FireEye Briefing Virtuel - Sessions de l'après-midi
LE CYBER-RISQUE ET L'EFFICIENCE DE LA SECURITÉ INFORMATIQUE À L'HEURE DU DIGITAL
LA PERSPECTIVE DE MANDIANT SUR LES ACTEURS MAJEURS EN EUROPE
15:00 - 15:40 (CET) - 14:00 - 14:40 (BST)
Adrien Bataille, Senior Consultant, Mandiant Consulting
Dans cette session, découvrez le retour d’expérience de l’un de nos consultants Mandiant, présent en première ligne chez le client pour la gestion de problèmes techniques ou encore la gestion de crise. FireEye enquête sur les brèches informatiques les plus élaborées et les plus complexes et partage ces investigations sur les groupes d’attaque, leurs techniques et outillages toujours en constante adaptation.
SURVEILLANCE ET PROTECTION DES INFRASTRUCTURES HYBRIDES
15:40 - 16:10 (CET) - 14:40 - 15:10 (BST)
Martin Holste, CTO Cloud Security
Les environnements Cloud deviennent un défi pour l’industrie toute entière. Découvrez comment FireEye a conçu une plateforme pour aider les clients à reduire les risques liés aux environnements cloud.
LA GESTION DU RISQUE PENDANT UN INCIDENT
16:10 - 16:40 (CET) - 15:10 - 15:40 (BST)
Karen Kukoda, Senior Director, Strategic Alliances
Ron Bushar, SVP and Government CTO
Les équipes de répones à Incidents de FireEye accompagnent les clients pour la communication de crise comprenant la communication institutionelle, les relations publiques et le suivi des obligations de reporting (RGPD, CNIL …). Dans cette session, découvrez comment FireEye peut vous accompagner lors d’un incidents cyber dans la gestion de votre stratégie de gestion du risque.
RecordedMay 11 2020108 mins
Your place is confirmed, we'll send you email reminders
Jonathan Rendal, Consulting Sales Engineer, Iberia, FireEye
Las soluciones de protección del endpoint, requieren una evolución constante, tanto en las tecnologías más tradicionales de protección (EPP), como las tecnologías mas avanzadas (EDR).
En el próximo webinar de FireEye, le mostraremos las nuevas funcionalidades y la evolución de las tecnologías de protección completa de los endpoint.
Los objetivos serán comentar en detalle:
•Nueva versión de FireEye Endpoint Security y módulos de seguridad.
•Nuevas funcionalidades en las tecnologías para la protección del endpoint
•Demo de la solución y de la nueva consola de administración.
Back by popular demand, join BlueFort and FireEye at 09:00 - 11:45 on 6th October 2020 for our next Cyber Attack Simulation.
BlueFort run regular Cyber Attack Simulation events to help companies to consider how they would respond to a cyber attack. Typical feedback we get is that these are simulation events are ‘eye-opening’ ‘thought provoking’ ‘valuable’ and ‘scary!’.
We will once again be joined by our expert panel consisting of Director of UK & Ireland for FireEye Mandiant, a law partner who specialises in cyber breaches and a crisis communications expert too to give you the latest advice, insights and different perspectives at each stage.
A great event for anyone working in leadership, security, legal, risk, communications and of course IT!
- Participate in a real time attack to understand how to take back control
- Build confidence in taking the right actions that will protect your company
- Gain a deep understanding of the consequences of specific actions
- Hosted by cyber breach response experts from FireEye Mandiant
- Focused event for anyone working in leadership, security, legal, risk or communications
- Practical and engaging way to understand threats, risks and responses
The single most heated conversation during every incident response engagement has always been around the topic of remediation. When to remediate, what to remediate, how to remediate, should we remediate?
We can even take that a step back and ask ourselves “is it a technical question? a legal one? a business decision? Join our upcoming webinar during which we’ll analyse the topic from multiple different angles to understand why there’s no easy answer to the question and how to best deal with it depending on the specific context of the breach you’re dealing with.
