovation Verizon Threat Research Advisory Center

Trish Cagliostro
Trish Cagliostro

Amazon AWS

Product Presenters

Gili Gonczarowski
Gili Gonczarowski

Product Manager, Recorded Future

Neha Mehra
Neha Mehra

Senior Product Marketing Manager, Recorded Future

Ellen Wilson
Ellen Wilson

Product Marketing Manager, Recorded Future

Mike DiBella
Mike DiBella

Product Manager, Recorded Future

David SooHoo
David SooHoo

Product Manager, Recorded Future

Trevor Lyness
Trevor Lyness

Product Marketing Manager, Recorded Future

Brendan Gibson
Brendan Gibson

Director, Product Manager, Recorded Future

David Peduto
David Peduto

Team Lead/Program Manager – Public Sector, Intelligence Services, Recorded Future

Nathan McKeldin
Nathan McKeldin

Senior Intelligence Consultant – Public Sector, Intelligence Services, Recorded Future

“Recorded Future empowers teams with accurate, actionable intelligence when there’s something to report that presents real risk. And just as important, it’s silent when there’s nothing to report.”

Espen Johansen

Product Security Director at Visma

“With machine learning and automated security intelligence from Recorded Future, only the really important alerts bubble up to my team, and there are very few false positives.”

Bob Stasio

Global Cyber Threat Leader at DuPont

About Recorded Future

Predict 2020 will be held virtually. This enables us to open the event to more people than ever before — which means more learning, more collaboration, and more value for everyone who attends.

Predict is the world’s leading security intelligence event. Every year, it brings together speakers and attendees from a variety of institutions, industries, and backgrounds. Whether you’re just starting to explore the role of intelligence in your security program or you have been using elite intelligence to defend your organization for years, Predict has something for you.

Recorded Future delivers the world’s most technically advanced security intelligence to disrupt adversaries, empower defenders, and protect organizations. Recorded Future’s proactive and predictive platform provides elite, context-rich, actionable intelligence in real time that’s intuitive and ready for integration across the security ecosystem. Learn more at recordedfuture.com and follow us on Twitter at @RecordedFuture.