Name: Lessons from the Field: How Are Skilled Technical Testers Infiltrating?
Start: 2017-01-30T19:00:00Z
End: 2017-01-30T19:43:56.000Z
Location: BrightTALK
Rating: 0

Secureworks® (NASDAQ: SCWX) a global cybersecurity leader, enables our customers and partners to outpace and outmaneuver adversaries with more precision, so they can rapidly adapt and respond to market forces to meet their business needs. With a unique combination of cloud-native, SaaS security platform and intelligence-driven security solutions, informed by 20+ years of threat intelligence and research, no other security platform is grounded and informed with this much real-world experience. 
www.secureworks.com

When ransomware-as-a-service (RaaS) was introduced to the cybercrime landscape in the mid-2010s, it significantly lowered the bar to entry for cybercriminals. As a result, the scale of ransomware operations expanded, allowing cybercrime groups and their affiliates to exploit more networks resulting in higher revenue. Expertise also improved as each element of the process became specialized, making ransomware the formidable threat it is today. 

 In this session, Senior Security Researcher and intel analysis lead for cybercrime Tim Mitchell will discuss why understanding and tracking the TTPs of everyone involved in ransomware operations is important, regardless of the variant. He’ll also outline why the attribution of precursor activity is important, and how accurately doing so can inform our customers and better protect them from ransomware.

The Ransomware Ecosystem: Operators, Affiliates & Access Brokers

French subtitled

An overreliance on endpoint detection and response (EDR) alone is bound to leave holes in your cyber defense. That’s because cybersecurity incidents now originate from almost anywhere in the IT stack. In the case of our 4,500+ customers, over 60% of essential threat event and detection data comes from beyond the endpoints. 

Join us to learn how evolving threats are outpacing common defense strategies, leading many security organizations to rethink how to strategically upgrade their security and which security partner is best positioned to support them. We’ll also discuss the shortfalls of EDR protection alone — and how many organizations are looking beyond the endpoint for a more effective and efficient approach to cybersecurity. 

What you’ll learn:  
Why cybersecurity needs to move beyond the endpoint to keep pace with evolving threats and a growing attack surface 
The pitfalls of relying too heavily on endpoint detection and response (EDR) in your cyber defenses 
How to strategically improve your cybersecurity and choose the right security partner

FR: Beyond the Endpoint – Tackling Your Biggest Cybersecurity Problems

There’s no doubt that security information and event management (SIEM) platforms provide powerful threat detection tools. But SIEM technology has its (long) list of challenges - cost, skills shortages and configuration hurdles among them. As a result, the security industry is experiencing a shift, with forward-thinking businesses embracing Extended Detection and Response (XDR) due to its ability to offer improved security visibility, operational investigations capabilities and response actions across the enterprise. 

But how can security leaders know that it’s the right time for them to be embracing this shift towards XDR, and what are the best ways to get started on re-solutioning their SIEM technology? 

In ‘3 Signs It Is Time to Re-Solution Your SIEM for XDR’, Secureworks and a guest expert are here to help. Host Nick Cavalancia is joined by Ryan Alban, Senior Manager - Systems Engineering at Secureworks and Carrie Goetz, CTO of StrategITcom, to discuss: 

- The 3 signs every CISO should be aware of that it may be time to embrace XDR over SIEM technology 
- How XDR is enabling security leaders and SecOps teams to prepare for and respond to the current and emerging threat landscape  
- Best practices for getting started on your XDR journey 
- The ROI and resource benefits that XDR can drive 
- And more

3 Signs It Is Time to Re-Solution Your SIEM for XDR

The last few years have seen 10 years of digital transformation compress into 3 years and as a result, the entire architecture behind IT has changed beyond recognition for many organizations.

At the same time, the methods bad actors use to compromise IT infrastructure have also changed and innovated, too. This has resulted in the fact that many organizations' approach to securing their IT infrastructure has fallen behind, and they drastically need to keep up in order to protect their data.

This BrightTALK panel discusses the shifts that have occurred and why so many organizations are now looking to partner and move away from an EDR cybersecurity approach and move to outside assistance in the form of MDR and Managed-XDR. And, how by expecting more, enterprises will be in position to better mitigate against both today’s and tomorrow’s compromises.

Compromises Have Moved Beyond the Endpoint - You Need to Too!

Network defenders often look at "dwell time" – the time between an adversary gaining access and achieving their objectives – as a key metric in understanding threat and risk. Based on Secureworks direct observations through incident response engagements, the average dwell time for post-intrusion ransomware attacks has remained fairly constant this year compared to last, at four and a half days in 2022 compared to five in 2021.  

