Browse communities
Presenting a webinar?
Share this content

Securing the Cloud with SIEM

Marc Blackmer, Senior Product Marketing Manager, Solutions at HP Enterprise Security
Organizations are adopting cloud services at a very fast pace, driven by the cost effectiveness, speed/time to market and better performance and availability cloud adoption provides. However the security of data and access in the cloud is still a major cause for concern. Even if the organization is comfortable with a cloud service provider’s security posture, they are often surprised to find they are ultimately responsible for securing their own data. Fortunately security event and information management (SIEM) solutions are able to extend information and access controls to cloud in addition to physical and virtual environments. This webinar will dive into the various options available to organizations to help them ensure a secure cloud services environment.
May 24 2012
39 mins
Securing the Cloud with SIEM
SIEM Cloud cloud security security
More from this community:

Cloud Computing

Webinars and videos

  • Live and recorded (2725)
  • Upcoming (83)
  • Date
  • Rating
  • Views
  • In the last 10 years, hacking has become big business with a well organised infrastructure, defined roles and responsibilities, and sophisticated attack vector automation that generates large-scale attacks of unprecedented size, speed and devastation. Advanced protection is needed in order to successfully stand up to the ‘industrialisation of hacking’. In this webinar, Andy will talk about:

    - How to prevent web attacks like SQL injection, cross-site scripting, app DDoS or site scraping.

    - The limitations and vulnerabilities associated with IPS solutions and other traditional security solutions.

    - Attack-mitigation techniques for combating malware including bots and other automated attacks common in industrialised hacking.

    - How to protect networks from the ‘compromised insider’ threat.

    About the speaker:
    Mark has 18 years’ experience in the IT industry, and has specialised in Internet security systems for more than 16 years. Mark is a passionate evangelist for technology and is multi-skilled across a broad range of security solutions including Firewalls, VPNs, IPS, WAF, web and email content filtering, SIM/SIEM, load balancing, DLP, risk assessment, monitoring tools, DB security and consultancy. Mark joined Imperva in 2007 and held previous technical roles at Nokia and contracted as a security specialist where he has held senior roles designing and implementing firewall, IDP and VPN solutions in mission critical environments.
    Read more >
  • Come avvengono gli attacchi? 5 STAGES OF A DATA BREACH
    Per proteggere le aziende da attacchi informatici, è importante capire come operano gli attacanti. Questo webcast descrive l’anatomia di un attacco nelle sue 5 fasi: Reconnaissance, Incursion, Discovery, Capture ed Exfiltration
    Verranno inoltre analizzate le principali tecniche impiegate e le soluzioni per prevenirle e/o contrastarle oltre al relativo impatto sul business (rilevato dalla ricerca “Cost of a Data Breach 2013”)
    Partecipa a questo webcast per vedere come si sono evolute le cyber minacce e come stanno influenzando le realtà produttive.
    Read more >
  • Cosa sta DAVVERO succedendo? Il Security Threat Report
    Il Security Threat Report fornisce una panoramica e un'analisi di attività delle minacce a livello mondiale nel 2012. Dai dati della Global Intelligence Network, esperti di Symantec analizzano le tendenze emergenti negli attacchi, nelle vulnerabilità e negli obiettivi.
    Inoltre, l’ultima ricerca “Cost of a Data Breach Report 2013” traccerà gli impatti economici per le organizzazioni nel caso di attacchi informatici
    Partecipa a questo webcast per avere un aggiornamento sul panorama delle minacce e della sicurezza nel 2013 e sulle conseguenze nel business.
    Read more >
  • Pour limiter les risques d’une cyber-attaque, la politique de sécurité doit comprendre la mise en place d’une politique de supervision incluant la surveillance des vulnérabilités, la corrélation des événements de sécurité, les procédures de réponse en cas d’attaque… Lors de ce webcast, nous vous invitons à faire le point sur les solutions de SOC, SSIEM, Services Managés et leurs bénéfices.
    Read more >
  • Join Raj for a complete regulatory overview including:

    - HIPAA Omnibus Update
    - FTC Health Breach Rule
    - Top 5 reasons organizations FAIL Security Assessments
    - Case Studies
    - Guidance
    - Success Stories
    Read more >
  • Enterprise Storage moving toward the cloud requires an interoperable interface foundation to avoid vendor lock-in and provide choice. This tutorial will provide an overview of the features of a Enterprise cloud storage standard and explain how interoperability between clouds is achieved.

