Hi [[ session.user.profile.firstName ]]

Lessons Not Learned: Cybersecurity's Habitual Mistakes

Since data breaches have increasingly become more commonplace, it seems reasonable that the lessons learned from each incident would find their way into the defensive strategies of non-impacted organizations the world over. The truth is, while a large portion of this information is publically available, organizations are still suffering from the same poor IT hygiene that has plagued the industry for years. Why is that the case?

Join Moderator Chris Pogue, SVP, Nuix Cyber Threat Analysis Team, and a panel of security experts from Nuix, Kroll, Wilson Elser, and the United States Secret Service as they discuss their observations from the thousands of breaches they have collectively investigated or litigated, and try to identify the elusive answer to the seemingly simple question, “Why are we not learning our lesson?”.
Recorded Mar 23 2016 59 mins
Your place is confirmed,
we'll send you email reminders
Presented by
Grayson Lenik, Nuix; Dan Haagman, NotSoSecure; Gregory J. Bautista, Wilson Elser LLP; Scott Sarafian, US Secret Service
Presentation preview: Lessons Not Learned: Cybersecurity's Habitual Mistakes

Network with like-minded attendees

  • [[ session.user.profile.displayName ]]
    Add a photo
    • [[ session.user.profile.displayName ]]
    • [[ session.user.profile.jobTitle ]]
    • [[ session.user.profile.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(session.user.profile) ]]
  • [[ card.displayName ]]
    • [[ card.displayName ]]
    • [[ card.jobTitle ]]
    • [[ card.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(card) ]]
  • Channel
  • Channel profile
  • Train as You Fight: The Value of Threat Simulations vs. Pen Testing Recorded: Apr 12 2016 59 mins
    Ryan Linn, Director of Advanced Tactics and Countermeasures
    Tools and policy frameworks are only as good as the people who implement and support them. Automated mechanisms can only go so far before they rely on human intelligence to drive the appropriate reaction. The controls required by security frameworks and the data they generate, however, are overwhelming, and finding the right security talent can feel impossible.

    Organizations often choose to prioritize the implementation of their security program components on the basis of risk. By identifying potential impacts and attack vectors, it’s easier to identify the controls that produce the biggest return on investment. Training your staff to understand what they see when they see it, and how to respond proactively, will help you build a security organization that is resilient in the face of evolving threats and identify any controls gaps you have while you execute your security roadmap.
    This webinar will talk about how organizations can evolve beyond the compliance checklist and overwhelming scanner results by employing threat simulations. We will discuss how threat simulations differ from penetration testing, how they can be used to help make your organization stronger, and how they can replace traditional penetration testing as part of a security program.

    We will focus on a discussion of attack chains, mapping methodologies to real world threats, and then look at a sample attack to see how a nominally compliant system can still be compromised.
  • Lessons Not Learned: Cybersecurity's Habitual Mistakes Recorded: Mar 23 2016 59 mins
    Grayson Lenik, Nuix; Dan Haagman, NotSoSecure; Gregory J. Bautista, Wilson Elser LLP; Scott Sarafian, US Secret Service
    Since data breaches have increasingly become more commonplace, it seems reasonable that the lessons learned from each incident would find their way into the defensive strategies of non-impacted organizations the world over. The truth is, while a large portion of this information is publically available, organizations are still suffering from the same poor IT hygiene that has plagued the industry for years. Why is that the case?

    Join Moderator Chris Pogue, SVP, Nuix Cyber Threat Analysis Team, and a panel of security experts from Nuix, Kroll, Wilson Elser, and the United States Secret Service as they discuss their observations from the thousands of breaches they have collectively investigated or litigated, and try to identify the elusive answer to the seemingly simple question, “Why are we not learning our lesson?”.
  • Fighting Cyberespionage: Protecting Enterprise from the Enemy Outside & Within Recorded: Dec 17 2015 59 mins
    Keith Lowry, Nuix SVP Threat Intelligence; Chris Pogue, Nuix SVP CyberThreat Analysis; Amie Taal, Cybersecurity Expert
    The protection of your organization's trade secrets, collected PII data, and confidential matters are your top priority. The same is an attractive asset for thousands of hackers around the world looking to profit or gain a competitive advantage that could damage the integrity and success of your organization’s objectives.

