Hi [[ session.user.profile.firstName ]]


  • Date
  • Rating
  • Views
  • Risk is a Board Game - Navigating Board Conversations on Cybersecurity Risk
    Risk is a Board Game - Navigating Board Conversations on Cybersecurity Risk
    Ed Amoroso and John Dasher Recorded: Nov 13 2018 61 mins
    You’ve gotten what you wished for. Cybersecurity and cyber risk are now board-level issues. Whatever barriers that once existed between business and security have disappeared, and your board is expecting a meaningful conversation on the topic. After all, board members can be held personally liable for business disruptions caused by security issues. Depending on how often these conversations occur, it’s probably safe to assume that the board has a) forgotten what you told them in the last meeting, and, b) wishes you framed your reporting in more of a business context, especially if they don’t have an IT or security background.

    In this webinar, we’ll be chatting with Ed Amoroso, former CISO for AT&T and founder and CEO of TAG Cyber. Ed’s extensive experience interacting with board members and recent publications on the topic will serve as the backdrop for walking through a few of his favorite questions that board members should be asking you about cybersecurity risk, and how you can go about providing answers that matter.
  • Getting Off the Threat & Vulnerability Management Treadmill
    Getting Off the Threat & Vulnerability Management Treadmill
    John Dasher Recorded: Nov 9 2018 22 mins
    Organizations “know” what they need to do. They scan, find piles of vulnerabilities, then rush to patch. But low and behold, they aren't sure that their patching efforts are improving their security posture, and with patch tickets accumulating at an alarming rate, they fall further and further behind. Why? What’s wrong?

    Unfortunately, Security and IT teams often find themselves in this unenviable position. The good news is that there’s a movement afoot that can rescue them. In this session you will learn how a risk-based approach to vulnerability management reduces vulnerability fatigue while improving workflow efficiency and personnel productivity in a truly measurable way.
  • Taming the Security Data Tsunami
    Taming the Security Data Tsunami
    Kristy Zyburo Recorded: Oct 26 2018 20 mins
    Today's security and IT teams are suffocating under an avalanche of security data. The sheer volume of the data, along with its multiple origins in siloed systems all but guarantee that it lacks context, meaning, and is difficult to make actionable.

    Learn how RiskSense harnesses the vulnerability data you have, adds context with threat intel, and incorporates business asset criticality as well as pen test findings to tame your security data tsunami.
  • Predictive Intelligence: Vulnerability Weaponization and Exploitation
    Predictive Intelligence: Vulnerability Weaponization and Exploitation
    Dr. Srinivas Mukkamala, Co-Founder and CEO of RiskSense Recorded: Sep 18 2018 43 mins
    The key to effectively reducing the attack surface is remediating exactly the right vulnerability or weakness that will be used by the adversary. While the idea is simple enough, executing on it has proven to be one of the largest challenges facing enterprises.

    The impact of this lack of visibility into the attacker journey is that vulnerability remediation strategies are likely unaligned, and therefore ineffective.

    There’s no data that supports the hypothesis to align early weaponization to breaches, which makes it hard to know when it is the ideal time to fix the vulnerability or weakness.

    Vulnerability prioritization and weaponization prediction must be fueled with data and domain expertise. Fixing thousands of vulnerabilities is not enough. We need to make sure we are fixing the right vulnerabilities, at the right time. In this talk we will cover:

    • Quantitative and Qualitative: details on RiskSense threat dataset and data sources that allows us to uniquely separate “signal” from “noise”.
    • Unprecedented visibility into attack validation data: from over 10+ years, this enables us to reconstruct the complete attacker journey and understand time-based patterns.
    • Insights into Vulnerability life cycle: weaponization and breach latency. This will allow us to determine no engagement vs. engagement from a remediation standpoint.
    • Attributes and variables: used for Machine Learning to predict Weaponization and Breach Susceptibility

    This presentation will be given by Dr. Srinivas Mukkamala, Co-Founder and CEO of RiskSense. RiskSense’s team was the first to predict WannaCry and has since released Koadic Post Exploitation Command & Control.
  • Top 10 Tips for Selecting a Threat and Vulnerability Management Solution
    Top 10 Tips for Selecting a Threat and Vulnerability Management Solution
    David Monahan (EMA) and John Dasher (RiskSense) Recorded: Aug 31 2018 61 mins
    With all the news about cyberattacks, it’s easy to feel like there aren’t enough people to cover all of the security bases. This means proper identification and management of threats and vulnerabilities is an absolute necessity to keep risk at its lowest levels.

    Join David Monahan, managing research director at leading IT analyst firm Enterprise Management Associates (EMA), and John Dasher of RiskSense, to learn why a threat and vulnerability management solution is a must have for your security portfolio.

