Name: Detecting Attacks with Machine Learning
Start: 2019-10-10T17:00:00Z
End: 2019-10-10T17:01:01.000Z
Location: BrightTALK
Rating: 4.8

Palo Alto Networks is the next-generation security company, leading a new era in cybersecurity by safely enabling applications and preventing cyber breaches for tens of thousands of organizations worldwide. Built with an innovative approach and highly differentiated cyberthreat prevention capabilities, our game-changing security platform delivers security far superior to legacy or point products, safely enables daily business operations, and protects an organization's most valuable assets. Find out more at www.paloaltonetworks.com or call us at 1-877-524-1031.

Explore Next Generation Security Operations: AI, Automation, and Orchestration

Discover the transformative power of integrating Artificial Intelligence (AI), automation, and orchestration within a modern Security Operations Center (SOC). This webinar will delve into how this strategic approach can revolutionize security operations, making them proactive, cost-efficient, and highly effective in addressing the dynamic threat landscape.

Join thought leaders from Deloitte and Palo Alto Networks for an insightful discussion on how an AI-Native SOC can significantly enhance operational efficiency, strengthen security posture, and strategically position your organization to tackle evolving cybersecurity challenges.

Moderator:
   Jane Chung, Managing Director, Deloitte & Touche LLP
 
Panelists:
   Andrew Rafla, Principal, Deloitte & Touche LLP
   Tom Barsi, Vice President WW Ecosystems – Cortex XSIAM, Palo Alto Networks
   Anthony Polzine, Global Solution Engineer, Palo Alto Networks

Automating Your SOC With An AI-Native Platform

Enterprise Strategy Group’s (ESG) latest report illustrates the pervasive adoption of zero trust security: 69% have implemented or started to implement zero trust, with an additional 26% in the planning process. However, organizational issues, project expenses, and technical problems all conspire to cut these initiatives short.

Join in this Fireside Chat ESG Cybersecurity Senior Analyst Todd Thiemann, Sr. Director Product Management at Okta Jamie Fitz-Gerald, and Palo Alto Networks Director of Product Management Brian Levin to ensure the success of your zero trust initiatives, as the trio examines tips, pitfalls to avoid, and core best practices. 

Tune in for an analysis of the following, based on recent ESG research:
• 8 key drivers of zero trust strategies—and why security modernization is a top factor 
• Remote & hybrid work attack vectors that complicate device security 
• 10 important actions to improve zero trust strategies   
• How Palo Alto Networks & Okta streamline zero trust adoption for their customers

The Zero Trust Journey: 8 Key Drivers, Best Practices, & Common Challenges

Real security requires collaboration among multiple teams to be successful, but 35% of companies in the cloud report siloed teams. In this session I will talk about the best ways to integrate security across the application lifecycle, and how to work across multiple teams to achieve your goals with Prisma Cloud.

Cloud Security is a Layer 8 Problem

The demand for managed security service providers (MSSPs) is high, with IT and security teams asking for even more capabilities. However, challenges exist for MSSPs to deliver on these sky-high expectations. 

The ability to scale skills, expertise, and handle massive amounts of data are bogging down MSSPs ability to provide services to businesses, especially as the attack surface continues to grow in complexity. Additionally, the MSSP-client trust journey takes time to nurture, inhibiting progress.

Join Bar Katzir, Palo-Alto, Peter Van Hoorenbeeck, Davinsi Labs and Dave Gruber, Enterprise Strategy Group, in this webinar as they discuss:
• How to address MSSP challenges
• What MSSP automation use cases you should prioritize
• Palo-Alto’s SOAR solution for MSSPs

Automation: Critical for MSSP Growth, Performance and Profitability

Harness the power of machine intelligence and automation with Cortex XSIAM

Security Operations Centres (SOCs) struggle to keep pace with modern threats, the perils of an ever-increasing digital attack surface and the need to extract value from a plethora of security tools. Cybersecurity technologies continuously introduce additional capabilities to the SOC, such as the emergence of XDR, Security Analytics, and Generative AI. Meanwhile, the SOC has revolved around the SIEM for over a decade. Does this provide an opportunity to leave the legacy SIEM behind, moving beyond its limitations?