    In this webinar, join three seasoned cybersecurity experts as they present the trends in cyberespionage and discuss:

    • What makes organizations vulnerable to cyberespionage
    • Why cyberespionage activity can vary across industries based on hacking drivers
    • How a combined security approach that focuses not just on external threat actors but also privileged insiders can help identify spying activity in the enterprise
  • Early Case Assessment is Elementary, Dear Watson Recorded: Oct 26 2015 55 mins
    Michael Lappin- Nuix and George J. Socha, Jr., Esq, Socha Consulting LLC
    Corporate data volumes are exploding exponentially, but legal budgets and court imposed deadlines are not keeping pace. It doesn't take Sherlock Holmes to recognize that reducing your time to knowledge can yield big dividends in cost containment and risk mitigation.

    We can help you to see the bigger picture and better prepare for strategic project management, meaningful discovery negotiations, and informed proportionality arguments.

    Our webinar will show you how you can use common investigative techniques to:

    - Perform timeline and gap analysis
    - Identify anomalies and trends
    - Reduce the noise quickly and efficiently
    - Find connections.
  • Breaking Cybercrime: Real-Life Case Studies from Today’s Top Security Experts Recorded: Oct 20 2015 51 mins
    Chris Pogue, Erik Rasmussen, Alex Major & Eduardo E. Cabrera
    Our panel of security experts will cover the steps needed to appropriately respond to a data breach including how to:

    - Engage with law enforcement (FBI and Secret Service)
    - Work with general counsel on notifications steps, corporate communications, and preparation for post breach litigation
    - Act on your Incident Response plan quickly and effectively
    - Communicate the actions being taken to internal stakeholders including executive staff, and the board of directors
    - Improve risk management by implementing lessons learned
    - Improve your cyber resiliency through a realistic breach preparedness program.

    Your featured speakers include:
    - Chris Pogue - Senior Vice President, Cyber Threat Analysis, Nuix
    - Erik Rasmussen - Director of Cyber Intelligence and Investigations for Global Payment Systems Risk, Visa Inc
    - Alexander W. Major - Associate in the Government Contracts, Investigations & International Trade Practice Group, Sheppard Mullin Richter & Hampton LLP
    - Eduardo E. Cabrera - Vice President Cybersecurity Strategy, Trend Micro
  • Protecting Critical Value Data From the Inside Recorded: Sep 16 2015 51 mins
    Keith Lowry, Nuix, Stan Gallo, KPMG & Nigel Phair, Centre for Internet Safety
    More than one-third of all cybercrime incidents and security breaches are caused by insiders. Insiders have many motivations, including financial, political or emotional. But no matter the reason, insiders inappropriately access an organisation’s critical value data.

    Join Keith Lowry, Senior Vice President of the Business Threat Intelligence and Analysis Team at Nuix and Stan Gallo, Director and National Leader of Forensic Technology at KPMG, as they cover:

    - The definition of an insider threat
    - What organisations are doing wrong in their approach to managing insider threats
    - How to design and implement an insider threat program.
  • Hunting Hackers in the Carding Underground Recorded: Jul 30 2015 53 mins
    Grayson Lenik, Director of Digital Forensics and Incident Response at Nuix
    The rise in e-commerce data breaches over the past year raises important questions: Why is cardholder data such a big target, how do the bad guys get in and why are we seemingly powerless to stop them?

    This session will examine the black market for card data, the three most common attack vectors, and the wrong way to encrypt databases.

    You will see real-world examples of malware discovered during investigations and gain insights into the skill sets of each attacker.
Nuix protects, informs, and empowers society in the knowledge age.
Nuix protects, informs, and empowers society in the knowledge age. Leading organizations around the world turn to Nuix when they need fast, accurate answers for investigation, cybersecurity incident response, insider threats, litigation, regulation, privacy, risk management, and other essential challenges.

Nuix makes small work of big data volumes and complex file formats. Our solutions combine advanced technology with the extensive knowledge of our global team of industry experts. We bring data to life with clarity and intelligence to solve critical business problems, reduce crime, and secure and manage information.

Embed in website or blog

Successfully added emails: 0
Remove all
  • Title: Lessons Not Learned: Cybersecurity's Habitual Mistakes
  • Live at: Mar 23 2016 6:00 pm
  • Presented by: Grayson Lenik, Nuix; Dan Haagman, NotSoSecure; Gregory J. Bautista, Wilson Elser LLP; Scott Sarafian, US Secret Service
  • From:
Your email has been sent.
or close