Reduce Your Attack Surface by Getting Back to Basics
Most firewall breaches are caused by firewall misconfigurations and a lack of segmentation across their networks. In fact only a handful of attacks truly use sophisticated techniques. So getting security basics right will deliver far better protection against cyberattacks compared with many of the latest shiny new security technologies.
Presented by the renowned industry expert Professor Avishai Wool, this technical webinar will walk you through a typical cyber threat scenario faced by millions of business every single day. It will provide both best practices and demonstrate specific techniques to help you reduce your attack surface and limit and even prevent damage to your business.
During the webinar Professor Wool will:
* Present the different methods used by cyber criminals to penetrate your network security
* Trace and analyze the anatomy of a typical advanced persistent threat (APT)
* Discuss best practices for reducing cyber criminals’ lateral movements with your network
* Provide tips and demonstrate techniques for reducing your attack surface using existing security solutions
RecordedDec 17 201557 mins
Your place is confirmed, we'll send you email reminders
Traditionally Security was viewed as necessary cost center or an insurance policy you hoped you’d never have to cash in. Yet by automating security policy management you can actually save your organization both time and money and even enable and support the revenue generation processes.
Presented by Joe DiPietro, SE Director, this technical webinar will provide an overview of how automated security policy management goes beyond providing ROI and cost savings, to directly impacting business productivity and agility.
This webinar will:
* Highlight the security policy processes that can be automated, including challenges, benefits, planning and prioritization considerations.
* Provide an overview of the security management maturity model and highlight opportunities for automation and optimization for each stage of the model.
* Dissect and assess cost saving and revenue generation opportunities for specific key challenges including security change management, risk management, application migration, and auditing and compliance.
L’évolution en taille et en complexité de vos applications et de votre infrastructure réseau a une répercussion directe sur votre politique de sécurité. Cependant, une gestion manuelle de politiques de sécurité complexes peut se traduire souvent par des risques inutiles, des coûts plus élevés et une incapacité à suivre le rythme de votre activité.
Au cours de cette session, nous vous présenterons une approche de la gestion de la politique de sécurité centrée sur les applications, qui vous permettra de gérer facilement et automatiquement des politiques complexes sur plusieurs Firewalls. La solution présentée vous aidera à améliorer votre positionnement en termes de sécurité et d’agilité opérationnelle, à garantir une conformité continue et à réduire le risque, tout en réconciliant les lacunes de communication entre les équipes applicatives et réseau.
Today's fast paced business application deployments and changes require IT, networking and security to be more agile than ever before. Yet this agility often comes at the expense of security, control and accuracy. When facing a barrage of cyber-attacks this is not an option.
In this new technical webinar, Anner Kushnir, VP of Technology at AlgoSec will explain how to address these contradicting requirements, and eliminate the tension between the two, through a unique zero-touch approach to security policy management.
In this webinar Anner will present:
• The challenges and requirements for zero-touch security policy automation
• How automation can support business agility while maintaining checks and balances
• Defining a policy for pre-approved "more of the same" low risk changes
• Handling exceptions, risks and escalation
• Maintaining a full audit trail for compliance audits
• Tracking SLAs and further fine-tuning business agility
One of the biggest concerns for info security professionals and business executives right now is ransomware attacks. It has prompted many organizations urgently assess what they need to do to contain and limit their exposure to this threat.
Presented by renowned industry expert Prof. Avishai Wool, this new technical webinar will provide some best practices and tips to help organizations prevent, contain and respond to a ransomware attack.
In this webinar Professor Wool will discuss:
• The different methods used by cyber criminals to penetrate the network security perimeter
• Best practices for reducing cyber criminals’ lateral movements across the network
• How to augment incident triage with critical business context to assess the severity, risk and potential business impact of an attack
• Prioritizing incident remediation efforts based on business risk, and neutralizing impacted systems through zero-touch automation
• The impact of a ransomware on regulatory compliance
Financial institutions are constantly seeking to better serve their customers and maintain a competitive edge through new technology innovations and digital transformation initiatives, yet they often fall behind on delivering these new innovations into production.
Network and security operations teams are often hampered by manual, slow and error-prone security policy change management processes, and the ever-increasing demands of industry regulations.
Geared towards the specific challenges of financial institutions, this webinar will provide technical best practices for managing network security policy changes while reducing risk and enforcing compliance and will cover:
•Key industry metrics that compare security environments in and outside the finance industry.
•Network security and management challenges
•How to overcome security management complexity with automation
•How to address the ever-increasing demands of financial industry regulations
Today’s enterprises are continuously evolving to support new applications, business transformation initiatives such as cloud and SDN, as well as fend off new and even more sophisticated cyber-attacks on a daily basis. Many network and security professionals believe that they need latest and greatest new tools to address these challenges. But what if you already have what you need, up and running in your organization? Today’s security policy management solutions do a far more than automate traditional change management tasks.
