With more than 15,000 hackers and cybersecurity experts traveling in from across the globe, Black Hat is the most respected and highly-attended information security event in the world. It is also the most targeted.
The four-day “hacker summer camp” is the ultimate playground for security talent looking to experiment and hone their craft. And for a rogue hacker looking to make their mark, the event systems, network, and venue itself are prime targets.
An ironclad security operations center (SOC) is key to maintaining and defending systems, but it takes an army to keep up with the influx of malicious traffic during the event. To combat these threats, MGM Resorts International (MGMRI)—the event host—tapped Cyderes to manage the on-site SOC. Our team worked alongside their top security leaders to monitor and respond to all potential threats during the conference.
An Inside Look at the Black Hat Security Operations
During Black Hat, our primary role was to handle the additional load of security incidents from the conference. We assisted MGMRI’s threat and vulnerability management group with validation for issues reported by their bug bounty program.
Our team also handled overnight SOC duties, enabling the MGMRI team to participate in the show during the day.
“The blue team is heavily taxed during the show, so my role on the purple team is even more crucial,” said a Cyderes senior penetration tester. “Without these controlled tests, the blue team may encounter false negatives. It’s my job to provide visibility into what they are or are not detecting.”
Another way we supported security efforts was with ongoing risk assessment and intelligence gathering. Before the conference even started, our team conducted walkthroughs of all MGMRI properties in Las Vegas to identify potential risks and minimize vulnerabilities. Throughout the week, we also had ongoing calls with security leaders at MGMRI and surrounding properties to share information and identify potential security issues.
Security Support at Black Hat and Beyond
Our security support did not end when the conference closed. In fact, Cyderes is the largest security partner for MGMRI, providing a variety of services on an ongoing and as-needed basis.
For example, we provide 24/7 SOC and staff augmentation services for both engineering and security analyst groups within the organization. We also provide professional services for engineering expertise, as well as pen testing, red teaming, log management, and other functions as needed.
MGMRI selected Cyderes as its lead security partner due to our wide breadth of expertise and ability to provide traditional and non-standard services. Through dedication and collaboration, we have created a strong partnership built on the shared success of both organizations.
“Cyderes is MGMRI’s most trusted partner in defining its cybersecurity posture and response,” said Rob Covolo, Executive Director of Cyber Defense. “The Cyderes partnership is a high-value addition to any cybersecurity program and MGMRI’s Cyber Defense Team highly recommends Cyderes as an MSSP partner.”
Interested in learning more about Cyderes Managed Services? Explore our key offerings here.
Take the first step in transforming your cybersecurity program
Enterprise security teams are adapting to meet evolving business needs. With six global Security Operations Centers, emerging technology partners and a dedicated team of security specialists, Cyderes is well-positioned to be your organization’s trusted advisor in cybersecurity. We’ll help you understand your risk exposure, increase your visibility and ROI, and proactively hunt for the latest threats.
