Name: How Compliance Is Hurting Security
Start: 2019-11-12T13:00:00Z
End: 2019-11-12T14:01:56.000Z
Location: BrightTALK
Rating: 4.39

(ISC)² Security Briefings EMEA offers members in Europe, the Middle East and Africa a chance to learn about the latest trends, tools and best practices in cyber, information, software and infrastructure security while earning CPEs

Join us for this live Q&A where our panel of experts will answer all of your questions about Certified in Governance, Risk and Compliance (CGRC) certification before you sit for the exam. We’ll go over certification requirements, the domains, self-study resources, training options and more to help you build confidence so you’re ready on exam day.

You’ll learn:
• How CGRC prepares you to use frameworks to manage risk
• Why vendor-neutral certification is in demand
• What training tools are available
• And much more

Save your spot now.

CGRC EXAM READY: Ask the Experts Before You Sit

Join us for a live Q&A where our panel of experts will answer your questions about CCSP before you sit for the exam. We’ll go over certification requirements, the domains, self-study resources, training strategies, career paths and more to help you build confidence so you’re ready on exam day.

You’ll learn:
• Why vendor-neutral certification is in demand
• How CCSP complements vendor certifications
• What training tools are available
• And much more

Bring your questions and join us on Friday, April 28, 2023, at 1:00 p.m. ET

Save your spot now.

CCSP EXAM READY: Ask the Experts Before You Sit

Join us for this live Q&A where our panel of experts will answer all of your questions about CC before you sit for the exam. We’ll go over certification requirements, the domains, self-study resources, training options and more to help you build confidence so you’re ready on exam day.

You’ll learn about:

• Career opportunities in cybersecurity
• Why vendor-neutral certification is in demand
• What training tools are available
• What to expect on exam day
• And much more

SAVE YOUR SPOT NOW.

CC EXAM READY: Ask the Experts Before You Sit

Join us for a live Q&A where our panel of experts will answer your questions about CISSP before you sit for the exam. We’ll go over certification requirements, the domains, self-study resources, training strategies, career paths and more to help you build confidence so you’re ready on exam day. 

You’ll learn:
• How CISSP builds your end-to-end foundational understanding of cybersecurity
• Why vendor-neutral certification is in demand
• What training tools are available
• And much more

Bring your questions and join us on Friday, April 14, 2023, at 1:00 p.m. ET

Save your spot now.

CISSP EXAM READY: Ask the Experts Before You Sit

Join us for this live Q&A where our panel of experts will answer all of your questions about Certified in Governance, Risk and Compliance (CGRC) certification before you sit for the exam. We’ll go over certification requirements, the domains, self-study resources, training options and more to help you build confidence so you’re ready on exam day.

You’ll learn:
• How CGRC prepares you to use frameworks to manage risk 
• Why vendor-neutral certification is in demand
• What training tools are available
• And much more

Save your spot now.

Threat hunting is a challenge to get right, with many potential pitfalls. There are twenty different definitions for threat hunting and ten different ways to do it. Organisations vary from having zero presence in their threat hunting program to multiple full-time hunters, but unfortunately, they often miss many critical pieces. This webinar will cover the common oversights that organisations fall foul of as well as emphasising the importance of network evidence in your threat hunting framework. 

On 6 April 2023 join Corelight and (ISC)2 at 1:00 p.m. BST as we cover:
• What threat hunting is (and isn’t!)
• Essential tips and techniques to be successful
• How network data should form the core of your hunting framework

Threat Hunting Fundamentals: Why Network Data Should Be At Core Of Your Process

Join us for this live Q&A where our panel of experts will answer all of your questions about the Certified Information Systems Security Professional (CISSP) Concentrations in architecture, engineering and management before you sit for the exam. We’ll go over certification requirements, the domains, self-study resources, training options and more to help you build confidence so you’re ready on exam day.

You’ll learn:
• How the ISSAP, ISSEP and ISSMP concentrations build upon the CISSP
• Why vendor-neutral certification is in demand
• What training tools are available
• And much more

Save your spot now.

