Browse communities
Presenting a webinar?
Share this content

E is for Endpoint: 6 Security Strategies for Highly Effective IT Pros

Richard Steinnon-Chief Research Analyst at IT-Harvest, Paul Henry-Security & Forensics Analyst and Paul Zimski-VP Lumension
We all like the idea of a silver bullet—a single, simple solution to a complex problem. But there’s no silver bullet when it comes to information security. Though some IT professionals have clung to the vain hope that antivirus (AV) alone would do the trick, others have come around to the need for a layered, defense-in-depth approach to endpoint security. But today’s endpoints demand even more. Endpoint security now requires a new way of thinking that goes beyond just battling threats to actually enabling operational improvement.

Join this webcast, led by expert IT security panelists as you learn:
•The most common attack vectors in today’s IT environment
•Six steps to help you think different about endpoint security
•Secrets to an effective defense-in-depth approach
Feb 22 2012
59 mins
E is for Endpoint: 6 Security Strategies for Highly Effective IT Pros
Endpoint Security IT Security Endpoint Operations
More from this community:

IT Security

Webinars and videos

  • Live and recorded (2604)
  • Upcoming (169)
  • Date
  • Rating
  • Views
  • There has been a lot of press lately on the escalating cyber threats especially from China. A panel of security experts and practitioners will discuss focus on how this press coverage has changed how organizations think about these cyber threats and what countermeasures they need or plan to implement to address escalating crimes, espionage, or warfare cyber risks.
    Read more >
  • More and more organizations are exploring the ramifications of Big Data on their enterprises. Deployments of Smart Meters to better manage the electric grid, Industrial Control Systems (ICS) across a variety of sectors, and the promise of always on and always connected systems are pushing organizations to gather more data than previously imagined. What are the implications from a privacy and intellectual property perspective and how can we as security professionals provide a level of control and risk management over the coming wave of The Internet of Things? Join (ISC)2 and Capella University on May 23, 2013 at 1:00pm Eastern for a discussion on these important concerns.
    Read more >
  • How do you monitor and assess performance in the cloud? Do you need more visibility and control over your managed cloud environments? Learn how HOSTING 360° Report™ delivers a level of visibility to cloud performance that has historically been unavailable to cloud customers. Aggregating key performance and operational data in a concise and usable format provides full visibility into the availability, performance, recovery, security and capacity (AppRisk™) of HOSTING’s cloud services.
    Read more >
  • The explosion of social media in recent years means that there are millions of users or ‘fans’ to reach and add to your customer base. While there are clear benefits to end-users and the organizations that accept their social identities for account creation and authentication, there are important risk factors that have to be considered as well.

    Please join CA and ISACA for this webinar, where we will review the pros and cons of social media login and Bring Your Own Identity (BYOI), and provide guidance and best practices based on real use cases to help guide organizations to a model that meets their risk profile.
    Read more >
  • BYOD is inevitable and unstoppable. Maybe even uncontrollable and unmanageable. But is it the real issue? We seem to be very interested in mobile device management and security risks and data breaches, as, of course, we should be. But, isn’t the real issue the fact that traditional IT is fast becoming irrelevant. Nearly all of us use our personal devices for work and have multiple personal clouds full of data – personal and business. Today’s users believe that they need traditional IT less than before. Crowdsourcing is replacing the Service Desk while Web self-service is replacing live people. But, there’s more to running IT than mobile device buzz words and doom & gloom blogs and tweets. Check out this webinar with CA Technologies & Pink Elephant to find out what’s really happening and what IT can do to embrace this new world. 1 PriSM CPD.
    Read more >
  • For the IT employer utilizing contingent or contract worker(s) services there are best practices and considerations that need to be made in order to protect yourself and your employees.

    - Do you know how to discuss pay rates, increases or bonuses?
    - Do you know how to deal with full-time employment queries, how to properly deal with timecards or forms?
    - How do you deal with punctuality, attendance, dress code etc?
    - What do you do when you want to terminate or suspend a contingent worker?

