Hi [[ session.user.profile.firstName ]]

Briefings Part 1: Anatomy of a Ransomware Attack

Ransomware is currently one of the most disruptive security challenges for enterprises. As it moves from an individual employee's PC to the corporate network, the impact can be significant. Despite research and analysis by security firms and analysts, most don't have a good idea of how a piece of ransomware actually operates, i.e. what is affected and when, what signals to look for, etc. Exabeam researchers have detonated nearly 100 strains of ransomware in the labs and produced a detailed analysis of how a ransomware attack actually unfolds, and how an organization might respond to shut it down. Join Exabeam and (ISC)2 on July 21, 2016 at 1:00PM Eastern and gain a better understanding of the mechanisms of ransomware, how to detect it and shut down an attack.
Recorded Jul 21 2016 60 mins
Your place is confirmed,
we'll send you email reminders
Presented by
Barry Shteiman, Director, Threat Research, Exabeam; Brandon Dunlap, Brightfly
Presentation preview: Briefings Part 1: Anatomy of a Ransomware Attack

Network with like-minded attendees

  • [[ session.user.profile.displayName ]]
    Add a photo
    • [[ session.user.profile.displayName ]]
    • [[ session.user.profile.jobTitle ]]
    • [[ session.user.profile.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(session.user.profile) ]]
  • [[ card.displayName ]]
    • [[ card.displayName ]]
    • [[ card.jobTitle ]]
    • [[ card.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(card) ]]
  • Channel
  • Channel profile
  • Security Briefing: What’s So Hard About Securing Virtual Workloads? Sep 6 2018 5:00 pm UTC 75 mins
    Baseer Balazadeh Sr. Technical Marketing Engineer, Public Cloud, Gigamon; Brandon Dunlap (Moderator)
    As organizations build out their infrastructure across public, private and hybrid platforms, security architects need to extend their enterprise security policies and protocols to all workloads, no matter where they reside. Still, security operations teams are challenged with proactively detecting threats, deviations from organizational policies and violations of industry and organizational compliance for mission-critical applications in the cloud. Why is that? Join Gigamon and (ISC)2 on September 6, 2018 at 1:00PM Eastern where we’ll explore ways to assure compliance and decrease time to detect threats in mission-critical applications, reduce risk by leveraging a common platform across your entire IT environment and ensuring SLAs are met by tightly integrating the public cloud provider’s APIs and critical cloud provider services to automatically detect changes in virtual private clouds and virtual networks.
  • Beyond Office 365: How Your Peers are Taming the Long Tail of SaaS Apps Recorded: Aug 9 2018 61 mins
    Salim Hafid, Marketing Manager, Bitglass; Brandon Dunlap (Moderator)
    The long tail of SaaS is growing rapidly. Today, thousands of unmanaged "Shadow IT" applications are used in every major enterprise around the globe and IT departments have little visibility or control over these rogue apps. While the challenge was first simply to secure major SaaS platforms like Office 365, the new reality is a “cloud and mobile-first world” where employees often use new applications that aren’t approved and put corporate data at risk. Join Bitglass and (ISC)2 on August 9, 2018 at 1PM Eastern for the final part of this Security Briefings series where we’ll discuss how leading organizations are evolving their security to solve these challenges, what organizations are prioritizing when evaluating a solution and how zero-day technologies built for a cloud-first world are able to identify, categorize, and secure unknown apps.
  • 2018 Security Congress Preview – Cloud Security Recorded: Jul 24 2018 56 mins
    Mike Brannon, Dir, Infrastructure & Security, Nat'l Gypsum; Eric Fiterman, Consultant, Tyler Smith, IT Analyst, John Deere
    (ISC)2 will hold its Security Congress 2018 in New Orleans, LA, October 8th – 10th. This conference will bring together 2000+ attendees and over 100 educational sessions. One of the 13 tracks that are being offered with focus on Cloud Security and challenges practitioners face when dealing with all things cloud. On July 24, 2018 at 1:00PM Eastern, join (ISC)2 and several of the speakers who’ll be presenting in the Cloud track as we preview their sessions, get an idea of what will be discussed and discuss the state of cloud security today.
