Name: Bitsight #2: Best Practices to Grow Your Third-Party Risk Management Program
Start: 2019-08-22T19:30:00Z
End: 2019-08-22T20:25:19.000Z
Location: BrightTALK
Rating: 4.4

(ISC)² Security Briefings brings attendees both stand alone webcasts and multi-part series on cutting edge infosecurity topics that gets deeper into the subject matter and technologies presented by subject matter experts.

Join us for this live Q&A where our panel of experts will answer all of your questions about Certified in Governance, Risk and Compliance (CGRC) certification before you sit for the exam. We’ll go over certification requirements, the domains, self-study resources, training options and more to help you build confidence so you’re ready on exam day.

You’ll learn:
• How CGRC prepares you to use frameworks to manage risk
• Why vendor-neutral certification is in demand
• What training tools are available
• And much more

Save your spot now.

CGRC EXAM READY: Ask the Experts Before You Sit

Join us for this live Q&A where our panel of experts will answer all of your questions about CC before you sit for the exam. We’ll go over certification requirements, the domains, self-study resources, training options and more to help you build confidence so you’re ready on exam day.

You’ll learn about:

• Career opportunities in cybersecurity
• Why vendor-neutral certification is in demand
• What training tools are available
• What to expect on exam day
• And much more

SAVE YOUR SPOT NOW.

CC EXAM READY: Ask the Experts Before You Sit

You can look a vulnerability risk from several angles-but which one is best?
 
On May 2, 2023 at 1:00 p.m. Eastern/10;00 a.m. Pacific join F5 Labs and (ISC)2  as they tackle this topic.  The talk will start at the tactical level, where we will review vulnerability targeting data from 2022 to better understand current attacker priorities. We will then briefly cover findings and methods from the Exploit Prediction Scoring System, an open source vulnerability intelligence project to which F5 has recently begun contributing. The talk will conclude with a big picture view of vulnerability management, exploring F5 Labs’ collaboration with the Cyentia Institute about trends in CVE publication and their implications for the future of vulnerability management.

Vulnerability Intelligence, Three Ways

Join us for a live Q&A where our panel of experts will answer your questions about CCSP before you sit for the exam. We’ll go over certification requirements, the domains, self-study resources, training strategies, career paths and more to help you build confidence so you’re ready on exam day.

You’ll learn:
• Why vendor-neutral certification is in demand
• How CCSP complements vendor certifications
• What training tools are available
• And much more

Bring your questions and join us on Friday, April 28, 2023, at 1:00 p.m. ET

Save your spot now.

CCSP EXAM READY: Ask the Experts Before You Sit

Join us for a live Q&A where our panel of experts will answer your questions about CISSP before you sit for the exam. We’ll go over certification requirements, the domains, self-study resources, training strategies, career paths and more to help you build confidence so you’re ready on exam day. 

You’ll learn:
• How CISSP builds your end-to-end foundational understanding of cybersecurity
• Why vendor-neutral certification is in demand
• What training tools are available
• And much more

Bring your questions and join us on Friday, April 14, 2023, at 1:00 p.m. ET

Save your spot now.

CISSP EXAM READY: Ask the Experts Before You Sit

The CISA Zero Trust Maturity Model is filled with concepts and language appropriate for federal agencies, but it doesn’t always translate to the private sector, and certainly not to smaller, less-mature mid-market organizations. 

In this live session on April 18, 2023 at 1:00 p.m. Eastern/10:00 a.m. Pacific IANS and ISC2 host a webinar to explain:

• Which metrics to consider and which to avoid
• Ways to use metrics to communicate with nontechnical stakeholders and/or the board
• Examples of maturity models to track the long-term progress of a zero trust program

Zero Trust Metrics: Track Progress and Program Maturity

Join us for this live Q&A where our panel of experts will answer all of your questions about Certified in Governance, Risk and Compliance (CGRC) certification before you sit for the exam. We’ll go over certification requirements, the domains, self-study resources, training options and more to help you build confidence so you’re ready on exam day.

You’ll learn:
• How CGRC prepares you to use frameworks to manage risk 
• Why vendor-neutral certification is in demand
• What training tools are available
• And much more

Save your spot now.

Maintaining cybersecurity compliance and building reliable risk management practices isn’t a simple to-do item you check off anymore. The livelihood (and ultimately the growth) of your business depends on resilient security and compliance programs. Add in changing regulatory requirements, and the challenge becomes exponentially more complex. 