Matt Shelton, Director, Technology Risk and Threat Intelligence, FireEye
The Expanding Attack Surface: How Continuous Validation Helps Protect the Supply Chain
Organizations are increasingly using third party providers to manage critical components of their infrastructure. The introduction of cloud services, managed service providers, and Software-as-a-Service (SaaS) has increased the size of an organization’s attack surface. A breach of proprietary and confidential information is just as impactful coming from the supply chain as it is from an organization’s infrastructure. Join Matt Shelton, Director, Technology Risk and Threat Intelligence, as he explains how intelligence-led validation can help tighten controls and reduce risk. In this webinar:
-Hear about the realities of today’s threat landscape, sophisticated attackers and the implications on managing your security stack and processes
-Learn how threat intelligence helps you take decisive action
-Find out how continuous validation helps you understand the true measure of your security
-Get insights into an actual use case where a company’s supply chain was breached to see how intelligence-led validation could have helped prevent it
Organisations value cyber threat intelligence (CTI) because it helps their security teams stay focused on, and stay ahead of, the most impactful threats. One of the critical strategic and tactical roles that CTI plays is in the tracking, analysis, and prioritisation of software vulnerabilities that could potentially put an organisation’s data, employees and customers at risk.
Join us to hear FireEye Threat Intelligence expert, Jamie Collier, as he shares:
• The importance of comprehensive CTI to drive better-informed vulnerability management decisions
• Insight into how FireEye tracks, prioritises and categorises vulnerabilities to help organisations more effectively manage and mitigate the risks associated with these potential threats
• The latest research findings around the speed and frequency of exploitation
This presentation will cover five major threat actors which Mandiant Consulting has seen during intrusions that it responded to in Europe. War stories, as well as unique techniques and malware used by the attackers will be covered by an incident response consultant who has worked on all of the engagements.
Red team assessments help organizations evaluate their readiness to defend against advanced attacks. They identify relevant weaknesses in current detection and response procedures that advanced threat actors routinely exploit to avoid detection, break in and complete their attack objectives.
This session reviews a red team case study in which an objective-based assessment involved emulating the activities of an advanced, nation state attacker across the entire attack lifecycle. Come learn valuable insights from how one organization dealt with genuine attack conditions.
Dan Caban, Manager Professional Services Consulting, Mandiant & Hussein Khalifa, Senior Consultant, Mandiant
Operationalising Cyber Threat Intelligence (CTI) helps mitigate risk by focusing people, processes, and technology on the threat activity that matters. Above all, it allows organisations to take a more proactive, structured, and holistic approach to security that reduces dwell time and shortens the time frame from detection to remediation. In today's dynamic threat environment, CTI it is critical to ensure you have an understanding of the adversaries you are hunting for and responding to.
Join us as we look specifically at how cyber threat intelligence can help improve computer network defence (CND) operations. Our experts will share:
• A review of FireEye’s Iranian relevant threat intelligence
• Case studies that:
•will provide examples of how Mandiant incident response consultants operationalise threat intelligence when responding to intrusions
• will examine how operators can pivot from intelligence reporting to high confidence alerting and targeted threat hunting
• Along with the MITRE ATT&CK framework to help decision makers improve their overall network security posture by prioritising security investments based on adversary capabilities
• How intelligence enhances your overall cyber security investment and places your operations ahead of the threat
Organisations today remain reliant on reactive, technology based, security solutions to protect their most valuable assets. The problem is that technology alone does not fully protect against a determined attacker.Unfortunately, it's difficult and costly to find, hire, train and retain security experts to protect against threats 24x7x365.
The shortage of cybersecurity workers continues to be a major concern. Unfilled cybersecurity jobs are expected to reach 1.8 million by 2022, up 20% from 1.5 million in 2015, according to the Center for Cyber Safety and Education.
