CEH Exam Prep Clinic (2 of 2)

Manage webcast
Leo Dregier | Principal of The Security Matrix LLC
If you have been studying for the Certified Ethical Hacking (CEH) certification exam, you'll want to attend a two-part online CEH Exam Prep Clinic, taught by a leading CEH instructor. You will discover strategies to increase your chances of success! You will learn techniques to help you quickly assess which questions to address first, which to delay answering, and how to eliminate the less likely answers.
Jun 27 2012
93 mins
CEH Exam Prep Clinic (2 of 2)
More from this community:

IT Security

  • Live and recorded (5966)
  • Upcoming (119)
  • Date
  • Rating
  • Views
  • Watch this 5 minute video to learn about credential stuffing attack and how adversaries use stolen usernames and passwords to hijack accounts.
  • With the proliferation of mobile devices and emergence of free file sharing services, information workers expect and demand fast, responsive services. If enterprise software limitations restrict productivity, end users will circumvent the policies set by their organization in order to get their job done.
    In this 60-minute webinar, Ron Charity, Business Development Manager at AvePoint and Miguel Caron, Technical Solutions Professional at AvePoint, will discuss how AvePoint Perimeter can make your on-premises SharePoint environment more powerful than Dropbox, Google Drive, and even Office 365 by enabling two-way collaboration and external sharing without ever having to leave SharePoint.
    In this webinar, you’ll learn how you can:

    • Overcome native SharePoint limitations and productivity challenges
    • Collaborate with external users just like how you work internally
    • Stop your end users from using unsecure file sharing services like Dropbox and Google Drive
    • Increase collaboration with two-way editing and external sharing
    • Enhance the value of on-premises SharePoint and drive adoption
  • NTT Com Security would like to invite you to join us and our partner LogRhythm on July 28th, 2015 from 2:00-3:00 p.m. EST for a webinar addressing the current and ongoing cyber-threat to Financial and Insurance institutions.
  • Organizations have long struggled to find objective ways to measure and compare performance, leaving many executives to trust metrics and data points that may not be painting the clearest picture of security posture.

    To highlight this issue, BitSight recently surveyed over 300 IT executives in 4 major industries to assess their confidence in their security performance. We then compared responses to our own security ratings data, which measures effectiveness across key performance areas including security events, configurations, and user behaviors.

    In this webinar, BitSight EVP of Sales & Marketing Tom Turner takes a deeper look into these fidings and discusses the business implications of optimism bias.

    Download this webinar to learn:

    How security performance varies among Finance, Healthcare, Retail, and Energy/Utilities
    Whether optimism bias exists in these industries and how it may be affecting overall security performance
    Why continuous performance monitoring should be a critical component of enterprise risk management and how leading organizations are using BitSight Security Ratings to manage their cyber risk
  • Organizations have long struggled to find objective ways to measure and compare performance, leaving many executives to trust metrics and data points that may not be painting the clearest picture of security posture.

    To highlight this issue, BitSight recently surveyed over 300 IT executives in 4 major industries to assess their confidence in their security performance. We then compared responses to our own security ratings data, which measures effectiveness across key performance areas including security events, configurations, and user behaviors.

    In this webinar, BitSight EVP of Sales & Marketing Tom Turner takes a deeper look into these fidings and discusses the business implications of optimism bias.

    Download this webinar to learn:

    How security performance varies among Finance, Healthcare, Retail, and Energy/Utilities
    Whether optimism bias exists in these industries and how it may be affecting overall security performance
    Why continuous performance monitoring should be a critical component of enterprise risk management and how leading organizations are using BitSight Security Ratings to manage their cyber risk
  • Organizations have long struggled to find objective ways to measure and compare performance, leaving many executives to trust metrics and data points that may not be painting the clearest picture of security posture.

    To highlight this issue, BitSight recently surveyed over 300 IT executives in 4 major industries to assess their confidence in their security performance. We then compared responses to our own security ratings data, which measures effectiveness across key performance areas including security events, configurations, and user behaviors.

    In this webinar, BitSight EVP of Sales & Marketing Tom Turner takes a deeper look into these fidings and discusses the business implications of optimism bias.