    What should you be requiring from your cloud vendors?
    How can you expect standards to roll out in implementations?

    Learning Objectives
    How this cloud storage standard can achieve interoperability and what this interoperability means to you.
    How you can use the cloud storage standard both internally for private clouds as well as for public clouds.
    Read more >
  • Virtualization, cloud computing, hybrid environments and BYOD are here to stay. When implemented successfully, these solutions can transform the way businesses operate and lower the OPEX and CAPEX costs of IT departments. However, these major IT trends cannot be considered separately: virtualization and cloud are often linked, and needs for anytime anywhere connectivity and mobile workforce enablement won't wait. This is why it's essential to have a holistic approach and address the business, technology and financial implications of today for tomorrow's needs.


    Dell has quickly become one of the largest and fastest growing networking providers in the world by leveraging its extensive expertise in the data center to build a complete portfolio of switches that are designed to be open, flexible, powerful and economical.
    Read more >
  • Server CPU performance is scaling exponentially and will do so for the foreseeable future. During the same period, however, the throughput and bandwidth performance of enterprise-class 15K RPM SAS drives has essentially remained flat, creating a storage performance gap, a key motivator for deploying solid state storage to alleviate I/O bottlenecks.

    Join this webinar and learn how to accelerate application performance and optimize your end-to-end storage fabric by deploying a best of breed solution from EMC, Emulex and Brocade.

    Allison Nolan, Senior Product Marketing Manager, Flash Products Division, EMC
    John Cedillo, Senior Product Marketing Manager, Emulex
    Scott Shimomura, Director, Data Center Product Marketing, Brocade
    Read more >
  • Don't be caught off guard when your auditors show up and start asking internal control questions that you can't answer. In this roundtable session, listen, learn, and share your experiences around managing your internal control system with your ERP system and what to be prepared for BEFORE the auditors show up. There are always tips to learn from others in the compliance area and this session traditionally has lively dialogue, so don't miss this opportunity to prepare for your next audit.
    Read more >
  • The myth is that integration takes weeks to build and deploy, not minutes. Join this live demo and follow along as we show how to integrate SaaS and on-premise applications at cloud speed. Don’t forget to bring your stopwatch to test whether this is myth is confirmed or busted.

    This MuleSoft event will cover:

    Creating a CloudHub account
    Configuring a message queue to Salesforce integration flow
    Deploying integration to CloudHub
    Monitoring performance from CloudHub Insight

    The demo will be followed by a Q&A session.
    Read more >
  • Channel
  • Channel profile

Information Security

Up Down
  • The Landscape of Enterprise Mobility Management – Staying Ahead of The Curve Recorded: Jun 18 2013 49 mins
    Enterprise Mobility Management is evolving as quickly as the devices and apps it means to control. Mobile security is constantly having to adapt to innovations in mobility. Organizations need to approach mobility management as an integral part of their mobile strategy. Security should be intrinsic but not inhibitive. Come learn where mobility is going, mobility management questions your organization should be asking, and what you can do to assure that your end-users and data are protected.
  • 2 Minutes on BrightTALK: BYOD from Policy to Technology Recorded: Jun 18 2013 2 mins
    "You look at how you're going to let this operate within your network. So you start with the policy, then you look at the technology that you need to deploy on these devices. Then you actually look at who has access to what." Jeffrey Vinson, Director and CISO of SecureNet Payment Systems, discusses the steps to progress through when preparing for BYOD in your business.
  • How To Win the War Against Cybercrime - Turning the Tables on Hackers Recorded: Jun 18 2013 47 mins
    In the last 10 years, hacking has become big business with a well organised infrastructure, defined roles and responsibilities, and sophisticated attack vector automation that generates large-scale attacks of unprecedented size, speed and devastation. Advanced protection is needed in order to successfully stand up to the ‘industrialisation of hacking’. In this webinar, Andy will talk about:

    - How to prevent web attacks like SQL injection, cross-site scripting, app DDoS or site scraping.

