Hi [[ session.user.profile.firstName ]]

OpenDNS - FireEye Technology Integration

Matt Barrett, SE at OpenDNS, and John Tarn, SE at FireEye discuss the technology integration between FireEye's real-time threat detection and the global enforcement of OpenDNS. They include a whiteboard discussion of how to extend protection to off-network users.
Recorded Jul 15 2015 7 mins
Your place is confirmed,
we'll send you email reminders
Presented by
Matt Barret, OpenDNS and John Tarn, FireEye
Presentation preview: OpenDNS - FireEye Technology Integration

Network with like-minded attendees

  • [[ session.user.profile.displayName ]]
    Add a photo
    • [[ session.user.profile.displayName ]]
    • [[ session.user.profile.jobTitle ]]
    • [[ session.user.profile.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(session.user.profile) ]]
  • [[ card.displayName ]]
    • [[ card.displayName ]]
    • [[ card.jobTitle ]]
    • [[ card.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(card) ]]
  • Channel
  • Channel profile
  • How to Prevent, Detect and Respond to Attacks Targeting Endpoints Off-network Recorded: Nov 29 2017 62 mins
    Meg Diaz, Joe Malenfant, and Neil Patel, Cisco
    How to stop the primary point of entry.

    70% of breaches start on endpoint devices. Unfortunately, gaps in protection exist when users and endpoints are off-network, often leaving AV as the only form of protection.

    And reacting to malicious communications and code after attacks launch is simply too late.

    It’s time to prevent, detect and respond to attacks targeting endpoints, both on and off your network before damage occurs.

    Join Cisco security product experts, Meg Diaz, Joe Malenfant, and Neil Patel to learn how you can not only stop attacks before they occur, but contain and remediate threats that evade front-line defenses, anywhere your users travel.

    Register today and reduce your risk of breaches on the endpoint.
  • Blazing the Trail: Changes Facing the Cybersecurity Industry Recorded: Nov 1 2017 59 mins
    Julie Tsai, Sr. Director, Security Operations at Box, Michelle Dennedy, Chief Privacy Officer at Cisco
    Join women leading in cybersecurity, Julie Tsai, Sr. Director, Security Operations at Box and Michelle Dennedy, Chief Privacy Officer at Cisco, for a lively roundtable discussion on security and data privacy.

    They will offer us their perspective on their success, lessons learned in their careers and how women are making their mark on the security industry, in addition to debating key changes and trends facing the cybersecurity industry and how we approach data privacy.

    Register now to join the discussion.
  • How Threat Intelligence Helps You Combat Targeted Malware Recorded: Sep 7 2017 38 mins
    Jeremy Linden of Cisco Umbrella, Jessica Bair of Cisco Threat Grid and Mike Clark of ThreatQuotient
    As malware becomes more complicated and harder to detect, cyber analysts are increasingly inundated with more work. The more menial tasks a security team performs, the less likely they are to have the time to properly analyze or defend against malware. There are steps you can take to defend against malware and protect your organization.

    Join this webinar with experts Jeremy Linden of Cisco Umbrella, Jessica Bair of Cisco Threat Grid and Mike Clark of ThreatQuotient as they discuss how to utilize a Threat Intelligence Platform to enhance malware analysis capabilities and prevent access to malicious domains. Visit the Cisco Marketplace to learn more.

    In the webinar, you will learn to:
    - Streamline malware analysis workflow
    - Add context to malware analysis results using validated threat intelligence
    - Make informed decisions efficiently and effectively
    - Take action from a centralized workbench to minimize your risk window
  • A New Frontier in Cloud Security: The Secure Internet Gateway Recorded: Jul 20 2017 56 mins
    Dan Cummins - 451 Research & Meghan Diaz - Cisco Umbrella
    Your employees are using more cloud apps than ever, and mobile workers frequently work without turning on their VPN. You need new ways to extend protection anywhere your employees work — and you need it to be simple, yet incredibly effective.

    Exciting innovations in network security-as-a-service offer distributed organizations the potential to extend and meaningfully increase security effectiveness. Join this 451 Research webinar with Cisco Security to hear a discussion about new cloud-delivered protection for mobile workers, lean branch offices, and cloud applications.