    Download this webinar to learn:

    How security performance varies among Finance, Healthcare, Retail, and Energy/Utilities
    Whether optimism bias exists in these industries and how it may be affecting overall security performance
    Why continuous performance monitoring should be a critical component of enterprise risk management and how leading organizations are using BitSight Security Ratings to manage their cyber risk
  • Organizations have long struggled to find objective ways to measure and compare performance, leaving many executives to trust metrics and data points that may not be painting the clearest picture of security posture.

    To highlight this issue, BitSight recently surveyed over 300 IT executives in 4 major industries to assess their confidence in their security performance. We then compared responses to our own security ratings data, which measures effectiveness across key performance areas including security events, configurations, and user behaviors.

    In this webinar, BitSight EVP of Sales & Marketing Tom Turner takes a deeper look into these fidings and discusses the business implications of optimism bias.

    Download this webinar to learn:

    How security performance varies among Finance, Healthcare, Retail, and Energy/Utilities
    Whether optimism bias exists in these industries and how it may be affecting overall security performance
    Why continuous performance monitoring should be a critical component of enterprise risk management and how leading organizations are using BitSight Security Ratings to manage their cyber risk
  • Organizations have long struggled to find objective ways to measure and compare performance, leaving many executives to trust metrics and data points that may not be painting the clearest picture of security posture.

    To highlight this issue, BitSight recently surveyed over 300 IT executives in 4 major industries to assess their confidence in their security performance. We then compared responses to our own security ratings data, which measures effectiveness across key performance areas including security events, configurations, and user behaviors.

    In this webinar, BitSight EVP of Sales & Marketing Tom Turner takes a deeper look into these fidings and discusses the business implications of optimism bias.

    Download this webinar to learn:

    How security performance varies among Finance, Healthcare, Retail, and Energy/Utilities
    Whether optimism bias exists in these industries and how it may be affecting overall security performance
    Why continuous performance monitoring should be a critical component of enterprise risk management and how leading organizations are using BitSight Security Ratings to manage their cyber risk
  • No complexo ambiente de negócios de hoje, a sua organização se depara com dificuldades de segurança cada vez maiores e exigências legais que fazem com que seja essencial controlar e monitorar seus usuários privilegiados.
    O gerenciamento senhas de contas privilegiadas é um ponto de partida para proteger o seu ambiente de TI, mas ainda há muito a ser feito.
    Nesta sessão, descubra como o CA Privileged Identity Manager pode ajudar sua organização a gerenciar identidades privilegiadas (PIM) e controlar de maneira completa seus usuários privilegiados a fim de reduzir o risco de falhas de conformidade ou de violações de segurança com alto custo.
  • By now you've probably heard about new ransomware threats like CryptoWall, which encrypts your data and demands payment to unlock it. These threats are delivered via malicious email attachments or websites, and once they execute and connect to an external command and control server, they start to encrypt files throughout your network. Therefore, spotting infections quickly can limit the damage.

    AlienVault USM uses several built-in security controls working in unison to detect ransomware like CryptoWall, usually as soon as it attempts to connect to the hackers’ command and control server. How does it all work? Join us for a live demo that will show how AlienVault USM detects these threats quickly, saving you valuable clean up time by limiting the damage from the attack.
    You'll learn:
    How AlienVault USM detects communications with the command and control server
    How the behavior is correlated with other signs of trouble to alert you of the threat
    Immediate steps you need to take to stop the threat and limit the damage
  • Channel
  • Channel profile
  • Uncovering Security Performance Myths & Realities Recorded: Jul 28 2015 62 mins
    Tom Turner, EVP, BitSight
    Organizations have long struggled to find objective ways to measure and compare performance, leaving many executives to trust metrics and data points that may not be painting the clearest picture of security posture.

    To highlight this issue, BitSight recently surveyed over 300 IT executives in 4 major industries to assess their confidence in their security performance. We then compared responses to our own security ratings data, which measures effectiveness across key performance areas including security events, configurations, and user behaviors.

    In this webinar, BitSight EVP of Sales & Marketing Tom Turner takes a deeper look into these fidings and discusses the business implications of optimism bias.