Following on from last month’s webinar, Product Manager Jonathan Gold-Shalev will present 5 more ways you can use a security policy management solution to manage security, reduce risk and respond to incidents, while maximizing business agility and ensuring compliance across your disparate, ever-changing, hybrid networks.
In this technical webinar Jonathan will focus on how to:
•Automatically discover and map application connectivity
•Migrate application connectivity to another data center, the cloud, and throughout the development lifecycle
•Enhance C-level visibility
•Ensure your disaster recovery firewalls are secure and up-to-date
•Plan new for applications and application changes even before your server exists
A single change to a network device can have far reaching effects on your business. It can create security holes for cyber criminals, impact your regulatory audit, and even cause costly outages that can bring your business to a standstill – as we have recently seen in the news!
This technical webinar will walk you through a variety of scenarios that can cause device misconfigurations, including a basic device change, business application connectivity changes, and data center migrations. It will provide both best practices and demonstrate specific techniques to help you understand and avoid misconfigurations and ultimately prevent damage to your business, including how to:
* Understand and map your enterprise infrastructure topology before you make a change
* Proactively assess the impact of a change to ensure it does not break connectivity, affect compliance or create a security hole
* Common mistakes to avoid when making changes to your network security devices
* How to better understand business requirements from the network security perspective
DevOps enables companies to deliver innovations faster to market. But with multiple functional teams collaborating on development, and so many moving parts, security is often left out of the DevOps process and then tacked on at the end - delaying deployment into production and negating many of the benefits of DevOps.
Presented by renowned industry expert Prof. Avishai Wool, this new technical webinar will cover best practices for incorporating security into the DevOps lifecycle. This insight will help ensure better collaboration between security and the development teams right from the start and reduce the time, cost and risk of deploying applications into production.
In this webinar Professor Wool will cover how to:
•Identify and map existing applications and their connectivity flows to establish a baseline
•Adjust application connectivity for each stage of the DevOps lifecycle – without coding
•Automatically deploy connectivity throughout the development lifecycle using templates
•Proactively assess risk and compliance throughout the DevOps process
•Manage and maintain security in the production environment
Today’s enterprises are continuously evolving to support new applications, business transformation initiatives such as cloud and SDN, as well as fend off new and more sophisticated cyber-attacks on a daily basis. But security and network staff are struggling to keep up – which not only impacts business agility, but exposes your enterprise to risk and hampers its ability to address the modern threat landscape.
Many professionals believe that they need latest and greatest new tools to address these challenges. But what if you already have what you need, up and running in your organization: your security policy management solution?
Today’s security policy management solutions do a far more than automate traditional change management tasks. In this technical webinar, Edy Almer, VP of Products at AlgoSec will highlight 5 key security management challenges facing enterprise organizations today, and will explain how AlgoSec’s solution can help you manage security, reduce risk and respond to incidents, while maximizing business agility and ensuring compliance across your disparate, ever-changing, hybrid networks.
In this technical webinar Edy will focus on:
•Managing security policies end-to-end across public and private cloud including Microsoft Azure, Amazon Web Services AWS, Cisco ACI and VMWare NSX
•Mapping security vulnerabilities to their applications to assess and prioritize risk
•Enable SOC engineers to tie cyber-attacks to business processes
•Migrating Firewall policies between firewall brands
•Performing a fully automated, zero-touch security policy change
Migrating applications to the cloud or another data center– without creating security holes or causing application outages– is far easier said than done.
For starters, mapping existing application flows across complex enterprise environments pre-migration – which is critical in order to re-establish the correct traffic flows post-migration – is extremely difficult. A single mistake can cause outages, compliance violations and create holes in your security perimeter. Moreover, cloud security architecture is fundamentally different from physical networks, making it extremely difficult to translate application connectivity flows to the cloud security controls, and then manage network security policies cohesively across the entire hybrid enterprise environment. All in all, migrating applications is a complex, tedious and error-prone process that takes months and often compromises security, compliance and business agility.
Presented by Edy Almer, AlgoSec’s VP of Product, this new webinar will explain how to simplify and accelerate large-scale complex application migration projects, while ensuring security and avoiding business application outages.
