Forescout Technologies is the leader in device visibility and control. Our unified security platform enables enterprises and government agencies to gain complete situational awareness of their extended enterprise environments and orchestrate actions to reduce cyber and operational risk.

Learn more about our products, hear about new cybersecurity trends and see how Forescout helps you address these.

OT assets and networks should no longer be viewed in isolation by security practitioners. As recent malware and ransomware attacks have proven, IT and OT devices are both vulnerable, and attacks on IT systems can drastically impact OT systems.
 
Shutting down OT networks has serious consequences from both financial and societal perspectives. To secure OT networks, organizations need to stop treating them as separate siloes. It’s the best way to gain visibility beyond OT environments and tighten security across the entire enterprise. 

Join this 30-minute session to learn about key elements for an effective cybersecurity program and how to make IT-OT convergence successful. Three experts on IT-OT network security will share their insights into the most important threats and trends during a general panel discussion.

Key takeaways from the webinar:
– Highlights of the pivotal security events of 2021
– Trends in IT/OT convergence and compliance regulations
– Predictions for 2022 

Q&A to follow panel discussion.

Speakers: 
Jason Holcomb, Accenture Security Innovation Principal Director - OT Security
Christina Hoefer, Forescout VP Global Industrial Enterprise
Brian Proctor, Forescout OT Principal Strategist

IT-OT Convergence in 2021 and Implications for OT Cybersecurity in 2022

Ways to Unstick Stuck Segmentation Projects

Attempts to steal valuable data have risen dramatically in recent years and will only continue to increase. In response, network segmentation has become a valuable tool to protect data and limit the blast radius of any incidents that do occur. It is also a key component that underscores zero trust programs and organizations’ ability to maintain compliance with the vast number of regulations being introduced by governments and industry bodies. 
Yet, segmentation projects experience a high failure rate, and many never progress beyond the planning stages. 
Join this 30 min session to learn how you can unstick a stuck segmentation project, along with best practices to avoid disruptions to production environments. 
Key-Takeaways:
- Why segmentation is more important now than ever before
- How you can set up your segmentation project for success
- Best practices for network segmentation

Overcoming Network Segmentation Hesitancy

The recent Verkada security camera breach impacted 150,000 IP cameras. This massive breach dominated headlines and spurred conversations among enterprise security teams and Board members who want answers to one critical question: Are our IoT devices secure? 

What can we learn from this breach in light of increasingly frequent attacks on IoT devices? Please join us as members of Forescout Research Labs, our system engineers and a featured Forescout customer discuss: 
• The recent attack landscape 
• Newly discovered IoT device vulnerabilities 
• Trends and best practices to mitigate these IoT risks

Using Research and Best Practices to Secure IoT Devices

Watch this engaging discussion with a panel of critical infrastructure security experts from Duke Energy, EG.D (an E.ON Group Co.), Enbridge and Southern Company who are each monitoring over 100 sites. Topics include:
	• Priorities an OT SOC should consider and why
	• Lessons learned coordinating IT and OT security operations at scale
	• Overcoming staff and/or network constraints to accelerate OT security deployments without negatively affecting performance
	• Methods to overcome alert noise, rapidly respond to threats appropriately and improve business operations
	• Streamlining program maturity with standards such as NIST and NERC CIP

Expert Panelists:
	•  Tony Souza, Dir. Cybersecurity Architecture & Engineering, Duke Energy
	• Jaroslav Prochazka, Cyber Security Architect,  EG.D (an E.ON Group Co.)
	• Doug Leece, OT Security Operations Lead, Enbridge
	• Steve Sanders, Power Delivery Cybersecurity Manager, Southern Company

Hosted by:
	• Jamie Bass, Accenture Managing Director
	• Brian Proctor, Forescout OT Strategist

Real-World Experiences Deploying & Operationalizing OT Security

High-profile cyberattacks continue to shut down critical infrastructure across a wide range of sectors. As a result, leaders depending on those systems are asking “Are we prepared? How do we avoid being a target of ransomware? When we’re attacked, can we contain damage without massive system shutdowns? Can segmentation prevent IT risks from affecting our OT systems?” 

A proactive Zero Trust approach can help you confidently answer these questions. This includes actively defending your IT and Operational Technology (OT) networks as a converged set of systems. After all, it is through IP-connected IT systems that an increasing number of sophisticated cyber threats are crippling the OT systems running  critical infrastructure. 

In this 45-minute session you’ll learn: 
-	Attributes of the recent attacks on critical infrastructure
-	Zero trust concepts and best practices for securing your converged IT/OT networks
-	How to proactively identify, segment, and enforce compliance on every connected device

Speakers:
Tamer Baker, Forescout CTO-Regional
Jonathan Jesse, Forescout Sr. Systems Engineer
Brian Proctor, Forescout Sr. OT Strategist

Proactive Cyber Security for Converged IT/OT Networks

Join Forescout and guest speaker, Forrester’s Steve Turner in a discussion on the unseen risks of returning to office, adapting to the new normal and security strategies you can implement today to mitigate risk. During this interactive live event, you’ll learn more around:
•	Why device posture decay is a huge concern and how to combat this as your security tools were forced to operate at home under reduced IT oversight when COVID-19 hit.
•	The need for a complete foundational solution as organizations prepare to bring these polluted devices back to the office and how to gain 100% visibility of all returning and new IP-connected devices.
•	How you can maintain constant vigilance by continuously monitoring all devices for new threats and re-assess their hygiene after extended absences.
•	The importance of a Zero Trust strategy to helping you secure your hybrid workforce.

