Name: Security Briefings Part 1: Cloud Apps and Protecting Against Malware
Start: 2017-03-09T18:00:00Z
End: 2017-03-09T18:58:32.000Z
Location: BrightTALK

(ISC)² Security Briefings brings attendees both stand alone webcasts and multi-part series on cutting edge infosecurity topics that gets deeper into the subject matter and technologies presented by subject matter experts.

The very activities that cybersecurity teams do to make their organizations safe can create additional risk for the organization. Defenders can unintentionally create new ways for attackers to target their organization through inadvertently introducing new vulnerabilities, placing too much trust in their security strategy, ignoring alert fatigue, and by making their mitigation activities too predictable. During this session, we will:

• Explore why blindly applying vendor patches may not always be the best strategy.
• See examples of how overconfidence in any single line of defense can be dangerous.
• Identify opportunities to streamline incident alerts and monitoring so critical notifications are not missed.
• Learn why following an incident response playbook may not always be in your best interest.

Join us on June 30, 2022, at 1:00 p.m. Eastern/10:00 a.m. Pacific when SimSpace and (ISC)² will discuss the four types of second order cyber risk and offer practical advice on best practices that form a continuous improvement approach to improve overall cyber hygiene while minimizing second order cyber risks.

Second Order Cyber Risk: Exposing Your Blind Spots

No doubt, you’ve heard the buzz about zero trust.  Zero trust isn’t a product but rather a journey.  While the end goal is worthwhile, like most things in security, getting there won’t be fast or easy. In this live session, June 28, 2022 at 1:00 p.m Eastern/10:00 a.m. Pacific IANS Faculty and (ISC)² discuss:
 
• Exactly what a strong zero trust architecture requires
• Concrete steps to take and products to consider to that help keep you moving on the right path
• Ways to measure progress, set realistic milestones and ensure goals are obtainable

Zero Trust: Real-World Tactics and Strategies

Denial of service attacks became larger and more complex in 2021 with peak attack bandwidth now more than five times larger than it was in 2020. From disgruntled customers, to organized cybercrime and even modern day cyber warfare, DDoS attacks are still a go-to for many threat actors with effects of successful denial of service attacks ranging from temporary disruption of an online event to outages of critical infrastructure. Increasingly, DDoS attacks also used by cybercrime gangs to coerce payments of ransomware demands. While DDoS mitigation services are getting better at deflecting large volumetric DDoS attacks, the shift in tactics to focus on protocol and application DDoS makes mitigation a more complex task.

On June 14, 2022 at 1:00 p.m. Eastern/10:00 a.m. Pacific  (ISC)² and F5 Labs discuss the  F5 DDoS Trends report which analyzed thousands of attacks over the past two years to uncover how DDoS attacks are changing. We will showcase which industry sectors are most frequently attacked, which suffer the largest and most complex attacks, and some of the relevant security controls which can be employed to counter the growing threat.

Join this webinar to learn:
-What the most common forms of DDoS attacks are
-Which industries are most effected
-How attackers are building botnets and changing tactics
-How to use the MITRE ATT&CK framework to map effective security controls

DDoS Attack Trends and Predictions for 2022

The ongoing transition to cloud platforms has meant that more sensitive data is stored in the cloud, making it more tempting for adversaries to exploit. When it comes to securing the cloud, identity is the first line of defense. Proper identity and access management (IAM) policies are the foundation of comprehensive cloud security principles. To understand how IAM policies affect organizations' cloud security posture, Unit 42 researchers analyzed 680,000+ identities across 18,000 cloud accounts from 200 different organizations. The results of our research were shocking - nearly all organizations we analyzed lack the proper IAM management policy controls to remain secure.

Misconfigured IAM policies open the door for cloud threat actors. We define a cloud threat actor as "an individual or group posing a threat to organizations through directed and sustained access to cloud platform resources, services or embedded metadata." Cloud threat actors merit a separate definition as they employ a fundamentally different set of tactics, techniques and procedures (TTPs) that are unique to the cloud – such as taking advantage of the ability to perform both lateral movement and privilege escalation operations simultaneously.