    These are the common questions we receive and we will provide tangible tools and information that can help protect you as an employer.
    Read more >
  • For the IT employer utilizing contingent or contract worker(s) services there are best practices and considerations that need to be made in order to protect yourself and your employees.

    - Do you know how to discuss pay rates, increases or bonuses?
    - Do you know how to deal with full-time employment queries, how to properly deal with timecards or forms?
    - How do you deal with punctuality, attendance, dress code etc?
    - What do you do when you want to terminate or suspend a contingent worker?

    These are the common questions we receive and we will provide tangible tools and information that can help protect you as an employer.
    Read more >
  • By 2014, 60% of global companies are expected to pilot, deploy or expand their BYOD programs (RainKing). As BYOD has become a fixture in the workplace, with 72% of employees clamoring to have their personal devices work-enabled, the IT industry has watched as the familiar “perimeter" model has become untenable. Data is going to more places, and ending up on a wider variety of devices, than ever before. A new model for protecting data has become a necessity. Organizations have tried to do so in a multitude of ways: extending policies to cover mobile devices, monitoring usage, MDM solutions, and even NAC; all have been methods used to try and create the most stable environment for mobile technology. Let Integralis security expert Mike Gabriel explain how to best balance mobile productivity and security in this Security Talks installment.

    Why Attend?

    1.Discover how your peers are trying to protect mobile data.
    2.See how the perimeter is being sculpted (or not) by the IT industry.
    3.Find out what the future holds for BYOD in the workplace.
    Read more >
  • Over the years true MSPs have had to work diligently to differentiate themselves from companies that are at best, not true MSPs and at worst, are shady fly-by-night operators. This is where the Unified Certification Standard or (UCS) for Cloud & Managed Service Providers comes in.

    The UCS was created by a team of dedicated MSPs to address the shortfalls of existing standards like ISO 27001, ITIL, CoBIT, SSAE 16, which were never intended for managed services organizations and offered little in the way of consumer protection.

    CASE IN POINT: Many MSPs do NOT fail because of technical deficiencies, but due to financial risk. Because of this, customers have very little insight into the service provider's business practices and financial strengths and capabilities.

    Attend this webcast and you will hear from real MSP executives on how the UCS certification and audit has helped them to:

    - Win new business
    - Provide needed transparency to customers
    - Achieve compliance objectives
    - Quickly develop trust with customers and prospects
    - Provide documentation on how those MSPs deliver their services
    - And much more...

    Both Cloud and Managed Service Providers should attend this webcast and at least begin to follow the standards necessary to achieve managed services and cloud computing excellence.
    Read more >
  • Doug Turner, CEO of Mantis Technology Group, talks about how his team built Pulse Analytics, a sentiment analysis solution using text analytics tool running on SAP HANA One. Hear how his team strengthened the capabilities of this solution while simplifying their data architecture by replacing 20 servers with only 1 SAP HANA One instance.
    Read more >
  • Channel
  • Channel profile

Endpoint Management and Security

Up Down
  • BYOD & Mobile Security: How to Respond to the Security Risks Jun 4 2013 4:00 pm UTC 60 mins
    Bring Your Own Device (BYOD) is a popular topic in 2013. The trouble is that IT is trying to understand the security risks and prepare strategies to either adopt employee-owned mobile devices or decide against it for security and data control reasons.

    The 160,000 member Information Security Community on LinkedIn conducted the survey “BYOD & Mobile Security 2013” to shed some light on the drivers for BYOD, how companies will benefit from BYOD, and how they respond to the security risks associated with this trend. With 1,600 responses, some interesting insights and patterns into BYOD were uncovered.

