Skip to main content

Phil Hagen

Professor

Principal Information Security Researcher at Red Canary

Specialities

Digital Forensics and Incident Response

Connect with Phil

Phil Hagen
Jump to:

About Phil

Phil has covered deep technical tasks, managed an entire computer forensic services portfolio, and handled executive responsibilities. He's supported systems that demanded 24x7x365 functionality, managed a team of 85 computer forensic professionals in the national security sector, and provided forensic consulting services for law enforcement, government, and commercial clients. He is also a Principal Information Security Researcher on the community team at Red Canary, a ZScaler company and author of FOR572: Advanced Network Forensics: Threat Hunting, Analysis, and Incident Response.

Press & Media

Recognitions

  • SOF-ELK SOF-ELK® is a “big data analytics” platform focused on the typical needs of computer forensic investigators/analysts and information security operations personnel. The platform is a customized build of the open source Elastic stack to make large scale analysis easier.
  • Github

Student Reviews

  • Slide 1 of 3

    Even by SANS standards, Phil clearly 'goes the extra mile' in depth of information, especially on exercises.

    Dai MorganFOR572 Student
  • Slide 2 of 3

    I really like how Phil incorporates real-life examples into the material. It really helps me visualize it!

    Ryan NelsonFOR572 Student
  • Slide 3 of 3

    As a long-time, enterprise network defender, I can say that Phils knowledge is excellent and this class should be manditory training for all blue training.

    NicFOR572 Student
Phil Hagen | SANS Institute