CISSP Concentrations (ISSAP, ISSEP, ISSMP) EXAM READY: Ask the Experts

There is an increasing focus on balancing security with user experience; frustrating attackers whilst improving the work experience. All too often security controls cause difficulty for our colleagues who inevitably look for workarounds, making our organisations less secure. 

Changes in working practices and attitudes have also made understanding user identity more complex. To maintain and improve security, a focus on understanding how our colleagues interact and the implementation of new solutions will help both users and security teams. 

This discussion, led by (ISC)2 and Cisco Duo on 30 March 2023 at 1:00 p.m. BST, will cover:
• What is identity today and the use of personas?
• Steps to make life easier such as Passwordless
• Risk-based authentication to manage complexity.
• Digital Identity in the future

Frustrating Attackers, not Users; Balancing User Experience and Security

Join us for a live Q&A where our panel of experts will answer your questions about CCSP before you sit for the exam. We’ll go over certification requirements, the domains, self-study resources, training strategies, career paths and more to help you build confidence so you’re ready on exam day.

You’ll learn:
• Why vendor-neutral certification is in demand
• How CCSP complements vendor certifications
• What training tools are available
• And much more

Bring your questions and join us on Friday, March 24, 2023, at 1:00 p.m. ET

Join us for this live Q&A where our panel of experts will answer all of your questions about Certified Secure Software Lifecycle Professional (CSSLP) certification before you sit for the exam. We’ll go over certification requirements, the domains, self-study resources, training options and more to help you build confidence so you’re ready on exam day.

You’ll learn:
• How CSSLP prepares you to incorporate best security practices into each phase of the SDLC
• Why vendor-neutral certification is in demand
• What training tools are available
• And much more

Save your spot now.

CSSLP EXAM READY: Ask the Experts Before You Sit

Join us for this live Q&A where our panel of experts will answer all of your questions about CC before you sit for the exam. We’ll go over certification requirements, the domains, self-study resources, training options and more to help you build confidence so you’re ready on exam day.

You’ll learn about: 

• Career opportunities in cybersecurity 
• Why vendor-neutral certification is in demand
• What training tools are available
• What to expect on exam day 
• And much more

SAVE YOUR SPOT NOW.

Join us for this live Q&A where our panel of experts will answer all of your questions about SSCP before you sit for the exam. We’ll go over certification requirements, the domains, self-study resources, training options and more to help you build confidence so you’re ready on exam day. 

You’ll learn: 
• How SSCP proves your knowledge, skills and experience as an ISO-accredited certification 
• Why vendor-neutral certification is in demand 
• What training tools are available 
• And much more 

SAVE YOUR SPOT NOW.

SSCP EXAM READY: Ask the Experts Before You Sit

Over the past decade, sandboxes have become the standard tool for the analysis of previously unseen malware. They are embedded in security controls such as next generation firewalls as well as email- and web-gateways.  They also play an important role in EDR and XDR implementations and are widely used for incident response and threat hunting.
 
While you may have a sandbox, are you using it to its fullest potential?  What is it good for, how does it work, and does it actually protect you?
 
In this webinar we’ll cover:
-Background: Common sandbox technology
-Avoidance techniques: How malware avoids detection
-Benchmarking: Ensuring your sandbox is doing what it should
-Sharing IOCs: Generating value throughout your security landscape
 
Join VMRay and (ISC)2 on 2, March 2023 at 1:00 p.m. GMT for a deep dive into sandboxing and learn how to stop worrying and love your sandbox.

Getting Sand in Funny Places: Understanding Malware Sandboxing

The Domain Name System (DNS) is essentially the central nervous system of the internet—everyone needs it to work because without DNS services, digital business could come to a halt. Cybercriminals know this too, and exploit DNS services to launch their attacks while simultaneously attacking the DNS services of their targets.

Therefore, it’s not only important to protect your organization’s DNS service, but also to use the data available from DNS services to more rapidly detect and surgically block threat activity such as phishing, DNS tunneling-based data exfiltration, and ransomware.

On 28 February 2023 join Infoblox and ISC2 at 1:00 pm GMT to hear best practices for an effective DNS security architecture.

A DNS Security Architecture as SecOps Force Multiplier

Ransomware readiness is the #1 board-level directive when it comes to cyber security with attacks becoming increasingly complex. 