    Participate in this interactive webcast to learn:

    •Current Mobile Security Threats
    •Top Trends & Drivers in BYOD & Mobile Security
    •Necessary Features to Minimize these Security Risks
    •Live, Interactive Q&A
  • 3 Executive Strategies to Prioritize Your IT Risk Recorded: May 8 2013 60 mins
    Do you want to know how ‘best-of-breed’ enterprises prioritize their IT risk? Join Richard Mason, Vice President & Chief Security Officer at Honeywell, whose team is responsible for global security, during a roundtable discussion with Pat Clawson, Chairman & CEO of Lumension and Roger Grimes, Security Columnist & Author. Uncover strategies beyond traditional antivirus signatures and learn a more holistic approach to effective risk management. Find out ‘how’ and ‘why’ you can make security a prioritized function within your organization.

    Join this expert panel webcast to learn how to:
    1)Understand your business audiences and evaluate their risk tolerance
    2)Leverage reputation management services that are appropriate for your organization
    3)Utilize realistic change management to secure prioritized data depositories
  • Understanding the Ins & Outs of Java Vulnerabilities and What to do About It Recorded: Mar 13 2013 61 mins
    Many organizations are jumping on the “Death to Java” bandwagon, ranting about turning off Java to eliminate risk. However, it is important to put the issue in the proper context. The reality is that a Java vulnerability is not the end game for a cyber criminal, it is merely a delivery mechanism in the quest to install and execute bigger malware.

    There is no “one size fits all” recommendation for eliminating Java risks. But, you do want to eliminate as much exploitable surface area as reasonably possible on your critical endpoints. This should be the philosophy engrained in every organization’s security culture. If you’re not having this conversation about Java - and quite frankly all of the third-party applications in your environment - you are missing the mark and not calculating your risk. Join Paul Henry and Russ Ernst as they bring us up to speed on the Java vulnerabilities and how to limit your exposure without going overboard.
  • Defending Your Corporate Endpoints: How to Go Beyond Anti-Virus Recorded: Jan 30 2013 1 min
    Businesses large and small continue to struggle with malware. As a result, 50% of endpoint operating costs are directly attributable to malware alone[1]. Traditional approaches to malware protection, like standalone antivirus, are proving themselves unfit for the task. Something has to give.

    In this roundtable discussion, independent information security expert Kevin Beaver and Lumension Security’s Chris Merritt will talk about what can be done differently, including:

    • How to get a better grasp of the weaknesses in endpoint security that continue to get overlooked,
    • Examining whether or not anti-virus as we’ve known it is effective, and
    • A comparison between a proactive versus reactive approach to fighting the malware fight.

    [1] Ponemon Institute, 2011 State of Endpoint Risk, December 2010
  • 2013 Data Protection Maturity Trends. How Do You Compare? Recorded: Jan 22 2013 61 mins
    In 2012 we found out that the BYOD environment and consumerization of the workplace had turned traditional notions of corporate IT upside down. The 2013 Data Protection Maturity Report will highlight how organizations have managed this trend over the last year and what steps are being taken in 2013 to further enhance data security. Find out how IT teams are developing a holistic model that encompasses policy, education, technology and enforcement.

    During this webcast we look at each of data protection trends, helping you define your organization’s best practice guide to address the top concerns. We will also be showing you how you can gauge the maturity of your security systems, allowing you to plug any holes before your valuable data starts to leak through them.
  • Greatest IT Security Risks of 2013: Annual State of the Endpoint Report Recorded: Dec 5 2012 59 mins
    What are IT pros most concerned about heading into 2013? The annual State of the Endpoint Report sponsored by Lumension and conducted by Ponemon Institute reveals APTs and mobile devices pose the biggest security threat to organizations in the coming year. Unfortunately, respondents also demonstrated a disconnect between their identified risk and planned security spend as well as a significant need for improved internal collaboration.