What that means is that on average an organization has almost a whole working week to detect and contain an intrusion before the lights go out. Understanding how ransomware operators act once inside a network is the key to exploiting this "detection window." 

In this session, Director of Threat Research Chris Yule will lead a roundtable discussion looking at how best we can prepare for and defend against the pervasive threat of ransomware.

Understanding and Defending Against the Ransomware Threat

An overreliance on endpoint detection and response (EDR) alone is bound to leave holes in your cyber defense. That’s because cybersecurity incidents now originate from almost anywhere in the IT stack. In the case of our 4,500+ customers, over 60% of essential threat event and detection data comes from beyond the endpoints. 

Join us to learn how evolving threats are outpacing common defense strategies, leading many security organizations to rethink how to strategically upgrade their security and which security partner is best positioned to support them. We’ll also discuss the shortfalls of EDR protection alone — and how many organizations are looking beyond the endpoint for a more effective and efficient approach to cybersecurity. 

What you’ll learn:  
Why cybersecurity needs to move beyond the endpoint to keep pace with evolving threats and a growing attack surface 
The pitfalls of relying too heavily on endpoint detection and response (EDR) in your cyber defenses 
How to strategically improve your cybersecurity and choose the right security partner

Beyond the Endpoint – Tackling Your Biggest Cybersecurity Problems

The rise of AI has made its way to threat detection. With AI-enabled threat detection systems predicting new attacks and notifying admins of data breaches instantly, it’s safe to say that artificial intelligence is making its mark on the security landscape. 
 
But is AI worthy of all the plaudits it's receiving, and is it a silver bullet for threat detection? Or is it ‘just’ the next building block on the road to a robust as possible security set-up? In this Secureworks panel, George Anderson, Senior Product Marketing Manager at Secureworks is joined by experts Nash Borges - VP of Software Engineering at Secureworks, Dr Rebecca Wynn - Global Chief Security Strategist & CISO, Click Solutions Group and Simon Ratcliffe - Principal Consultant, Ensono to answer the question: ‘Is AI the panacea to doing threat detection right?’
 
Learn from their experience and insights and join this panel to hear:
- What AI-enabled threat detection looks like in the real-world, away from the hype
- The most common use cases that AI-enabled threat detection makes easier to detect
- Instances where AI could potentially cause CISOs and security leaders more headaches than it removes
- The types of additional contextual prioritization AI can give, and what this means for brand, customer and employee protection 
- And more

Is AI the Panacea to Doing Threat Detection Right?

Lisa Washburn, Senior Director of Product Management at Secureworks discusses:  

The value of extended detection and response (XDR)  

How it can improve security. 

What value it can provide to your organization.

Next Cybersecurity Solution – A Shira Rubinoff interview with Lisa Washburn

Steve Fulton, Chief Product Officer at Secureworks, explains:  

What extended detection and response (XDR) is 

The security benefits it provides in extending visibility and adding flexibility to your SecOps team. 

How it benefits security efforts

What is XDR? A Shira Rubinoff Interview with Steve Fulton, CPO at Secureworks®

Selecting the right threat detection and incident response solution for your organization can be overwhelming. From Endpoint Detection & Response (EDR), Extended Detection and Response (XDR), Managed Detection and Response (MDR) to name but a few - the complexity of the solutions available can make it difficult to ensure you’re including the right criteria for your needs, it’s no wonder that the journey can be trying. 

In this on-demand panel discussion, experts will guide you through the challenge by sharing what criteria you should be including during your selection process. Join host Nick Cavalancia as he talks to George Anderson, Senior Product Marketing Manager at Secureworks, Cat Coode, Founder of Binary Tattoo and Dom Glavach, CSO at CyberSN.com about: 

- How to sift through the noise of the threat detection and incident response solutions available on the market 

- Common mistakes organizations find themselves making when engaging for the first time with a threat detection and incident response solution 

- How to measure value and outcomes from the solutions available 

- And more

Criteria for Selecting the Right Threat Detection & Incident Response Solution

A Many security teams know the struggle all too well: SIEM solutions are not keeping up with the pace of cyber threats. In fact, maybe the only thing about SIEM keeping pace with those threats is the cost. Sound familiar?    

Join this Secureworks® webinar with Jim Coffman, Senior Technical Marketing Engineer and Alexa Levine, Product Marketing Manager, as they walk through the differences between traditional SIEM security and extended detection and response (XDR), a more modern and powerful approach to security.  