The webinar will cover best practices on how to:
- Automatically discover existing application connectivity flows
- Analyze, simulate and compute the necessary changes – even between different network security technologies such as traditional firewalls and cloud Security Groups
- Execute the necessary firewall rule changes, and mass-migrate relevant connectivity flows
- Deliver unified security policy management across the hybrid enterprise cloud environment
Ranga Rao, Director of Solutions Engineering at Cisco & Anner Kushnir, VP Technology at AlgoSec
In today’s fast-paced world, supporting an ever-growing number of applications across the data center poses significant security management challenges. Managing policies across physical and virtual networks and multivendor security devices requires a delicate balance between ensuring security, reducing risk and provisioning connectivity for critical business applications to increase productivity.
Cisco ACI reduces TCO, automates IT tasks, and accelerates data center application deployments, using a business-relevant software defined networking (SDN) policy model. Through a seamless integration, AlgoSec extends Cisco ACI’s security policy-based automation to all security devices across the enterprise network, both inside and outside the data center.
Join Ranga Rao, Director of Solutions Engineering at Cisco, and Anner Kushnir, VP of Technology at AlgoSec on Wednesday, February 1, at 12pm ET/9am PT for a technical webinar where they will discuss how to leverage the integrated Cisco ACI-AlgoSec solution to process and apply security policy changes quickly, assess and reduce risk, ensure continuous compliance, and maintain a strong security posture across your entire network estate.
Attend this must-see webinar and learn how to:
- Get visibility into the Cisco ACI security environment and extend Cisco ACI policy-based automation across the enterprise network
- Proactively assess risk for the Cisco ACI fabric and recommend changes to eliminate misconfigurations and compliance violations
- Automate the configuration of security devices on the ACI fabric
- Generate audit-ready regulatory compliance reports for the entire Cisco ACI fabric
Time is not on your side when managing security for a global enterprise and facing down a relentless barrage of cyber attacks. So when confronted with multiple suspect alerts flagged by your SIEM solution, you need a way to easily sift through and identify the attacks that will most likely impact key business processes – and quickly take action.
Presented by renowned industry expert Prof. Avishai Wool, this new webinar will cover security best practices for introducing business context into your organization’s incident response processes, and prioritizing and automating remediation efforts accordingly. This insight will give you the intelligence you need to reduce the time and cost of mitigating cyber attacks by orders of magnitude.
In this webinar Professor Wool will cover how to:
- Augment incident triage with critical business context to assess the severity, risk and potential business impact of an attack
- Prioritize incident remediation efforts based on business risk
- Neutralize impacted systems through zero-touch automation
- Limit the lateral movement of an attacker in, out and across your network
- Keep all stakeholders involved in the remediation process to reduce disruption to the business
In this era of digital transformation, globalization, and relentless cyber-attacks, security can no longer remain a technology issue that simply focuses on defending networks and data. It must become a strategic, business driver that transforms the next generation datacenter to both protect and power the agile enterprise. Security teams are therefore now looking to implement intelligent automation that injects business context into their security management.
Join Joe DiPietro, SE Director at AlgoSec on Thursday, December 8 at 11am EST for a technical webinar, where he will discuss a business-driven approach to security policy management – from automatically discovering application connectivity requirements, through ongoing change management and proactive risk analysis, to secure decommissioning – that will help make your organizations more agile, more secure and more compliant.
During the webinar, Joe will explain how to:
* Get holistic visibly of security risk and compliance across the enterprise network
* How to reduce risk and avoid application outages
* Tie cyber threats to business processes
* Enhance and automate security processes with business context, including impact analysis and risk approval
* Accelerate and ensure secure business transformation to the cloud
It’s now a given – most enterprises are moving at least some of their business applications to the cloud. Yet while the cloud is an extremely agile platform, it also adds a new level of complexity. Because, when it comes to network security, the cloud introduces a software-defined security architecture that is fundamentally different from the organization’s existing on-prem network. As a result, many enterprises are now struggling to migrate application connectivity to the cloud, and then manage cloud security controls alongside their traditional firewalls in a way that ensures security and compliance across their entire hybrid architecture.
Presented by renowned industry expert Prof. Avishai Wool, this new webinar will provide technical insight and security best practices for migrating and managing security across a hybrid on-premise - Amazon Web Services (AWS) environment:
This webinar will cover:
•Understanding network security before, during and after migrating your applications to AWS
•How to identify and migrate the relevant application connectivity flows to AWS
•Managing AWS Security Groups alongside your traditional firewalls – uniformly and securely
•Making the most of AWS Network ACLs – to enhance traffic filtering and maximize capacity
Professor Avishai Wool - CTO and Co-Founder AlgoSec
In today’s global market place your organization needs network connectivity with external entities – suppliers, credit card processing companies, business partners, data feeds etc. But are you really sure these connections are secure and compliant, and that they are not inadvertently creating holes in your network and exposing your organization to cyber criminals?