    Join Larry Ponemon of the Ponemon Institute and Paul Zimski of Lumension for a webcast that will reveal statistics on growing insecurity, IT’s perceived areas of greatest risk for 2013 as well as tactical suggestions for how to improve your endpoint security. Specifically, you will learn:

    •IT perspective on today’s Top 3 risks;
    •Disconnect between perceived risk and corresponding strategies to combat those threats;
    •Tips and tricks on how to best communicate today’s threats and subsequent needed responses up the management chain
  • SENSATIONAL HEADLINES OR REAL THREATS? What New Attacks Mean For You? Recorded: Oct 22 2012 59 mins
    Well-organized, highly sophisticated cyber attacks continue to make headlines, hitting major U.S. banks and global companies like Adobe to name a few. In support of October as National Cyber Security Awareness Month, Lumension CEO Pat Clawson, Prolexic CEO Scott Hammack, security industry expert and author, Richard Stiennon and industry analyst and webcast moderator Eric Ogren will share their unique insight into these recent news-making attacks and what they mean for enterprises everywhere.

    In this webcast, you will learn:
    •The latest, seemingly extraordinary attacks;
    •How these attacks could escalate to the point where they matter to you and;
    •What you should be doing to secure against them.
  • Developing Best Practices to Device Control & Encryption: Technical Webcast Recorded: Aug 28 2012 74 mins
    The proliferation of USB flash drives and other removable storage devices has increased the porosity of the network perimeter. This has resulted in sensitive corporate and customer data leaking through the corporate firewall, exposing the organization to data loss, data theft and malware propagation. Understanding the powerful data protection tools available to your organization can help you mitigate these risks, while still enabling the flexible and managed use of these productivity devices.

    Join this webcast to learn the practical steps to guide you in the deployment of device control and encryption technology as we dive into a technical discussion of what the critical items to address, including:

    •Laying the Groundwork for Data Security
    •Preparing for Technical Enforcement
    •Enforcing Your Data Protection Policies
    •Managing Your Secure Environment
  • How to Guard Healthcare Information with Device Control and Data Encryption Recorded: Aug 7 2012 61 mins
    The need to protect digitized health information is a top priority in the healthcare industry. HIPAA and the HITECH Act put pressure on your organization to maintain the privacy and security of patient data, with the potential legal liability for non-compliance. So how does your healthcare organization meet or exceed industry best practices in guarding healthcare information?

    Join this webcast as Eric Ogren, President of The Ogren Group, and Chris Merritt, Solution Marketing Director at Lumension come together to take you through:

    • What PHI breaches are currently documented by the US Department of Health and Human Resources (HHS) and why these breaches are occurring
    • How a healthcare organization can mitigate costs with encryption technologies
    • What to look for in device control and full disc encryption solutions
  • Welcome to the Age of Weaponized Malware. What Does it Mean to Your Enterprise? Recorded: Jun 26 2012 61 mins
    The U.S. has not denied their role in the use of weaponized malware and already, other countries are jumping on board. India recently announced they are empowering government agencies to carry out similar such actions.

    State sponsored malware attacks are officially out of the shadows and mainstream for organizations and end users alike. In fact, Google recently announced an alert service for gmail users for “state sponsored attacks”. How exactly did we get to this point and what are the factors and threats that you need to be aware of?

    Join this complimentary webcast during this roundtable discussion by IT security industry experts as they answer the following questions:
    *How did we get to this point?
    *Why should the enterprise care?
    *What should the enterprise do?

    Walk away from this webcast with the knowledge and approach to help defend your enterprise against weaponized malware.
  • How Mature is Your Data Protection? 3 Steps to Effective Data Security. Recorded: May 22 2012 64 mins
    Make no mistake, consumerization of the workplace is one genie that is not about to go back into the bottle.

    With the BYOD movement overwhelming IT, and the convergence between personal devices and the corporate networks set to increase, the ability to restrict-and-ban the network is doomed to failure. Worse, they may be counterproductive to the business. Instead, IT teams must look at security in a different way, developing a holistic model that encompasses policy, education, technology and enforcement.

    During this webcast we look at each of these aspects, helping you define your organization’s best practice guide. We will also be showing you how you can gauge the maturity of your security systems, allowing you to plug any holes before your valuable data starts to leak through them.
  • E is for Endpoint II: How to Implement the Vital Layers on Your Endpoints Recorded: May 9 2012 60 mins
    IT security professionals rank third-party application vulnerabilities as the greatest security risk of 2012. And yet malware continues to exploit these – and other – vulnerabilities to breach our defenses. Clearly there’s a disconnect between knowing the problem and solving it. Yet it does not have to be this way, if we intelligently apply adequate protections against the exploitation of these vulnerabilities.

