Name: Curing Alert Fatigue with Risk Based Alerting, MITRE ATT&CK and Automation
Start: 2019-09-17T12:00:00Z
End: 2019-09-17T12:00:58.000Z
Location: BrightTALK
Rating: 4.4

ISC2 Security Briefings EMEA offers members in Europe, the Middle East and Africa a chance to learn about the latest trends, tools and best practices in cyber, information, software and infrastructure security while earning CPEs

The cybersecurity landscape is evolving rapidly. As cyberthreats grow in complexity, organizations must stay ahead of the curve by anticipating what’s next. So, what’s in store for our industry in the coming year?

Join Steve Piper, CEO of CyberEdge and Editor-in-Chief of Security Buzz, as he recaps the good, the bad, and the ugly cybersecurity events of 2025 and shares his top five cybersecurity predictions for 2026. This webinar provides a forward-looking perspective, equipping attendees with the insights and strategies needed to stay ahead of emerging threats and capitalize on new opportunities.

The Road Ahead: Top Five Cybersecurity Predictions for 2026

Phishing ist nach wie vor eine der effektivsten Methoden für Cyberangriffe und entwickelt sich rasant weiter. Im Jahr 2025 beobachtet, dass Angreifer immer ausgefeiltere Angriffe durchführen und dabei KI, geopolitische Spannungen, Social-Engineering und neue digitale Kanäle nutzen, um Personen und Organisationen in ganz Europa anzugreifen. Wir werden die Bedrohungslage in Deutschland und ganz Europa unter besonderer Berücksichtigung der Entwicklungen im Nahen Osten untersuchen. Angesichts der zunehmenden Digitalisierung und geopolitischen Instabilität in dieser Region starten staatlich geförderte und kriminelle Akteure ausgeklügelte Phishing-Kampagnen, die sich über ganz Europa ausbreiten. Begleiten Sie unsere Cybersicherheitsexperten, die anhand realer Beispiele die raffiniertesten Arten von Phishing-Angriffen aufzeigen, denen Unternehmen heute ausgesetzt sind, darunter:
 
- Business-E-Mail Compromise (BEC): nach wie vor der stille Killer, jetzt erweitert um KI-generierte Nachrichten und Deepfake-Audio
- Credential Phishing: zielt auf Cloud-Plattformen und Collaboration-Tools wie Teams und SharePoint ab
- AitM (Adversary-in-the-Middle) Phishing: die wachsende Verfügbarkeit von Kits und Diensten, die die Multi-Faktor-Authentifizierung (MFA) umgehen
- Brand Impersonation: Ausnutzen des Vertrauens in konsumentenorientierte Marken, um Benutzer zum Klicken zu verleiten
- Smishing und Vishing: Ausweitung über E-Mail hinaus auf mobile und Sprachkanäle.
 
…und vieles mehr! Stellen Sie sicher, dass Ihre Benutzer nicht in die Falle einer neuen Welle von Phishing-Angriffen tappen!

Phishing im Jahr 2025: KI & Social Engineering und die neue Bedrohungslandschaft

The race to harness generative AI for innovation and efficiency is reshaping how organisations develop products, deliver services, and empower their workforce.
 
From internal productivity tools like MS Copilot to customer-facing chatbots, AI-driven applications are becoming integral to modern business strategy. But speed comes with risk - particularly the exposure of sensitive and proprietary data through AI training pipelines or interactions with generative models. 
 
Join sponsor Proofpoint and host ISC2 16 October 2025 at 3:30 BST to explore how organisations can embrace the promise of AI while mitigating the associated data security challenges.
 
Learn how Data Security Posture Management (DSPM) solution empowers organisations to: 
• Identify active AI services and the data they can access 
• Detect and classify sensitive data across environments used for AI development 
• Prevent unauthorised training of Large Language Models (LLMs) on sensitive information

Embracing AI Without Compromising Data Security

New to the security industry? Or thinking about transitioning into an information security role? If so, this webinar is for you. Join Steve Piper, CEO of CyberEdge and Editor-in-Chief of Security Buzz, as he provides a one-hour ‘crash course’ on the entire security industry, including:

- Size and growth of the security industry
- Useful vocabulary terms and buzz words
- Five types of cyberthreat actors 
- Modern cyberthreats and tactics
- Categories of security defenses
- Common security job roles
- Security industry ecosystem

Security Industry 101: What Every Newcomer Needs to Know

On October 7, 2025 join us at 1:00 p.m. BST for a panel discussion focused on sharing practical insights with aspiring cybersecurity professionals and those looking to transition into the field.  