    - The limitations and vulnerabilities associated with IPS solutions and other traditional security solutions.

    - Attack-mitigation techniques for combating malware including bots and other automated attacks common in industrialised hacking.

    - How to protect networks from the ‘compromised insider’ threat.

    About the speaker:
    Mark has 18 years’ experience in the IT industry, and has specialised in Internet security systems for more than 16 years. Mark is a passionate evangelist for technology and is multi-skilled across a broad range of security solutions including Firewalls, VPNs, IPS, WAF, web and email content filtering, SIM/SIEM, load balancing, DLP, risk assessment, monitoring tools, DB security and consultancy. Mark joined Imperva in 2007 and held previous technical roles at Nokia and contracted as a security specialist where he has held senior roles designing and implementing firewall, IDP and VPN solutions in mission critical environments.
  • What You Need to Know Before the Auditors Ask Recorded: Jun 13 2013 47 mins
    Don't be caught off guard when your auditors show up and start asking internal control questions that you can't answer. In this roundtable session, listen, learn, and share your experiences around managing your internal control system with your ERP system and what to be prepared for BEFORE the auditors show up. There are always tips to learn from others in the compliance area and this session traditionally has lively dialogue, so don't miss this opportunity to prepare for your next audit.
  • Securing Mobile Apps: Old School Know How For the New World Order Recorded: Jun 13 2013 58 mins
    Mobile devices and applications are redefining business, revolutionizing productivity and driving competitive advantage. But as the volume of mobile applications increases, so too are mobile exploits. In the rush to enter the mobile software market, are we taking shortcuts that force us to repeat sins of the past? Like caching sensitive data, incomplete encryption and simple mistakes in coding? Don't let old-school vulnerabilities allow hackers to resurrect previously obsolete malware and exploits. With the experience of more than 1,400 incident response investigations, thousands of penetration tests and hundreds of application security tests, Trustwave SpiderLabs' Charles Henderson will show IT, security and development teams how to make sure they're not leaving sound security practices and due diligence behind as they develop new mobile applications.
  • Business Driven Continuous Compliance Recorded: Jun 13 2013 40 mins
    While a key driver for adapting security technologies, compliance is still a huge burden for most organizations. In the presentation we will discuss novel approaches to both lower the cost of compliance and derive relevant business value from the process. Changing the compliance process from a periodical manual process into a continuous automated process ensures real time visibility into your compliance posture as well as the ability to react in real time to compliance issues rather than just after the fact. By overlaying the information collected with your enterprise IT asset model, the real time compliance information can also contribute to business driven risk management and help in making the right investment decisions in information security.
  • Cyber Security Management in a Highly Innovative World Recorded: Jun 13 2013 49 mins
    Cyber attacks are reaching pandemic levels. State-sponsored groups and organized crime are successfully stealing valuable intellectual property—including critical infrastructure and operational readiness information, businesses’ and consumers’ financial data—often without anyone realizing the attack has occurred. But preparedness cannot be delegated solely to the IT department. The involvement of the entire enterprise, armed with an understanding of the highly dynamic landscape, is vital for warding off potential threats.

    Join your fellow professionals to discuss these trends, and, more importantly, some new perspectives on how to address them:

    Risks:

    Impacts on risk from evolving adversaries
    Risks driven by changes in the changing technology landscape
    (including cloud, virtualization, consumerization and mobile)
    The ever empowered privileged user

    Solutions

    Adversary centric security models
    Applying security without infrastructure control
    Designing for the secure breach
  • How to Pass Your Next Audit Without Putting Your Business on Hold Recorded: Jun 13 2013 38 mins
    Establishing PCI DSS compliance can be extremely resource intensive. For medium to large organizations, the many tasks involved in documenting, tracking and auditing network security procedures manually can take days. With an automated firewall operations, auditing and compliance solution, companies can substantially reduce the time and cost of PCI DSS compliance as it applies to the management of firewalls, routers and related network security infrastructure. Learn how to reduce the amount of time required for audit preparation by more than 50%, while enabling continuous compliance with the PCI standard.
  • Malware Automation and How To Protect Against It Recorded: Jun 12 2013 36 mins
    Automation is key when it comes to production. The same is true for malware. Malware production has moved on from the traditional manual method to a more efficient automated assembly line. In this talk, I will take the audience on an over-the-shoulder look at how attackers automate malware production. Discussion will focus on the tools and methodologies the attackers use to produce thousands of malware on a daily basis. The talk will then conclude with a live demonstration of how malware is produced in an automated fashion.
  • Gaining Threat Intelligence and Combating the Four Most Common Attack Vectors Recorded: Jun 12 2013 36 mins
    The HP Security Research team (HPSR) is hard at work monitoring the threat landscape for new campaigns, profiling actors to understand their motivations, identifying the tools they use and determining how credible certain threats might be. It’s part of a long-term strategy for developing a new threat intelligence-sharing model. Why is that important? It will provide real-time info from the larger security community-- enterprises like yours, industry security organizations and security vendors-- that can be used to automate and catch these breaches immediately.

