Hi [[ session.user.profile.firstName ]]

Impreva Part 2: Top Three Ways To Tackle API Security

Security is an essential element of any application and increasingly critical for API-driven architectures in hybrid and public cloud environments. New threats and vulnerabilities emerge constantly, and enterprises find themselves struggling to protect these APIs from attacks. Join Imperva and (ISC)2 for Part 2 of our Security Briefings series on March 8, 2018 at 1:00PM Eastern where we will discuss proven approaches to making API security a priority through understanding how common types of attacks such as distributed denial of service (DDoS) can target APIs, what are the steps to proactively secure development frameworks, and how to enforce identity across enterprise environments.
Recorded Mar 8 2018 59 mins
Your place is confirmed,
we'll send you email reminders
Presented by
Speaker: Ryan Potter, Director of Cloud Strategy and Alliances, Imperva; Brandon Dunlap, Moderator
Presentation preview: Impreva Part 2: Top Three Ways To Tackle API Security

Network with like-minded attendees

  • [[ session.user.profile.displayName ]]
    Add a photo
    • [[ session.user.profile.displayName ]]
    • [[ session.user.profile.jobTitle ]]
    • [[ session.user.profile.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(session.user.profile) ]]
  • [[ card.displayName ]]
    • [[ card.displayName ]]
    • [[ card.jobTitle ]]
    • [[ card.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(card) ]]
  • Channel
  • Channel profile
  • Infoblox #1: Remediating Threats by Bridging Islands of Security Jan 10 2019 6:00 pm UTC 75 mins
    Chintan Udeshi, Security Product Marketing, Infoblox; Bradon Dunlap, Moderator
    Most organizations have multiple products and services, from multiple vendors and suppliers to address their cybersecurity needs. The lack of integration and inability to share critical information results in silos of technology that cause inefficiency, lack of agility, limited visibility and a poor security posture. How can an organization solve and streamline this improve their cybersecurity operations? Join Infoblox and (ISC)2 on January 10, 2019 at 1:00PM Eastern for an examination of how Infoblox and Fortinet have joined together to assist organizations in improving their security operations and reducing time to containment.
  • RSA #3 - Transforming Secure Access to be Intelligent Recorded: Dec 7 2018 54 mins
    Ayelet Biger-Levin, CISSP, Senior Consultant, Product Marketing, RSA
    When it comes to making access decisions, it’s all about being smart. In the speed of today’s business agility requirements, we cannot stop users at the door all the time and ask for their ID. We need to know them. Intelligent Authentication provides the benefit of reducing friction AND adding security to protect applications and data that are critical to the business. It provides security and convenience, considering the needs of the modern workforce. In this session we will discuss a simple process to gain visibility into the right listening posts, derive actionable insights and then drive action to protect the organization’s most valuable assets from rogue access and drive Identity Assurance.
  • RSA #2 - Transforming Secure Access to be Pervasive - 5 Ways to Transform Access Recorded: Nov 30 2018 55 mins
    Tony Karam, Identity Product Marketing, RSA
    Ever heard the expression, “you can’t hit what you can’t see?” Well that sentiment rings true when it comes to protecting access to critical resources. You can only secure what you actually take steps to protect. .As such, secure access needs to be pervasive and cover all access user cases, regardless of whether applications and resources live on-premises or in the cloud. And because it’s likely have both, you need a solution that works equally well across these hybrid environments. In this session we will explore five critical secure access use cases, and how you can achieve a high-level of identity assurance that users are who that claim to be so that you can avoid falling victim to the next wave of credential-based attacks.
  • PAM: The Critical Missing Piece in Your Security Strategy Recorded: Nov 22 2018 63 mins
    Brandon Dunlap, Moderator, (ISC)², Karl Lankford, Lead Solutions Engineer EMEA, Bomgar
    Industry thought leaders have stated that if you can only tackle one project to improve the security of your organisation it should be Privileged Access Management (PAM). Our own research backs this up with the 2018 Privileged Access Threat Report revealing organizations using automated PAM technology experience far fewer serious breaches than those that did not. Karl Lankford, Lead Solutions Engineer EMEA at Bomgar will discuss what ‘privilege’ means to your business and how implementing a PAM solution can drive significant improvements across the organisation. You will learn:

