Top 10 Security Best Practices for Azure

Unternehmen gehen immer häufiger mit klassischen On-Premise Workloads in Public-Cloud-Umgebungen wie Azure, GCP oder AWS. Solch agile und dynamische Umgebungen brauchen auch ebenso flexible und angepasste Security Tools, um den Anforderungen an Sicherheit und Compliance solch hoch komplexer Umgebungen gerecht zu werden.

Die Security-Spezialisten Marcus Stahlhacke und Dirk Thelen zeigen Ihnen, wie einfach Sie die Übersicht über Ihre Public-Cloud-Strukturen behalten, Security integrieren wo es darauf ankommt und stets Herr der Lage sind. Selbst Compliance Standards wie GDPR, Hippa oder PCI DSS haben Sie mit Prisma Cloud im Griff!

The Cloud Native Computing Foundation's charter describes how cloud native technologies empower organisations for modern and dynamic environments. Cloud Native security has to operate in the same way.

In this talk we'll go through what this means, what you need to look out for, and how to achieve democratised cloud native security.

Your organization is starting to adopt public cloud, and while the cloud might not be scary, the change is something you have to learn. What worked in the old data centers days simply will not translate to the public cloud. Which also means you have different things to worry about.

Prisma Cloud is a multi-cloud API based public cloud security platform for AWS, Azure and Google Cloud Platform that is helping hundreds of the world's largest public cloud adopters to gain control of their cloud visibility, enforce governance and achieve continuous compliance.

Any security vendor can show you a solution that is good at generating alerts, but join us on December 11th to learn how Prisma Cloud can show you what could go wrong, what is going wrong, and what alerts you need to prioritize immediately so that you can get back to work.

It seems like every security operations team faces the same challenges when it comes to incident management. Isn’t it about time someone came up with a solution?



In this webinar, we will talk about our Security Orchestration, Automation and Response (SOAR) Solution, Demisto and how it helps solving pain points security teams face on a daily basis.



You can also look forward to a demo to showcase the different features of the solution with a focus on a use case of how you can easily extract IOCs from email, enrich with threat intelligence, and then take the required action on the different security solutions your organization has.

La transition vers AWS, Azure ou Google Cloud crée de nouveau modèles d'architectures et d'applications dont la structure est en perpétuel mouvement. La seule manière que l'infrastructure, la sécurité et les opérations puissent suivent ce rythme est l'automatisation. Dans cette session, Thomas Beaumont, Cloud Consulting Engineer, va détailler les différents outils qui peuvent etre utilises pour déployer de l'infrastructure (as code), expliquer comment ajouter les vm-series pour protéger des menaces de sécurité (security as code) pour enfin modifier les règles de sécurité en se basant sur des outils tiers partie et externes (operations as code). Une brève démonstration conclut la session.

Enterprises are looking to gain 50%-70% cost savings on their WAN, access multi-cloud with high performance and secure the remote office in a Zero-trust model. However, combining security and SD-WAN can result in operational challenges and security exposures that can derail your project. There are four decisions that enterprises must make to ensure success with Secure SD-WAN. Hear from ESG Analyst Alex Arcilla about current trends impacting a Secure SD-WAN and learn how a new joint solution that combines CloudGenix Autonomous WAN with Palo Alto Networks security addresses these challenges! See how you can deploy best-of-breed Secure SDWAN that is pre-integrated, requires no additional hardware or software to deploy at the remote office and lays the foundation for a Zero-trust security architecture.

Cloud adoption and user mobility are shifting the locations of applications, data and users. These changes create new vectors for cybersecurity risk. Organizations need a way to securely enable digital business transformation and innovation. We believe that this requires a fundamentally different approach: both security and networking must be delivered in the cloud.

Join this discussion with Jason Georgi, Field CTO for Prisma Access at Palo Alto Networks, and explore best practices to secure your cloud initiatives with Prisma Access, a Secure Access Service Edge (SASE) platform, by bringing together industry-leading security and SD-WAN capabilities in the cloud.

Over the last few years, we’ve seen a marked increase in the amount of encrypted traffic. Unfortunately, along with the obvious benefits of encryption, this also provides an opportunity for attackers to hide malicious activity, which has created an even more pressing need for effective decryption.

In this webcast, you’ll learn about:

-PAN-OS® 9.0 innovations to streamline SSL decryption
-Best practices and getting full visibility into protocols like HTTP/2
-The right SSL decryption implementation strategy

In diesem exklusiven Webinar lernen Sie, wie Sie verborgene Bedrohungen aufdecken und Warnmeldungen schneller nachgehen können.

Ces dernières années, une forte croissance du trafic chiffré a été constaté.
Malheureusement, malgré les bénéfices certains du chiffrement, c'est également une opportunité pour les attaquants de masquer leurs activités malicieuses.
Plus que jamais, une stratégie de déchiffrement du trafic doit être mise en place.

Dans ce webcast, vous allez découvrir :

-Les innovations de PAN-OS 9.0 pour améliorer le déchiffrement SSL.
-Les bonnes pratiques pour obtenir une visibilité complète sur des protocoles tels que HTTP/2
-Notre stratégie d'implémentation

With serverless, the cloud provider is responsible for securing the underlying infrastructure, from the data centers all the way up to the container and runtime environment. This relieves much of the security burden from the application owner, however, it also poses many unique challenges when it comes to securing the application layer. In this presentation, we will discuss the most critical challenges related to securing serverless applications - from development to deployment. We will also walk through a live demo of a realistic serverless application that contains several common vulnerabilities, and see how they can be exploited by attackers, and how to secure them. We’ll then go over how Prisma Cloud can be used to secure serverless workloads.

Arista Networks Macro-Segmentation Service (MSS), a capability within Arista CloudVision and Arista Data Center Switches, addresses a growing gap in security deployment for modern data centers. Arista MSS extends the concept of fine-grained security for VMs to the rest of the data center by enabling dynamic firewall services insertion by integrating with leading Palo Alto Networks Next-Generation Firewalls (NGFW) in the data center.

Join our security experts and learn how you can deploy Arista MSS together with Palo Alto Networks NGFWs to inspect traffic and deliver robust security across a secure, resilient, and high-performance Arista data center fabric.

In this webinar you will:

· See a demo on how best to deploy Palo Alto Networks firewalls across Arista MSS enabled next-generation data center
· Learn about design considerations for firewall insertion
· Hear real world deployment use cases and best practices
· Get your questions answered in our live Q&A

Learn how to protect your applications workloads across an Arista MSS enabled modern data center.

Threat intel needs to change. Current approaches force security analysts to manually integrate and work across too many low-value feeds, often slowing down investigations.

The benefit of added clarity and context is clear. Yet, there has to be a better way to use intel to boost investigations and response efforts without complicating your existing processes.

Join a candid discussion led by Palo Alto Networks Unit 42 threat researchers, SOC experts, and product leaders as they break down the reality of today’s threat intelligence offerings, and what needs to change.

Leave with:
Three tricks every practitioner should know when considering how to use threat intelligence to protect their enterprise
Why threat intel should be embedded into the tools you’re already using, and how to make that possible.
The future of threat intelligence, including bold new innovations from Palo Alto Networks

One of the mythologies surrounding Zero Trust is that it is difficult and expensive to implement. Not true! In this webcast we will debunk this myth once and for all.

Join us for this webcast and learn:

-How Zero Trust is easy to implement using an iterative approach designed to mitigate disruption or downtime
-The five key steps to implementation
-Why Zero Trust is easy to measure, including maturity metrics for Zero Trust