Name: 7 Questions Risk Stakeholders Should Be Asking OT Security Providers
Start: 2019-10-21T11:45:00Z
End: 2019-10-21T12:00:50.000Z
Location: BrightTALK
Rating: 0

Forescout Technologies is the leader in device visibility and control. Our unified security platform enables enterprises and government agencies to gain complete situational awareness of their extended enterprise environments and orchestrate actions to reduce cyber and operational risk.

Learn more about our products, hear about new cybersecurity trends and see how Forescout helps you address these.

Threat detection and response has become increasingly important, and increasingly difficult, even for seasoned and large SOC teams. Current approaches, including traditional extended detection and response (XDR) solutions, don’t adequately convert the mountain of daily alerts into high-fidelity detections of true threats, nor do they enable SOC teams to automate response processes across the extended enterprise (IT, OT, IoT, IoMT). 

Forescout XDR, combined with other Forescout solutions, uniquely addresses these challenges. In this 30-minute webinar, you will: 

◾Learn how to truly extend detection to every managed and unmanaged connected device across your enterprise 

◾Discover how advanced data science enables 450x better detection 

◾See how you can better respond to threats through real-time control of your network and devices

◾Explore key use cases for improved SOC efficiency, risk reduction, and enhanced visibility  

Speakers: Justin Foster, Chief Technology Officer; Virendra Bisht, Director of Data Science; George McTaggart, Chief Marketing Officer

Improving SOC Efficiency by 450x with Forescout XDR

The year 2022 was quite eventful for cybersecurity. Cyberattacks grew in intensity, sophistication, and frequency, with malicious actors benefitting from growing geopolitical conflicts, economic uncertainty, and rapid digitization. As a result, threat actors have started blurring the lines between traditional IT attacks and emerging OT/IoT threats.

With 2023 bound to accelerate the adoption of new devices into organizations and pose even greater challenges for cybersecurity professionals across the globe, Forescout’s Vedere Labs has analyzed data gathered in 2022 about millions of attacks, hundreds of exploits, and thousands of malware samples to share with the community insights that can help organizations to prepare.

Tune in to understand where attacks are coming from, their top targets, vulnerabilities they exploit, what attackers do after initial access, the most common type of malware dropped, trends in malware evolution, and forecasts for the future.

Most importantly, learn strategies and actions that you can take to prepare for this evolving threat landscape.

2022 Threat Roundup – The Emergence of Mixed IT/IoT Threats

Threat detection and response has become increasingly important, and increasingly difficult, even for seasoned and large SOC teams. Current approaches, including traditional extended detection and response (XDR) solutions, don’t adequately convert the mountain of daily alerts into high-fidelity detections of true threats, nor do they enable SOC teams to automate response processes across the extended enterprise (IT, OT, IoT, IoMT). 

Forescout XDR, combined with other Forescout solutions, uniquely addresses these challenges. In this 30-minute webinar, you will: 

◾Learn how to truly extend detection to every managed and unmanaged connected device across your enterprise 

◾Discover how advanced data science enables 450x better detection 

◾See how you can better respond to threats through real-time control of your network and devices.  

◾Explore key use cases for improved SOC efficiency, risk reduction, and enhanced visibility.  

Speakers: Justin Foster, Chief Technology Officer; Virendra Bisht, Director of Data Science; George McTaggart, Chief Marketing Officer

Despite a number of advanced security tools on the market, ransomware, extortion, and other related threats continue to dominate the cybersecurity landscape of 2023. For organizations with siloed security solutions, outdated processes, and ineffective threat detection practices, an expanding attack surface is almost guaranteed – and will leave the door open for attackers to exploit, disrupt, and cost you millions. 

In this exclusive webinar, Forescout’s Rik Ferguson, VP Security Intelligence, will take a deep dive into:  

◾How the threat landscape of 2023 might be impacted by the developments of 2022 
◾An in-depth analysis of trending threat attacks and how organizations are being targeted 
◾Best practices to avoid falling victim to ransomware, identity-based attacks, extortion, and more.  