    Join this webcast, led by expert IT security panelists, to learn:

    •What are the vital layers of your endpoint defense.
    •How to thwart exploitation of your endpoint OS, configuration and 3rd-party application vulnerabilities.
    •How to prevent unknown applications from executing on your systems.
  • Developing Best Practices to Patch Management: An In-Depth Technical Webcast Recorded: Apr 25 2012 91 mins
    In today’s complex networking environment using patch and vulnerability management as the principal component of your risk mitigation strategy, and taking prudent measures to establish a best practices approach, can help reduce costs and risks in the long term.

    Patch and vulnerability management continues to be the first and last line of defense against existing and newest exploits. With the sophistication and sheer volume of exploits targeting major applications and operating systems, the speed of assessment and deployment of security patches across your complex IT infrastructure is key to mitigating risks and remediating vulnerabilities. Join this webcast to learn the recommended steps to cure your patch management headache as we dive into a technical discussion of what the critical items to address:

    •To Lay the Ground Work for Patch and Remediation
    •A Week before Patch Tuesday
    •On Patch Tuesday
    •After Patch Tuesday
  • E is for Endpoint: 6 Security Strategies for Highly Effective IT Pros Recorded: Feb 22 2012 59 mins
    We all like the idea of a silver bullet—a single, simple solution to a complex problem. But there’s no silver bullet when it comes to information security. Though some IT professionals have clung to the vain hope that antivirus (AV) alone would do the trick, others have come around to the need for a layered, defense-in-depth approach to endpoint security. But today’s endpoints demand even more. Endpoint security now requires a new way of thinking that goes beyond just battling threats to actually enabling operational improvement.

    Join this webcast, led by expert IT security panelists as you learn:
    •The most common attack vectors in today’s IT environment
    •Six steps to help you think different about endpoint security
    •Secrets to an effective defense-in-depth approach
  • Greatest IT Security Risks in 2012: Annual State of the Endpoint Report Recorded: Jan 17 2012 55 mins
    While malware attacks continue to be a significant risk and operational cost driver, IT security teams today are more concerned about the new threats brought on by personal mobile devices in the workplace, virtualization technologies and cloud computing, according to the 2012 State of the Endpoint survey sponsored by Lumension and conducted by Ponemon Institute. And while reliance on these productivity tools are expected by other business leaders, inadequate collaboration and lacking resources for security create a perfect storm for hackers.

    Join this webcast as we reveal statistics on growing insecurity, perceived areas of greatest risk for IT in 2012, and interestingly, a significant disconnect between risk and planned security strategies. In addition, we will examine the evolving IT risk environment and recommendations to more effectively and cost-efficiently secure your endpoints. Learn about:

    * How organizations are creating a perfect storm for hackers
    * The Top 3 new threats to the workplace
    * Perceived risks and corresponding strategies to combat the evolving endpoint environment
  • How to Reduce Endpoint Complexity and Costs Recorded: Nov 8 2011 61 mins
    Ensuring the security of organizational endpoints is tough, especially when you have limited resources and budget. It’s not just about what security technologies to deploy, but how can you more efficiently manage your environment.

    Join Roger Grimes and Chris Merritt for the second part of our SMB Security Webcast Series as they discuss key recommendations for improving endpoint security while also:

    • Improving Uptime, without additional management burden
    • Reducing Complexity, by limiting the number of security agents and consoles to manage
    • Reducing Overall Costs, by getting more from limited IT security resources and budget
  • How to Improve Endpoint Security on a SMB Budget Recorded: Sep 27 2011 63 mins
    Today’s cybercriminals are targeting small-to-midsize organizations more frequently. With limited staff and resources, SMBs face the challenge of increasing IT security issues and more sophisticated threats with a limited arsenal. Recent research shows that:
    •60 percent of users are running unpatched versions of Adobe*
    •36 percent of SMBs rely on free antivirus**
    •13 percent of SMBs have no security at all**