Join our fireside chat with Allie Mellen, Principal Analyst at Forrester®, to discover:

Evolutionary challenges and opportunities for SOCs to evolve
How to enhance security outcomes by harnessing artificial intelligence
How AI and automation can supercharge detection, prevention, and response
A new paradigm for the modern SOC

Prepare to be challenged, and to explore a new way to re-imagine the SOC. See how innovation disrupts the status quo, empowering humans to lead with confidence and make organizations more secure.

New paradigm for the modern SOC

A VPN-centric approach to secure access has several issues, including weak security, lack of scalability and siloed management. Luckily, the emergence of Zero Trust Network Access (ZTNA) offers a more robust solution for your organization.

In this webinar, join John Grady, Principal Analyst at ESG and Don Meyer, Director of Product Marketing – SASE at PANW as they discuss key considerations you need to have in mind when modernizing secure access. 

Watch now to learn about:
• Why 42% of orgs plan to move more of their applications to ZTNA over time
• The evolution of SASE/ZT overall and how they tie into ZTNA
• What’s holding some organizations back and how to overcome these challenges

The Case for ZTNA over a VPN

A single click is all it takes. With ransomware groups turning up the pressure on victims and demanding higher ransoms – can your organization afford to take the risk?

According to the Unit 42 Ransomware Threat Report, in 2023, ransom demands were as high as $50 million with payments as high as $7 million. On top of that, there was a 37% increase in multi extortion ransomware attacks and the speed of data exfiltration is accelerating.  The heightened impact of ransomware attacks are an indication of the future of the current threat landscape. You need to ensure your protection has evolved to stay ahead of today’s ransomware attacks.

In this technical session, Network Security Evangelist, John Harrison, and Kyle Wilhoit, Director, Threat Analysis Unit 42, will provide insight into how ransomware attacks have evolved in 2023 and key recommendations using Palo Alto Networks solutions to keep your organization protected. 

By attending this session you will get: 
Insights into the latest ransomware tactics that could cause significant security incidents
Best practices with detailed policy recommendations using ML-Powered NGFW, SASE solutions, and Cloud-Delivered Security Services
Confidence in your existing security controls and risk posture to protect your organization against the latest and most advanced ransomware attacks.

We look forward to seeing you there.

The EVIL-ution of Ransomware 2.0: Top tips to protect you and your organization

In The 2021 State of Enterprise Breaches, Forrester found that enterprises spend a median of 37 days and a mean of $2.4 million to find and recover from a breach.

Ensure your team is prepared for advanced threat actors. Join this fireside chat with Niall Browne, CISO at Palo Alto Networks, and guest speaker Allie Mellen, senior analyst at Forrester.

They’ll candidly discuss digital transformation, SOC automation and tactical security operations. Forrester recommends that security leaders advocate investment in digital transformation. This will help organizations be more adaptable while focusing on data and metrics to uncover prevalent attack vectors.

Tune in to hear their unique perspectives on:

The critical issues they see today in the SOC.
How security leaders can successfully incorporate threat intelligence.
Strategic technology upgrades to prioritize for digital and SOC transformation.
What they predict to be the biggest shifts in SecOps.

A Leader's Guide to SecOps Fireside Chat w/ Forrester

Are you facing challenges in effectively managing incidents received by your SOC? Renowned analyst firm GigaOm recently published their SOAR Radar report. This comprehensive comparison of SOAR vendors helps SecOps teams select the right option for them. To further assist, we've created an exclusive fireside chat featuring GigaOm analyst Andrew Green and Josh Zelonis, security strategist at Palo Alto Networks.

Andrew and Josh will discuss the latest trends in the SOAR market and how your peers are effectively leveraging automation.