    Learn about HP’s findings, including these culprits: injection flaws, DDoS, various phishing techniques and zero day vulnerabilities. How can you address the inevitable breaches that will occur?
  • Not the Yellow Brick Road: Exploit Paths In Your Environment Recorded: Jun 12 2013 47 mins
    Traditional ideas of "exposed systems" are not up to the challenge of finding the paths determined attackers can use to attack and compromise systems. A variety of data must be collected, analyzed, and correlated to find threats both obvious and subtle. This webinar will explore the information needed, and the analysis required to find exposures which can lead to compromise.
  • Getting From Reactive to Proactive Endpoint Security Recorded: Jun 12 2013 44 mins
    Antivirus only stopped 49% of malware in 2012. Is your data safe against the malware tools being deployed by cyber-criminals? Today’s hackers are using targeted attacks, drive-by downloads and exploiting human error to access your organization’s intellectual property. IT Security’s ability to move from reactive to proactive security involves deploying both intelligence and policy based protection. Full protection for both physical and virtual environments requires an integrated, layered defense on the endpoint. Join us to learn best practices and strategies for unrivaled security and blazing performance to defend your organization against today’s complex threats.
  • The New “Denial of Service” Attack: Why You May No Longer be Protected Recorded: Jun 12 2013 49 mins
    There was a time when distributed denial of service (DDOS) attacks threatened business operations by simply “flooding the network pipe” with traffic congestion. But that has all changed. Today’s sophisticated and targeted attacks use a multitude of vectors to overwhelm and infiltrate websites and online services – disrupting an enterprise’s online presence and customer’s ability to do business with the company under attack.

    While enterprises once could rely solely on their cloud service providers, ISPs and perimeter security to protect against these attacks, many are just now learning they are vulnerable to the new types of denial of service attacks. Some of these highly targeted attacks are taking down online services while others are being used as a diversionary tactic that is used to distract from an advanced malware attack.

    This presentation will cover examples of high profile, multi vector attacks that use stealth components and application vulnerabilities to shut down or infiltrate an enterprise’s network. Attendees will learn what types of attacks cloud providers and service providers are stopping and what attacks need to be handled on the internal enterprise network. The presentation will also cover a framework that will help organizations move toward a more secure stance against denial of service attacks.
  • Storage Implications for Storing File Data Securely in a Distributed World Recorded: Jun 12 2013 49 mins
    When an organization has a distributed or mobile workforce or requires executives or key personnel to work from home, the issue of securing the business critical data becomes especially problematic. In most cases today, responsibility for the security of the file data is the left up to the individual end user. Theft or even the borrowing of the mobile device leaves critical file data exposed.

    The rapid growth of BYOD (Bring Your Own Device) brings cost savings and efficiency for organizations but also a greater risk of security breaches. Today, no control or reporting of use of critical data on mobile devices is possible and this creates regulatory problems.

    Join your fellow professionals to understand the storage implications for storing file data in a distributed world and best practices on file data security.
  • Unlocking the Key to Efficient Compliance and Audit Management Recorded: Jun 12 2013 45 mins
    Join Brady as he explains why placing priority on information security will lead your organization down the path of compliance by default – drastically reducing the time and resources needed for audit and compliance management and reporting.