Join Palo Alto and (ISC)²  June 2, 2022 at 1:00 p.m. Eastern/10:00 a.m. Pacific for this webinar where the audience will be guided through the latest research in overprivileged IAM identities in real-world cloud environments and how cloud threat actors are zeroing in on these excessive permissions to expand their control of cloud environments. Detection and mitigation of these risks are possible, join us to find out how!

Cloud Threat Report: IAM the first line of defense

While understaffing and low budgets have always been challenges for any team, security teams face many unique roadblocks that divert attention from working on higher-impact projects that contribute to their organization's security posture. 

On May 26, 2022 at 1:00 p.m. Eastern/10:00 a.m. Pacific (ISC)² and Tines discuss the learnings of security leaders who have found a way to free their teams from manual tasks and remove the barriers so they can focus on high-value strategic work that truly matters.
We'll distill their best practices and leave attendees with actionable insights that they can immediately put to work with their team, including:
• What to look for when choosing a security tool.
• What security leaders are doing to address burnout and mental health issues within their teams.
• How to make security roles more accessible via Diversity, Equity, and Inclusion.
• What endpoint hygiene means and lessons they learned while working at multinational corporations.

The Future of Security Operations: Strategies from Successful Leaders

A record 71% of organizations were compromised by ransomeware last year with 63% of ransomware victims paying ransoms, encouraging cybercriminals to increase their attacks.

CyberEdge’s 2022 Cyberthreat Defense Report (CDR) has become the standard for assessing organizations’ security posture, for gauging perceptions of IT security professionals and for ascertaining current and planned investments in IT security infrastructure.

Now in its ninth year, the 2022 CDR assesses the views of 1,200 IT security professionals representing 17 countries and 19 industries. It’s the most geographically comprehensive view of IT security perceptions in our industry.

Join (ISC)2 (a sponsor of this year’s study) and CyberEdge on Wednesday, May 25, 2022 at 1:00PM Eastern for highlights and key insights of the results, including:

• Lack of skilled personnel and low security awareness inhibit IT security’s success
• 84% of organizations are experiencing a shortfall of skilled IT personnel; IT security administrators, analysts and architects are in shortest supply
• Nearly all respondents (99%) agreed that achieving a specialty cybersecurity certification would help their careers; the top choices were cloud security, software security and security administration

Key Insights from CyberEdge’s 2022 Cyberthreat Defense Report

As the old adage goes “an ounce of prevention is worth a pound of cure.” 
 
A holistic application security (AppSec) program is essential for validating your applications’ security. AppSec experts perform a variety of security assessments that identify your software’s flaws and vulnerabilities. These bugs are then prioritized for remediation according to their severity and in accordance with your unique risk profile. 
 
In this webinar May 24, 2022 at 1:00 p.m. Eastern/10:00 a.m. Pacific, Synopsys and  (ISC)² will focus on how you can mature your AppSec program with the Payment Card Industry Data Security Standard  (PCI DSS) in mind. You will learn how to
•         Establish an AppSec program that meets or exceeds PCI requirements
•         Leverage the OWASP and NIST frameworks
•         Perform thorough code review, pen testing, and vulnerability assessments

Holistic Application Security for PCI DSS Compliance

Cybersecurity teams are fighting a losing battle trying to keep up with complex business requirements and the expanding attack surface. Although traditional security controls and MSSPs (managed security service providers) were once effective, they are no match for the growing speed and sophistication of modern threats.   
 
Unfortunately, you can’t protect your organization from cyber threats if you don’t have complete visibility across your attack surface.  Even if your team utilizes a global threat hunting and threat intelligence team, they must be armed with data correlation and contextualization capabilities across multiple signals (e.g., endpoint, log, network, cloud) to effectively contain and remediate advanced persistent threats. 
 