We will discuss:

·         The current cybersecurity job landscape 
·         Pathways into the profession 
·         Entry-level roles and expectations 
·         The value of foundational certifications such as CC 
·         Career transition opportunities 
·         Practical tips for navigating uncertainty in today’s job market 
 
Cybersecurity leaders break down what it takes to launch your career and navigate the path with confidence. 

As the world’s leading cybersecurity professional organization, ISC2 is committed to supporting individuals at every stage of their journey offering guidance, resources and credentials to help you thrive in a constantly evolving industry.

Step Into Cyber: Navigating Your Path in a Growing Industry

The rise of artificial intelligence in cybersecurity is both a blessing and a curse. AI is redefining the cybersecurity battlefield, offering unprecedented advantages for security teams and threat actors.

Join Steve Piper, CEO of CyberEdge and Editor-in-Chief of Security Buzz, as he explores AI’s transformative impact on the IT security industry. On the defense side, AI is revolutionizing threat detection, automating incident response, and predicting vulnerabilities before they’re exploited. However, threat actors are also leveraging AI to enhance phishing attacks, create evasive malware, and orchestrate sophisticated social engineering campaigns. 

This webinar provides a balanced view of AI’s dual role in cybersecurity, showcasing both the opportunities and challenges it presents. Gain insights into how IT security teams can adopt AI to stay ahead, while understanding how adversaries may use it to their advantage. With expert commentary and real-world examples, this session equips attendees with the knowledge to navigate AI’s impact on the evolving threat landscape.

From Shield to Spear: How AI is Reshaping Cyber Defense and Offense

We started with a simple question: what do modern attackers do? After analysing over 700,000 security incidents, one technique was almost universally present: a staggering 84% of major attacks incorporated Living Off The Land (LOTL) tactics, using the same native tools and utilities your administrators use every day. If the tools are the same, how do you tell an attacker from a user? To find out, we turned our focus to legitimate usage data. By comparing this legitimate activity side-by-side with the malicious activity, we found quite a lot of interesting patterns.  

 

Join us 16 September 2025 at 1:00 p.m. BST, as the Bitdefender team and ISC2 share actionable insights from real-world attacks to better detect threats hiding in plain sight.

Navigating Malware-Free Attacks

Phishing remains one of the most effective cyberattack methods and it’s evolving fast. So far, in 2025 we’ve seen attackers deploy more sophisticated attacks, leveraging AI, geopolitical tensions, social engineering and new digital channels to target individuals and organisations across EMEA. 

Join us 4 September 2025 at 1:00 p.m. BST when Proofpoint and ISC2 provide the latest update on the 2025 threat landscape with special interest to developments in the Middle East. With increased digitalisation and geopolitical instability in this region, threat actors - both state-sponsored and criminal - are launching sophisticated phishing campaigns that ripple across Europe.

Phishing in 2025: AI, Social Engineering & the New Threat Landscape

The applications you deliver today rely heavily on APIs. In fact, 92% of attacks observed across customer applications target these endpoints. As complex architectures expand and ecosystems connect through APIs and third-party integrations, they form a precarious “ball of fire” – a risk further exacerbated by the rapid adoption of AI. 

By approaching application security strategically, you can gain valuable insights into vulnerabilities and tame this complexity to safely deploy modern and emerging AI applications. Discover how to empower your security team to protect existing applications and APIs – uncovering weaknesses across your digital estate and confidently securing your entire organisation.  

On 28 August 2025 at 1:00 p.m. BST, F5 and ISC2 will explore how to identify and remediate vulnerabilities while maturing your application security strategy to strengthen your overall security posture.

Uncover the Growing Threats to Your Digital Domain

The rapid adoption of AI – and the rise of agentic AI – is bringing both unprecedented opportunities and challenges. By linking data with agents and models across multicloud environments, agentic AI introduces new threats and vulnerabilities. This places growing demands on security, performance, and governance.
  
Join F5 and ISC2 on 26 August 2025 at 1:00 p.m. BST to explore the foundational elements of securing and optimising AI applications.  
Gain insights into AI application architectures that can help safeguard intellectual property, secure internal and external APIs, and protect models from modern attacks such as prompt injection. 

