Name: Open-Source Risk: The Ground Zero of Software Supply Chain Security
Start: 2022-06-28T12:00:00Z
End: 2022-06-28T12:00:57.000Z
Location: BrightTALK
Rating: 4.5

ISC2 Security Briefings EMEA offers members in Europe, the Middle East and Africa a chance to learn about the latest trends, tools and best practices in cyber, information, software and infrastructure security while earning CPEs

The cybersecurity landscape is evolving rapidly. As cyberthreats grow in complexity, organizations must stay ahead of the curve by anticipating what’s next. So, what’s in store for our industry in the coming year?

Join Steve Piper, CEO of CyberEdge and Editor-in-Chief of Security Buzz, as he recaps the good, the bad, and the ugly cybersecurity events of 2025 and shares his top five cybersecurity predictions for 2026. This webinar provides a forward-looking perspective, equipping attendees with the insights and strategies needed to stay ahead of emerging threats and capitalize on new opportunities.

The Road Ahead: Top Five Cybersecurity Predictions for 2026

New to the security industry? Or thinking about transitioning into an information security role? If so, this webinar is for you. Join Steve Piper, CEO of CyberEdge and Editor-in-Chief of Security Buzz, as he provides a one-hour ‘crash course’ on the entire security industry, including:

- Size and growth of the security industry
- Useful vocabulary terms and buzz words
- Five types of cyberthreat actors 
- Modern cyberthreats and tactics
- Categories of security defenses
- Common security job roles
- Security industry ecosystem

Security Industry 101: What Every Newcomer Needs to Know

The rise of artificial intelligence in cybersecurity is both a blessing and a curse. AI is redefining the cybersecurity battlefield, offering unprecedented advantages for security teams and threat actors.

Join Steve Piper, CEO of CyberEdge and Editor-in-Chief of Security Buzz, as he explores AI’s transformative impact on the IT security industry. On the defense side, AI is revolutionizing threat detection, automating incident response, and predicting vulnerabilities before they’re exploited. However, threat actors are also leveraging AI to enhance phishing attacks, create evasive malware, and orchestrate sophisticated social engineering campaigns. 

This webinar provides a balanced view of AI’s dual role in cybersecurity, showcasing both the opportunities and challenges it presents. Gain insights into how IT security teams can adopt AI to stay ahead, while understanding how adversaries may use it to their advantage. With expert commentary and real-world examples, this session equips attendees with the knowledge to navigate AI’s impact on the evolving threat landscape.

From Shield to Spear: How AI is Reshaping Cyber Defense and Offense

Today’s cyberthreat landscape is marked by sophisticated attacks, including ransomware, deepfakes, and advanced persistent threats. The rise of AI-powered malware, supply chain vulnerabilities, and insider risks compounds challenges. 

Join Steve Piper, CEO of CyberEdge and Editor-in-Chief of Security Buzz, as he explores the cutting-edge advancements driving the evolution of IT security, such as continuous threat exposure management (CTEM), identity threat detection and response (ITDR), passwordless authentication, and more. This session offers practical advice on implementing these innovations to protect your organization against complex and emerging risks. Whether you’re planning for growth or looking to bolster your current defenses, this webinar delivers the insights you need.

The Future is Here: Top IT Security Technologies Shaping 2025

Ransomware attacks have reached unprecedented levels of sophistication, targeting organizations across all industries and sectors. As these threats evolve, so too must the strategies to combat them.

Join Steve Piper, CEO of CyberEdge and Editor-in-Chief of Security Buzz, as he provides a deep dive into strategies that can help organizations effectively navigate the ransomware threat lifecycle. From advanced prevention techniques and risk mitigation to streamlined recovery processes, this session covers every critical aspect of ransomware readiness. Don’t let ransomware catch you off guard—join us to build your defenses, improve your response capabilities, and recover faster when faced with a ransomware event.

Surviving Ransomware: Strategies to Defend, Respond, and Recover

Deepfakes are no longer a distant concern—they’re an active threat to businesses, governments, and individuals. As deepfake technology grows more sophisticated, security teams face mounting challenges in combating its misuse. 

