Register Now
August 6-11, 2022
Mandalay Bay / Las Vegas
+ Virtual

Network Operations Center (NOC)

The Black Hat Network Operations Center (NOC) provides a high security, high availability network in one of the most demanding environments in the world - the Black Hat event. This is accomplished with the help of best of breed solutions providers and seasoned security and engineering teams led by Black Hat's esteemed NOC Team Leads. Together this team provides the security, stability, and visibility of a world-class enterprise network. Each year this hand-selected team meets months before Black Hat to incorporate the latest infrastructure and security solutions into a workable network design. The team reconvenes just days before Black Hat for a compressed deployment of a network that must be operational for the opening day of the event. Black Hat attendees can visit the NOC for a glimpse into this state-of-the-art network. The Black Hat NOC program is a testament to engineering know-how and teamwork.

Hours of Operations

The NOC will be streamed live via our Twitch channel.

Live Stream Hours:

  • Tuesday, August 9: 10:00 AM – 4:00 PM
  • Wednesday, August 10: 10:00 AM – 4:00 PM
  • Thursday, August 11: 10:00 AM – 4:00 PM

NOC presentations (Mandalay Bay – Level 2 - Breakers B):

  • Wednesday, August 10: 11:00 AM – 11:20 AM ~ TBD
  • Wednesday, August 10: 2:10 PM – 2:30 PM ~ NOC Leads
  • Thursday, August 11: 11:00 AM – 11:20 AM ~ TBD
  • Thursday, August 11: 2:10 PM – 2:30 PM ~ NOC Leads

NOC Visiting Hours (Mandalay Bay – Level 2 - Surf E/F)

  • Saturday, August 6: 10:00 AM – 4:00 PM
  • Sunday, August 7: 10:00 AM – 4:00 PM
  • Monday, August 8: 10:00 AM – 4:00 PM
  • Tuesday, August 9: 10:00 AM – 4:00 PM
  • Wednesday, August 10: 10:00 AM – 4:00 PM
  • Thursday, August 11: 10:00 AM – 4:00 PM

NOC Leaders

Bart Stump

Senior Security Consultant


Bart Stump is an senior security consultant working for Optiv out of Salt Lake City, Utah. He has been working in the network and security fields for over 14 years. He has worked in multiple capacities from running and designing network and security environments, consulting, training, technical sales and technical support. He has been a Black Hat staff member for 12 years and also a goon at DEF CON for over 10 years. Follow him on Twitter @theStump3r.

Neil R. Wyler (a.k.a. Grifter)

Global Lead of Active Threat Assessments

IBM-X Force

Neil R. Wyler (a.k.a. Grifter) is an Information Security Engineer and Researcher located in Salt Lake City, Utah. Neil is currently with IBM-X Force as Global Lead of Active Threat Assessments. He has spent over 15 years as a security professional, focusing on vulnerability assessment, penetration testing, physical security, and incident response. He has been a staff member of the Black Hat Security Briefings for over 15 years and is a member of the Senior Staff at DEF CON. Neil has spoken at numerous security conferences worldwide, including Black Hat, DEF CON, and the RSA Conference. He has been the subject of various online, print, film, and television interviews, and has authored several books on information security. Neil is a member of the DEF CON CFP Review Board and Black Hat Training Review Board.

Premium Partners

Cisco Meraki creates intuitive technologies to optimize and secure IT experiences with a cloud-based platform that brings together data-powered products including, wireless, switching, security and SD-WAN, smart cameras, and sensors, open APIs and a broad partner ecosystem, and cloud-first operations. Secure and scalable, Meraki Systems Manager lays the foundation for a zero-trust security model with Meraki and other Cisco security integrations. Learn more at

Cisco Secure powers security resilience, enabling organizations to protect the integrity of their business amidst unpredictable threats or change. With Cisco Secure, organizations see across the multi-env IT, anticipate what’s next, take the right action, close security gaps, and get better every day to ensure the success of institutional-wide resilience investments. Learn more at

NetWitness, an RSA business, provides comprehensive and highly scalable threat detection and response capabilities for organizations around the world. The NetWitness Platform delivers complete visibility combined with applied threat intelligence and user behavior analytics to detect, prioritize, investigate threats, and automate response. This empowers security analysts to be more efficient and stay ahead of business-impacting threats. For more information, go to

Palo Alto Networks, the global cybersecurity leader, is shaping the cloud-centric future with technology that is transforming the way people and organizations operate. Our mission is to be the cybersecurity partner of choice, protecting our digital way of life. We help address the world's greatest security challenges with continuous innovation that seizes the latest breakthroughs in artificial intelligence, analytics, automation, and orchestration. By delivering an integrated platform and empowering a growing ecosystem of partners, we are at the forefront of protecting tens of thousands of organizations across clouds, networks, and mobile devices. Our vision is a world where each day is safer and more secure than the one before. For more information, visit


Gigamon helps the world’s leading organizations run fast, stay secure and innovate. We provide the industry’s first Guided-SaaS NDR (network detection and response) solution which closes the Security Operations Center (SOC) visibility gap, removes unnecessary distractions and provides expert advisory guidance when it matters most. With visibility into network traffic across their entire hybrid cloud infrastructure, organizations eliminate security blind spots while benefiting from Gigamon security expert guidance, helping improve SOC effectiveness and reducing burnout of their security teams. Gigamon has been awarded over 90 technology patents and enjoys world-class customer satisfaction with more than 4,000 organizations, including over 80 percent of the Fortune 100 and hundreds of government and educational organizations worldwide. Headquartered in Silicon Valley, Gigamon operates globally. For more information, visit

The new Lumen (NYSE: LUMN) is guided by our belief that humanity is at its best when technology advances the way we live and work. With 450,000 route fiber miles serving customers in more than 60 countries, we deliver the fastest, most secure platform for applications and data to help businesses, government and communities deliver amazing experiences. Visit Lumen to learn more.

Supported by

IronNet is a global cybersecurity leader that is revolutionizing how organizations secure their enterprises by delivering the first-ever Collective Defense platform operating at scale. Our solutions leverage our unique offensive and defensive cyber experience to deliver advanced behavioral analysis and collective intelligence to detect known and unknown threats. For more information, visit