 Speaker: Rik Ferguson, VP of Security Intelligence

Threat Intelligence: 5 Cyber Attacks to Watch for

Several events in 2022 shaped the current threat landscape for critical infrastructure, such as the OT:ICEFALL vulnerabilities highlighting how insecurity by design affects critical devices, new OT/ICS-specific malware showing state-sponsored actors' inclination to cause cyber-physical damage via this insecurity, ransomware groups attacking critical infrastructure for financial gain, and several hacktivists attacking unmanaged devices for their own political agenda. 

We expect this threat landscape to continue expanding in 2023, with even more attacks on critical infrastructure, state-sponsored actors expanding their arsenal with new sophisticated malware, ransomware groups diversifying their extortion campaigns, and more hacktivists adopting OT as a target to spread their message.  

How is this all relevant for asset owners? Tune in to understand: 

• What does the current threat landscape for critical infrastructure look like and what could change in 2023 

• Strategies and actions that asset owners should take to prepare for this evolving threat landscape

The Critical Infrastructure Threat Landscape and How to Prepare for 2023

Like many other healthcare organizations, Northeast Georgia Health Systems understood the need for visibility into their IoMT environment, but they didn’t want to stop there. To gain complete 360 visibility and experience more control over both managed and unmanaged medical devices, they needed the ability to profile, classify, and segment across the board.  

In this “Lessons from the Trenches” webinar, Kristien Kramer, Manager of Network Engineering, Telecommunications, and AV at Northeast Georgia Health Systems, discusses how he and his team searched for and found a platform that brought complete visibility and an effective Zero Trust architecture to their IT, IoMT and IoT environment.  

During this webinar, you’ll get insight into: 

-The benefits of complete medical device visibility and effective Zero Trust segmentation for implementing cybersecurity automation   
-How they leverage their Care Traffic Control Center to enhance visibility and create more efficient patient care  
-Why Forescout was the clear choice for applying continuous monitoring and enforcement of both IT and IoMT devices  
-The future and vision of Northeast Georgia Health Systems 

Speakers: 
Tamer Baker, VP of Global Healthcare at Forescout
Kristien Kramer, Network/Telecom/AV Manger at Northeast Georgia Health Systems

Lessons from the Trenches: Moving Beyond Visibility to Control for IoMT

How do you get your IT and OT security teams to come together? Hear from Kyle Oetken, Director of Cyber Defense and Andrew Plunkett, Technical Lead from energy company, AES as they share how they operationalized their OT security program with Forescout.

You will learn:

- How Forescout helps IT and OT teams work together.
- OT Security best practices and lessons learned.
- Why it is important to develop a risk management plan that works across all OT sites.

Featuring Kyle Otken, Director of Cyber Defense, AES, Andrew Plunkett, Technical Lead, AES, and Christina Hoefer, VP of Global  Industrial Enterprise, Forescout.

AES & Forescout Roundtable Nov 8, 2022

As today’s threat landscape continues to expand, security teams are being forced to defend against motivated adversaries with new and improved tools, tactics, and procedures to exploit vulnerabilities and unmanaged risks. But the fight doesn’t end with attackers. Analysts, engineers, and SOC teams are also grappling with the disconnect and lack of usability between the products and services they rely on to drive detection, response, and protection capabilities. 

During this exclusive webinar, speakers Justin Foster, Rik Ferguson, and guest speaker Allie Mellen will take a deep dive into rising trends of tool convergence, the security analysts experience, and the historic disconnect between risk and threat-based tools to give an overview of today’s changing threat landscape and how you can manage various tools and skillsets to remain ahead of the curve. 