    In the webinar we will discuss:

    - The changing cloud security landscape
    - The emergence of the Secure Internet Gateway
    - Important buying considerations for companies looking to add these capabilities
  • Shorter, Faster Threat Detection and Response with AlienVault and Cisco Umbrella Recorded: Jun 29 2017 41 mins
    Jeff Olen, Product Manager at AlienVault and Kate MacLean, Product Manager at Cisco Umbrella
    Threats continue to increase in sophistication and frequency, your environment is getting more complex with the addition of cloud infrastructure, and your siloed security tools leave you struggling to get a unified view of your security posture. How can you reduce the time to detect and defend against malware in today’s environment? It’s not enough to wait for malware to reach your network or endpoints before you try to detect and stop it. What if you could identify and block threats earlier? With Cisco Umbrella and AlienVault USM Anywhere, you can.

    Join us for a 45-minute webcast to learn how you can quickly improve your threat detection and response time with AlienVault USM Anywhere and Cisco Umbrella. During this session, you’ll learn about each product and see how the integration enables you to:

    - Focus on threat response and not writing complex security analytics rules
    - Get prioritized, contextual alarms leveraging threat intelligence from both Cisco Umbrella and AlienVault
    - Automate policy enforcement between the platforms for rapid response
    - Enhance threat visibility and reduce mean time to detection & response
  • Anatomy of the attacks: WannaCry ransomware & Google OAuth phishing Recorded: Jun 12 2017 53 mins
    Alex Chiu, threat researcher for Cisco Talos, and Brad Antoniewicz, security researcher for Cisco Umbrella
    On May 3rd, over a million Gmail users granted a fake, but convincing, application full access to their emails and contacts. Two weeks later, a major ransomware attack spread rapidly and affected a multitude of organizations across the world. Needless to say, it’s been a busy month in the infosec world.

    Now that the dust has started to settle, join our security researchers Alex Chiu, threat researcher for Cisco Talos, and Brad Antoniewicz, security researcher for Cisco Umbrella, as they take you through the details of the recent attacks.

    In the session, our researchers will share:

    - Key findings from their research

    - Details uncovered about the attackers’ infrastructure, including analysis of the malware, domains, and IPs used in the attack

    - How Cisco identified and blocked the attacks, including a timeline of events

    - Steps you can take to protect your organization

    We’ll also look ahead at how these types of attacks could potentially evolve over time and how you can better prepare.
  • How Threat Intelligence is Streamlining Security Operations Recorded: May 2 2017 49 mins
    Dr. Dhia Mahjoub, Principal Engineer of Cisco Umbrella Research, & Daniel Hatheway, Sr. Technical Analyst at Recorded Future
    Manually turning data on cyber attacks, vulnerabilities, and exploits into actionable threat intelligence requires a significant investment of time and resources.

    With security talent and budget in short supply, you need to get more from your data, faster.

    Join Dr. Dhia Mahjoub, Principal Engineer of Cisco Umbrella Research, and Daniel Hatheway, Senior Technical Analyst at Recorded Future, to see how you can gain a more complete view of the threat landscape through a new, exciting integration.

    Attendees will learn how to accelerate incident response and streamline security operations, now. Learn how:

    -Cisco Umbrella Investigate provides access to a live view of domains, IPs, ASNs, and malware file hashes, enabling incident responders to pinpoint attackers’ infrastructures and predict potential threats.

    -Recorded Future expands upon the Investigate data from technical, open and dark web sources to further reduce the risk of attackers in the shortest amount of time.

    -Together, they automate threat intelligence across the broadest set of sources to provide the single best defense against threats.

    Register today to see how you can make more informed decisions, faster.
  • Introducing the industry's first Secure Internet Gateway in the cloud. Recorded: Mar 29 2017 57 mins
    Brian Roddy, Engineering Executive, Cloud Security and Bobby Guhasarkar, Director Product Marketing, Cisco Umbrella
    The world is evolving… from how we work to where we work and how we access our sensitive data. Is your security keeping pace with the changes?

    Find out how you can block threats like never before with the industry’s first Secure Internet Gateway in the cloud.

    Join Cisco Security Experts: Brian Roddy, Engineering Executive, Cloud Security and Bobby Guhasarkar, Director Product Marketing, Cisco Umbrella, on Wednesday, March 22nd at 10am PT for a can’t miss review of what needs to be your first line of defense in 2017.

    Attendees will see why Cisco Umbrella provides visibility unlike any other security platform:

    -Protects users on and off network
    -Provides broadest coverage of malicious destinations and files
    -Defends against known and emergent threats over all ports and protocols

    Register and learn why you need a Secure Internet Gateway that’s easy to deploy and manage, uncovers attacks before they launch AND integrates with your existing security investments.