Join Hyperproof and (ISC)2 on April 11, 2023  at 1:00 p.m. Eastern/10:00 a.m. Pacific to hear more about: 
• The value of connecting compliance and risk 
• Optimizing stakeholder visibility and communication 
• Using GRC tools to scale your business
• Long-term impacts of streamlining compliance, security, and risk management workflows

Level Up Your Security: How to Build Compliance and Risk Mgmt Programs to Scale

Artificial intelligence (AI) is no longer science fiction. 
 
Software vendors have been integrating AI into products for years, which has led to innovations such as improved threat detection and training opportunities. But the emergence of newer technologies has raised new questions about the real threats AI poses.
 
In this presentation on April 6 at 1:00 p.m. ET / 10:00 a.m. PT, KnowBe4 and (ISC)² will discuss the benefits of AI, the potential threats, and strategies you can use to protect your network today and in the future. 
 
You’ll learn:
·  The key benefits and uses of AI for cybersecurity.
·  How AI could put your organization at risk.
·  Strategies for integrating AI into your cybersecurity defenses.
·  Why security awareness training is your best, last line of defense.
 
Get the information you need now to protect your network!

AI and Cybersecurity: Perfect Match or Hack Waiting to Happen?

Successfully managing Systems Applications and Products (SAP) and Enterprise Resource Planning (ERP) in hybrid-cloud environments leaves little room for error. It often falls on you, the IT professional, to get to the bottom of problems - and fast. Learn how you can detect even subtle changes in application performance to identify the root cause faster and avoid potential problems with reporting that connects every layer of your infrastructure to critical business operations. 
Join AppDynamics and (ISC)2 on April 4, 2023 at 1:00 p.m. Eastern/10:00 a.m. Pacific. When we will demonstrate: 

• Automated Flow Maps of the entire landscape (SAP and non-SAP) 
• Business Transaction and code-level visibility (e.g., ABAP) 
• SAP Business Process monitoring Insights into SAP System KPIs and Out of the Box Dashboards for Health Rules and Alerts.

SAP ERP & Beyond Observability

Join us for this live Q&A where our panel of experts will answer all of your questions about the Certified Information Systems Security Professional (CISSP) Concentrations in architecture, engineering and management before you sit for the exam. We’ll go over certification requirements, the domains, self-study resources, training options and more to help you build confidence so you’re ready on exam day.

You’ll learn:
• How the ISSAP, ISSEP and ISSMP concentrations build upon the CISSP
• Why vendor-neutral certification is in demand
• What training tools are available
• And much more

Save your spot now.

CISSP Concentrations (ISSAP, ISSEP, ISSMP) EXAM READY: Ask the Experts

Ransomware continues to dominate the headlines with a wide range of organizations impacted. Part of its staying power is that ransomware threat actors tackle the attack chain with the specialization and organization of a business, with different groups tasked with different roles and responsibilities. 

Join us for this Proofpoint and (ISC)2 webinar March 28, 2023 at 1:00 p.m. Eastern/10:00 a.m. Pacific to learn how threat actors are adapting to maintain their business model, and what organizations can do in response. 

We’ll discuss best practices to:
- Minimize the probability and impact of ransomware incidents by focusing on the entire attack chain
- Minimize the damage when ransomware incidents do occur by detecting and limiting the action of compromised identities
- Minimize recovery time by protecting the primary target of ransomware attacks, your data

Disrupt the Ransomware Threat Actors: Focus on Attack Chains

Join us for a live Q&A where our panel of experts will answer your questions about CCSP before you sit for the exam. We’ll go over certification requirements, the domains, self-study resources, training strategies, career paths and more to help you build confidence so you’re ready on exam day.

You’ll learn:
• Why vendor-neutral certification is in demand
• How CCSP complements vendor certifications
• What training tools are available
• And much more

Bring your questions and join us on Friday, March 24, 2023, at 1:00 p.m. ET

The 2022 cyber threat landscape was one of persistence, increased scope, and relentless determination. As businesses began to ease pandemic-driven operating environments and adjust to geopolitical shifts—as well as growing economic hardships—adversaries supporting nation-state, eCrime, and hacktivist motivations started the year with a relentless show of effort that ultimately defined 2022.

Join CrowdStrike and (ISC)2 March 23, 2023 at 1:00 p.m. Eastern/10:00 a.m. Pacific for an in-depth review of how the cyber threat landscape has evolved over the last year, including notable threats, events and trends outlined and explained in the CrowdStrike 2023 Global Threat Report.

 In this session, we’ll discuss:
• The most relevant threat issues that organizations face today
• New adversaries uncovered in 2022 and their growing speed and sophistication
• Useful best practices in how you can combat the modern-day threat

Understanding the Modern Threat Landscape

Join us for this live Q&A where our panel of experts will answer all of your questions about Certified Secure Software Lifecycle Professional (CSSLP) certification before you sit for the exam. We’ll go over certification requirements, the domains, self-study resources, training options and more to help you build confidence so you’re ready on exam day.