Join eSentire and (ISC)²  May 19, 2022 at 1:00 p.m., Eastern/10:00 a.m. Pacific to hear how threat intelligence teams can use data from multiple signal sources for enhanced threat detection, investigation, and response. Learn more about: 
• What multi-signal data correlation and contextualization means in the context of threat intelligence and threat hunting 
• Mapping tactics and techniques threat actors use to fulfill their objectives back to each phase of the overall attack workflow 
• Deep dive into how eSentire’s Threat Response Unit (TRU) used data from log, endpoint, and network to build detection content for threats like Log4j and Cobalt Strike 
• How threat intelligence teams can adopt a multi-signal approach to enrich their detection engineering content

Multi-Signal Defense Kill Chain: Strengthening Combat Capabilities in Intrusions

Cyber-attacks continue to plague the healthcare industry as threat actors leverage new trends and evolve their attack surface. Their primary focus is still attacking messaging tools with obtaining user credentials being the nirvana state for would be threat actors. Once the credentials are obtained, the attack options are numerous with ransomware, imposter email, supply chain fraud, and data extraction being the primary area of focus.
 
On May 18, 2022 at 1:00 p.m. Eastern/ 10:00 a.m. Pacific, Proofpoint and (ISC)² discuss how these exploits are currently impacting healthcare, the favored attacks being deployed by threat actors, and outline practical mitigating strategies healthcare institutions can implement to optimally defend themselves.

A Persistent Cyber Target for Threat Actors: HealthCare

Effectively managing and mitigating cyber risk in your supply chain today means moving away from trust-based approaches and investing in a more proactive third-party risk program. A variety of factors from global digitalization to geopolitical conditions have drawn more reliance on and attention to supply chain connections, and threat actors are more motivated than ever to exploit these connections as attack vectors. 
 
Mitigating these threats requires overcoming both external cooperative and internal organizational challenges. This highly pertinent webinar will share insights on these challenges as well as best practices for evolving your third-party risk management program to keep up with an evolving supply chain-focused threat landscape. 
 
This webinar will explore:
• The current challenges facing organizations in keeping up with and managing evolving cyber risk in constantly expanding supply chains
• Differences in traditional and more adaptive, SOC-inspired approaches to third-party cyber risk and what programmatic strategies work best for modern organizations
• How to improve your organization’s overall security posture by adopting a proactive risk reduction strategy in managing your vendor ecosystem

BlueVoyant#3 Adapting Proactively to an Evolving Third-Party Risk Landscape

In the last year alone, the number of supply chain attacks has grown exponentially as they offer threat actors stealthy, scalable, and privileged access to your organization’s on-premises, cloud, and hybrid environment.  
 
Addressing supply chain attacks requires a multi-layered defense strategy in which third-party integrations are audited, endpoints are monitored for post-compromise actions, and an Incident Response plan that considers supply risks is put in place to minimize the overall impact to your organization. 
 
On May 10, 2022, at 1:00 p.m. Eastern/10:00 a.m. Pacific (ISC)² and Sumo Logic share insights from original threat research and supply chain attacks to demonstrate how multi-signal investigations can effectively secure your organization against supply chain attacks.  
 
Key takeaways from the webinar include:  
 
•         The three primary attack vectors that cybercriminals rely on to launch supply chain attacks against organizations 
•         The challenges that organizations face related to supply chain risk (e.g., technical complexity, access requirements, stealth of cyberattacks) and how they impact business operations 
•         Tactical and high-level strategic recommendations on how your organization can minimize supply chain risk and reduce the attacker dwell times and impact 
•         How 24/7 log monitoring and management can improve cyber resilience and prevent zero-day threats 
•        A case study on how original research and curated threat intelligence conduct stronger post-exploitation investigations.