    During this webinar you will learn:
    - How threat and vulnerability management solutions with prioritization improve security operations efficiency
    - How to use a threat and vulnerability management and prioritization solution to garner greater support for security and improve security operations and business management alignment
    - The top 10 criteria you need to consider when selecting a solution
    - How to maintain a risk-based security management program
  • Piecing Together IoT Risk from Flexible & Fractured Design Components
    Piecing Together IoT Risk from Flexible & Fractured Design Components
    Dr. Srinivas Mukkamala, CEO and Co-Founder, at RiskSense Recorded: Jun 12 2018 47 mins
    How do you handle risk assessment and vulnerability management for IoT when multiple security patterns need assessment? There is a new frontier for security that requires breaking conventional control and mitigation assumptions before a Frankenmonster rises from your IoT project.

    In this webinar, RiskSense CEO and Co-Founder Dr. Srinivas Mukkamala will discuss:

    - The assessment of chaining together multiple vulnerabilities and the potential exploit path through flexible and fractured design components for IoT.
    - Consideration for dynamically changing devices and utilization models that break traditional security and risk assessments.
    - IoT risk and the growing need to incorporate threat data, unintentional device use-cases, and the mechanisms to keep constant control of the devices themselves.
  • Do More to Safeguard Your Election Systems
    Do More to Safeguard Your Election Systems
    Srinivas Mukkamala and Chris Coyle Recorded: May 16 2018 30 mins
    Last month, Congress authorized $380 million in federal funding for states to improve and enhance election security. Do you have a plan to take full advantage your allotted funding?

    While the priorities for states differ, many experts are recommending careful consideration of cybersecurity improvements as your top priority.

    RiskSense would like to invite you to join us this webinar titled "Do More to Safeguard Your Election Systems". In this presentation we will discuss how to improve the security of your election systems, voter registration, and vote tabulation systems. We will suggest industry best practices to establish a more secure, scalable, and more sustainable approach to improving your state’s election security.
  • No Safe Harbors: Charting a Smarter Course
    No Safe Harbors: Charting a Smarter Course
    Mark DuPont, Alan Rudd, Sage Wagner Recorded: Mar 21 2018 62 mins
    Is the status quo really an option? What do maritime stakeholders (shipping companies, terminal operators, cruise lines, port authorities) need to do to prevent, prepare for and respond to the next attack on the horizon?

    To coin an old adage that has been used in many sports discussions and is also known as a principal of war, "The best defense is a good offense." This webinar will demonstrate tools and resources that maritime stakeholders can utilize to be Proactive and control their cyber risk.

    This webinar, focused on maritime operations, will provide unique insights of the recent cyber events and emerging threats. We will also:
    • Discuss nationally-recognized solutions and management approaches that can lead your organization to a proactive and predictive posture with a Cyber Risk Management strategy,
    • Include experts from a “bench” of cybersecurity experts that are recognized internationally for their knowledge and skills,
    • Demonstrate our Cyber Risk Management platform that can give you the “Situational Analysis and Awareness” that you need in today’s rapidly expanding and complex environment, and
    • Learn how we can provide you the same resources that the Department of Defense, NASA, and other federal agencies use and trust, with RiskSense.

    Attending this webinar will provide you and your staff valuable insights and offer a course of action that can be a game changer for all maritime organizations
  • Vulnerability Management in the Age of the Incident
    Vulnerability Management in the Age of the Incident
    Danny Quist, RiskSense CTO Recorded: Feb 5 2018 27 mins
    This RiskSense Best Practices Webinar will dive into how organizations can reduce incident response costs with proactive vulnerability management. Security patches are an expensive undertaking for an organization, however the positive impacts outweigh the negative. This webinar will provide a framework for you to help make the case for fast patching, remediation, and improved security. We will provide tools, techniques, and processes to reduce the number of security incidents at your organization, and save a substantial amount of money.
  • Data-Driven Prioritization:The Role of AI in Vulnerability and Threat Management
    Data-Driven Prioritization:The Role of AI in Vulnerability and Threat Management
    Dr. Srinivas Mukkamala, Co-founder and CEO, RiskSense Recorded: Jan 16 2018 48 mins
    The conventional approach to vulnerability and threat management is rapidly changing to a data-driven strategy in which remediation efforts are targeted to individual vulnerabilities based on their exploitability, exploit pulse, and environment.

    This approach will revolutionize vulnerability management – especially in the remediation of most common vulnerabilities that are frequently exploited – but its success depends on the availability of reliable data, which can have many biases and uncertainties.

    Weaponization analysis can be used for early warning, diagnosis, remediation prioritization, and prescriptive information on what to fix and how to fix vulnerabilities that matter.

    While many vulnerabilities are identified, a few prove to be successful for attackers. In this talk we will present how AI will play a key role to ensure remediation recommendations that are targeted for vulnerabilities that is exploitable.

Embed in website or blog