FireEye Managed Defence is an expert driven managed detection and response service that provides 24 x 7 protection against threats, combining front line experience with industry leading technology and intelligence to detect threats early and help prevent a security incident.In this webinar, you'll hear from Billy Glynn, Principle Consultant, Managed Defence, as he discusses:
-The benefits of Managed Detection and Response (MDR)
-How Managed Defence can augment your security team
-A Day in the Life of a Managed Defence Consultant
-Hear real world examples and stories from the trenches
Do you know that on average, it takes up to two months before data breaches are discovered? And of these breaches, only 4% are actually investigated? This is because most of the time malicious actors are in systems blind and have to move slowly to minimize detection. Just imagine all of the potential data exfiltration, among other damage, that malicious actors can cause during this time. Reducing business risk and improving security start with controlling your internal environment and making people realize that security is everyone’s problem. Tackling the lateral movement is becoming crucial in addressing this risk from within your environment.
This webinar will discuss the following:
1.Introduction to Lateral Movement
2.Lateral Movement Techniques and tactics
3.Lateral Movement risks and impact
4.How to Defend and mitigate
5.How FireEye can help
Ransomware threat actors are upping their game along with their ransom demands, which are climbing into millions of dollars. Large organizations with significant security controls in place are still falling prey to the attackers' tactics. This session examines how ransomware has evolved, and more importantly, what you can do about it. Come learn how to can gain some control your next ransomware experience.
Matt Keane, Principal Consultant at FireEye Mandiant, & Jennifer Guzzetta, Product Marketing Manager at FireEye Mandiant
Most C-suite leaders believe their investment decisions in security risk management is not keeping up with the new and heightened levels of cyber risks. This is often due to their use of the decade old, top-down approach in leveraging risk models, which leaves gaps between attacker and defender behaviors.
Transformation of your risk management processes, plus the people behind them, can solve for this.
Aligning your organization’s security efforts with the risk appetite of data owners and business leaders must become a priority.
This webinar spotlights a transformational model that operationalizes security risk management to improve and optimize decision making by:
•Identifying challenges in your current cyber risk management program
•Establishing a modern cyber risk management strategy
•Shifting the players and processes involved in your cybersecurity decision support
•Integrating risk management priorities across the entire security function
•Monitoring progress with the right kind of security metrics
Join Matt Keane, Principal Consultant at FireEye Mandiant, for his expertise on transforming your security risk management approach by bridging the gap between vital security teams and improving their decision making.
A recent SANS study showed that while organizations used threat intelligence to hypothesize where attackers may be found, they lack the investigative skills to conduct searches. This continues to be a growing problem in the cyber security industry as organizations struggle to justify the high-cost of their defences.
We make significant investments to justify our methods of stopping evil. However, we rarely spend time in measuring our methods or investments. Instead, we rely on assumptions to guide our decisions and justify our judgements. In this session, we will explore real world data and dive deep into the performance of cybersecurity controls across enterprise networks; from email, endpoint, network to cloud-based controls and examine some alarming results. As organizations continue to struggle to justify the high-cost of their defences, Security Validation provides a solution to validate, consolidate, recoup and maximize the value from existing investments.
John Hurley, Solutions Architect EMEA, FireEye & Thomas Scriven, Senior Mandiant Consultant
For the last several years, organisations around the world have been moving applications and services to the cloud at an increasing pace. Despite this investment, many organisations fail to fully understand the security controls they have at their disposal and fail to effectively harden their cloud environments against attack. As a result, FireEye experts have observed a significant rise in cloud-related breaches driven by both targeted and opportunistic threat actors over the past several years.
In this session, FireEye, EMEA Solutions Architect John Hurley shares lessons learned from real-world incident response experiences, as well as identifying some common pitfalls, whilst also providing best practices for organisations to harden their cloud environments and reduce the risk of compromise.
Coco Brown, Founder and CEO, Athena Alliance; Alexa King, EVP, General Counsel, FireEye
Although diversity in the c-suite and the boardroom is improving, there is more work to be done. Through its Elevate initiative, FireEye looks to continue to help connect, educate and enable cyber security leaders to assume responsibilities within today’s boards.