  • Mind the Gap: The 5 Most Common Cloud Security Oversights Recorded: Jul 12 2018 60 mins
    Jacob Serpa, Product Marketing Manager, Bitglass, Brandon Dunlap (Moderator)
    Even with a renewed focus on security, cloud applications have introduced new risks that many organizations have yet to address. Powerful productivity platforms have been widely deployed in an effort to enable employee communication and facilitate collaboration. Apps enabling employee communication and collaboration cannot be secured with traditional firewalls and gateways. They require a fundamental rethinking of security – a shift from endpoint and network-centric protection to data protection. Join Bitglass and (ISC)2 on July 12, 2018 at 1:00PM Eastern as we explore the five most common security oversights that may put your cloud data at risk.
  • Gigamon Briefing Part 3 - Improving Security Using Metadata Recorded: Jun 28 2018 62 mins
    Preetham Gopalaswamy, Head of Product Management, Gigamon; Brandon Dunlap, Brightfly (Moderator)
    Imagine what a security analyst could deduce if they had visibility into all the common applications flowing through their network. They could optimize the data being sent to security tools, correlate information across the various protocols to determine who is talking to whom and get visibility into malware and bad actors that may be hiding on the network. Many enterprises aggregate information from various sources, such as events and logs from DNS servers, web servers and security tools, to hunt for threat events and indicators of compromise. But these are not reliable sources; logging can be turned off inadvertently or for performance reasons. Raw network data is the ultimate source of truth – but sending it all to a SIEM can become very expensive. Join Gigamon and (ISC)2 on Thursday, June 28, 2018 at 1:00PM Eastern for a discussion on how visibility into your application traffic is elemental to security, how application metadata can provide context of potential threat events and to more easily enforce corporate compliance.
  • Taming the Cloud Together – CCSP & CCSK Cloud Certification Synergy Recorded: Jun 12 2018 58 mins
    David Shearer, CEO, (ISC)2; Jim Reavis, CEO, CSA; Kevin Jackson, GovCloudNetwork ; Rich Mogull, Securosis; B. Dunlap (Mod)
    Certain things go together to make the sum of their parts that much better. Peanut Butter and Jelly. Lennon and McCartney. Batman and Robin. In the ever-changing world of the cloud, cyber security professionals need continuous training and certifications to stay up-to-speed and pairing (ISC)2’s CCSP (Certified Cloud Security Professional) with CSA’s CCSK (Certificate of Cloud Security Knowledge) can put any cyber security practitioner ahead in terms of knowledge, skills and job opportunities. On June 12, 2018 at 1:00PM Eastern, join David Shearer, (ISC)2’s CEO and Jim Reavis, CSA’s CEO, along with other subject matter expects as we explore the differences between each program, the training options available for each, and how these programs are synergistic in nature and together were designed to build on one another.
  • Briefings Part 1: CASBs in the Wild - The Most Leveraged Cloud Security Policies Recorded: Jun 7 2018 59 mins
    Salim Hafid, Product Marketing Manager, Bitglass; Brandon Dunlap, Brightfly (Moderator)
    Cloud security is top of mind for all organizations as they migrate to SaaS and IaaS platforms like Office 365 and AWS, but many are grappling with selecting solutions that best balance employee privacy, productivity, and data integrity. While most enterprises are already following security best practices on-premises, few have extended those practices and policies to the cloud. Cloud access security brokers (CASBs) have emerged as the go-to solutions for real-time data and threat protection in the cloud. Purpose-built to solve some of these challenges, CASBs feature a suite of capabilities that can implement granular policies around data at access and at rest. Join Bitglass and (ISC)2 on June 7, 2018 at 1:00PM Eastern for a Security Briefing as we explore the most leveraged security policies necessary to protect corporate data in a cloud and mobile-first world.