Topics include:

- How the SOAR industry is evolving to meet today's SOC challenges.
- Is low-code/no-code automation hype or reality?
- How AI will impact incident investigation and response.
- How to apply SOAR beyond the SOC to network and cloud operations.
- How automation is deployed by XSOAR customers.

The Evolving SOAR: What's Next?

Alert volume is increasing. Analysts are burning out. It’s time to modernize your SOC by optimizing your team efficiency to meet the relentless demands.

In this session, our SOAR experts will share best practices culled from hundreds of customer deployments and provide a deep dive into XSOAR 8.

Key takeaways from this webinar include:

- Top things to consider before you deploy automation
- How to break down a process into an automated workflow
- Playbooks you can deploy easily for immediate time savings
- Examples of successful automation use cases
- Resources you need to run a successful automation program

Plus, at the end of the session, each attendee will get a starter toolkit to help them kickstart their automation program.

SecOps Automation: A DEEP DIVE

Digital growth, cloud adoption and an ever-expanding attack surface created a perfect storm for defenders to navigate. Are you ready to take action?

For the second year in a row, GigaOm has named Cortex® Xpanse™ a Leader and Outperformer in their annual Attack Surface Management (ASM) Radar Report. 

Watch our on-demand webcast with Chris Ray, GigaOm analyst and Greg Heon, senior director of Product Management, to explore:

- The emerging trends, challenges and critical factors shaping the ASM landscape.
- The driving forces behind the widespread adoption of ASM solutions.
- Expert advice on evaluating ASM solutions based on security needs and organizational goals.
- Best practices for mitigating risks, reducing vulnerabilities and enhancing security posture.
- Insights into the innovative ASM approach of Cortex Xpanse.

Explore Attack Surface Resilience. GigaOm Analyst Insights on ASM.

The move to the cloud and increasing remote work have fragmented attack surfaces, making it easy for attackers to find unmanaged assets with critical exposures. Manually finding and remediating these risks is untenable, so security teams need active attack surface management (ASM) to not just find the unknown exposures but also automatically fix them. 

In this webinar, our cybersecurity experts share 10 ASM use cases that will help you:

- Identify and mitigate unknown risks.
- Fix security blind spots.
- Prevent ransomware.
- Immediately respond to zero days.
- And much more! 

Plus, you’ll hear how our customers are using Cortex® Xpanse™ to stay ahead of their cyberthreats and reduce critical exposures. 

To see how ASM can protect your business from cyberthreats, watch now!

Accelerate Your ASM Journey: Top 10 Attack Surface Management Use Cases

Realizing the benefits of SOAR can be a difficult challenge. Where do you start? What does the optimal adoption journey look like? What are automation playbook best practices?

To answer these questions, take a look at the playbooks the most successful customers were using from the XSOAR Marketplace to accelerate automation.

Join Josh Zelonis, director of security strategy, in this on-demand webinar to get a deep dive analysis of the most successful XSOAR customers. You’ll better understand:

- What a successful customer journey looks like.
- The three stages of successful automation deployments.
- Commonly used content packs.

The Insider's Guide to SOAR Adoption

Attack surfaces are expanding in complexity due to growing cloud services and edge computing adoption. However, it’s challenging for security teams to keep track of assets to manage their attack surface effectively.

Unit 42® studied Cortex® Xpanse™ data from 250 organizations and discovered attackers are taking advantage of new Common Vulnerabilities and Exposures (CVEs) and other vulnerabilities faster than ever before. 

To learn the key findings, predictions and recommendations, watch as our experts shine a light into our “2023 Unit 42 Attack Surface Threat Report.” Attendees will walk away with an understanding of:

- Top attack surface risks across the world.
- The uniqueness of different industry attack surfaces.
- Key recommendations to proactively manage your attack surface.

Don’t miss your opportunity to gain a competitive edge over attackers and ensure your attack surface is secure. Watch now!

Untangling the Global Attack Surface

XDR (extended detection and response) was coined in 2018 by Nir Zuk, CTO of Palo Alto Networks. Ever since, XDR has captured the collective imagination of security teams and analysts alike. It has also led to confusion on what XDR is and isn’t.

