Dell SecureWorks SecureThoughts

More and more organisations are turning to cloud computing to solve their biggest technology and business challenges. By this stage, most of us are aware of the many benefits cloud has to offer: lower hardware and IT costs, ease of management and increased agility, to name a few. Yet when it comes to security, cloud is not a silver bullet. In fact, according to the Cloud Security Alliance, security is cited as the number one barrier to adoption of cloud services among organisations.

During this webcast, Mark Wood, Director of Product Management at Dell SecureWorks, will discuss some of the prevalent security risks which exist when moving to the cloud and how this affects the traditional approach to security.

This webcast will address the following key themes:

•The security impact of different cloud models and minimising risk in a multi-tenant environment
•Sharing the security burden and establishing an effective relationship with your cloud provider.
•Staying one step ahead of the evolving compliance landscape.

Mark is responsible for managed security for cloud services at Dell SecureWorks. He has more than 25 years of experience in the technology community as a software engineer, a sales engineer, a start-up owner and a product manager.

Previously, at Cloud Sherpas, a solutions provider focused on migrating organizations to Google Apps, Mark was responsible for product strategy, lifecycle management and optimizing existing products. He has also worked in marketing and product management at a number of leading technology companies, including nCircle, Internet Security Systems (ISS) and AT&T Bell Laboratories.

Mark holds a Bachelor of Science degree in computer science from Duke University and a Master of Science degree in computer science from Georgia Institute of Technology.

How prepared are you for a data breach? With the threat environment growing more complex, and the rise in advanced and targeted attacks, how does your response plan hold up? Threat actors have have changed their tactics; so must you.

This webcast will examine how to develop a robust incident response plan, which takes into account the changes in the threat landscape. Lee Lawson, Solution Architect at Dell SecureWorks, will discuss new approaches to identify advanced threats earlier, and how to go beyond responding to the most obvious symptoms of an attack, to understanding the full extent of the breach and what has been compromised.

This webcast will address the following key themes:

•Security breaches Dell SecureWorks has seen across its global customer base, from advanced and targeted threats
•Developing an incident response plan which takes into account the complex threat landscape
•Getting the necessary visibility into your network to enable you to spot advanced threats early and understand the true scale of the attack.

Advanced Persistent Threats are more than media hype. Dell SecureWorks has seen a significant increase in stealthy activity targeting specific intellectual assets.

Rafe Pilling, Counter Threat Unit EMEA, will provide the latest intelligence on Advanced Persistent Threats, using real-world examples; and provide pragmatic advice on what you should be doing now to protect your organisation.

Security strategies and tactics must evolve in light of the growth in APT attacks; how do you find and stop advanced threats before they become serious breaches?

This webcast will address the following key themes:

•The latest tools and techniques that advanced threat actors are using
•Real-world examples of successful APT attacks
•Best practice for preventing and responding to APTs

Rafe Pilling is a leading information security expert who works as a Researcher in the Dell SecureWorks Counter Threat Unit (CTU). Leveraging Dell SecureWorks' global threat visibility across thousands of customer networks, proprietary toolsets and unmatched expertise, the Dell SecureWorks CTU security research team performs in-depth analysis of emerging threats, including Advanced Persistent Threats.

Merchants are now required to have a process in place to identify and risk rank newly-discovered vulnerabilities in order to be PCI compliant. The intent is to ensure that businesses proactively seek information on new vulnerabilities that might affect their systems, and not simply wait for vendor updates and patch announcements that could come weeks, months or even years after vulnerabilities are discovered.

During this webcast, Ron Kiss, Principal Consultant at Dell SecureWorks, will address the following key themes:

•Integrating requirements introduced this year on ranking identified vulnerabilities that can compromise your cardholder data
•Risk ranking frameworks and what processes to put in place for categorising threats and working within your risk assessment process
•Using threat intelligence to increase protection of the business and provide real value

Ron Kiss is a Principal Consultant within the Security, Risk and Compliance team at Dell SecureWorks. In his current and past roles, Ron has conducted both PCI-DSS and PA-DSS assessments in Europe and overseas. He brings a wealth of experience in assessing Merchants, Service Providers and Payment Applications from a range of industries such as Retail, Airlines, and Finance. 

The rise in targeted threats means that IT security teams must move beyond a general understanding of the threat landscape, to a detailed understanding of their own context and the ability to spot threats targeted at their specific organisation.

What different techniques should you use as a threat evolves from malicious talk in public forums and social media sites, through to more formulated threats, planning stages, and attack stages? In a world of information-overload and an explosion in communication channels, how do you sift through the noise and identify true threats to your business?

During this webcast, Lee Lawson, Solutions Architect at Dell SecureWorks, will address the following key themes:

•The challenges faced by organisations from the rise in targeted threats
•Limitations of security processes in protecting from targeted threats
•How to gain early visibility into the threats targeting your particular organisation

Lee Lawson is the Solutions Architect for Security and Risk Consulting Services at Dell SecureWorks EMEA. In this role he is in charge of envisioning and creating combinations of new and existing services to solve the most unique and difficult customer problems. His past experience was as a Principal Consultant managing the EMEA Security Testing and Response team responsible for all adversarial-testing services such as penetration testing, social engineering and physical intrusions, and all responsive services such as digital forensics and security incident response/handling. This background has provided him with a deep knowledge of the subject having led complex and challenging projects for customers in all industries.

First instalment of security Q&A sessions on whether organisations are operating under a false sense of security with the current measures they have in place.

Don Smith, Dell SecureWorks Technology Directors, discusses Advanced Persistent Threats (APT) and provides fascinating inisght into the topic, including:

•Who are the APT threat actors and what are their objectives?
•What tools and techniques are the hacker groups and cyber-criminals are utilising
•Common attributes of the Advanced Persistent Threat
•Trends and patters of APT gleaned from the Dell SecureWorks coalface
•Who is being targeted by APT and why?
•What measures and controls should organisations be implementing to combat APT
•The importance of a robust Incident Response Plan

Advanced Persistent Threats are more than media hype. Dell SecureWorks has seen a significant increase in stealthy activity targeting specific intellectual assets, and has been involved in investigating and responding to attacks from APT threat actors.

During this webcast, Don Smith, Technology Director at Dell SecureWorks, will discuss real-world examples of APT attacks and how to best protect your organisation.

What do you feel are the three most important elements of your incident response plan for your organization? Do you respond differently if it is an advanced threat?

What steps have you taken to get more visibility into threat actors that might be targeting your organization?