    Download this webinar to learn:

    How security performance varies among Finance, Healthcare, Retail, and Energy/Utilities
    Whether optimism bias exists in these industries and how it may be affecting overall security performance
    Why continuous performance monitoring should be a critical component of enterprise risk management and how leading organizations are using BitSight Security Ratings to manage their cyber risk
  • Detect Ransomware Before Its Too Late with AlienVault USM Recorded: Jul 28 2015 58 mins
    Mark Allen, Technical Sales Engineer
    By now you've probably heard about new ransomware threats like CryptoWall, which encrypts your data and demands payment to unlock it. These threats are delivered via malicious email attachments or websites, and once they execute and connect to an external command and control server, they start to encrypt files throughout your network. Therefore, spotting infections quickly can limit the damage.

    AlienVault USM uses several built-in security controls working in unison to detect ransomware like CryptoWall, usually as soon as it attempts to connect to the hackers’ command and control server. How does it all work? Join us for a live demo that will show how AlienVault USM detects these threats quickly, saving you valuable clean up time by limiting the damage from the attack.
    You'll learn:
    How AlienVault USM detects communications with the command and control server
    How the behavior is correlated with other signs of trouble to alert you of the threat
    Immediate steps you need to take to stop the threat and limit the damage
  • The Cybersecurity Landscape Recorded: Jul 28 2015 15 mins
    Lawrence Orans, Research Vice President, Gartner
    Cybersecurity is a top concern for IT professionals. Gartner expert Lawrence Orans leads an important discussion of the current cybersecurity landscape. He analyzes recent cybersecurity events, emerging threats, and how new technologies are affecting the security calculus.
  • Lessons Learned From the Biggest Security Breaches Recorded: Jul 28 2015 58 mins
    Michael Sutton, VP of Security Research at Zscaler,John Kindervag, VP and Principal Analyst at Forrester Research
    The risk of experiencing a security breach is now higher than ever. Over the last 12 months, some of the highest profile companies have been compromised including Anthem, Sony, Home Depot, JPMorgan Chase, Target and more.

    2015 is turning out to be no different. Clearly no organization is immune to a breach and human error continues to play a primary role.

    This webcast will address:
    - Key trends and traits common to high profile security breaches
    - Critical takeaways and lessons learned for a comprehensive security strategy
    - Best practices to reduce the risk of a security breach
  • Insider threats - How to fight vulnerability from within the company Recorded: Jul 28 2015 34 mins
    Niels von der Hude , Director of Market Development, Beta Systems Software
    Recent studies have shown that 50-70% of all attacks on information security are coming from within the organization, and often the length of time that the breach existed is unknown. There are many issues involved in closing the gaps that cause such insider incidents and strengthen the protection of data. Using the "need to know" principal, organizations can limit who has access to data. Controls that adjust given access rights to actual needs exist and should be utilized. This session will focus on how to adjust data access rights, implementing the "least privilege principal", and the use of detective and proactive risk-oriented controls.
  • Security Lessons Learned from Target, Niemen Marcus, Sony and Other Breaches Recorded: Jul 28 2015 98 mins
    Randy Franklin Smith: Windows Security Subject Matter Expert; Erick Ingleby: Product Manager, LogRhythm, Inc.
    With major data breaches on the rise, it’s hard to deny that they've become a common occurrence in the security threat landscape. Large companies such as Target, Nieman Marcus and Sony (among others), have suffered major data breaches in the past year.

    As security professional, it is important to understand why and how these organizations were breached so you can learn from what was done right, what worked and what didn’t.

    In this webinar, Randy Franklin Smith, Windows Security Subject Matter Expert, and Erik Ingleby, Product Manager at LogRhythm, will discuss lessons learned from recent breaches. By analyzing the available information about recent data breach incidents from the perspective of detection, Smith and Ingleby have assembled a list of security monitoring lessons and ideas.