    •Why organisations should make PAM their top 2019 investment
    •Why quickly controlling and automating key PAM capabilities is critical to your organisation’s success
    •Help you to prepare the business case for your PAM project and to get Executive Leadership buy in
  • The Workforce Gap Widens: The Need to Focus on Skills Development Recorded: Nov 20 2018 59 mins
    John McCumber, Director of Cybersecurity Advocacy, North America, (ISC)2
    The 2018 (ISC)² Cybersecurity Workforce Study finds the cybersecurity skills shortage continues to grow. But the news isn’t all doom and gloom. Our latest deep dive into the issues and challenges facing cybersecurity professionals adopts a new approach to more broadly define the cybersecurity workforce. The study reveals a relatively satisfied, younger and more diverse field of practitioners focused on developing their skills and advancing their careers. Join (ISC)² Director of Cybersecurity Advocacy, North America, John McCumber On November 20, 2018 at 1:00PM Eastern as we examine how practitioners are dealing with the workforce gap while balancing skills development, hiring priorities and everyday threats they face.
  • RSA #1 - Transforming Secure Access to be Convenient Recorded: Nov 16 2018 52 mins
    Murtaza Hafizji, Sr. Product Mktg Mgr, ID & Access Assurance, RSA; Brandon Dunlap (Moderator)
    The market demands for the modern approach to authentication is more like “Have it your way!” That’s why many of the approaches and offerings can only do one thing. Those apps will become obsolete or acquired as Access Management vendors will face the complex reality that enterprises who want modern authentication will also want access that’s convenient, intelligent and pervasive – not just 2FA or SSO. In this webinar, RSA will examine how to leverage a trusted, secure access platform that provides access to all users, to all apps from anywhere at any time in a smart, secure and noninvasive way.
  • Gigamon 3 - Threat Hunting: Objectively Measuring Value Recorded: Nov 1 2018 57 mins
    Justin Kohler, Sen Dir, Customer Success, Gigamon; Patrick Perry, Technical Acct Mgr, Gigamon Insight; Brandon Dunlap
    Someone in leadership always seems to ask the question “How can I tie my threat hunting activities to real impacts for the organization?” Threat hunting programs are encouraged as part of a mature and successful incident response capability and teams invest significant time and effort in the development and maintenance of that program. However, management is always looking for metrics to demonstrate the value of threat hunting in real terms due to the number of hours consumed by such highly skilled professionals. It’s a big investment. Join Gigamon on November 1, 2018 at 1:00PM Eastern for an examination of how to demonstrate value from threat hunting operations with practical methods and examples for tracking hunting operations, reporting and attributing outcomes to industry-leading frameworks and plot hunting goals and coverage across the MITRE ATT&CK framework.
  • Has Your Network Packet Broker Evolved with Your Infrastructure? Recorded: Oct 18 2018 60 mins
    Sam Kumarsamy, Senior Product Marketing Manager, Gigamon; Brandon Dunlap (Moderator)
    As your infrastructure has grown to include a mix of physical, virtual and cloud environments with increased network speeds and volume of data, so have the threats increased to your attack surface with more vectors to breach your organization. This challenges your network and security operation teams and tour traditional network packet broker needs to evolve from providing network visibility to also helping strengthen your security posture. Join Gigamon and (ISC)2 on October 18, 2018 at 1:00PM Eastern where we will examine the acquisition and aggregation of data from your physical, virtual and cloud infrastructure, filtering of traffic to provide the right data to the right tools, transforming your data with masking, header stripping and SSL decryption (TLS1.3) to ensure compliance, threat prioritization by providing context and bridging the gap between NetOps and SecOps.
  • Gemalto Part 3: Preparing for Quantum Recorded: Sep 18 2018 43 mins
    Michael Gardinar, Principal Architect, Enterprise & Cybersecurity CTO Office, Gemalto; Brandon Dunlap (Moderator)
    We’ve all heard that quantum computers are coming; beyond being a boon for materials science they’re going to wreak havoc for cybersecurity. Part 3 of this series from Gemlato will outline the scope of the problem (it’s more than just algorithms) as well as the work required and being done to protect data through the upcoming transition.
  • KnowBe4 #3: Secrets to a Successful Security Awareness Training Program Recorded: Sep 7 2018 61 mins
    Perry Carpenter, Chief Evangelist & Strategy Officer, KnowBe4; Brandon Dunlap (Moderator)
    With 91% of data breaches being the result of human error, security leaders, auditors, and regulators increasingly recognize that a more intentional focus on the human side of security is critical to the protection of organizations. However, organizations have been struggling with and debating the effectiveness of traditional security awareness and training. KnowBe4 shares results-focused strategies and practical insights on how to build a world-class program