As enterprises embrace AI-enabled applications, next-generation application delivery and security platforms are transforming how organisations securely deliver AI.

Application Security in an Agentic AI World

Today’s cyberthreat landscape is marked by sophisticated attacks, including ransomware, deepfakes, and advanced persistent threats. The rise of AI-powered malware, supply chain vulnerabilities, and insider risks compounds challenges. 

Join Steve Piper, CEO of CyberEdge and Editor-in-Chief of Security Buzz, as he explores the cutting-edge advancements driving the evolution of IT security, such as continuous threat exposure management (CTEM), identity threat detection and response (ITDR), passwordless authentication, and more. This session offers practical advice on implementing these innovations to protect your organization against complex and emerging risks. Whether you’re planning for growth or looking to bolster your current defenses, this webinar delivers the insights you need.

The Future is Here: Top IT Security Technologies Shaping 2025

Ransomware attacks have reached unprecedented levels of sophistication, targeting organizations across all industries and sectors. As these threats evolve, so too must the strategies to combat them.

Join Steve Piper, CEO of CyberEdge and Editor-in-Chief of Security Buzz, as he provides a deep dive into strategies that can help organizations effectively navigate the ransomware threat lifecycle. From advanced prevention techniques and risk mitigation to streamlined recovery processes, this session covers every critical aspect of ransomware readiness. Don’t let ransomware catch you off guard—join us to build your defenses, improve your response capabilities, and recover faster when faced with a ransomware event.

Surviving Ransomware: Strategies to Defend, Respond, and Recover

How many identities should an AI agent be allowed to have? And how does authentication work when the agent is representing other identities? 
Join 1Password and ISC2 on 10 July, 2025 at 1:00 p.m. BST when we will talk about different risk-based approaches to a new breed of account, its entitlements, and the looming trap door we call delegation. You'll learn how to: 
- Assess the risks that matter 
- Create IAM policies that work best for your organization 
- Work around the current gaps as this technology evolves.

Secret Agent, Ma’am: New Rules For AI Access Management

As cloud adoption surges, so does the speed and sophistication of attacks. Traditional static detection and response can’t keep up in today’s fast-moving, multi-cloud environments.  

Join Palo Alto Networks and ISC2 June 24, 2025 at 1:00 p.m. Eastern/10:00 a.m. Pacific to explore actionable best practices for modern cloud detection, investigation, and response (CDR). We’ll cover how security teams are leveraging CDR to keep up with the speed and diversity of cloud-native attacks.  

In this session, you'll learn:  
- Lessons from real-world multi-cloud incidents  
- Why cloud security must start with prevention, not just detection  
- How to cut through the noise and focus on what really matters  
- Key capabilities to demand in a CDR solution — and red flags to avoid 
- How to ready your SecOps team for cloud-native response

Best Practices for Cloud Detection and Response: Real-World Lessons from Multi-Cloud Attacks

Deepfakes are no longer a distant concern—they’re an active threat to businesses, governments, and individuals. As deepfake technology grows more sophisticated, security teams face mounting challenges in combating its misuse. 

Join Steve Piper, CEO of CyberEdge and Editor-in-Chief of Security Buzz, as he discusses the evolution of deepfakes, methods for their detection, and strategies for mitigating risks. From leveraging AI to enhance defenses to improving security awareness amongst your workforce, attendees will gain actionable guidance to stay ahead of this growing challenge.

The Rise of Deepfakes: How Smart Security Teams Stay Ahead

The critical issue of cyber risk governance has come under laser focus following a wave of high-profile breaches, including recent hacker incursions at Snowflake, the Change Healthcare, AT&T, and other well-known corporations. Regulators are intensifying squeeze, increasingly demanding formal assurance from organizations that their cyber risk governance structures are effective and fit for purpose.

These relentless attacks raise a critical question: Why do some organizations easily crumble under cyber pressure while others bounce back stronger? The answer often lies in having adaptive, well-embedded cyber risk governance frameworks that can evolve with shifting business models, regulatory pressures, and stakeholder expectations.