    You’ll get tips on how to eliminate double false positives, a number of generalized monitoring scenarios and guidelines on how to monitor for new executables running for the first time on your environment.
  • Don't get hooked: How to protect against SpearPhishing Recorded: Jul 28 2015 41 mins
    Michelle Couture, Product Marketing Manager, hosted Exchange
    Fully secure your network by learning how to protect against cybersecurity’s weakest link: humans. 95% of all attacks on networks were the result of “spear phishing”: attempts to steal data by masquerading as a trustworthy entity. They send an email from the “CEO” or “building manager" but once you click… it’s GAME OVER!
    We will cover:
    •How a phishing attack happens
    •Stories from real life attacks and the lessons learned from them
    •Steps you can take to protect your company
  • Planning Assumptions: What are they and why do we need them? Recorded: Jul 23 2015 19 mins
    Molly Latham, Consultant
    Realistic planning assumptions are an important element in a business continuity program. Why? They enable the planning team to identify the parameters they’re expecting to encounter following a disaster. They aren’t “pie-in-the-sky” wish lists but rather they’re the planner’s best guess about the conditions that will exist. Smart assumptions are usually unfavorable conditions, such as the lack of electric power or the unavailability of key people. Not-so-smart planning assumptions rely on best-case conditions that are probably not realistic.
  • Transforming email security: Building a strategic plan for CISOs Recorded: Jul 23 2015 58 mins
    Jim Routh, CISO, Aetna and Chris McClean, VP of Research, Forrester
    The role of the CISO is evolving - and fast. CISOs today must find innovative ways to align with the business and strategize security as a top business asset -- and those that ascend in their role will have the opportunity to play a bigger, more influential role in the years to come. In this webinar hosted by Agari, you will hear Jim Routh, Aetna CISO share real world insights into specific challenges and solutions to approach today's evolving email threats as well as key 2018 CISO research from Chris McClean, Forrester VP of Research.
  • Be Fast, but be Secure—a New Approach to Application Security Recorded: Jul 23 2015 53 mins
    Gerben Verstraete, Cindy Blake, HP
    Cloud computing and DevOps are letting enterprises deploy new software faster than ever. But with development organizations focused on speed, are you achieving time to market at the expense of cyber security?

    Run time application self-protection (RASP) is a new approach to application security that enables production applications to spot and block cyber attacks from within the application itself—without recompiling and without sacrificing performance. Join the webinar to learn:

    How to enable new and legacy applications to protect themselves in as little as 10 minutes
    The four situations where RASP is the best solution
    Why Gartner says RASP is a must-have technology for bi-modal IT
  • System Dynamics of the 0day Market Recorded: Jul 23 2015 31 mins
    Katie Moussouris, Chief Policy Officer, HackerOne
    When a popular product is launched, a high-stakes race begins between the offense and defense markets to find software vulnerabilities. More and more organizations are seeing that incenting security research with programs like bug bounties are an effective way to find vulnerabilities. Katie Moussouris, Chief Policy Officer of HackerOne, will reveal what the latest research shows and what it means for companies today.

    About the presenter:

    Katie Moussouris is the Chief Policy Officer for HackerOne, a platform provider for coordinated vulnerability response & structured bounty programs. She is a noted authority on vuln disclosure & advises lawmakers, customers, & researchers to legitimize & promote security research & help make the internet safer for everyone. Katie's earlier Microsoft work encompassed industry leading initiatives such as Microsoft's bounty programs & Microsoft Vulnerability Research. She is also a subject matter expert for the US National Body of the International Standards Organization (ISO) in vuln disclosure (29147), vuln handling processes (30111), and secure development (27034). Katie is a visiting scholar with MIT Sloan School, doing research on the vulnerability economy and exploit market. She is a New America Foundation Fellow. Katie is an ex-hacker, ex-Linux developer, and persistent disruptor. Follow her and HackerOne on Twitter http://twitter.com/k8em0 and http://twitter.com/hacker0x01
  • Stopping Zero-day Threats Recorded: Jul 23 2015 56 mins
    Dan Maier, Senior Director of Product Marketing, Zscaler Inc.
    If Anthem, Sony, Home Depot, Target and Neiman Marcus can fall victim to security breaches, so can you. The bad news is - no company is immune, no matter how big or small you are. Without a proper understanding of zero-day threats, companies have no way of exposing the gaps of overhyped security solutions. These threats are very sophisticated and often leveraging previously unknown attack techniques and vulnerabilities.