  • Organizational Dynamics of Information Security Recorded: Jun 5 2018 60 mins
    Daniel Kennedy, Research Director, 451 Research; Brandon Dunlap, Moderator
    Positioning Information Security within the enterprise presents its own set of challenges. Our recent survey data from hundreds of senior security and IT leaders like you uncovered a number of systemic security challenges – from skills shortages to retention strategies; not to mention responding to new challenges around cloud and IoT, and other organizational and operational issues. Join 451 Research and (ISC)2 on June 5, 2018 at 1:00PM Eastern as Research Director and former CISO Daniel Kennedy discusses this survey data and takes questions from the audience.
  • Briefings Part 2 - Threat Detection in TLS: The Good, Bad & Ugly Recorded: May 31 2018 59 mins
    Ian Farquhar, Global Security Strategist, Gigamon; Brandon Dunlap, Brightfly (Moderator)
    While TLS (formerly known as SSL) has become the de facto way of encrypting data in motion on networks, it can also hide threats from your InfoSec team. As the volume of encrypted traffic continues to grow, organizations become even more vulnerable to encrypted attacks, hidden command and control threats and data exfiltration exploits that go undetected. Making this situation even more complex, the TLS 1.3 draft 28 proposal, ratified at the IETF 101 conference in London and now moving toward official RFC status, has actually removed the visibility which was widely deployed for threat identification in TLS 1.2. On one hand, encryption is moving toward ubiquity but on the other, we need to detect when threat actors use it too. Join Gigamon and (ISC)2 on May 31, 2018 at 1PM Eastern where we’ll discuss the necessity of deploying TLS decryption in the core of networks and will explore innovative architectures that deliver that capability while maintaining availability and reliability.
  • Briefings Part 1: Using Inline Security Tools to Achieve Your Security Goals Recorded: Apr 26 2018 60 mins
    Patrick Riley, Principle Product Manager, Gigamon; Brandon Dunlap, Moderator
    Inline security tools operate by actively preventing threats in your network, but deploying and optimizing these tools presents several challenges to both network and security engineers. The downsides can include a potential point of failure, degradation of network and application performance, difficulty to scale and upgrade. The use of a next-generation packet broker and its inline bypass functionality can mitigate these challenges. Join Gigamon and (ISC)2 on April 26, 2018 at 1:00PM Eastern for Part One of a Security Briefings series where we will examine how inline bypass can overcome physical deployment obstacles, maximize network availability, increase the scale of inspection and reduce the impact to network performance.
  • Briefings Part 3 - Hybrid Cloud – What it is & How Do You Secure It? Recorded: Apr 5 2018 59 mins
    Speakers: Ajay Uggirala, Product Marketing, Imperva; Marty Jost, Sen Product Mktg Mgr; Brandon Dunlap, Brightfly (Moderator)
    The advantages offered by a cloud-based environment makes it an easy decision for most companies to have apps and data both on-premises and in the cloud. Still, there are numerous critical choices to be made that can transform the complexities of the migration process into a relatively smooth transition—especially regarding application and data security. Join Imperva and (ISC)2 on April 5, 2018 at 1:00PM Eastern as we define the hybrid cloud and talk about best practices to secure your company assets as you start managing and securing them both on-premises and in the cloud.
  • Briefings Part 3: The Rise of Bots: Top 5 Bot Driven Threats & How to Stop Them Recorded: Mar 29 2018 59 mins
    Brian McHenry, Senior Manager, Systems Engineering, F5; Brandon Dunlap, Moderator
    Bots are now teetering on the edge of being the majority of traffic on the internet. It’s not all bad news, as there are plenty of useful bots that make both our work and personal lives more productive. However, malicious bot and botnet creators have introduced more sophistication into their bots, making them harder to detect, and the resulting threats are becoming more common place. Join F5 and (ISC)2 on March 29, 2018 at 1:00PM Eastern as data gathered from internal threat research teams is presented that explains how bots are being created, the top application threats driven by bots, and how to detect and better protect to your business.