    Learn practical recommendations for improving security, including how to:

    •Deter cybercriminals by taking care of the IT security basics
    •Prioritize what security technologies to implement
    •Better educate users to limit user errors
    •Implement processes that improve security without impacting overall productivity
  • Reorganizing Federal IT to Address Today’s Threats Recorded: Aug 11 2011 59 mins
    New reports show U.S. government servers are faced with 1.8 billion cyber attacks every month. A quick look at these numbers and it is painfully obvious that status quo security measures are not keeping pace with today’s threats. Congress has taken a step by introducing the Cyber Security Public Awareness Act of 2011, but more evolution of our cyber defenses needs to occur.

    In this webcast, Richard Stiennon analyst with IT Harvest and author of Surviving Cyber War, and Paul Zimski, VP of solution strategy with Lumension, will examine:
    • Today’s threats targeting government IT systems
    • How federal IT departments can be reorganized to improve security and operations
    • What key endpoint security capabilities should be implemented
  • How to Enable Local Admin Access Without the Risk Recorded: Jun 16 2011 59 mins
    In today’s Windows environment, end users are accustomed to having local administrator privileges which allow them to download a variety of applications and potentially misconfigure their PCs. While standard wisdom may be to simply solve the problem by revoking local administrator rights on users’ systems, the reality is that this may not be an option at all organizations. And removing local admin rights doesn’t address applications such as Google Chrome or browser plug-ins for which admin access isn’t required.
    Fortunately, there’s hope for IT administrators seeking to gain control over the Windows environment while still offering local admin rights to the user base – through application whitelisting. With application whitelisting, IT can gain power over what types of applications their users install and limit their access to under-the-hood controls that determine how well config¬ured the machine remains.

    In this webcast, we’ll examine:
    • Why revoking local admin rights won’t solve the problem of unwanted and malicious applications
    • How to promote productivity through local admin access while achieving control over configuration changes
    • Additional benefits of application whitelisting, including the prevention of zero-day attacks
  • Why Patch Management is Still the Best First Line of Defense Recorded: Apr 13 2011 35 mins
    Vulnerabilities are on the rise - especially from third party, non-Microsoft applications, which have four times more vulnerabilities than Microsoft applications. And cybercriminals have taken notice, exploiting these vulnerabilities at a faster rate than ever before. Today more than 2 million malware signatures are identified each month and traditional anti-virus defenses simply can’t keep up. Even the major anti-virus vendors have concluded that stand-alone anti-virus no longer provides an effective defense and that additional layers of security technology are needed to address the rising volume and sophistication of threats.

    In this webcast, security and forensics analyst Paul Henry will examine:

    • Why you can’t forget about older vulnerabilities
    • How to reduce exposure from both OS and 3rd party application vulnerabilities
    • The challenges with reliance upon “free” patching tools and native updaters
    • Why you should consider patch management as the core of an effective depth-in-defense endpoint security approach
Tips to Endpoint Management, Security and Compliance Challenges
This channel provides live and on-demand webcasts on a range of Endpoint Management and Security topics, including: identifying the latest trends and best practices for minimizing insider risks, reducing your threat exposure, managing Web 2.0 threats, reducing your cost of compliance and taking control of your endpoints, from both an operational and security perspective.
  • Upcoming webinars (1)
  • Recorded webinars (35)
  • Subscribers (5,206)
Channel RSS feed
Up Down

Embed in website or blog

Successfully added emails: 0
Remove all
  • Title: E is for Endpoint: 6 Security Strategies for Highly Effective IT Pros
  • Live at: Feb 22 2012 4:00 pm
  • Presented by: Richard Steinnon-Chief Research Analyst at IT-Harvest, Paul Henry-Security & Forensics Analyst and Paul Zimski-VP Lumension
  • From:
Your email has been sent.
or close
You must be logged in to email this
OK