    Join us for a compelling webcast that will highlight critical insights combating zero-day threats - including the ability to:

    • Track employee traffic at all times, in real time, irrespective of whether they are inside or outside the corporate network
    • Derive intelligent insights and meaningful data for fast corrective action
    • Avoid a strategy based on "alerting" you about infections - without any guarantees you will notice them
    • Implement a comprehensive approach to stopping zero-day threats - based on protection, (inspecting every byte of traffic and automatically blocking threats), detection and remediation
  • 2015 Stats Report Explained, Where Flow Charts Don't Go Recorded: Jul 22 2015 42 mins
    Jeremiah Grossman, Founder WhiteHat Security
    In this insightful and data-rich webinar Jeremiah Grossman, founder of WhiteHat Security, presents findings from WhiteHat's 2015 Website Security Statistics Report.

    The report, generated by examining vulns in more than 30,000 websites under WhiteHat’s Sentinel management, provides unique perspectives on the state of website security. Data by industry will be presented and accompanied by expert analysis and recommendations.

    Why Attend:

    -Discover the most prevalent vulnerabilities

    -Learn how many vulnerabilities are typically remediated and the average time to resolve

    -Hear why the best approach is to identify specific security metrics to improve upon

    -Take away valuable recommendations for measurable improvement within your application security programs
  • The Hacking Team Hack: Lessons Learned for Enterprise Security Recorded: Jul 22 2015 57 mins
    Stephen Cobb, Sr. Security Researcher
    Your company can learn valuable lessons about risk strategy and incident response from what happened to Hacking Team, a firm that supplies surveillance tools to government agencies. Widely accused of helping governments spy on dissidents and journalists, Hacking Team found itself hacked with embarrassing, possibly damaging results. ESET senior security researcher Stephen Cobb explains the missteps made and the lessons to be learned during this webinar.

    Key takeaways:
    •How Hacking Team’s mistakes mirrored those made by Sony
    •How employees’ weak passwords helped facilitate the breach
    •How transparency would have helped Hacking Team’s credibility
    •Why every company must review what might be exposed in a breach
  • 10 Audit Trail Tips for Better Data Security Recorded: Jul 22 2015 39 mins
    Mike Sanders, Principal SE and Team Lead, Imperva
    Database servers are the primary targets of most data security breaches. Understanding how to effectively monitor databases can prevent data loss and significantly reduce the time to discover the risk.

    Attend this webinar and learn how to:
    - Detect and block active attacks
    - Discover sensitive data, risks, and vulnerabilities
    - Automate risk remediation
    - Demonstrate consistent and complete compliance
  • Neverquest – A Case Study Recorded: Jul 22 2015 55 mins
    Sam Curry CTO& CSO, Arbor Networks and Kirk Soluk, ASERT Threat Intelligence and Response Team
    Let's talk about Neverquest - the global malware campaign targeting businesses around the world!

    Join Sam Curry, Arbor's Chief Technology & Security Officer, and Kirk Soluk of Arbor’s Security Engineering & Response Team, for an insightful discussion on the economics of cybercrime, a detailed analysis of the Neverquest malware family, as well as insight into Arbor’s reversing techniques that unravel and monitor this stealthy and rapidly evolving malware.

    Join this webcast to learn:

    -What motivates the attackers?
    - Why Neverquest is such a potent and persistent malware family
    -How ASERT'S research continues serves as a leading source of information on emerging threats, malware families and global cyber attacks
  • Legal Requirements in Third Party Cyber Risk Management Recorded: Jul 22 2015 49 mins
    Jake Olcott, VP of Business Development, BitSight
    In recent years, third party cyber risk management has become increasingly challenging as businesses become interconnected. Major breaches caused by insecure third parties have raised public awareness of the problem. New legal requirements are shaping the way that organizations build and monitor their third party cyber risk management programs.
    Join Jake Olcott, VP of Business Development at BitSight, Lisa Sotto, Partner at Hunton & Williams LLP, and Robert Metzger, Shareholder at Rogers Joseph O'Donnell as they discuss some of the legal precedents and requirements in this emerging field.

