Name: CA Briefings Part 2: Step 1: Protecting the Front Door with SSO & Authentication
Start: 2016-10-06T17:00:00Z
End: 2016-10-06T17:00:59.000Z
Location: BrightTALK
Rating: 4

ISC2 Security Briefings brings attendees both stand alone webcasts and multi-part series on cutting edge infosecurity topics that gets deeper into the subject matter and technologies presented by subject matter experts.

The human factor remains a gateway for cybercriminals as phishing and ransomware attacks continue to increase. Cases like those of Uber and Rockstar Games have also shown how cybercriminals are evolving at a rapid pace, exploiting human psychology and our emotions - and hacking our brains. But how do attackers use behavioral science specifically against us?  What can we do to protect those around us?  

On November 2, 2023 at 1:00 p.m. Eastern/ 10:00 a.m. Pacific, So Safe and ISC2 take a look at social engineering innovations in 2023 to learn more about the latest strategies cybercriminals are using.

Hack the Brain: Social Engineering Innovation in 2023

Changes in how we build, run and secure information systems have also changed how we look at authentication and access control. The emerging concept of identity is transforming the ways that humans and non-human actors alike make use of data and compute power. At the same time, organizations’ focus on identity also means that it has become a focus for attackers. To assess the ways that old and new attacks are targeting digital identities, F5 Labs is presenting findings from our 2023 Identity Threat Report: The Unpatchables. 

In a follow-up to the September session on credential stuffing, this talk will focus on phishing and multi-factor authentication bypass techniques. As phishing has grown over the last several years, its tools and tactics have transformed. We will identify which organizations are most targeted and explore recent developments that make it harder to spot and trickier to mitigate, using a combination of Dark Web intelligence and quantitative methods. 

This talk On October 19, 2023 at 1:00 p.m. Eastern/10:00 a.m. Pacific will cover recent developments in attacker approaches to circumvent multi-factor authentication, what these developments mean for defenders, and which forms of MFA are able to resist the new approaches.

Findings From the 2023 Identity Threat Report, Pt 2: Phishing & MFA Bypass

New to the security industry? Or thinking about transitioning into an information security role? If so, this webinar is for you. Join Steve Piper, Founder & CEO of CyberEdge (and proud CISSP), as he provides a one-hour ‘crash course’ on the entire security industry, including:

- Size and growth of the security industry
- Useful vocabulary terms and buzz words
- Five types of cyberthreat actors 
- Modern cyberthreats and tactics
- Categories of security defenses
- Common security job roles
- Security industry ecosystem

Security Industry 101: A 'Crash Course' for Security Newbies

The security winds are rapidly shifting from "trust but verify" models to ones that assume that every activity is insecure until proven otherwise. In an age of high-profile security attacks, increasingly sophisticated phishing schemes, and ransomware threats run amok, organizations of all shapes and sizes are urgently seeking new ways to protect their workforce, their finances, their reputations, and their business operations. 

On September 26, 2023 at 1:00 p.m. Eastern/ 10:00 a.m. Pacific, hear how security and networking teams today are avoiding the latest attacks and nullify exploits by choosing the right cloud-delivered technologies that enforce zero trust for global secure access.
In this session you will hear:
• Why organizations around the globe are prioritizing the implementation of a SASE framework, specifically with SSE
• How SSE can enforce zero trust access to help protect access to Private apps, SaaS apps, and the open internet, all in a single solution.

Making Zero Trust Possible with a Security Service Edge (SSE) approach

Microsoft 365 is a mission critical tool for organizations facilitating global collaboration, remote work, and cloud computing. While Microsoft provides native email security capabilities via Exchange Online Protection (EOP) and through additional security tools like Microsoft Defender for Office 365, organizations needs to augment these defenses in order to protect against modern sophisticated email threats such as business email compromise (BEC), advanced phishing, and account takeover. With over 88% of productivity software market share, Microsoft is the primary target of choice for threat actors. In 2022, cyber criminals sent more than 30 million messages that abused the Microsoft brand and products. 

On September 21, 2023 at 1:00 p.m. Eastern/10:00 a.m. Pacific join Proofpoint and ISC2 for a live webinar with threat experts and learn how to break the attack chain and stop advanced email threats. 

Join the webinar to hear:
• Why threat actors are targeting your Microsoft 365 environment 
• Why industry analysts recommend supplementing native Microsoft 365 capabilities 
• What key areas you need to augment in your Microsoft 365 platform 
• Best practices for strengthening your Microsoft 365 security.

How to Augment Your Microsoft 365 Security

Governance, risk and compliance (GRC) professionals play a vital role in organizations, aligning IT goals with objectives as they manage cyber risks and achieve regulatory needs. This webinar talks about governance, risk and compliance globally, as well as specific core frameworks in the North American region. 
Get answers to these questions and more:
- What is GRC?
- Why is GRC important for cybersecurity?
- What are the core frameworks for the North American Region?
- How is GRC relevant in every industry?
- What is the pathway to CGRC?