In this session, you’ll get the latest insight into: 
• Today's threat landscape and the skillset needed to manage the future of security 
• The impact of tool convergence on productivity and security analysis
• The disconnect between risk and threat-based tools for security programs
• The emerging analyst experience (AX) trend for improving SOC

Speakers: 
• Allie Mellen, Senior Analyst, Forrester  (Guest Speaker)
• Rik Ferguson, VP of Security Intelligence, Forescout  
• Justin Foster, CTO & Co-Founder, Cysiv (a Forescout Company)

The Future of Security: Merging Tools with Analyst Experience and Intuition

With the rapidly evolving threat environment, and the pressure to improve compliance and reduce risk, healthcare delivery organizations (HDOs) increasingly recognize the importance of having an up-to-date, accurate inventory of all medical devices connecting to their networks. But getting this data, and archiving and querying it for historic analytics, has been a challenge. And hiring in-house expertise to monitor these devices, around the clock, for threats that could ultimately impact patient safety, or cause an expensive and damaging data breach, is beyond the reach of most HDOs.  

Forescout addresses these challenges. In this 30-minute webinar, you will: 

Gain a deeper understanding of the importance of, and challenges associated with, real-time medical device inventories 

Learn how Forescout can more accurately discover and inventory all medical devices across your digital terrain 

Discover how Forescout provides 24/7 security monitoring, threat detection, investigation, hunting and response for HDOs 

Explore key use cases for compliance, incident investigation and risk reduction

24/7 Healthcare Security & Compliance, with Forescout

With the rapidly evolving threat environment, CIOs and CISOs now recognize the importance of in-depth device and network visibility for their OT/ICS environments to support effective, real-time identification and management of operational and cyber risks. But getting a comprehensive view of managed and unmanaged devices, and archiving and querying this data for historical analytics, has been a challenge. And building and managing a 24/7 team with the domain-specific expertise required to effectively monitor these devices and investigate and respond to threats, can be prohibitive for many enterprises. 

Forescout addresses these challenges. In this 30-minute webinar, you will: 

Gain a deeper understanding of the importance of, and challenges associated with generating a complete OT asset inventory of connected IP and serial devices. 

Learn how Forescout can more accurately discover and inventory all OT assets across your digital terrain, and monitor network communications to assess security and operational risks 

Discover how Forescout provides 24/7 security monitoring, threat detection, investigation, hunting and response 

Explore key use cases for compliance, incident investigation and risk reduction

24/7 Cybersecurity for OT/ICS

A First Health and Forescout Partnership 

Advancements in technology-enabled healthcare have led to explosive growth in the interconnectivity of IoT, OT, IT, and medical devices, increasing the attack surface and vulnerability of critical-care systems.  

As digital systems, devices, and data continue to support this increasingly borderless healthcare environment, healthcare entities will require highly skilled expertise to operationalize programs, execute ongoing device assessments, and enable complete visibility across their digital terrain. The First Health and Forescout partnership takes an innovative approach to connected device risk management by automating the technical data collection, mitigation, and risk reduction measures for a healthcare system’s entire connected asset ecosystem.  

Join speakers Tamer Baker, VP of Forescout Global Healthcare, and Matt Dimino, CSO of Clinical and OT at First Health Advisory, as they discuss this innovative partnership and how it can enable complete control over your healthcare enterprise system for a more secure future.  

Tamer Baker is a professional with nearly 20 years of experience helping organizations achieve their security and business goals through technology. Tamer is responsible for assisting HOs with their cybersecurity, medical device security, and zero trust projects by optimizing their technology and translating regulatory compliance into policies that align with NIST, CIS, the DoD’s Comply-to-Connect program, zero trust, and other frameworks.  

Matt Dimino is a professional with over 16 years of experience helping the nation’s public health sector and critical infrastructures prepare for tomorrow’s IoMT cyber threat landscape. Matt’s unique clinical, HTM/BioMed, Security, and leadership experience bring unparalleled depth to the Clinical & Operational service line of First Health where he has developed multiple security programs, risk assessments, and integrated complex architectures.

An Innovative Approach to Connected Device Risk Management

In manufacturing and critical infrastructure networks, the risks stemming from the increased use of Industrial IoT devices for process measurements and control and the connectivity of OT and IT systems for efficiency and automation makes critical process networks more exposed. Without proper visibility into OT networks and devices, it is impossible for OT organizations to determine the extent and impact of a breach on the IT network to critical processes, and may cause preventive and very costly shutdowns like in the case of Colonial pipelines. 