    Your security starts here.
  • Hunting & Disrupting Cyber-Criminals Recorded: Feb 28 2017 62 mins
    Jeremy Linden, Sr. Product Manager Cisco Umbrella, Dhia Mahjoub, Principal Engineer Cisco Umbrella
    Warning. It’s Hunting Season.

    Hackers don’t wear blaze orange. Sophisticated adversaries are targeting you, your employees and your data. Let’s face it, yesterday’s traditional security defenses leave you exposed and render your corporate network open terrain. Take the target and put it on the attacker’s back.

    Join a panel of security experts: Jeremy Linden, Sr. Product Manager Cisco Umbrella, Dhia Mahjoub, Principal Engineer Cisco Umbrella, Craig Williams, Sr. Technical Leader, Cisco Talos, and Robert Simmons, Director of Research, ThreatConnect, for an inside look at how to identify attackers, stalk their internet infrastructures and disrupt cyber-criminals before they disrupt you. Hunt or be hunted.
  • DNS - A New and Effective Way To Stop Ransomware Without Impacting Performance Recorded: Nov 29 2016 58 mins
    John Kindervag, Vice President, Principal Analyst at Forrester and OpenDNS Senior Product Manager, Barry Fisher
    Seasons change. Trends change. Isn’t it time your approach to security changes, too?

    DNS is used by any device on your network. DNS can see any connection destined to anywhere on the Internet, both on or off the corporate network. Are you taking advantage of this secret weapon?

    Join keynote speaker John Kindervag, Vice President, Principal Analyst at Forrester and OpenDNS Senior Product Manager, Barry Fisher, as they discuss the latest challenges facing security practitioners and how using DNS can be an effective way to stop malware, like ransomware, without impacting performance.

    Attendees will learn:
    -The value of identifying and understanding attacker internet infrastructures used to stage threats.
    -Why signature-based antivirus, firewalls, and proxy gateways miss most command & control (C2) callbacks.
    -How DNS can prevent threats and provide a new layer of breach protection for organizations.

    Whether you are a small business without a dedicated security team or a large enterprise, leveraging DNS in your security stack can block 50% more threats than AV or firewalls alone.
  • The Holy Grail of Incident Response: A Single, Correlated Source of Intelligence Recorded: Oct 18 2016 27 mins
    Atheana Fulgencio & Jeremy Linden
    Time is of the essence when you’re investigating security incidents. While it’s critical to find out as much as you can about the incident from internal sources (logs, network activity, endpoint data, etc.), you also need context about what type of threat you’re facing.

    When you come across an domain, IP, or file hash during investigations, you need to answer dozens of questions ASAP.

    -Is this malicious? What’s known about it?
    -What other domains, IPs, or file hashes are related?
    -Is this a widespread threat or more targeted?

    And to answer these questions today, you probably need to go to multiple sources and manually piece the puzzle together. What if you had a single, correlated source of intelligence instead?

    OpenDNS Investigate now includes malware file data from Cisco AMP Threat Grid. Join our webcast to learn how Investigate provides the most complete view of the infrastructure used in attacks. With Investigate, you can:

    -Instantly validate malicious domains, IPs, and file hashes
    -Identify the Internet infrastructure and malware files related to attacks
    -Uncover infrastructure being staged for future attacks
    -Speed up investigations and stay ahead of threats
  • The modern way of hunting - How three CTOs tackle incident response Recorded: Aug 22 2016 53 mins
    OpenDNS CTO, Dan Hubbard, Lancope CTO, TK Keanini, and Threat Grid CTO, Dean De Beer
    Your corporate network is open terrain. And it's hunting season. Malware, ransomware, and phishing scams are lurking. It's time to identify these threats to the enterprise earlier in the kill-chain and protect your employees, your data, and your network. The next evolution of Incident Response is here.

    Isn't it time you adapted your security stack to gain visibility into threats across you endpoints, network, and cloud? We can arm you with the tools you need most to see what’s happening not just on your network and your endpoints, but also out on the Internet in the wild.

    Join the product CTO’s from both OpenDNS and our Advanced Threats Groups, Dan Hubbard, Dean De Beer, and TK Keanini as they review how to modernize your response with critical solutions that provide visibility into the network, endpoint, and cloud and additionally talk about how to use these tools to investigate threats in the present, retrospectively, and into the future.