Speakers:

Steve Turner, Analyst, Security & Risk – Forrester
Tamer Baker, CTO - Forescout Technologies, Inc.
Sandeep Kumar, Sr. Director Product Marketing Forescout Technologies, Inc.

Forrester and Forescout: Zero Trust Strategies for Returning to the Office

The National Institute of Standards and Technology (NIST) develops standards that allow technology and businesses to operate smoothly. In August of 2020, NIST published a Zero Trust Architecture standard (the 800-207) for a multivendor approach and implementation across the entire extended enterprise. Learn more about the NIST standard and how you can effectively approach your Zero Trust project.

The Zero Trust Journey – A NIST Standard

New IoT device vulnerabilities pose a growing threat to modern networks. Countering this threat requires continuous, detailed visibility into every endpoint – and all endpoint traffic. Learn about a unique approach to dynamic network segmentation that helps enterprises implement policy based on device identity, behavior and expected communication patterns – without compromising speed or scale.

Speakers: 
•	Rob McNutt, CTO Forescout Technologies 
•	Elisa Costante, VP Research Engineering 
•	Ken Duda, CTO Arista

Forescout, Arista and a new approach to identity-based network segmentation

Arm your SOC with greater visibility of threats across the Enterprise.

Industrial organizations are under pressure to monitor and secure their operational technology (OT) and industrial control system (ICS) networks as illustrated by the U.S. Department of Energy’s recent 100-Day Plan announcement which includes concrete milestones for electric utility owners and operators to identify and deploy technology and systems to provide enhanced ICS cybersecurity visibility detection, mitigation, and forensic capabilities. 

To meet the increased pressure and milestones of the 100-Day Plan, asset owners must gain complete visibility into devices and network operations in a manageable way. 

Forescout and Splunk enhances security operations and asset management practices with comprehensive device intelligence, threat detection and context-aware workflows for faster and more effective cyber and operational risk mitigation.

Join Forescout and Splunk to learn how this combined solution can help you meet these rigorous milestones including: 
-	Capturing and maintaining an accurate OT asset inventory
-	Accurately detect OT threats within Splunk
-	Prioritizing risks and vulnerabilities according to urgency and risk level
-	Reducing MTTR to cyber and operational threats
-	Easily generating reports for internal and regulatory compliance

Speakers:
Chris Duffey, Splunk OT Solutions Strategist
Brian Proctor, Forescout Principal OT Strategist – Americas
Chad Elmendorf, moderator, Forescout Sr. Product Marketing Manager

Enhance Your OT/ICS Security Intelligence

Vulnerabilities in TCP/ IP stacks represent an emerging threat for Healthcare Delivery Organizations (HDOs).  Forescout Research Labs recently released a report on the latest TCP/IP vulnerabilities, after analyzing the data from the Forescout Device Cloud. The research found HDOs are likely to have five times the number of affected devices on their networks. These and other vulnerable devices often share the same segments of an organization’s network, which increases the potential likelihood and impact of cyberattacks.
 
Join Elisa Costante, Vice President Research Engineering, Tony Douglas, Healthcare Director, Tamer Baker, Regional CTO and Robert Slocum, Senior Product Marketing Manager, for an interactive roundtable discussion on:
•	Newly disclosed TCP/IP vulnerabilities that impact health delivery organizations (HDOs)
•	The most common IoT, IoMT and medical devices impacted by these vulnerabilities
•	Effective Zero Trust architecture and continuous visibility to identify, segment and enforce compliance

Underlying Risks Found in Healthcare Devices

Forescout Research Labs, in collaboration with JSOF Research, recently released the third study from Project Memoria - the industry’s most comprehensive study of TCP/IP vulnerabilities. NAME: WRECK covers nine vulnerabilities affecting four popular TCP/IP stacks. These vulnerabilities relate to DNS implementations and can cause Denial of Service or Remote Code Execution, allowing attackers to take targeted IT, IoT or OT devices offline or take control of them. 

Join this roundtable discussion to learn about:

• The most recently discovered vulnerabilities and how they impact FreeBSD, IPnet, Nucleus NET and NetX TCP/IP stacks
• The types of organizations and devices these vulnerabilities are most likely to affect
• How Forescout can help assess risk and protect enterprise networks
• Mitigation strategies, tips & tricks and more

Speakers: 
Daniel dos Santos, Research Manager, Forescout Research Labs 
Tamer Baker, Forescout CTO, Regional
Robert Slocum, Forescout Sr. Product Marketing Manager

NAME: WRECK – Mitigate Risks of the Latest TCP/IP Vulnerabilities

Ohio’s South Central Power Company (SCP) had invested considerable time and money in a multilayered, multivendor security stack. However, SCP officials still had no idea how many devices were on its network or whether their portfolio provided accurate information. They knew a Zero Trust solution could help but weren’t interested in adding another point solution. 
 