    Discover how your organization can benefit from:

    · A proactive risk management strategy and full visibility into its risk posture
    · A streamlined and better-managed information security program
    · Simplified risk assessment and mitigation
    · Automated compliance with regulatory requirements
  • Vulnerable Where You Least Expect It: How Hackers Target Devices Recorded: Jun 12 2013 41 mins
    The IT community is used to network-based attacks from PCs, but how prepared are you against attacks from mobile devices brought in by our employees and networked equipment out in the field? This talk will present some recent examples of such threats and offer some possible solutions.
  • Panel: Active Defense: Preventing a Breach and Hacking Back Recorded: Jun 12 2013 55 mins
    How do you respond when your organisation has been breached and law enforcement is unable to help?

    More and more companies are turning from a reactive response to breaches to a proactive one: preventing a breach before it happens and hacking back. This panel session will feature 4 experts discuss these topics in-depth, from its technical to legal implications.
  • Insights from the Symantec Website Security Threat Report 2012 Recorded: Jun 12 2013 45 mins
    Symantec has established some of the most comprehensive sources of Internet threat data in the world through the Symantec Global Intelligence Network. This is made up of approximately 69 million attack sensors and records thousands of events per second, monitoring threat activity in over 157 countries.

    These resources have offered unparalleled sources of data with which to identify, analyse, and provide informed commentary on emerging trends in attacks, malicious code activity, phishing, and spam. Symantec’s Website Security Solutions have distilled this information down to focus specifically on the threats that are targeting online business and websites.

    Join Symantec's team of as they draw on this report to discuss:
    • Trends and patterns across the globe and the impact these have
    • Best practices to mitigate risk for online businesses
    • What actions you can take to protect your site and your customers
  • Managing All Aspects of Storage Operations Recorded: Jun 12 2013 29 mins
    Is your organization trying to contain costs as Big Data and other initiatives increase the demand for more storage? As the volumes of data continue to increase, so does the need for organizations to cost-effectively manage all their storage assets. In this webinar we will cover multiple options for managing storage. You will learn about discovery of storage assets across SAN, NAS, and multi-vendor platforms. We will discuss practical ways to use trending analysis, forecasting and optimization to cost-effectively address current and future growth requirements. Our discussion will also include an explanation of how integration with other solutions can lead to greater efficiencies through runbook automation as well as incident and configuration management.

    Nick has 22 years of enterprise storage experience. He has worked with many global enterprises and has years of direct experience helping organizations evaluate and deploy storage systems and management software. Prior to working as a consultant, Nick was an operations software specialist for HP Global Accounts.
  • How to Successfully Manage Your Multi-Site IT Estate and Reduce Business Risks Recorded: Jun 12 2013 43 mins
    Learn how a state-of-the-art IT automation software helps you unify the handling of a multi-site IT estate configuration and change management, including hardware and software assets, by automating service desk processes, life cycle management and compliance policies and improving service availability.

    With the support of an IT automation software, you have more time and resources to focus on strategic decision-making for your IT environment.
     
    This webinar will help you understand how to deploy a streamlined, end-to-end configuration, change and release management plan, advise you on how to enforce process controls and how best to integrate technology and process.
     
    Register for this webinar and learn about:
     
    · Best practices for identifying, assessing/approving, implementing, testing/releasing IT assets, processes and software

    · The processes and goals of IT Asset Management and Life Cycle Management

    · Reducing risk in operational and application changes

    · Improving time to market and reducing risk from uncontrolled changes

    · Uncovering savings through process improvement and support for strategic decision-making

    · Designing reports and release audits to ensure highest efficiency

    · Improving stakeholder collaboration for quicker changes and higher success rate
The latest trends and best practice advice from the leading experts
This channel features presentations by leading experts in the field of information security. From application, computer, network and Internet security to access control management, data privacy and other hot topics, you will walk away with practical advice for your strategic and tactical information security initiatives.
  • Upcoming webinars (20)
  • Recorded webinars (868)
  • Subscribers (34,372)
Channel RSS feed
Up Down

Embed in website or blog

Successfully added emails: 0
Remove all
  • Title: Securing the Cloud with SIEM
  • Live at: May 24 2012 5:00 pm
  • Presented by: Marc Blackmer, Senior Product Marketing Manager, Solutions at HP Enterprise Security
  • From:
Your email has been sent.
or close
You must be logged in to email this
OK