In this high-impact webinar, Phil Zongo, CEO of the Cyber Leadership Institute and multi-award-winning CISO, will share practical, battle-tested strategies to elevate your cyber risk governance game. Key topics will include:

-Designing and implementing high-impact cyber risk governance structures
-Winning board buy-in through persuasive and insight-rich cyber reporting
-Gaining executive sponsorship for critical cyber transformation initiatives
-Prioritizing the risks that truly matter in board and executive committee discussions
-Strengthening third-party and supply chain cyber resilience

Proven Strategies to Boost Cyber Risk Governance Effectiveness

„Im deutschsprachigen Webinar „Zusammen packen mers – Team Up vs. Bad Actors“ werden wir kurz die aktuelle Lage zu Angriffen zusammenfassen. Danach werden einfache und effiziente Möglichkeiten der Kooperation aufgezeigt und besprochen, um Bad Actors das Leben schwerer zu machen.
Fragen können zu jeder Zeit im Webinar gestellt werden. Am Ende werden wir uns gerne Zeit für eine Q&A Session nehmen. 
Nützliche Informationen und Kenntnisse werden geteilt werden. Natürlich sammeln wir auch Vorschläge. Und es wird Möglichkeiten gegeben sich zum Thema „Zusammen packen mehr“ zu vernetzen.

Zusammen packen mers – Team up vs. Bad actors

AI is reshaping the battlefield. Your adversaries are already leveraging artificial intelligence to launch attacks at lightning speed — don’t wait to defend against them.  
On 22 May 2025 at 1:00 p.m. BST join Crowdstrike and ISC2 to hear the insights you need to stay ahead. In this webinar you will: 
- Learn how adversaries like FAMOUS CHOLLIMA and NITRO SPIDER use AI to supercharge attacks.   
- Discover practical ways to integrate AI into your daily security workflows  
- Learn about CrowdStrike’s latest AI-driven innovations and how the CrowdStrike Falcon® platform gives security teams the upper hand

The Power of AI Against Adversaries

The problem of alert fatigue is symptomatic of a plague within most SOC environments, regardless of the tools and platforms being used. The general process within the industry for driving and managing security incidents is broken. It’s time to change perspective and build into alert creation processes a better prioritization procedure. This can be done by aligning it to a more intelligent risk scoring approach and frameworks like MITRE ATT&CK and automation. Security teams will be better positioned to make use of their existing toolchain, scale people and processes, and deliver a much more effective security capability. Join this webinar to learn:
 
•The scale of alert overload and why organisations struggle with this problem. You are not alone
•How to combine risk based alerting, MITRE ATT&CK and automation to optimise security investigation and reduce alert fatigue
•Insights, learnings and benefits from SecOps teams that have already made this shift
•Tricks and tips to help you transform the security investigation process using your existing tools and industry frameworks

Curing Alert Fatigue with Risk Based Alerting, MITRE ATT&CK and Automation

MITRE ATT&CK

SecOps

Welcome to the virtualization community on BrightTALK! Whether it affects servers, storage, networks, desktops or other parts of the data center, virtualization provides real benefits by reducing the resources needed for your
infrastructure and creating software-defined data center components. However, it can also complicate your infrastructure. Join this active community to learn best
practices for avoiding virtual machine sprawl and other common virtualization pitfalls as well as how you can make the most of your virtualization environment.

Virtualization

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The application development community features top thought leadership focusing on optimal practices in software development, SDLC methodology, mobile app development and application development platforms and tools. Join top software engineers and coders as they cover emerging trends in everything from enterprise app development to developing for mobile platforms such as Android and iOS.

Application Development

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

Welcome to the big data and data management community on BrightTALK. Join thousands of data quality engineers, data scientists, database administrators and other professionals to find more information about the hottest topics affecting your data. Subscribe now to learn about efficiently storing, optimizing a complex infrastructure, developing governing policies, ensuring data quality and analyzing data to make better informed decisions. Join the conversation by watching live and on-demand webinars and take the opportunity to interact with top experts and thought leaders in the field.

Big Data and Data Management

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Thousands of healthcare IT professionals compose the health IT community on BrightTALK. Learn alongside them with relevant webinars on healthcare IT compliance, big data in healthcare and IT solutions for healthcare organizations. Join the conversation by asking questions and engaging with other participants during live webinars and organized discussions.

Curing Alert Fatigue with Risk Based Alerting, MITRE ATT&CK and Automation

Presented by

About this talk

ISC2 Security Briefings - EMEA