Learn how CGRC certification demonstrates that you have the knowledge and skills to integrate governance, performance management, risk management and regulatory compliance within an organization.

Register today!

Panelists: AJ Yawn, Partner in Charge, Product and Innovation
Mohamed Malki, Director, Enterprise Security Architecture
Chris Stanley, Exam Content Developer

Moderator: Brandon Dunlap

Everything You Need to Know about CGRC in North America

Changes in how we design, build, run and secure information systems have also changed how we look at authentication and access control. The emerging concept of identity is transforming the ways that humans and non-human actors alike make use of data and compute power. At the same time, the emergence of identity as a focus for organizations also means that it has become a focus for attackers. To assess the ways that old and new attacks are targeting digital identities, F5 Labs is presenting findings from our 2023 Identity Threat Report: The Unpatchables. 

On September 19, 2023 at 1:00 p.m. Eastern/10:00 a.m. Pacific this session will focus on credential stuffing. This will be the first of two sessions. We will quantify its prevalence, explore targeting trends such as attackers’ choice of industries and endpoints, and outline credential stuffing tactics, techniques and procedures (TTPs). We will also take a deeper look into some case studies, with a particular focus on the differences between basic and sophisticated attacks. This talk will also assess the  stolen credentials supply chain before focusing on mitigation strategies for combating credential stuffing.

Findings From the 2023 Identity Threat Report, Pt 1: Credential Stuffing

The impact of artificial intelligence (AI) on the cybersecurity industry is among the hottest topics discussed and debated amongst security professionals. From a positive perspective, AI has infused a myriad of threat detection and prevention platforms with newfound methods for uncovering sophisticated threats. It has also helped short-staffed security teams automate complex processes, such as incident validation and response. But AI also comes at a price. Join Steve Piper, Founder & CEO of CyberEdge (and proud CISSP), as he addresses the good, the bad, and the ugly outcomes of artificial intelligence.

The Impact of Artificial Intelligence on the Cybersecurity Industry

Ever wonder what Policy-Based Access Control (PBAC) is?
Why is Policy-Based Access Control Crucial to the Modern Business and how PBAC overcomes the management and scalability challenges of RBAC and ABAC?

In this webinar, you will gain a clearer understanding of how PBAC differs from traditional access control models and learn how to use effective policies to protect sensitive data and ensure regulatory compliance. Whether you are an IT professional, an IAM expert, a security architect, or a decision-maker responsible for safeguarding critical information assets, this webinar hosted by PlainID will provide you with practical insights and best practices to enhance your organization's access control strategy.

Policy-Based Access Control: What It Is & Why You Can’t Modernize Without It

Governance, risk and compliance (GRC) professionals play a vital role in organizations, aligning IT goals with objectives as they manage cyber risks and achieve regulatory needs. Learn how CGRC certification demonstrates that you have the knowledge and skills to integrate governance, performance management, risk management and regulatory compliance within an organization.

Join us to learn more about:
- What is GRC?
- Why is GRC important for cybersecurity?
- What are the core global frameworks?
- How is GRC relevant in every industry?
- What is the pathway to CGRC?

Save your spot today!

Moderator: Brandon Dunlap
Panelists: 
AJ Yawn, Partner in Charge, Product and Innovation
Mohamed Malki, Director, Enterprise Security Architecture
Chris Stanley, Exam Content Developer

Everything You Need to Know about CGRC

Join us for this live Q&A where our panel of experts will answer all of your questions about SSCP before you sit for the exam. We’ll go over certification requirements, the domains, self-study resources, training options and more to help you build confidence so you’re ready on exam day.

You’ll learn:
• How SSCP proves your knowledge, skills and experience as an ISO-accredited certification
• Why vendor-neutral certification is in demand
• What training tools are available
• And much more

SAVE YOUR SPOT NOW.

SSCP EXAM READY: Ask the Experts Before You Sit

Join us for this live webinar where we’ll tell you all about newly enhanced ISC2 Online Self-Paced CISSP Training with AI-driven adaptive learning. Find out how this dynamic experience pinpoints areas that require focus and guides you through every stage of your personalized exam prep. You’ll study smarter, not harder, and go into the CISSP exam with confidence.

You’ll learn:
• Why it makes training more efficient busy professionals 
• What makes it a more efficient route to exam readiness
• How artificial intelligence tailors learning to your needs
• And much more

New! AI-Driven Adaptive Learning for CISSP from ISC2

Join us for this live Q&A where our panel of experts will answer all of your questions about CC before you sit for the exam. We’ll go over certification requirements, the domains, self-study resources, training options and more to help you build confidence so you’re ready on exam day.

You’ll learn about: 

• Career opportunities in cybersecurity 
• Why vendor-neutral certification is in demand
• What training tools are available
• What to expect on exam day 
• And much more

SAVE YOUR SPOT NOW.