The recent OT:ICEFALL report demonstrates that attackers don’t even need to rely on zero-day vulnerabilities to compromise IoT/BAS/OT devices, they can simply rely on their “insecurity by design”. These devices need an increased level of visibility and monitoring, to ensure they remain secure and potential intrusions do not impact business and operational continuity. 

  

In this webinar, Daniel Trivellato, Forescout VP Product and Engineering, analyzes the risks posed by these exposed and unmanaged devices connected to your critical processes.  

Find out:   

 - Which devices may be a threat to your operational continuity 

 - How Forescout can help you reduce operational and security risks in IoT/BAS or OT/ICS environments 

 - How to get a quick demonstration of this value

Building Cyber Resiliency for Your OT Network

The growth and exposure of IoT devices and their connectivity with Building Automation Systems (BAS) devices offer attackers alternative ways to compromise business continuity for a financial institution: attackers do not need to reach and compromise critical servers directly, they can exploit IoT/BAS to compromise the infrastructure around them, by e.g. shutting down power or cooling of server rooms; they can compromise physical access control systems to gain unauthorized to buildings or rooms, or to prevent authorized personnel from accessing them; or they can disrupt HVAC or elevator systems on a hot day causing health and safety concerns.
In this webinar, Daniel Trivellato, VP of Product and Engineering at Forescout, analyzes the risks posed by these exposed and unmanaged devices connected to your critical processes.  

Find out:   

 - Which devices may be a threat to your operational continuity 

 - How Forescout can help you reduce operational and security risks in IoT/BAS or OT/ICS environments  

 - How to get a quick demonstration of this value

Expose Unmanaged Devices Across Your Digital Terrain

Threat Intelligence and Hunting Nation-State Actors and Threats: A Closer Look at Russian Cyber Activity 

The Russian invasion of and war in Ukraine has been marked by persistent attacks from Russia and Russian-sympathizer hacking groups on Ukraine and supporting entities.  

In this webinar, we’ll give:  

A breakdown of the current state and past timeline of Russian cybersecurity attacks
The step-by-step process cybercriminals use to exploit access and attack corporate networks 
A look into the recent evolution of ransomware as the leading cybersecurity threat of 2021 
The benefits of Forescout Frontline and how our security analysts assess an organization’s baseline risk exposure to cyberattacks.
 
Speaker: Shawn Taylor, Forescout Vice President, Threat Defense

Threat Intelligence and Hunting Nation-State Actors and Threats

Forescout's Vedere Labs announced on June 21 the disclosure of "OT:ICEFALL": 56 vulnerabilities related to insecure-by-design functions affecting devices from 10 major operational technology (OT) manufacturers.
 
Exploiting these vulnerabilities, attackers with network access to a target device could remotely execute code, change the logic, files or firmware of OT devices, bypass authentication, compromise credentials, cause denials of service or have a variety of operational impacts.
 
The products affected by OT:ICEFALL are known to be prevalent in industries that are the backbone of critical infrastructures such as oil and gas, power generation and distribution, manufacturing, water treatment and distribution, and building automation. Many of these products are sold as 'secure by design' or have been certified with OT security standards.
 
Tune in to understand:
• Why the lack of basic security controls, which has been exploited in the past by real-world malware, is the biggest issue facing OT security
• The impact of OT:ICEFALL on OT certification, risk management, supply chains, and offensive capabilities
• Strategies and actions that asset owners should take to mitigate risk
 
Speakers:
Daniel dos Santos, Head of Security Research, Vedere Labs

OT:ICEFALL – How to Tackle a Decade of Insecure-by-Design Practices in OT

Forescout's Vedere Labs announced on June 21 the disclosure of "OT:ICEFALL": 56 vulnerabilities related to insecure-by-design functions affecting devices from 10 major operational technology (OT) manufacturers.