    Join not one, but three CTOs from OpenDNS, AMP Threat Grid and Lancope for a complete review of what it takes to accelerate investigations, decrease incident response times, and uncover potential attacks before they are launched.

    Hear from OpenDNS CTO, Dan Hubbard, Lancope CTO, TK Keanini, and Threat Grid CTO, Dean De Beer on August 22nd at 10am PT. You’ll learn:

    -Strategies for addressing customer incident response challenges across Network, Endpoint and Cloud
    -Three unique approaches for digging deeper into what happened before, during, and after an attack
    -How together OpenDNS, AMP Threat Grid and Lancope combine to give you the best incident response portfolio

    Register now and let the hunting begin.
  • Are ransomware attacks holding the healthcare industry hostage? Recorded: Jun 29 2016 57 mins
    Barry Fisher, Sr. Product Manager at OpenDNS
    Healthcare has become criminals most lucrative target. Why? Because medical records are worth 10 times that of credit cards. The recent digitization of the healthcare industry has rapidly expanded the attack surface to include electronic healthcare records, patient portals, IoT-enabled medical devices and more.

    Imagine losing access to all of your patient data—only to find out you are being extorted by criminals who require payment to get it back. This type of attack can disrupt life & death technologies that medical practitioners rely on to perform their jobs. Ransomware adds up to a significant threat to the healthcare industry.

    But, there are steps you can take to actively reduce the number of ransomware infections across your organization. OpenDNS and Cisco are on the forefront of helping our healthcare customers against various versions of ransomware.

    Hear from Barry Fisher, Sr. Product Manager at OpenDNS, to learn the simplest way for healthcare security practitioners to stay ahead of Ransomware attacks. You’ll learn how to:

    -Reduce ransomware infections across your organization
    -Identify the infrastructure used by attackers to connect, control and transfer the encryption keys
    -Protect medical IoT endpoints, patients’ devices and even devices that don’t run agents, like heart monitors and infusion pumps

    Register now to learn how to start covering your healthcare security gaps.
  • The Best Way to Operationalize Threat Intelligence Recorded: Apr 26 2016 54 mins
    Barry Fisher, Sr. Product Marketing Manager at OpenDNS, and Joe Malenfant, Product Marketing Manager at Cisco AMP Threat Grid
    Based on our research, it takes 100-200 days for most organizations just to detect a new threat–before any action can be taken. How many more days go by before new threat intelligence is enforced?

    Where are you gathering this intelligence from? Where and how are you enforcing it? Feed providers, network appliances, endpoint agents, or everywhere?

    In this webinar, you’ll learn how:
    -Both time-to-detection and attack dwell time is reduced by orders of magnitude through security automation.
    -Integrating threat analytics in your security stack creates intelligence specific to your organization.
    -You’ll prioritize investigating malicious domains and files involved with severe threats compromising critical systems.
  • Tracking the most significant cyber threat: Ransomware Recorded: Apr 13 2016 52 mins
    Dan Hubbard, CTO at OpenDNS, and Dean De Beer, Principal Engineer at AMP Threat Grid
    Imagine losing access to all of your critical data — only to find out you are being extorted by criminals who require payment in order to get it back. This is happening at an alarming rate and is commonly referred to as Ransomware.

    While these attacks are most prevalent on employee laptops, ransomware is now targeting departmental file servers and other critical infrastructure.

    But, there are steps you can take to better protect your company and reduce the risk of ransomware infections — and OpenDNS and Cisco have been at the forefront helping our customers against various versions of ransomware.

    Join this webcast with experts from Cisco including Dan Hubbard, CTO at OpenDNS, and Dean De Beer, Principal Engineer at AMP Threat Grid, as they discuss steps you can take to reduce the risk of ransomware infections.

    Learn how:
    - Ransomware has evolved and what we know about it today
    - To predict what ransomware might do next
    - You can identify the Internet infrastructure used by the attackers to connect, control, and transfer the encryption keys
  • Go Beyond the Firewall with DNS Recorded: Mar 23 2016 36 mins
    David Ulevitch, founder of OpenDNS and Vice President of Cisco’s Security Business Group
    Nothing stops threats earlier than DNS-layer network security. Today’s security appliances and agents have to wait until malware reaches the perimeter or endpoint before they can detect or prevent it. That’s not the case with OpenDNS.