  • Part 2 – Time’s Up! Ready or Not, Here Comes GDPR Recorded: Mar 27 2018 59 mins
    Speakers - Chuck Gaughf, Sen Mgr, Infosec, (ISC)2; Graham Jackson, General Counsel, (ISC)2; Bruce Beam, Dir of Infrastructure
    In Part 1, we examined what GDPR is, what the requirements are and how organizations will be impacted. In Part 2, our panel will discuss more on the potential impacts of GDPR across a typical organization (including assessments, encryption, audit & controls and the impact to each department, from finance to marketing) and what the organization should be doing to plan for GDPR. Join (ISC)² on March 27, 2018 at 1:00PM Eastern, as (ISC)² discusses these topics and answers questions from the audience about this important and looming regulation.
  • Part 1 - Time’s Up! Ready or Not, Here Comes GDPR Recorded: Mar 13 2018 60 mins
    Speakers - Chuck Gaughf, Sen Mgr, Infosec, (ISC)2; Graham Jackson, General Counsel, (ISC)2; Bruce Beam, Dir of Infrastructure
    May 25, 2018 is coming like a freight train. The General Data Protection Regulation (GDPR) goes into effect on that date, and organizations of all sizes (that collect data from EU residents) need to be ready for this new regulation. With the new regulation, the definition of personal data has been expanded and it applies to wherever data is sent, processed or stored. On March 13, 2018 at 1:00PM Eastern, (ISC)² kicks off the 1st part of the 2-part webcast where we will focus on what is GDPR, what the requirements are and how organizations will be impacted. Part 2 will expand on potential impacts and examine what organizations should be putting into their planning for GDPR.
  • Briefings Part 2: Top Three Ways To Tackle API Security Recorded: Mar 8 2018 59 mins
    Speaker: Ryan Potter, Director of Cloud Strategy and Alliances, Imperva; Brandon Dunlap, Moderator
    Security is an essential element of any application and increasingly critical for API-driven architectures in hybrid and public cloud environments. New threats and vulnerabilities emerge constantly, and enterprises find themselves struggling to protect these APIs from attacks. Join Imperva and (ISC)2 for Part 2 of our Security Briefings series on March 8, 2018 at 1:00PM Eastern where we will discuss proven approaches to making API security a priority through understanding how common types of attacks such as distributed denial of service (DDoS) can target APIs, what are the steps to proactively secure development frameworks, and how to enforce identity across enterprise environments.
  • Briefings 2- Make Faster, Smarter Decisions about Insider Threats Recorded: Mar 2 2018 59 mins
    Laurene Hummer, Offering Mgmt, IBM Security; Rohan Ramesh, Offering Mgmt, QRader UBA; Brandon Dunlap, Moderator
    Every second counts in the fight to prevent, detect and respond to an Insider Threat. You need to be able to make smarter, faster decisions when it comes to detecting suspicious behavior and preventing further damage. Join this webinar to learn about how you can properly secure access to your critical crown jewel data, automate the process of identifying risky users through user behavior analytics, and shutting down their access with identity governance. See how integration between security analytics and identity and access management tools provide automated, user-centric threat mitigation.
  • Security > Convenience? What 4,000 Users Taught Us about the Future of Identity Recorded: Mar 2 2018 59 mins
    Brian Mulligan, Product Manager, IBM Security; Lane Billings, Product Marketing Mgr, Access & Authentication, IBM;
    In a world powered by consumer choice, our authentication programs are only as effective as their adoption rates – by real, living-breathing, error-prone human beings. IBM recently conducted a research study of 4,000 adults called The Future of Identity, designed to examine what people around the world really think about various old and new methods of signing on (passwords/biometrics/multifactor authentication), what they’re using today, and what they plan to use in the future. Insights from the Future of Identity report have been covered around the world by publications like Politico, TechRepublic, and Engadget, and even featured on NBC's Today Show. Join IBM Security's authentication experts as we cover some never-before-seen data on the 'authentication adoption curve' and discuss practical guidance to put those insights into action.
