- BrightTALK at CRESTCON & IISP Congress -
BrightTALK caught up with Obrela Security Industry's George Patsis for an in-depth conversation on the current state of information security, today's threatscape and a discussion on the cyber industry.
Topics up for discussion:
- The elements and process to run a really comprehensive pentest
- How banks are still juicy targets for cyber criminals and what they can be doing to ensure they're fully protected.
- How to get the maximum results from a security budget.
- The positive steps that George sees in the cyber security industry
Incident rate. Mean time to discovery. Patch management coverage. These are terms that infosecurity professionals use on a daily basis, but have little to no meaning to those who measure performance in terms of dollars and cents. It's important for infosecurity practitioners to be able to communicate effectively with other departments, particularly the C-Suite and board level. CyVaR allows for the ability to quantify an organization's financial risk exposure to cyber attacks. Join PivotPoint Risk Analytics and (ISC)2 on July 12, 2016 at 1:00PM Eastern for a discussion and demonstration of the CyVaR service and how to reduce financial risk, as well as build a security budget based on ROI.Read more >
The Indian Government presented its 2016-17 budget on 29 February, widely expected to be a blueprint to power India's economic growth for the next three years.
Join Jonathan Schiessl and SImon Finch to hear their assessment of the outcomes of India's Union Budget and the implications for India and for investors.
The team explain:
•the main budget announcements and policy measures
•the potential impact across sectors
•what the budget means for foreign investors
Even the most security-minded organisation has limited budget and staff. How to decide where to spend these resources to provide maximum benefit to your organisation?
In this webinar Irene Michlin will discuss how your organisation can establish a repeatable process for decision making in such areas as:
•What and when to test
•Which threats urgently require mitigation
•What security training your staff needs
When it comes to securing an organization’s network, most stakeholders understand that cyber security education and training are not a luxury – they're a necessity. In this webinar we will discuss how best to spend those precious training dollars to get a solid return on investment.Read more >
Planning your 2017 IT security budget? Many organizations allocate a fixed percentage of their annual budget to exploring new security tools and technologies – often with mixed results. Indeed, the state of security is such that the incremental protection value received for adding “yet another” layer of security technology is now very small. As an alternative, this webinar discusses the advantages and value of adding a Cyber SOC-as-a-Service to your arsenal as the perfect complement to your existing network and application security solutions. Attendees will learn how a Cyber SOC can be used to detect advanced threats that evade even the most comprehensive perimeter defenses. This session includes a profile of an attack that was only discovered using the capabilities delivered by a Cyber SOC.Read more >
The cyber threat landscape is dramatically evolving, but one thing is certain – attackers are becoming more and more sophisticated, and most organizations are struggling to keep pace. In a recent IANS and FireEye survey, security practitioners and decision makers share their perspective on the type of attackers they’re dealing with, how they’re responding to the growing threat, and the effect on organizations that have experienced a breach.
Join FireEye’s Chief Security Strategist (Forensics Group) Josh Goldfarb, and Dave Shackleford, IANS Lead Faculty, as they discuss:
•The kinds of products and controls most organizations are implementing
•What new technologies security teams are focusing on, and
•How security budgets are changing to align with security’s growing importance to the enterprise
This is one hour you will not want to miss!
As schemes de-risk and move away from equities we believe you should be considering Multi-Asset Credit. At our forthcoming webinar James Mitchell, Senior Portfolio Manager will discuss:
· Why credit risk should be a larger component of your overall risk budget
· How to bring a true multi-asset approach to credit
· How best to access this premia using best of breed managers
· What areas of the market offer best value
Excerpts from the US State of Cybercrime Survey, conducted by CSO, US Secret Service, Carnegie Mellon University CERT, and ForcepointRead more >
- InnoSec is the winner of the EU commission Horizon 2020 grant based on its innovation in GDPR and cyber risk -
GDPR is an urgent issue that has companies scrambling to be compliant by May of 2018. Any organization that processes EU citizen data is in scope and the penalties are severe.
Alignment with the requirements can reduce the chances of triggering a Data Protection Authority (DPA) to investigate a company’s privacy practices after the GDPR takes effect in May 2018. DPAs can impose a fine on companies of up to 4% of annual global revenues for egregious violations of the GDPR. Member states can also add to these fines. The Netherlands, for instance, has more than doubled its own fining capacity to 10% of annual revenues. European privacy advocates are pressuring DPAs to fully exercise these new powers after May 2018.To manage this risk, multinationals should have a means to demonstrate alignment with the GDPR requirements and communication of this program with DPAs that have jurisdiction over their major European operations.
InnoSec’s GDPR solution provides privacy impact and risk assessments which measure the confidentiality and integrity of the system and the risk associated to it meeting articles 1,2, 5, 32, 35 and 36. Additionally, we provide a readiness gap analysis for managing, planning and budgeting for GDPR.
Most e-commerce, educational and multi-national organizations process EU citizen data and are in scope for GDPR. Moreover, most organizations are not ready according to Gartner and his means the race to the finish line requires as much automation as you can afford. InnoSec provides a means for companies to save money and time with their GDPR assessment and gap analysis offering.. Our GDPR offering automates the assessment process and provides a gap analysis readiness feature, that also ensures that organizations can plan, budget and manage their GDPR program.
Come to this webinar to see how it is done.
Every organisation has invested recently in their assurance functions – budgets in compliance have grown by 10%, InfoSec by 17%, and ERM by 22% - but significant failures and incidents continue to occur. In addition, operational management regularly complain of assurance fatigue and ExCo’s increasingly demand a holistic approach to risk management or a “single view of the truth”.
Ian Beale, executive advisor at CEB, has more than 20 years' experience in the field of audit and risk. He relishes variety and new intellectual challenges, which proves useful in his role advising companies on critical and emerging risk and audit issues. On a daily basis, Ian works with global companies to identify risk priorities and areas of focus in a world that is rapidly changing.
In place of a threatened radical overhaul to pensions tax relief, Budget 2016 introduced numerous smaller measures impacting pension savings, including; the Lifetime ISA, changes to Stamp Duty Land Tax on commercial property and various improvements related to taking benefits, all of which will be discussed in the webinar. On top of these, there are the new forms of protection and tapering of the annual allowance.Read more >
This webcast will look at health care security from the top down, focusing on what the survey tells management in terms of priorities, breach management, controls and budgets. Attendees will learn about:
- Supporting operational priorities and business drivers (including mobile and cloud computing priorities)
- Reducing risk while supporting new business drivers
- Educating leadership and getting them on your team
- Efficacy of controls, desired improvements and wish lists
- Budgets and best practices