According to a study by the Ponemon Institute in June 2010, over 80% of public and private enterprises believe that advanced cyber threats are evading  all existing prevention and detection  approaches.  In 2010, Gartner has stated that situational awareness is critical to fighting these sophisticated and constantly changing threats.  This session focuses on the true nature and most potent sources of today’s most critical security threats to both government  entities and commercial organizations, and the reality that most organizations must live in compromise with advanced threats.   The speaker discusses the need for acceptance of prevention as an imperfect security management strategy, and proposes new operational paradigms for innovative and agile approaches to enterprise-wide situational awareness. The speaker will illustrate technical case studies describing better ways to think about such  problems as:  detection of zero-day malware and botnets, understanding the impact of spear-phishing and drive-by attacks, fusing 3^rd party open source and classified threat intelligence with live network traffic, training better security analysts, and building more effective intrusion detection, analysis and management processes.