Exploiting these vulnerabilities, attackers with network access to a target device could remotely execute code, change the logic, files or firmware of OT devices, bypass authentication, compromise credentials, cause denials of service or have a variety of operational impacts.

The products affected by OT:ICEFALL are known to be prevalent in industries that are the backbone of critical infrastructure such as oil and gas, power generation and distribution, manufacturing, water treatment and distribution, and building automation. Many of these products are sold as “secure by design” or have been certified with OT security standards.

Tune in to understand:
• Why the lack of basic security controls, which has been exploited in the past by real-world malware, is the biggest issue facing OT security
• The impact of OT:ICEFALL on OT certification, risk management, supply chains and offensive capabilities
• Strategies and actions that asset owners should take to mitigate risk

Ransomware is now the biggest cybersecurity threat. More than 80% of cyber incidents have financial motivation. Forescout’s Vedere Labs released a comprehensive report that includes a detailed playbook describing how organizations can protect themselves against a new type of ransomware that exploits IoT devices, such as video cameras, to deploy ransomware.   
 
The next-generation ransomware described in the R4IoT report uses exposed vulnerable devices, such as an IP video camera or network-attached storage (NAS) device, as the initial access point to the network. It then holds OT devices hostage, thus adding another layer of extortion to an attack campaign. This new attack vector that Vedere Labs predicts will be the next step in ransomware evolution, which will impact all IoT (including IoMT), IT, and OT devices, causing physical disruption of business operations.
 
Tune in to learn about:
• How a combined IoT/OT ransomware might work
• How this next-generation ransomware would disrupt and impact your organization 
• Detailed mitigation steps by TTP and how Forescout can help
• Vulnerable IoT and OT assets being actively exploited and how to prioritize their protection
 
Speakers:
Daniel Dos Santos, Head of Security Research, Vedere Labs
Shawn Taylor, VP, Threat Defense

R4IoT: When Ransomware Meets Internet of Things

Security teams across the globe are facing many challenges, not the least of which is trying to deal with an explosion in the number of digital assets while facing a shortage of qualified cybersecurity personnel. You don’t need more security products; you need a force multiplier – a platform that makes your team more effective and focused on what matters.

For more than 20 years, Forescout has been building the only platform that delivers visibility and automation across all types of assets – IT, IoT, IoMT, OT, and Cloud – which collectively represent the digital terrain of your organization. This complete cybersecurity solution provides a strong foundation for Zero Trust security and enables teams to stop chasing false alerts. 

Introducing the new Forescout Continuum Platform, a powerhouse of cybersecurity automation.

In this 45-minute session you’ll learn how: 
- Continuum’s automated discovery delivers a single, comprehensive source of truth for all connected assets across your entire digital terrain. 
- To leverage Forescout’s Device Cloud - the most comprehensive source of device intelligence available - to power the accurate classification and automated assessment of each connected asset’s status and risk posture.
- Shrinking your attack surface to minimize the impact of potential breaches scales to protect your entire digital terrain using the power of automated governance and orchestration with your existing cybersecurity investments.
- To identify genuine threats within your constantly changing asset inventory and leverage Continuum’s multifactor risk scores to provide insightful information, focus, and assistance on what to prioritize.

Mapping Your Digital Terrain: Introducing the Forescout Continuum Platform

Webinar: Gartner - How We Answer the 7 Questions Risk Stakeholders Should Be Asking OT Security Providers.

The diverse and complex nature of IIoT and OT security use cases can make the technology selection difficult, and unfortunately, copying IT security practices and technology will not result in a secure OT environment.To achieve lasting success with OT cybersecurity investments, managers must ask prescriptive questions during the technology procurement process. In this webinar, we discuss the seven questions recommended by Gartner for risk management leaders to ask during their OT security technology selection and how Forescout answers them.

7 Questions Risk Stakeholders Should Be Asking OT Security Providers

operational Technology

Cyber Security

Risk Mitigation

Risk Management

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

7 Questions Risk Stakeholders Should Be Asking OT Security Providers

Presented by

About this talk

More from this channel