    DNS is known for being a fundamental component in how we connect to the Internet, but it’s also a revolutionary way of providing security visibility and enforcement—whether users are on or off the corporate network. With OpenDNS Umbrella, it’s also the fastest and easiest layer of security to deploy everywhere.

    Join this webcast with David Ulevitch, founder of OpenDNS and Vice President of Cisco’s Security Business Group, as he explains:

    -How DNS can be used for security beyond the firewall
    -How OpenDNS Umbrella protects devices on and off the corporate network
    -How easy it is for enterprises to deploy this additional layer of network security worldwide
  • Why companies are shifting security to the cloud to block malware. Recorded: Feb 24 2016 31 mins
    There are two dilemmas in security. First, your threat protections must wait until malware reaches your perimeter or endpoint before they can detect and prevent. Second, your mobile employees must keep their VPN always on for your full security stack to have control and visibility.

    Malware as well as command & control servers and phishing sites reside on the Internet. OpenDNS leverages the Internet’s existing infrastructure—the Domain Name System—to block these threats. Blocking threats on the Internet results in a 2-10X reduction in break-fix busy work and security alert noise.

    Your mobile employees get work done using Office 365, Salesforce, Box, and other cloud-hosted business apps, which means they don’t turn the VPN on. OpenDNS’s cloud-delivered network security service is a new layer of breach protection and Internet-wide visibility on and off the corporate network. You can even extend existing threat protections beyond your perimeter using our API-based integrations.

    Learn from OpenDNS’s product experts why companies are shifting security to the cloud. And why it takes only 30 minutes to protect any device, anywhere.
  • Learn Why Manufacturers are Using the Cloud to Deliver Infosec Recorded: Jan 28 2016 60 mins
    Jack Nichelson and Kevin Merolla, Chart Industries and Barry Fisher, OpenDNS
    We all know that security gaps are widening due to technology shifts and advanced threats. Whether you are in finance, energy, tech, or manufacturing, the infosec challenges are much the same.

    Chart Industries — a global manufacturer with 5,000 employees and 45 locations — was facing a huge volume of malicious activity every day resulting in excessive break-fix work for their small security team. They had thousands of unmanaged mobile and guest devices connecting to their networks. And neither web proxies nor endpoint security could fully protect them. They needed a new layer of malware and breach protection. But it also had to be a painless deployment and it needed to be a transparent experience for their employees and guests.

    Hear directly from Jack Nichelson, Chart’s Director of IT Infrastructure and Security to learn:
    -Why they use a layered approach to security and how OpenDNS complements their security stack
    -How long it took to deploy OpenDNS Umbrella globally
    -How his security analyst, Kevin Merolla, quickly responds to incidents or false positives using OpenDNS Investigate
  • Cover your “What happens off-network, stays off-network” security gap Recorded: Nov 19 2015 55 mins
    Barry Fisher, Sr. Product Marketing Manager, Bobby Guhasarkar, Director or Product Marketing
    We know that “What happens in Vegas, stays in Vegas” is not a winning network security strategy. Yet how would you know what happens on the Internet when your employees are off the corporate network? If you’re thinking VPN? Think again. Why would employees VPN when they’re working in Office 365 or Google Docs?

    We need visibility everywhere. It is the foundation for security. We also need consistent enforcement of our policies and protections. But we’ve lost both these days, now that employees work anywhere, anytime.

    Learn how:
    OpenDNS Umbrella restores visibility and enforcement easier than any other solution.
    Unlike VPN’ing, we do not add latency, hog memory, or burden the end-user.
    Unlike endpoint protections, we block threats before the first victim is hit.
  • OpenDNS Umbrella Recorded: Oct 20 2015 2 mins
    OpenDNS Umbrella is a cloud-delivered network security service
    that protects any device, no matter where it’s located.
Webcasts and videos for security professionals.
Cisco Umbrella provides a cloud-delivered network security service that blocks advanced attacks, as well as malware, botnets and phishing threats regardless of port, protocol or application. Our predictive intelligence uses machine learning to automate protection against emergent threats before your organization is attacked. Umbrella protects all your devices globally without hardware to install or software to maintain.

Learn more: https://umbrella.cisco.com/

Embed in website or blog

Successfully added emails: 0
Remove all
  • Title: OpenDNS - FireEye Technology Integration
  • Live at: Jul 15 2015 4:50 pm
  • Presented by: Matt Barret, OpenDNS and John Tarn, FireEye
  • From:
Your email has been sent.
or close