During this discussion, Alexa King, FireEye EVP, General Counsel and Board Member, and Coco Brown, the founder and CEO of the accomplished Athena Alliance platform, will share details and key learnings from their own personal journeys. They will highlight some of the opportunities that exist for women in cyber security as they identify and prepare for board level roles, as well as the best ways to go about advocating for others.
Alexa and Coco strongly believe in the power of women as executives in cyber security, and how important it is to have different perspectives on a board. Making connections, bringing opportunities to more women and offering support along the way will help benefit all women leaders in cyber.
Simon Eappariello, Senior Vice President, EMEIA & APJ, iBoss
The network perimeter has eroded, making traditional network security appliances ineffective at securing users and devices that are no longer bound by network boundaries. Built on a proprietary containerized architecture designed 100% for the cloud, iboss cloud secures Internet access from anywhere, including in and out of your physical network perimeter.Users are always connected to iboss cloud, regardless of device or location, to ensure all Internet traffic is secured for compliance, web filtering, malware defense and data loss at all times. Since iboss cloud lives in the cloud, network security goes where users go with elastic and instant scaling to meet the demands of the cloud-first future.
Jens Monrad, Head of Mandiant Threat Intelligence EMEA & Jay Christiansen Senior Consultant, FireEye Mandiant
Ransomware is remote digital extortion. Disruptive and costly to address, it affects all kinds of organizations, from space technology firms to global manufacturers and industrial environments.
FireEye Threat Intelligence research has uncovered an increasing number of common characteristics in ransomware attacks, including new trends in intrusion vectors, dwell time, deployment time of day and the use of additional tactics to increase leverage against victims.
Join Threat Intelligence expert, Jens Monrad and Mandiant Senior Consultant, Jay Christiansen, to learn about the latest research and ask them critical questions. During this presentation, attendees will hear about:
• The latest ransomware threats
• Threat actor tactics
• Ways to use this intelligence to defend your organization
Lluis Coma, EMEA Consulting Systems Manager, FireEye
2020 Mandiant Security Effectiveness Report Findings: A deep dive into cyber reality
Join our webinar to understand why a majority of tested attacks successfully infiltrate enterprise environments without detection – and why security validation is so critical.
The Mandiant Security Effectiveness Report 2020 takes a deep dive look into cybersecurity performance across network, email, endpoint, and cloud-based security controls – and confirms the prevailing concern: security controls are not performing as expected. Alarmingly, thousands of tests performed by experts from the Mandiant Security Validation (previously known as Verodin) team show that for 53% of the environments tested, attacks were successful in bypassing controls without knowledge. This points to the need for continuous validation of security effectiveness based on four fundamental components.
Register for our upcoming webinar to learn about the fundamentals of security validation and gain the knowledge to answer questions such as:
- Do I have confidence in the effectiveness of my security controls?
- Can I quickly assess the relevance of threat intelligence or exposure to the latest attack?
- Am I stopping data leakage and protecting data integrity?
- How can I simplify and standardize my security stack?
- Do I have evidence to support communicating key metrics to executives?
Sanaz Yashar, Principal Cyber Analyst, Mandiant Threat Intelligence & David Grout, EMEA CTO, FireEye
Cyber threat intelligence (CTI), IOCs, reports and feeds all contribute to stronger cyber visibility. But CTI holds a unique position and can be consumed operationally to enhance your security posture.
Join us as a Mandiant cyber threat analyst discusses her experiences from the cyber frontlines. She introduces real life examples of analyst personalities, their day-to-day activities and the value they add to customer interactions.
FireEye is the intelligence-led security company. Working as a seamless, scalable extension of customer security operations, FireEye offers a single platform that blends innovative security technologies, nation-state grade threat intelligence, and world-renowned Mandiant® consulting. With this approach, FireEye eliminates the complexity and burden of cyber security for organizations struggling to prepare for, prevent, and respond to cyber attacks. FireEye has over 7,700 customers across 67 countries, including more than 50 percent of the Forbes Global 2000.