In this Lessons from the Trenches webinar, SCP’s Jeff Haidet discusses how he and his team searched for and found the platform that brought complete visibility and effective Zero Trust policy enforcement to South Central Power. 

Discussion highlights include:
·	The benefits of complete device visibility and effective Zero Trust policy enforcement 
·	Applying continuous enforcement and monitoring of least-privileged NAC
·	Simplifying and accelerating design and deployment of network segmentation 
·	Enhancing the overall effectiveness and value of SPC’s security stack

Lessons from the Trenches: An Electric Utility Discovers the Power of Zero Trust

Are you actively protecting your networks from unexpected downtime?

Have you been making trade-offs between OT security and uptime for the sake of business continuity? What if you don’t have to?

Now you can prevent unplanned operational downtime and inefficiencies with an optimized OT cybersecurity strategy that includes:
•ICS/OT threat detection and baselining
•Optimized risk analysis
•Network and device group probing

Join this webinar to learn more about four key principles for minimizing cybersecurity risks across your OT devices:
•Know what’s on your network
•Introduce an Asset Risk Framework
•Organize network devices according to the Purdue Model
•Selectively probe networks and regulate device access

Register now to learn how you can reduce business risk with cyber and operational incident prevention.

How to Avoid OT Downtime with Optimized Security

Comply-to-Connect is a framework that restricts unauthorized device access; reduces known vulnerabilities; takes actions to detect, identify, characterize, report and deter anomalous behaviors; and maintains the secure configuration of the network and its information resources. C2C capabilities secure all endpoints connected to the DODIN including IT, OT, PIT, ICS, IoT, Cloud and Datacenter devices. Watch now to learn from DoD leaders how C2C is rolling out across the DoD Enterprise to make cybersecurity move effectively and efficiently.

A New Era in DODIN Security: What C2C Brings to the Cyber Fight

Forescout Research Labs discovered 33 vulnerabilities, four that are critical, lurking in millions of enterprise IoT, OT and IT devices. These vulnerabilities can cause memory corruption and affect four open-source TCP/IP stacks in widespread use across devices from over 150 vendors. Cybercriminals can target these vulnerabilities to perform remote code execution, cause denial of service and expose sensitive information.

Watch this webinar to learn more about:
• The AMNESIA:33 vulnerabilities and how they impact the uIP, picoTCP, FNET and Nut/Net open-source TCP/IP stacks
• The widespread use and proliferation of these stacks in embedded components, IoT, OT systems, network equipment and IT devices
• How these vulnerabilities can be used to target organizations worldwide, including retail, manufacturing, healthcare and critical infrastructure
• Best practices for organizations that are at risk of being targeted by cyberattacks exploiting these vulnerabilities
• How Forescout can help identify and mitigate the risk from these vulnerabilities to protect enterprise networks

AMNESIA:33: Understand & mitigate the impact on millions of IoT, OT & IT devices

Nearly every device these days can be used to connect to the internet – and to your network. A high percentage of IoT devices still use default credentials and have firmware that’s many years old, providing easy pathways for attackers to breach the network and exfiltrate data. 

Until now, staying on top of the number of networked IoT devices used by humans and applications has been a tall order requiring vigilance and a LOT of manual work. CyberArk, Forescout and Phosphorus are changing that. During this webinar, these security leaders will show you how to:

• Continuously discover and assess all IoT devices connecting to your network
• Automatically onboard IoT devices and credentials for centralized lifecycle management and security
• Rapidly detect and respond to IoT risk and credential threats
• Continuously control network and system access for all devices and users

Automatically and Continuously Secure IoT at Global Scale

Forescout Research Labs, in collaboration with JFrog, recently released the fourth study from Project Memoria - the industry’s most comprehensive study of TCP/IP vulnerabilities. INFRA:HALT covers 14 vulnerabilities affecting the popular closed source TCP/IP stack NicheStack. These vulnerabilities can cause Denial of Service or Remote Code Execution, allowing attackers to take targeted OT and ICS devices offline or take control of them.

Join this roundtable discussion to learn about:

• Recently discovered vulnerabilities and how they impact the NicheStack TCP/IP stack
• Organizations and devices with the highest potential to be affected 
• How to assess and mitigate risk and protect enterprise networks

Speakers:
Daniel Dos Santos, Forescout Research Labs
Shachar Menashe, JFrog Senior Director Security Research

INFRA:HALT – Risk Mitigation Strategies for TCP/IP Vulnerabilities in OT

ForeScout

Cyber Security

Cyber Attacks

IT Security

Cyber Defence

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

INFRA:HALT – Risk Mitigation Strategies for TCP/IP Vulnerabilities in OT

Presented by

About this talk

More from this channel