Modernizing Supply Chain Cybersecurity Via Multi-Signal Threat Investigation

Organizations across all sectors have long relied on risk ratings or in-house risk management programs to keep track of the security posture across their shared third-party network and identify where there may be vulnerabilities in their vendor ecosystem. However, a growing focus on supply chain security requires a more comprehensive and advanced approach to third-party risk management. 

In this webinar, Cybersecurity Assurance Manager, Richard Furze of Lloyd’s Bank, will facilitate a highly apt discussion on the need for organizations to evolve their vendor risk management programs and the experience of doing so. 

This webinar will explore: 
• What challenges and pitfalls an organization can face utilizing traditional risk management methods or in-house programs 
• How an organization can go about transitioning their risk management program 
• How continuous monitoring can improve relationships with suppliers, incident management, and risk remediation 
• Major lessons learned from the evolution of a third-party risk management program

BlueVoyant #2- Continuous Monitoring for Third-Party Risk: A Customer Journey

No matter how much security technology we purchase, we still face a fundamental security problem: people. This (ISC)² and KnowBe4 webinar will explore the different levers that social engineers and scam artists pull to make us more likely to do their bidding.
 
On May 5, 2022 at 1:00 p.m., Eastern/10:00  a.m. Pacific, join Erich Kron, Security Awareness Advocate for KnowBe4 as he provides fun and engaging examples of mental manipulation in everyday life: from the tactics used by oily car dealers, to sophisticated social engineering and online scams. Additionally, we’ll look at how to ethically use the very same levers when educating our users.
 
Key Takeaways:
• The Perception Vs. Reality Dilemma
• Understanding the OODA (Observe, Orient, Decide, Act) Loop
• How social engineers and scam artists achieve their goals by subverting OODA Loop's different components
• How we can defend ourselves and our organizations

Levers of Human Deception: The Science & Methodology Behind Social Engineering

It’s what keeps many of us awake at night-- knowing that a cyberattack is inevitable.  Still there are things you can do to help strengthen your security posture. 

Join NETSCOUT and (ISC)² on May 4, 2022 at 1:00 p.m. Eastern/10:00 a.m. Pacific for a discussion that will expose critical factors in understanding the global threat landscape as Dr. Eric Cole, Founder, and CEO of Secure Anchor Consulting, sheds light on cyber vulnerabilities that organizations are currently ignoring and outline strategies to reduce cyber risk. Paul Barrett, CTO for NETSCOUT, will unpack strategies to minimize the risk through network visibility.  Presenters will also share regional examples from North America and expand upon the highly correlated risk reduction factors associated with network visibility in cyber.

Preparing for the Inevitable: How to Detect and Respond to Cyberattacks

Cyberattacks continue to challenge many organizations. With a growing attack surface, limited access to expensive security talent, frustration with managed security service providers (MSSPs), and constrained budgets, leading security and IT leaders are looking for alternatives like managed detection and response (MDR) services to help reduce their risks. There are many options for security service providers, and with all the options, it may be hard to choose the best for your needs.
 
Join Pondurance’s Chief Strategy Officer, Lyndon Brown, as he clears the fog around MDR and will discuss: 
-The biggest cybersecurity challenges for mid-market and enterprise organizations. 
-The difference between a SIEM, MSSP, XDR, MDR and Modern MDR
Components of MDR and how to choose the right provider for your organization.

Demystifying Managed Detection and Response (MDR)

Getting asset visibility and insights into exposures, such as what services or ports might be exposed to the internet, is great. But should you start closing all those ports or shutting down risky services? How do you know what actions to take next? 

This is where layering threat intelligence onto your attack surface can help prioritize actions or response from your security team. This kind of actionable intelligence can support a wide range of cybersecurity activities, from cyber hygiene and patching to optimizing threat hunting operations. 