Join Steve Piper, CEO of CyberEdge and Editor-in-Chief of Security Buzz, as he discusses the evolution of deepfakes, methods for their detection, and strategies for mitigating risks. From leveraging AI to enhance defenses to improving security awareness amongst your workforce, attendees will gain actionable guidance to stay ahead of this growing challenge.

The Rise of Deepfakes: How Smart Security Teams Stay Ahead

Legacy vulnerability management approaches often struggle to keep pace with today’s dynamic threat landscape. Maximizing the value of your vulnerability management program requires moving beyond outdated practices to adopt a proactive and risk-based approach. 

Join Steve Piper, CEO of CyberEdge and Editor-in-Chief of Security Buzz, as he shares strategies for transforming legacy vulnerability management systems into efficient, leading-edge cyber exposure programs that prioritize high-risk vulnerabilities, streamline workflows, and reduce attack surfaces. Gain insights into leveraging automation, integrating threat intelligence, and driving measurable improvements in your organization’s security posture.

From Legacy to Leading-Edge: How to Maximize Your Vulnerability Management Investment

CyberEdge’s annual Cyberthreat Defense Report (CDR) has become a staple for assessing organizations’ security postures, for gauging perceptions of IT security professionals, and for ascertaining current and planned investments in IT security infrastructure. It incorporates dozens of insights from 1,200 security professionals from 17 countries and 19 industries. 

Join Steve Piper, CEO of CyberEdge and Editor-in-Chief of Security Buzz, as he reviews key findings from CyberEdge’s 2025 CDR, including:

- The percentage of organizations victimized by cyber attacks 
- The percentage of organizations victimized by ransomware attacks
- The health of IT security budgets
- The hottest security technologies planned for acquisition 
- Adoption of best practices for securing modern networks

Key Insights from CyberEdge’s 2025 Cyberthreat Defense Report

Zero Trust Security has moved from a trending buzzword to a cornerstone of modern cybersecurity strategy. But how can organizations move beyond theory to achieve measurable value? 

Join Steve Piper, CEO of CyberEdge and Editor-in-Chief of Security Buzz, as he discusses the key principles of Zero Trust, practical steps to reduce attack surfaces, and methods for improving resilience against emerging threats. He’ll delve into the operationalization of Zero Trust, exploring how organizations can transcend theoretical discussions to achieve meaningful outcomes. Whether you're starting your Zero Trust journey or seeking to refine your existing approach, this session provides actionable insights to elevate your security framework from concept to impactful execution.

Beyond the Buzzword: Achieving Real Value with Zero Trust Security

The cybersecurity talent crisis poses significant risks to organizations worldwide. It’s leaving businesses vulnerable to escalating threats as they struggle to find qualified professionals to secure their systems. This talent gap hampers incident response, delays security improvements, and increases the risk of breaches. Organizations face higher costs, operational disruptions, and reputational damage as they compete for scarce expertise.

Join Steve Piper, CEO of CyberEdge and Editor-in-Chief of Security Buzz, as he describes how smart IT leaders can respond with effective recruiting, training, and retention strategies. He’ll also highlight creative approaches, such as leveraging untapped talent pools, implementing mentorship programs, and embracing flexible career pathways. Gain practical tools to attract skilled professionals, support team development, and reduce turnover, ensuring your security team remains strong in the face of emerging threats. Don’t miss this opportunity to turn workforce challenges into strategic advantages.

Bridging the Gap: Strategies to Overcome the Cybersecurity Skills Shortage

Embark on a foresight journey into the future of cybersecurity, highlighting key trends and innovations that are set to redefine the digital defense landscape in the year ahead. Discover how advancements in artificial intelligence will revolutionize the way security teams reduce cybersecurity risks and improve their abilities to defend against modern threats. Join Steve Piper, Founder & CEO of CyberEdge (and proud CISSP), as he shares his top five cybersecurity predictions for 2025.