Many see XDR as the key to breaking down data silos, reducing security blind spots and improving SOC efficiency. However, not all users understand the use cases for XDR and which vendors offer true XDR.

You'll gain a deeper understanding of:

- The top features and benefits of XDR solutions
- How organizations use XDR for SecOps today
- Tips for identifying XDR imposters
- How to choose the right XDR product for your environment
- XDR is what’s next in cybersecurity. 

Watch now to learn more.

What XDR Is and Isn't

MITRE ATT&CK® has become the industry standard for evaluating the performance of cybersecurity vendors in rigorous real-world attack scenarios. In 2023, MITRE simulated the methods of the notorious Russian-based threat group, Turla. 

They put 29 vendors to the test and revealed their performance. Cortex XDR® delivered 100% Prevention and 100% Analytic Coverage. Outperforming the competition.

Hear our experts break down the 2023 MITRE ATT&CK Evaluations. You’ll gain insights into:

- The process of the MITRE ATT&CK Evaluations.
- Turla, the threat group simulated in this year’s evaluation.
- The tactics used by Turla and how to defeat them.
- The real-world performance of EDR vendors against Turla attacks.
- How Cortex XDR outperformed and why it matters.

Unbiased Testing. Unbeatable Results. Explore the 2023 MITRE ATT&CK® results.

While cloud technology is not new, and many organizations have been on their cloud journey for years, cloud service providers continue evolving with new features and services.

The fast change and growth make it difficult for many organizations to catch up and inadvertently introduce security weaknesses.

Join our webinar as we talk through this year’s results of the Unit 42™ Cloud Threat Report! Our experts offer insights into the most common drivers of cloud incidents and breaches today, giving security leaders and practitioners a comprehensive view of cloud security threats. These findings should enable leaders to understand the greatest risks to their cloud environment and how to manage them most effectively.

Webinar attendees will also:

Get lessons from real cloud breach incidents.
Learn tips to stay ahead of cloud threat actors.
Address the most common cloud security issues.
Understand the impacts and risks of open-source software in the cloud.

Unit 42 Cloud Threat Report, Vol. 7: Navigating the Expanding Attack Surface

What, if any, are the concrete security steps that your company should take when considering a cloud migration? Or, if you already operate in the cloud—or multiple clouds—how do you gain full visibility into your cloud security health?

The simple, yet chilling, answer is that you likely don’t have as firm a pulse on cloud security across your dispersed workloads as you think—an issue which balloons as you pile on more point solutions for each cloud platform. 

With these challenges in mind, how can you best protect your organization when transitioning to or operating in the cloud? Register for this Fireside Chat with Prisma Cloud, to discover how, as well as:

1. How to simplify your cloud security portfolio
2. Current cloud security trends 
3. Insight into Prisma Cloud’s AI-fueled threat intelligence 
4. And how to use AI to close any security gaps

Cloud Security Trends, Challenges & Threat Intelligence Best Practices

Noise is the enemy of detection and response. After data breaches, forensic investigators have often found warning signs left behind by adversaries, but these signs were buried amongst thousands of other security alerts, including countless false positives.

Machine learning and behavioral analytics can provide security teams the edge they need to reduce noise and accurately pinpoint attacks. Machine learning models can classify devices and compare current behavior to past behavior and peer behavior to isolate real attacks. Unlike static rules, machine learning models can dynamically adjust to ignore unusual but benign activity, drastically reducing false positives. 

Attend this informative session to understand:
- Real-world examples of machine learning models used to detect attacks
- The key shortcomings with today’s approaches to machine learning and how security best practices and the right tools can overcome them

Detecting Attacks with Machine Learning

Cortex

Machine Learning

forensic investigation

treat detection and response

Endpoint Security

Endpoint protection

Incident Response

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Detecting Attacks with Machine Learning

Presented by

About this talk

More from this channel