In this session, Looking Glass and (ISC)² will discuss:
• How threat intelligence can be applied to your attack surface to prioritize action
• Real-world examples of organizations effectively using intelligent attack surface insights to improve their cybersecurity program

Looking Glass#2:Leveraging Intelligent Attack Surface Management

As more companies undergo digital transformation and software is released more frequently, application security is moving from an opportunity to an imperative. However, AppSec as a process requires cooperation with software developers - a team whose time is heavily in demand from every customer-facing part of the organization.  How do security teams improve AppSec without slowing down business and finding themselves at odds with the rest of the organization?
 
For DevSecOps to succeed it must take cues from the DevOps revolution that came before it. Teams need to learn new tools that address the new problems that arise from the evolution of IT.  Smart use of automation can create transparent processes that handle routine work between teams without creating friction.  And most importantly, adopting a supportive, rather than authoritative, mindset makes it possible for teams to move quickly together while achieving their respective missions.
 
On April 26, 2022 at 1:00 p.m. Eastern/10:00 a.m. Pacific, ShiftLeft and (ISC)² will provide an overview of application security that covers key tools, best practices, and a primer on working effectively with your colleagues in AppDev and DevOps in order to make modern software more secure.

Essential DevSecOps: Securing Modern Apps with Help of High Performing Dev Teams

As discussed throughout this series, attack surface management can support several cybersecurity use cases, from finding unpatched or vulnerable assets to optimizing threat hunting. With this kind of flexibility, there are also many approaches to implementing attack surface management. 

In this final session, we’ll discuss tips for implementing attack surface management. We will also share best practices for organizations using attack surface management to monitor themselves and third parties or suppliers. Participants will walk away with a checklist to successfully leverage when implementing attack surface management.

Looking Glass #3: Implementing Attack Surface Management Successfully

Cloud applications have garnered widespread adoption from enterprises in part due to their advantages such as ease of deployment, lower TCO, and high scalability. These applications are also popular because end-users can rely on these applications to work and collaborate from anywhere and on any device. But should the enterprise trust cloud app providers to protect their data from malware and ransomware? Currently, there are only a handful of enterprise cloud applications that provide native malware protection which, in almost all the cases, does not include zero-day protection. Join Bitglass and (ISC)2 for the first part of our next Security Briefings series on March 9, 2017 at 1:00PM Eastern when we will discuss malware protection solutions offered by various cloud application providers, how malware can penetrate into cloud applications and how Cloud Access Security Brokers (CASB) can protect enterprise cloud applications from malware.

Security Briefings Part 1: Cloud Apps and Protecting Against Malware

(ISC)2

Infosecurity

Cybersecurity

CASB

Cloud

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The application development community features top thought leadership focusing on optimal practices in software development, SDLC methodology, mobile app development and application development platforms and tools. Join top software engineers and coders as they cover emerging trends in everything from enterprise app development to developing for mobile platforms such as Android and iOS.

Application Development

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

Welcome to the big data and data management community on BrightTALK. Join thousands of data quality engineers, data scientists, database administrators and other professionals to find more information about the hottest topics affecting your data. Subscribe now to learn about efficiently storing, optimizing a complex infrastructure, developing governing policies, ensuring data quality and analyzing data to make better informed decisions. Join the conversation by watching live and on-demand webinars and take the opportunity to interact with top experts and thought leaders in the field.

Big Data and Data Management

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Thousands of healthcare IT professionals compose the health IT community on BrightTALK. Learn alongside them with relevant webinars on healthcare IT compliance, big data in healthcare and IT solutions for healthcare organizations. Join the conversation by asking questions and engaging with other participants during live webinars and organized discussions.

Health IT

The research and development community on BrightTALK brings together leading professionals in healthcare, technology and manufacturing to present on current topics in their fields. From big data in healthcare to online forensics training and medical research practices, the community is an exceptional resource for those looking to expand their knowledge. Be part of the conversation by joining the community and participating in interactive live webinars.

Security Briefings Part 1: Cloud Apps and Protecting Against Malware

Presented by

About this talk

More from this channel