Join renowned industry expert Professor Avishai Wool for this technical webinar which will cover best practices for managing external connectivity to and from your network, including:
•Defining the right infrastructure, network segmentation, security controls and additional security protections
•Managing changes to connectivity for third party applications or data feeds
•Routing partner traffic through your network
•Auditing and compliance challenges for both you and your partner
•Technical considerations for managing the business and legal aspects of third party connectivity
Network segmentation is an effective strategy for protecting access to key data assets, and impeding the lateral movement of threats and cyber criminals inside your data center. With network virtualization, such as VMware NSX, now a reality it's now far easier and quicker to set up granular security policies for east-west traffic within the data center. Yet the added granularity of securities policies creates significant complexity.
Presented by renowned industry expert Professor Avishai Wool, this technical webinar will provide strategies and best practices to help organizations migrate and manage security policies efficiently within a micro-segmented data center.
During the webinar Professor Wool will cover how to:
· Identify and securely migrate legacy applications to a micro-segmented data center
· Effectively define and enforce security policies for East-West traffic
· Manage the micro-segmented data center alongside traditional on-premise security devices
·Identify risk and manage compliance in a micro-segmented data center
· Use network segmentation to reduce the scope of regulatory audits
· Identify and avoid common network segmentation mistakes
The constant barrage of application connectivity and security policy change requests, not to mention the relentless battle against cyber-attacks have made the traditional approach to managing security untenable. In order keep your business both agile and secure – across today’s highly complex and diverse enterprise networks – you must focus your security management efforts on what matters most – the applications that power your business.
Join Joe DiPietro, SE Director at AlgoSec on Tuesday, July 26 at 11am EDT for a technical webinar, where he will discuss an application-centric, lifecycle approach to security policy management – from automatically discovering application connectivity requirements, through ongoing change management and proactive risk analysis, to secure decommissioning – that will help you improve your security maturity and business agility. During the webinar, Joe will explain how to:
• Understand the security policy management lifecycle and its impact on application availability, security and compliance
• Auto-discover and map business applications and their connectivity flows – and why it’s important
• Securely migrate business application connectivity and security devices to a new data center
•Get a single pane of glass that aligns application connectivity with your security device estate
• Identify risk and vulnerabilities and prioritize them based on business criticality
Mosh Itah, Product Line Manager at Palo Alto Networks and Edy Almer, VP Product at AlgoSec
Palo Alto Networks’ next generation firewalls (NGFW) enable security to be managed with extensive policy granularity. However, replacing or migrating traditional firewall policies to next-generation firewall policies is a complex task that often involves thousands of rules and definitions.
AlgoSec seamlessly integrates with Palo Alto Networks NGFWs to simply and intelligently automate App-ID and User-ID security policy change workflows, business application connectivity mapping and compliance reporting across on-premise and cloud environments.
Hear Mosh Itah, Product Line Manager at Palo Alto Networks and Edy Almer, VP Product at AlgoSec discuss how to:
•Centrally manage security policies across multiple devices through Palo Alto Networks Panorama
•Automate policy changes, including hands-free policy push directly to Palo Alto Networks' devices
•View and manage your security policies holistically across a mix of traditional and Next Gen firewalls and cloud security controls
•Allow large geographically-dispersed teams to cooperatively manage security policy changes
PCI-DSS audits are typically a point-in-time “fire drill”, yet the PCI-DSS standards body expects a continuous state of compliance. Unfortunately poor change management processes are often the Achilles Heel in reaching and maintaining this nirvana.
Presented by the renowned industry expert Professor Avishai Wool, this technical webinar will provide best practices and demonstrate specific techniques to help you ensure both a successful audit and maintain a state of continuous compliance with the upcoming PCI-DSS 3.2 standards.
During the webinar Professor Wool will cover:
* What you need to know about the upcoming PCI-DSS version 3.2
* How to ensure your network is compliant now, and maintains continuous compliance
* Identifying the latest vulnerabilities and assessing risk before the auditor does
* How to reduce the scope of your audit, and instantly generate audit-ready reports
* PCI and the cloud – some do’s and don’t’s
Mark Bouchard, Founder of AimPoint Group & Nimmy Reichenber, VP Strategy at AlgoSec
In this webcast AlgoSec and Mark Bouchard of AimPoint Group examine the impact of taking an application-centric approach to security policy management, with tips for improving the visibility, management and security related to complex business application connectivity needs.
AlgoSec is the market leader for security policy management, enabling organizations to simplify and automate security operations in evolving data centers and networks. More than 1,500 of the world’s leading organizations, including 15 of the Fortune 50, rely on AlgoSec for faster security provisioning of business applications, streamlined change management, continuous compliance and tighter security.