Top Five Cybersecurity Predictions for 2025

Die europäische Cyber-Gesetzgebung und -Verordnung prägt die nationale und europäische Cybersicherheitslandschaft und darüber hinaus auch internationale Normen. Vom Digital Operational Resilience Act (DORA) über den Cyber Resilience Act (CRA) bis hin zur Network and Information Systems Directive 2 (NIS2) und darüber hinaus – eine wachsende Zahl von Organisationen sind höheren Anforderungen an die Cybersicherheit ausgesetzt. Für die Jahre 2024 und 2025 sind viele wichtige Meilensteine geplant. Wie können wir diese Zeit optimal für unsere Vorbereitung nutzen? 
 
Nehmen Sie als Zuschaue an der online Diskussionsrunde mit unseren geschätzten Diskussionsteilnehmern teil, die Folgendes besprechen werden:
·       Überblick über die aktuelle und kommende Gesetzgebung zur Cybersicherheit mit Auswirkungen auf Europa.
·       Praktische Strategien, die Organisationen anwenden können, um ihre Cybersicherheitslage zu verbessern und sich auf die bevorstehende Umsetzung der Gesetze vorzubereiten. 
·       Erörterung wie Sicherheitsrahmen wie NIST, CIS Controls, ECSF, ISO 27001/27002 und mehr am besten genutzt können, um gesetzliche Verpflichtungen zu erfüllen und die Cyber-Resilienz von Unternehmen zu verbessern.
·       Fallstudien, die effektive Ausrichtung an gesetzlichen Anforderungen skizzieren.
 
Dieses hochaktuelle Webinar sollten Sie nicht verpassen.

Nutzung von Cyber Security Frameworks zur Vorbereitung auf kommende Cyber-Gesetzgebung wie NIS2

New to the security industry? Or thinking about transitioning into an information security role? If so, this webinar is for you. Join Steve Piper, Founder & CEO of CyberEdge (and proud CISSP), as he provides a one-hour ‘crash course’ on the entire security industry, including:

- Size and growth of the security industry
- Useful vocabulary terms and buzz words
- Five types of cyberthreat actors 
- Modern cyberthreats and tactics
- Categories of security defenses
- Common security job roles
- Security industry ecosystem

Security Industry 101: A ‘Crash Course’ For Security Newbies

Infostealer malware continues to pose a significant threat to organizations and individuals alike. This webinar offers a deep dive into the world of infostealer malware, providing an overview of the current threat landscape and a closer look at notorious malware families such as Redline, Lumma, and Agent Tesla.
 
Join VMRay and ISC2 8 October 2024 at 1:00 p.m. BST as we discuss how these malware families operate, explore their capabilities, and reveal the critical clues that can be extracted from malware configurations. Join us as we walk through sandbox reports to uncover valuable intelligence from malware samples, including Command & Control (C2) details, mission IDs, and other critical indicators.
 
What we’ll cover:
• A quick look at the threat landscape for infostealer malware.
• Insights into major malware families like Redline, Lumma, and Agent Tesla.
• Practical approaches for extracting actionable intelligence from malware configurations, including C2 information and other critical details.
 
By attending this security briefing, you’ll gain insights to improve your ability to detect and respond to these specific threats. Acquiring knowledge about the current trends will also enable more proactive threat hunting.

Infostealer Malware in Focus: Extracting Hidden Intelligence

The landscape of network security is rapidly evolving. Traditional network security, once centered around securing the network itself, is being redefined in the cloud era. This webinar is designed for architects seeking to adapt their strategies to the unique challenges presented by multi-cloud environments.  

On 1 October at 1:00 p.m. BST  Corelight and ISC2 will explore:  

-The limitations of existing security approaches  

- Key considerations for modern network security beyond preventive controls, including enhanced visibility, robust threat detection & elastic scaling  

- How Open Network Detection and Response (NDR) can enhance multi-cloud security

Re-think Network Security with Cloud Transformation

Artificial intelligence (AI) has bolstered cybersecurity solutions across the board. Security teams have more ways to detect advanced threats than ever before, and organizations are much better equipped to measure and reduce their attack surfaces. However, AI also benefits cyber adversaries with improved phishing and spear phishing techniques and new methods for tricking unsuspecting victims using deepfake content spawned by generative AI. Join Steve Piper, Founder & CEO of CyberEdge (and proud CISSP), as he provides a comprehensive analysis of AI's dual role in both fortifying and challenging modern cyber defenses. Discover who's winning the AI arms race in cybersecurity.