Join Cyberbit and (ISC)² on 23 February 2023  as we prepare information security executives and incident responders for ransomware with a live-fire simulation of a recent attack vector.  

Participants will experience a new live simulation of a corporate ransomware crisis. As they are presented with an unfolding cyberattack scenario – one of the latest in the cyber threat landscape - they will be required to make critical incident response decisions. The session will combine the C-level, decision-making challenges encountered in a ransomware crisis with a hands-on, ransomware investigation simulated in a cyber range. The range will emulate a real-world SOC and demonstrate how IR experts can successfully investigate and eradicate a ransomware attack. 

The simulation allows the audience to impact the flow of the scenario by suggesting actions while our experienced instructor provides helpful tips. Whether you’re a first-timer or a returning participant, this webinar will take your ransomware readiness levels to the next level!

NEW-LIVE Ransomware Crisis Simulation with You in Control

Join us for a live Q&A where our panel of experts will answer your questions about CISSP before you sit for the exam. We’ll go over certification requirements, the domains, self-study resources, training strategies, career paths and more to help you build confidence so you’re ready on exam day. 

You’ll learn:
• How CISSP builds your end-to-end foundational understanding of cybersecurity
• Why vendor-neutral certification is in demand
• What training tools are available
• And much more

Bring your questions and join us on Friday, February 17, 2023, at 1:00 p.m. ET

Save your spot now.

The Center for Cyber Safety and Education is transforming with a new mission for today’s cybersecurity reality. Be among the first to learn about the exciting changes underway at the Center, including new and familiar ways (ISC)2 members and others will be able to get involved. As we start our journey, the Center is putting out a call for new Trustees for the Center Board to help guide the great work we will do together.  
 
Join us to learn about the new mission of the Center, what it means to be a Center Trustee, and the process for applying to become a Trustee.

The Center for Cyber Safety and Education – A Call for New Center Trustees

We all know that compliance and security aren’t always the same. Attend this session to learn how they differ, how compliance is broken, learn about some common examples, and see how you can modify your compliance plans to be more secure without failing an audit. Taught by 30-year security veteran and former auditor who has passed the CPA and CISA exams.
 
What you’ll learn:
·         Difference Between Compliance and Security
·         How Compliance Is Hurting Security
·         How to Fix

How Compliance Is Hurting Security

Compliance

security

Welcome to the virtualization community on BrightTALK! Whether it affects servers, storage, networks, desktops or other parts of the data center, virtualization provides real benefits by reducing the resources needed for your
infrastructure and creating software-defined data center components. However, it can also complicate your infrastructure. Join this active community to learn best
practices for avoiding virtual machine sprawl and other common virtualization pitfalls as well as how you can make the most of your virtualization environment.

Virtualization

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The application development community features top thought leadership focusing on optimal practices in software development, SDLC methodology, mobile app development and application development platforms and tools. Join top software engineers and coders as they cover emerging trends in everything from enterprise app development to developing for mobile platforms such as Android and iOS.

Application Development

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

Welcome to the big data and data management community on BrightTALK. Join thousands of data quality engineers, data scientists, database administrators and other professionals to find more information about the hottest topics affecting your data. Subscribe now to learn about efficiently storing, optimizing a complex infrastructure, developing governing policies, ensuring data quality and analyzing data to make better informed decisions. Join the conversation by watching live and on-demand webinars and take the opportunity to interact with top experts and thought leaders in the field.

Big Data and Data Management

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Thousands of healthcare IT professionals compose the health IT community on BrightTALK. Learn alongside them with relevant webinars on healthcare IT compliance, big data in healthcare and IT solutions for healthcare organizations. Join the conversation by asking questions and engaging with other participants during live webinars and organized discussions.

Health IT

The research and development community on BrightTALK brings together leading professionals in healthcare, technology and manufacturing to present on current topics in their fields. From big data in healthcare to online forensics training and medical research practices, the community is an exceptional resource for those looking to expand their knowledge. Be part of the conversation by joining the community and participating in interactive live webinars.

How Compliance Is Hurting Security

Presented by

About this talk

More from this channel