CC EXAM READY: Ask the Experts Before You Sit

Join us for this live Q&A where our panel of experts will answer all of your questions about Certified in Governance, Risk and Compliance (CGRC) certification before you sit for the exam. We’ll go over certification requirements, the domains, self-study resources, training options and more to help you build confidence so you’re ready on exam day.

You’ll learn:
• How CGRC prepares you to use frameworks to manage risk
• Why vendor-neutral certification is in demand
• What training tools are available
• And much more

Save your spot now.

CGRC EXAM READY: Ask the Experts Before You Sit

Public key infrastructure (PKI) today is ubiquitous – it’s in the cloud, it’s on the manufacturing floor, it’s everywhere. Why? Because, in a Zero Trust world, every device, every workload, and every connected thing must be authenticated and verified. There’s just one problem. Because of its extensive use, PKI has become incredibly complex to manage. Different teams and applications have unique trust requirements, use cases, technical and security needs, creating a distributed fabric of PKI tools and infrastructure. So, how do you manage this new “Decentralized PKI”? 

Join Keyfactor and (ISC)2 July 20, 2023 at 1:00 p.m. Eastern/ 10:00 a.m. Pacific as we discuss the ins and outs of decentralized PKI, best practices for management, and how to consolidate where possible. During this webinar, you’ll learn: 
• How the usage of PKI has evolved and expanded
• New threats, regulatory mandates and changes to PKI
• Key considerations for different PKI and CA tools 
• Best practices for managing “Decentralized PKI”

Re-thinking PKI in Modern IT Infrastructure

In addition to escalating threats, cybers professionals must also be aware of a wide range of cybersecurity laws, regulations and policies enacted around the world. During this webinar, Tara Wisniewski, EVP, Advocacy, will release findings of an intensive research project into the cyber legislative and regulatory landscape across the U.S., the U.K., the E.U., Canada, Japan, and Singapore. Find out what your team needs to know.

What You Need to Know About the Global Cybersecurity Regulatory Landscape

Join us for a live Q&A where our panel of experts will answer your questions about CISSP before you sit for the exam. We’ll go over certification requirements, the domains, self-study resources, training strategies, career paths and more to help you build confidence so you’re ready on exam day. 

You’ll learn:
• How CISSP builds your end-to-end foundational understanding of cybersecurity
• Why vendor-neutral certification is in demand
• What training tools are available
• And much more

Bring your questions and join us on Friday, July 14, 2023, at 1:00 p.m. ET

Save your spot now.

CISSP EXAM READY: Ask the Experts Before You Sit

Cybercriminals continue to rely on proven attack methods while developing new ways to infiltrate digital environments and break through your human defense layer. But how can you reduce your organization’s attack surface? KnowBe4 looked at 12.5 million users across 35,681 organizations to find out. 

In this webinar on July 13, 2023 at 1:00 p.m. Eastern/10:00 a.m. Pacific, KnowBe4 and (ISC)2  take a look at the 2023 Phishing By Industry Benchmarking Study findings and best practices. 

You will learn more about: 
• New phishing benchmark data for 19 industries 
• Understanding who’s at risk and what you can do about it 
• Actionable tips to create your “human firewall” 
• The value of new-school security awareness training

 Do you know how your organization compares to your peers? Watch this webinar to find out!

New Phishing Benchmarks Unlocked:Is Your Organization Ahead of the Curve in 2023

Making it easy for your customers to engage with you requires frictionless security. Begin by ensuring you have modern single sign-on and authentication to provide compelling, simple, yet non-intrusive environments for your customers. Continuing the examination of steps for strengthening your enterprise and increasing customer engagement, join CA and (ISC)2 on October 6, 2016 at 1:00PM for Part 2 of our Briefings series where we'll examine how to employ analytics to streamline the path to your applications, address hybrid environments (both SaaS and on premise) and ensure AA and SSO are meeting continually emerging challenges of the digital enterprise.

CA Briefings Part 2: Step 1: Protecting the Front Door with SSO & Authentication

(ISC)2;

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The application development community features top thought leadership focusing on optimal practices in software development, SDLC methodology, mobile app development and application development platforms and tools. Join top software engineers and coders as they cover emerging trends in everything from enterprise app development to developing for mobile platforms such as Android and iOS.

Application Development

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

Welcome to the big data and data management community on BrightTALK. Join thousands of data quality engineers, data scientists, database administrators and other professionals to find more information about the hottest topics affecting your data. Subscribe now to learn about efficiently storing, optimizing a complex infrastructure, developing governing policies, ensuring data quality and analyzing data to make better informed decisions. Join the conversation by watching live and on-demand webinars and take the opportunity to interact with top experts and thought leaders in the field.

Big Data and Data Management

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Thousands of healthcare IT professionals compose the health IT community on BrightTALK. Learn alongside them with relevant webinars on healthcare IT compliance, big data in healthcare and IT solutions for healthcare organizations. Join the conversation by asking questions and engaging with other participants during live webinars and organized discussions.

CA Briefings Part 2: Step 1: Protecting the Front Door with SSO & Authentication

Presented by

About this talk

More from this channel