    Attendees will learn about:

    - Existing and evolving legal obligations to manage the cyber risk of third parties and vendors in industries like retail, healthcare, defense, and finance.
    - Issues that lawyers face in helping organizations manage third party cyber risk, including negotiating contract requirements for breach notification, assessing written questionnaires, and performing on-site vendor risk assessments.
    - Emerging "standards of care" for third party cyber risk management.
  • Creating a Culture of Continuity: Business Continuity Planning & Risk Management Recorded: Jul 22 2015 49 mins
    Eric Kretz, Director, Continuity of Operations (COOP) Division, National Continuity Programs (NCP)
    Continuity planning is simply the good business practice of ensuring the execution of essential functions through all circumstances, and it is a fundamental responsibility of public institutions and private entities responsible to their stakeholders. Continuity planning should not be a separate and compartmentalized function performed by independent cells of a few planners in each organization. Organizations must fully integrate continuity into all aspects of an organization’s daily operations, thus creating a “culture of continuity.”

    The COOP presentation will:

    1. Provide an understanding of Continuity Planning and Risk Management,
    2. Explain the importance of a viable Continuity capability,
    3. Emphasize the need for a viable Continuity capability in all organizations that enable organizations to continue their essential functions across a broad spectrum of emergencies.

    In addition to providing an overview of Continuity of Operations, the COOP presentation will also:

     Educate Federal, State, territorial, tribal, local government jurisdictions, private sector organizations, and emergency management practitioners on the importance of integrating Continuity into daily operations, functions, plans, and mission areas.
     Emphasize the Federal Government’s Policy requiring Federal agencies to be prepared for unpredictable threats such as earthquakes, accidents, sabotage, and terrorism. 
     Discuss the importance for State, territorial, tribal, local government jurisdictions, private sector organizations to be prepared for unpredictable disruption of business operations. 
     Provide States, territories, tribes, local government jurisdictions, private sector organizations, and businesses with assistance, guidance, knowledge, networking, resources, and tools needed to succeed.
  • Defining The Role of Cloud in Your Data Protection Business Continuity Plan Recorded: Jul 21 2015 58 mins
    Jon Toigo
    Join us and business continuity expert, Jon Toigo for a practical discussion on effectively leveraging cloud services for your data protection and backup strategies. Toigo, the prolific author of thousands of articles and 17 tech-related books, emphasizes local storage of critical data combined with a low cost, off-site storage option that includes cloud storage.

    You’ll also see ways to easily connect your data protection efforts to leading cloud services, such as Amazon Web Services’ Storage Gateway and low-cost S3 services.
  • Why Application Whitelisting is Essential for Advanced Threat Defense Recorded: Jul 21 2015 47 mins
    Guest Speaker: Chris Sherman, Analyst, Forrester Research
    According to Forrester, with the right approach and the right technology, application whitelisting can be an essential component for defending against evolving threats, particularly zero-day attacks that endpoint anti-malware products frequently fail to detect.

    In this webinar Chris Sherman, analyst at Forrester Research will examine:
    - The threat landscape and technology adoption trends
    - The benefits of whitelisting and how the technology has evolved
    - The challenges of application whitelisting and how to overcome them
    - The advantages of using application whitelisting in fixed function environments such as retail POS or Industrial Controls Systems
    - How to integrate application whitelisting into your overall endpoint security strategyWh

    John Fox, Director of Engineering at Digital Guardian will briefly explain:
    - How Digital Guardian application whitelisting is designed to address the key problems traditionally associated with application whitelisting
Your Resource for Information Security Trends & Education
With over 200,000 members, the Information Security Community is the largest community of infosec professionals in the industry. Let's build a network that connects people, opportunities, and ideas. If you are involved in purchasing, selling, designing, marketing ... or using information security solutions - this group is for you. Covered topics include compliance, encryption, anti-virus, malware, cloud security, data protection, hacking, network security, virtualization, and more.

Embed in website or blog

Successfully added emails: 0
Remove all
  • Title: CEH Exam Prep Clinic (2 of 2)
  • Live at: Jun 27 2012 5:00 pm
  • Presented by: Leo Dregier | Principal of The Security Matrix LLC
  • From:
Your email has been sent.
or close
You must be logged in to email this