  • Briefings Part 2: The Hunt for IoT and it’s Threat to Modern Life Recorded: Mar 1 2018 59 mins
    Sara Boddy, Director of F5 Labs Threat Research, F5; Brandon Dunlap, Brightfly (Moderator)
    Our modern world depends on healthy, functioning, IoT devices. Unfortunately many of them are terribly insecure. Cyber attackers know this and have been aggressively compromising IoT devices for years. For the past two years, F5 Labs has been tracking cyber attackers as they hunt, infect, and build “Thingbots” - botnets made from IoT devices. This hunt has developed sizable thingbots like the infamous Mirai, and many others that have the capability to launch globally destructive attacks. These attacks can significantly impact modern life because of IoT’s presence within power systems, transportation systems, airport monitors, emergency warning systems, and security cameras. Join F5 and (ISC)2 on March 1, 2018 at 1:00PM Eastern for the 2nd Part of our three part Security Briefings series where we’ll explore the threat actors behind these attacks, the geographical targets of their attacks, how they are evolving their attack methods, and the types of devices impacted. We’ll include tips on how to start protecting yourself personally, and what you should be doing to protect your businesses.
  • Briefings Part 1: Demystifying Decentralized Identity Recorded: Feb 23 2018 61 mins
    Sridhar Muppidi, VP and CTO, IBM Security, Brandon Dunlap, Moderator
    Today, the average internet user has lost control over their personal information, the result of endless requests to create accounts validated with personal data like SSN/home address/date of birth; and the persistence of hackers and ne’er-do-wells to compromise that data. Users are demanding simpler and more portable ways to manage their identities online, and organizations are joining the charge, as they look to reduce the cost, risk and liability of managing their own identity stores in siloes. A leader in blockchain and cybersecurity, IBM is one of many technology providers leading the movement toward Decentralized Identity systems that aim to put people back in control of their data. Join tech luminary and IBM CTO Dr. Sridhar Muppidi as we move past the buzzwords, exploring the basic terminology and adoption patterns of Decentralized Identity. Listeners will gain a deeper understanding of what it will take to make this vision a reality, and walk away with best practices to get started.
  • March of the Bots: How to Deal with the Onslaught Recorded: Feb 8 2018 60 mins
    Dvir Shapira, Dir. Prod mgmt, Imperva; Robert Hamilton, Dir, prod mktg, Imperva; Brandon Dunlap (Moderator)
    Bots. They generate over half of the internet traffic and over half of the bots are malicious (or of questionable value). Bots can make your systems vulnerable to scraping bots, account takeover bots, impersonators, spammers and hackers. On February 8, 2018 at 1:00PM Eastern, Impreva will share data gathered from their security research team about the most recent bot trends, how bot traffic is changing, where it’s coming from, and the top actions you should be taking to mitigate the effects of bad bots on your websites. Join us for Part 1 of a 3 Part Security Briefings series and understand how commercial services take a multi-layer approach to bot mitigation and management and whether one of these services may be appropriate for you.
(ISC)2 Security Briefings - In-depth examination of infosec topics.
(ISC)2 Security Briefings brings attendees multi-part series on cutting edge infosecurity topics that gets deeper into the subject matter and technologies presented by subject matter experts.

Embed in website or blog

Successfully added emails: 0
Remove all
  • Title: Briefings Part 1: Anatomy of a Ransomware Attack
  • Live at: Jul 21 2016 5:00 pm
  • Presented by: Barry Shteiman, Director, Threat Research, Exabeam; Brandon Dunlap, Brightfly
  • From:
Your email has been sent.
or close