  • KnowBe4 #2: How To Phish Like the Bad Guys Recorded: Sep 6 2018 59 mins
    Perry Carpenter, Chief Evangelist & Strategy Officer, KnowBe4; Brandon Dunlap (Moderator)
    In spite of all the spectacular news stories about advanced persistent threats and targeted hacks from nation-states, the most common security challenge facing enterprises today continues to be social engineering. Successful hackers know the user is the weakest link in the security chain. Email phishing campaigns have proven to be the path of least resistance to get unsuspecting individuals to download and install their malicious software. Getting users to identify phishing attacks and training them not to click on links in email messages is not a trivial task. Join KnowBe4 as we discuss the strategies and techniques that social engineers are finding success with, how to implement these techniques and to create real-world simulated phishing email to test your employees and see how phish-prone they really are.
  • Security Briefing: What’s So Hard About Securing Virtual Workloads? Recorded: Sep 6 2018 44 mins
    Baseer Balazadeh Sr. Technical Marketing Engineer, Public Cloud, Gigamon; Brandon Dunlap (Moderator)
    As organizations build out their infrastructure across public, private and hybrid platforms, security architects need to extend their enterprise security policies and protocols to all workloads, no matter where they reside. Still, security operations teams are challenged with proactively detecting threats, deviations from organizational policies and violations of industry and organizational compliance for mission-critical applications in the cloud. Why is that? Join Gigamon and (ISC)2 on September 6, 2018 at 1:00PM Eastern where we’ll explore ways to assure compliance and decrease time to detect threats in mission-critical applications, reduce risk by leveraging a common platform across your entire IT environment and ensuring SLAs are met by tightly integrating the public cloud provider’s APIs and critical cloud provider services to automatically detect changes in virtual private clouds and virtual networks.
  • KnowBe4 - Levers of Human Deception: Science & Methodology of Social Engineering Recorded: Sep 4 2018 63 mins
    Perry Carpenter, Chief Evangelist & Strategy Officer, KnowBe4; Brandon Dunlap (Moderator)
    No matter how much security technology we purchase, we still face a fundamental security problem: people. People can be manipulated every day and in many ways; from the tactics used by car dealers, to sophisticated social engineering and online scams. Part 1 of KnowBe4’s 3 part series will This webinar will explore the different levers that social engineers and scam artists pull to make us more likely to do their bidding and how to ethically use these same levers when educating users.
  • Beyond Office 365: How Your Peers are Taming the Long Tail of SaaS Apps Recorded: Aug 9 2018 61 mins
    Salim Hafid, Marketing Manager, Bitglass; Brandon Dunlap (Moderator)
    The long tail of SaaS is growing rapidly. Today, thousands of unmanaged "Shadow IT" applications are used in every major enterprise around the globe and IT departments have little visibility or control over these rogue apps. While the challenge was first simply to secure major SaaS platforms like Office 365, the new reality is a “cloud and mobile-first world” where employees often use new applications that aren’t approved and put corporate data at risk. Join Bitglass and (ISC)2 on August 9, 2018 at 1PM Eastern for the final part of this Security Briefings series where we’ll discuss how leading organizations are evolving their security to solve these challenges, what organizations are prioritizing when evaluating a solution and how zero-day technologies built for a cloud-first world are able to identify, categorize, and secure unknown apps.
  • Gemalto 2 - The EU’s General Data Protection Regulation (GDPR) - Myth to Action Recorded: Aug 7 2018 56 mins
    Alexander Hanway, Sr. Product Mrky Mgr, Data Protection, Gemalto; Andrea Middleton, Sen Sec. Prod Mgr. NetApp; Brandon Dunlap
    The General Data Protection Regulation (GDPR) is the biggest overhaul of EU data protection law in more than 20 years. It’s not simply another regulation. It’s about accountability and it’s reshaping how organizations view and interpret privacy. Join us as we uncover the regulation, define a new lens and perspective to address not only the GDPR, but other regulations which are sure to follow. Understand the ecosystem and seamless integrated security solutions necessary to address these key privacy challenges. Whether you are looking for insight, guidance, or solutions to privacy, join in on this journey with GDPR as a guide to understanding and addressing privacy in today’s organizations.
  • 2018 Security Congress Preview – Cloud Security Recorded: Jul 24 2018 56 mins
    Mike Brannon, Dir, Infrastructure & Security, Nat'l Gypsum; Eric Fiterman, Consultant, Tyler Smith, IT Analyst, John Deere