Impact of AI on the Cybersecurity Industry: Who's Got the Upper Hand?

The rise of AI is not all hype and frenzy. There are real implications – for productivity and competitiveness, for governance and compliance, and for security.
 
Cyber security is a principal concern for those tasked with delivering AI services. Generative AI and other AI toolkits are becoming prime attack surfaces for cyber criminals, who are both targeting AI and leveraging AI for malicious gains. It is imperative that architects and security teams unpack the massive risk surface for AI applications.
 
On 29 August 2024 at 1:00 p.m. BST, join F5 and ISC2 to gain insights into the latest strategies and technologies for safeguarding your AI infrastructure against emerging cyber threats. In this webinar, we will cover:
 
- AI app architectures: Deploying and protecting AI apps across distributed environments
- AI security issues: Addressing new threats such as prompt injection attacks, data leakage, and OWASP Top 10 for LLM Apps
- App services for AI security: Leveraging solutions such as API security, DDoS protection, and bot defence

Is Your AI Security Ready for the Perfect Storm?

Compromising end user computing devices through spear phishing attacks is frequently cited as the initial step of advanced persistent threats, often leading to data breaches. Year after year, IT security professionals cite “low security awareness among employees” as a top inhibitor to IT security’s success in CyberEdge’s annual Cyberthreat Defense Report. So, why aren’t more security teams adequately addressing this challenge? Join Steve Piper, Founder & CEO of CyberEdge (and proud CISSP), as he details five ways to invest in your company’s human firewalls.

Five Smart Ways to Invest in Your Human Firewalls

When approaching software supply chain security, managing the risk related to open-source usage is often a top consideration for builders of applications. Several notable vulnerabilities, such as Apache Struts and Log4j justify that consideration, demonstrating just how widespread the downstream impacts can be. However, managing open-source risk gets increasingly difficult the more ubiquitous it becomes, and organizations become more complacent as they focus on hardening other nodes of their software supply chain.  
 
Join Synopsys and (ISC)² June 28, 2022 at 1:00 p.m. BST as we elevate the conversation beyond tool implementation and discuss the importance of installing an open-source risk management program in order to protect your organizations, and your consumers, from supply chain threats. We will discuss:
o Implications of open-source risk  
o Obstacles to effectively managing open-source risk 
o The necessary people, processes, and tools to overcome those obstacles

Open-Source Risk: The Ground Zero of Software Supply Chain Security

ISC2

(ISC)2

CISSP

Information Security

Cyber Security

SupplyChain Security

Welcome to the virtualization community on BrightTALK! Whether it affects servers, storage, networks, desktops or other parts of the data center, virtualization provides real benefits by reducing the resources needed for your
infrastructure and creating software-defined data center components. However, it can also complicate your infrastructure. Join this active community to learn best
practices for avoiding virtual machine sprawl and other common virtualization pitfalls as well as how you can make the most of your virtualization environment.

Virtualization

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The application development community features top thought leadership focusing on optimal practices in software development, SDLC methodology, mobile app development and application development platforms and tools. Join top software engineers and coders as they cover emerging trends in everything from enterprise app development to developing for mobile platforms such as Android and iOS.

Application Development

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

Welcome to the big data and data management community on BrightTALK. Join thousands of data quality engineers, data scientists, database administrators and other professionals to find more information about the hottest topics affecting your data. Subscribe now to learn about efficiently storing, optimizing a complex infrastructure, developing governing policies, ensuring data quality and analyzing data to make better informed decisions. Join the conversation by watching live and on-demand webinars and take the opportunity to interact with top experts and thought leaders in the field.

Big Data and Data Management

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Thousands of healthcare IT professionals compose the health IT community on BrightTALK. Learn alongside them with relevant webinars on healthcare IT compliance, big data in healthcare and IT solutions for healthcare organizations. Join the conversation by asking questions and engaging with other participants during live webinars and organized discussions.

Open-Source Risk: The Ground Zero of Software Supply Chain Security

Presented by

About this talk

More from this channel