What you’ll learn: 

How XDR can minimize sprawling SIEM security costs while maximizing your existing investments – resulting in better overall security and ROI 

Why and how to choose the right security platform for your organization’s unique long-term health and goals 

How XDR is a cost-effective alternative to SIEM 

The accuracy, reduced risk, and stronger security that XDR delivers versus SIEM alone

Concerned about overspending on SIEM Security?

What We'll Cover 

 - Maximizing talent to address risks: Minimizing the spend footprint 
 - CISO: The evolution of the role 
 - Security tech: Artificial Intelligence (AI) and incorporating humanization 
 - Focusing on the basics: What will pay the biggest dividends 
- About Secureworks: Technology security solutions 
 - Looking ahead: Upcoming security threats and trends in 2023 

What do you learn being a CISO at a company that helps support other CISOs? Ken Deitz, Chief Security Officer & Chief Information Security Officer at Secureworks, joins the Let’s Talk SOC podcast to discuss the current and upcoming security challenges CISOs are facing today and how they can best address them.

Let’s Talk SOC - Defending the Defenders: Lessons Learned as a CISO - Ep 1

A discussion from Davos about nation-state actor attribution, criminal gang activity, and how organizations such as NGOs are targeted. Trends from 2022 activity, incident responses, and investigations. 

How do you care for the simple things to greatly reduce your organization’s risk?  

Join Secureworks® CTO Mike Aiello and Davos 2023 Presenter Andrew Wilson as they talk about the growing threat to data and operations, from state-sponsored actors to advanced cybercrime organizations.

Interview with Secureworks: Davos 2023

What you’ll learn:
Outlining the various solutions in the cybersecurity market
Today’s top security challenges
The differences between Product (XDR) and Service (MDR)
How to select the right solution for your organization
An overview of Secureworks ManagedXDR
Answers to questions that our speakers received during the live webinar

EDR. XDR. MDR. If you’re looking at the cybersecurity market today, there are a lot of acronyms floating around – leading to a lot of confusion.

How do you filter through the alphabet soup and find the solution that solves your unique security challenges? Please join Secureworks® and Frost & Sullivan for a discussion that will clear the confusion in the market and help CISOs understand what to consider in discovering the right solution based on their organization’s needs.

EDR, XDR, MDR: Filtering Out the Alphabet Soup of Cybersecurity

Modern approaches to vulnerability management are reducing the need for manual intervention and increasing risk protection. What should you know to automate your organization’s vulnerability management? Join our live webinar to discover how to transform your vulnerability management program with 7 key techniques.

What you’ll learn:

o How to overcome key challenges to automate and improve vulnerability management 
o How to effectively prioritize vulnerabilities  
o The importance of Al-driven, risk-based prioritization  
o How artificial intelligence can streamline your vulnerability management program

Top 7 Tips to Transform Vulnerability Management

As cyber threats proliferate, more organizations are turning to extended detection and response (XDR) to detect and eliminate attacks. However, decision-makers have questions about what to expect from this new technology and how it differs from other cybersecurity solutions. 

This webinar presents findings on top challenges organizations face and how XDR meets those needs. You’ll also learn how the best-in-class Secureworks® Taegis™ XDR solution provides organizations with more benefits than expected—for an even better security strategy. 

What you’ll learn: 
- Better protection for critical assets 
- Better prioritization of high-risk alerts
- Better security outcomes and customer confidence

Choosing the Right XDR Solution leads to more benefits than expected

While many organizations have technical testing performed a couple of times a year for a number of reasons: such as identifying network vulnerabilities or satisfying industry compliance requirements, the results and lessons learned are typically limited.

However, wouldn’t it be nice to see what tactics and techniques some of the most skilled testers out there are utilizing across all industries in all different levels of scope? Think of it as opportunity to learn from the good guys simulating the bad guys without having to have it done to your organization.

Watch this webcast and hear from some of SecureWorks most skilled technical testers, Nate Drier and Trenton Ivey, talk about lessons learned from some of their most challenging engagements and the trends they are seeing with clients and their defense practices.

Key topics covered include:

- Examples of real-world engagements
- Tactics and techniques commonly used to achieve their objectives
- Trends and weaknesses they are seeing in defenses
- Lessons learned

Lessons from the Field: How Are Skilled Technical Testers Infiltrating?

vulnerability

tactics

testing

cyberattacks

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Lessons from the Field: How Are Skilled Technical Testers Infiltrating?

Presented by

About this talk

More from this channel