    (ISC)2 will hold its Security Congress 2018 in New Orleans, LA, October 8th – 10th. This conference will bring together 2000+ attendees and over 100 educational sessions. One of the 13 tracks that are being offered with focus on Cloud Security and challenges practitioners face when dealing with all things cloud. On July 24, 2018 at 1:00PM Eastern, join (ISC)2 and several of the speakers who’ll be presenting in the Cloud track as we preview their sessions, get an idea of what will be discussed and discuss the state of cloud security today.
  • Mind the Gap: The 5 Most Common Cloud Security Oversights Recorded: Jul 12 2018 60 mins
    Jacob Serpa, Product Marketing Manager, Bitglass, Brandon Dunlap (Moderator)
    Even with a renewed focus on security, cloud applications have introduced new risks that many organizations have yet to address. Powerful productivity platforms have been widely deployed in an effort to enable employee communication and facilitate collaboration. Apps enabling employee communication and collaboration cannot be secured with traditional firewalls and gateways. They require a fundamental rethinking of security – a shift from endpoint and network-centric protection to data protection. Join Bitglass and (ISC)2 on July 12, 2018 at 1:00PM Eastern as we explore the five most common security oversights that may put your cloud data at risk.
  • Gigamon Briefing Part 3 - Improving Security Using Metadata Recorded: Jun 28 2018 62 mins
    Preetham Gopalaswamy, Head of Product Management, Gigamon; Brandon Dunlap, Brightfly (Moderator)
    Imagine what a security analyst could deduce if they had visibility into all the common applications flowing through their network. They could optimize the data being sent to security tools, correlate information across the various protocols to determine who is talking to whom and get visibility into malware and bad actors that may be hiding on the network. Many enterprises aggregate information from various sources, such as events and logs from DNS servers, web servers and security tools, to hunt for threat events and indicators of compromise. But these are not reliable sources; logging can be turned off inadvertently or for performance reasons. Raw network data is the ultimate source of truth – but sending it all to a SIEM can become very expensive. Join Gigamon and (ISC)2 on Thursday, June 28, 2018 at 1:00PM Eastern for a discussion on how visibility into your application traffic is elemental to security, how application metadata can provide context of potential threat events and to more easily enforce corporate compliance.
  • Before You Choose Microsoft - 5 Things to Consider in an Access Mgmt Solution Recorded: Jun 13 2018 52 mins
    Mor Ahuvia, Product Marketing Mgr - IAM, Gemalto; Brandon Dunlap, Brightfly (Moderator)
    Organizations with Microsoft environments, such as Azure or Office 365, are inclined to implement Microsoft’s native access management solutions (namely, Azure AD and AD FS). Defaulting to Microsoft’s cloud SSO solutions may appear to be the best choice, a closer examination of these solutions reveals critical downsides, as well. This Security Briefing will examine the five things to consider before implementing Microsoft’s access management solutions. You will also see a demo of how you can centrally define access management policies (including cloud SSO and step-up authentication) for Microsoft and 3rd party apps with a vendor agnostic-solution.
  • Taming the Cloud Together – CCSP & CCSK Cloud Certification Synergy Recorded: Jun 12 2018 58 mins
    David Shearer, CEO, (ISC)2; Jim Reavis, CEO, CSA; Kevin Jackson, GovCloudNetwork ; Rich Mogull, Securosis; B. Dunlap (Mod)
    Certain things go together to make the sum of their parts that much better. Peanut Butter and Jelly. Lennon and McCartney. Batman and Robin. In the ever-changing world of the cloud, cyber security professionals need continuous training and certifications to stay up-to-speed and pairing (ISC)2’s CCSP (Certified Cloud Security Professional) with CSA’s CCSK (Certificate of Cloud Security Knowledge) can put any cyber security practitioner ahead in terms of knowledge, skills and job opportunities. On June 12, 2018 at 1:00PM Eastern, join David Shearer, (ISC)2’s CEO and Jim Reavis, CSA’s CEO, along with other subject matter expects as we explore the differences between each program, the training options available for each, and how these programs are synergistic in nature and together were designed to build on one another.
(ISC)2 Security Briefings - In-depth examination of infosec topics.
(ISC)2 Security Briefings brings attendees multi-part series on cutting edge infosecurity topics that gets deeper into the subject matter and technologies presented by subject matter experts.

Embed in website or blog

Successfully added emails: 0
Remove all
  • Title: Impreva Part 2: Top Three Ways To Tackle API Security
  • Live at: Mar 8 2018 6:00 pm
  • Presented by: Speaker: Ryan Potter, Director of Cloud Strategy and Alliances, Imperva; Brandon Dunlap, Moderator
  • From:
Your email has been sent.
or close