You’ll learn:
• How CSSLP prepares you to incorporate best security practices into each phase of the SDLC
• Why vendor-neutral certification is in demand
• What training tools are available
• And much more

Save your spot now.

CSSLP EXAM READY: Ask the Experts Before You Sit

Global survey spotlights industry vitals and actionable insights. The State of Cloud-Native Security Report 2023 is the result of a months-long survey traversing seven countries and five sectors of industry to consult with cloud security and DevOps professionals — from chief executives to developers to security technicians — with the goal of identifying pivotal decisions affecting cloud-native development and security outcomes.

This webinar will be hosted by Prisma Cloud/Palo Alto and (ISC)2 on March 16, 2023 at 1:00 p.m. Eastern/10:00 a.m. Pacific.  Join us to hear the results of this year’s survey, presenting a fresh look at the top challenges and best practices in cloud-native security, including these outstanding findings:
• New deployment frequency has increased by 67% in the past 12 months.
• 76% of respondents deploy new or updated code to production weekly.
• 72% of organizations report an above average turnover rate in cloud security roles.
• 78% of respondents want better Day-1 security from tools.
• 77% of organizations say aligning security tools with security goals is challenging.
You do not want to miss this session!

The State of Cloud-Native Security 2023

A well-managed multi-cloud deployment can increase reliability, reduce the risk of vendor lock-in and add essential business capabilities. But the more cloud services an enterprise employs, the more complex the solution is to manage. 
On March 14, 2023 at 1:00 p.m. Eastern/10:00 a.m. Pacific IANS and ISC2 discuss:
• The most common pitfalls of multi-cloud adoption and recommendations to navigate them
• What you need from your CSPs to enable success
• Types of tools best suited for multi-cloud

Get a Handle on Multi-Cloud Management

Join us for this live Q&A where our panel of experts will answer all of your questions about CC before you sit for the exam. We’ll go over certification requirements, the domains, self-study resources, training options and more to help you build confidence so you’re ready on exam day.

You’ll learn about: 

• Career opportunities in cybersecurity 
• Why vendor-neutral certification is in demand
• What training tools are available
• What to expect on exam day 
• And much more

SAVE YOUR SPOT NOW.

So you’ve established the foundation of your third-party risk management (TPRM) program...now what? For many organizations, growing their TPRM program to scale at the speed of their business can be extremely challenging. This challenge is exacerbated because, in many cases, third-party ecosystem growth occurs with little coordination or oversight. Furthermore, once they establish third-party relationships, companies may not implement centralized processes to continuously monitor and evaluate those relationships, including the cyber risks they may pose. In the second installment of this webinar series, we discuss tips on how to “go beyond” the foundation of third-party risk assessments and drill down further into your vendors’ security posture, best practices for TPRM process improvement, reporting, and dashboard use and how to leverage continuous monitoring to scale your TPRM program at the speed and growth of your business.

Bitsight #2: Best Practices to Grow Your Third-Party Risk Management Program

ISC(2)

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The application development community features top thought leadership focusing on optimal practices in software development, SDLC methodology, mobile app development and application development platforms and tools. Join top software engineers and coders as they cover emerging trends in everything from enterprise app development to developing for mobile platforms such as Android and iOS.

Application Development

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

Welcome to the big data and data management community on BrightTALK. Join thousands of data quality engineers, data scientists, database administrators and other professionals to find more information about the hottest topics affecting your data. Subscribe now to learn about efficiently storing, optimizing a complex infrastructure, developing governing policies, ensuring data quality and analyzing data to make better informed decisions. Join the conversation by watching live and on-demand webinars and take the opportunity to interact with top experts and thought leaders in the field.

Big Data and Data Management

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Thousands of healthcare IT professionals compose the health IT community on BrightTALK. Learn alongside them with relevant webinars on healthcare IT compliance, big data in healthcare and IT solutions for healthcare organizations. Join the conversation by asking questions and engaging with other participants during live webinars and organized discussions.

Health IT

The research and development community on BrightTALK brings together leading professionals in healthcare, technology and manufacturing to present on current topics in their fields. From big data in healthcare to online forensics training and medical research practices, the community is an exceptional resource for those looking to expand their knowledge. Be part of the conversation by joining the community and participating in interactive live webinars.

Bitsight #2: Best Practices to Grow Your Third-Party Risk Management Program

Presented by

About this talk

More from this channel