Infosecurity 2016: Which are the Critical Vulnerabilities in the IoT?
- BrightTALK at Infosecurity Europe 2016 -
BrightTALK got the chance to talk all things cyber with President and Co-Founder of Extrahop Networks Raja Mukerji.
Raja covered aspects of cyber security including how to protect the extensive networks supporting the IoT; the relevancy of encryption in today's security landscape; increasing network visibility and how to best protect the most crucial and vulnerable aspects of national critical infrastructure.
RecordedJun 14 20166 mins
Your place is confirmed, we'll send you email reminders
While some innovations deliver material benefit, many aren’t worth your POC time. In this webinar, featured speaker Chris Kissel, Research Director, Security Products and head of the IDC security analytics and orchestration practice, will present new research on what will disrupt, what will innovate, and what will merely evolve in the security analytics market over the next several years. Futurescape trends provide insights on the best ideas enhancing incident detection and response and provide a look at the ideal use cases for the most beneficial new technologies.
David Monahan, Senior Analyst, EMA and John Matthews, CIO, ExtraHop
The shortage of skilled security professionals won’t end anytime soon, but you can improve your incident response (IR) capabilities now by taking advantage of your network traffic for early detection and more investigation. In this webinar, EMA Managing research Director David Monahan will join ExtraHop CIO John Matthews to explain how you can make your staff more productive by automatically prioritizing your most critical assets, providing context to alerts, and putting full transaction details at the fingertips of analysts during investigations.
In this webinar, you’ll learn how to:
- Use your network as a force multiplier for SecOps
- Equip junior security staff to do more by providing them with greater context and analysis
- Reduce your attack surface and prioritize response on your most critical assets
Scott Olson, Sr. Sales Engineer; Stephen DeSanto, Solutions Engineer
Splunk is an excellent platform for analyzing machine data and orchestrating responses. ExtraHop extracts wire data events and metrics from network communications, and can send this information to Splunk for added accuracy and context.
This webinar explains why ExtraHop and Splunk make such a great fit, and how you can use the ExtraHop App for Splunk to stream wire data such as details for DNS, database, storage, and more.
Barbara Kay, Sr Director of Security Product Marketing
IT and Security teams are figuring out how to ensure the same level of security for their applications and data in the cloud as they have in traditional on-premises environments. While public cloud vendors offer some capabilities, there are several gaps that organizations need to fill when it comes to cloud-hosted workloads. In this webinar, you will learn about what cloud providers can help you with, what gaps you need to fill, and the role that network traffic analysis can play in securing your cloud environments.
Dave Shackleford, SANS Instructor and Founder of Voodoo Security; Barbara Kay, Sr Director of Security Product Marketing
This SANS Institute review evaluates the ExtraHop Reveal(x) product and its ability to support detection, investigation and response for these late-stage attack activities.
Reviewer Dave Shackleford puts ExtraHop Reveal(x) through its paces using a use case of an outside attacker who has compromised an internal system. The attacker is scanning the network, trying to gain access to a file share through brute force, pulling down data and exfiltrating that data. How does Reveal(x) perform in this scenario?
Attendees at this webcast will learn about the role of machine learning in detecting and responding to threats and see how ExtraHop Reveal(x) can:
- Assist in investigating incidents
- Provide proactive threat hunting
- Help with security hygiene and compliance
- Integrate with other tools
Discover the latest trends in cyber crime, your organization's vulnerabilities, and how to go about preventing, detecting and responding to a breach.
Join this interactive Q&A panel with top security experts across the ecosystem to learn more about:
- Trends in breaches and cyber attacks
- What to do (and not to do) after a breach
- What's new on the threatscape
- Best practices and recommendations for improving your security posture
- Heather Stratford-Geibel, CEO of Stronger.tech
- Sushila Nair, Sr. Director, NTT DATA Services
- John Matthews, CIO, ExtraHop
Christopher Crowley (SANS) and Barbara Kay (ExtraHop)
The network doesnt lie. Thats one reason companies are increasingly turning to their network to simplify and speed up common SOC workflows. Network Traffic Analytics (NTA) specifically addresses key SOC challenges identified in the recent SANS SOC survey: Asset discovery and inventory, event correlation, and SOC/NOC integration.
The NTA category is relatively new and focuses on facilitating detection and response of post-compromise activity, including command and control, reconnaissance, lateral movement, and exfiltration. Organizations primarily use NTA to gain visibility into East-West traffic within the environment, though it can also heighten visibility of North-South traffic traversing the perimeter. NTA tools complement log data and endpoint instrumentation with an objective view of threat behavior on the network, and dramatically reduce the time to detect and respond to threats.
In this webcast, we'll cover:
∙ How your peers are using NTA technology to focus on what matters
∙ The impact of forward secrecy and TLS 1.3 encryption on network analysis
∙ How NTA can simplify CIS Critical Security Controls 1 and 2
∙ Boosting the productivity and expertise of junior analysts
∙ A live demo showing how ExtraHop Reveal(x) speeds key workflows
Christopher Crowley, Gary Golomb, Lital Grossman, John Moran, and John Pescatore
As the network perimeter melts away, SOCs have no choice but to evolve. The use of cloud, mobile, personal and Industrial IoT are but a few of the technology innovations forcing this evolution. In this webcast, learn the tools and technologies SOCs are deploying to integrate and manage all their security, operational and response data for better protection, detection and response.
In this webcast, SANS Principal Instructor Chris Crowley will discuss the results of the SANS 2018 SOC Survey, including:
Differences between SOCs that identify as MSSPs and SOCs that do not identify as MSSPs
Tools and technologies used to prevent, detect and respond to attacks
SOCs' likelihood to address IoT and non-traditional IT
Integration between tools for needed data sharing before, during and after events
Automated and manual actions taken and the value of both
Challenges holding organizations back from fully realizing SOC usefulness
John Pescatore (SANS), Christopher Crowley (SANS), and Barbara Kay (ExtraHop)
While SOCs are maturing, staffing and retention issues continue to plague critical SOC support functions. In this webcast, learn how respondents to our 2018 SOC survey are staffing their SOCs, the value of cloud-based services to augment staff and technology, and respondents' level of satisfaction with the architectures they've deployed.
In this webcast, SANS Principal Instructor Chris Crowley will discuss the following:
The level of staffing in SOCs
Outsourcing part (or all) of the SOC architecture
Tools and technologies SOCs use to operate efficiently
The value of distributed vs. centralized SOC functions
Relationship between SOCs and NOCs
Improvements resulting from integrative SOC functions for detection, prevention and response
Jeff Costlow, Dir of Security, ExtraHop; Kristy Westphal, VP, MUFG Union Bank; Melissa Duncan, Sr Sys Sec Eng, Charles Schwab
They say “Packets don’t lie”. Instead of waiting to respond to incidents and anomalies, SecOps teams are using the network to enable proactive measures such as threat hunting, auditing encryption and other suspicious and out-of-policy behaviors existing in the dark alleys of the traffic corridor. Real time network traffic analytics (NTA) tools can help an organization shift from defensive to offensive and cut investigation time, enabling analysts to quickly correlate activities and test hypotheses. Join ExtraHop and (ISC)2 on August 2, 2018 at 1:00PM Eastern as we discuss proactive measures that can work for an organization, what activities to look for and how machine learning can help speed up these efforts.
Barbara Kay, Sr Director of Security Product Marketing
The ExtraHop Reveal(x) Summer 2018 release introduces new compelling features that will deliver unprecedented visibility, definitive insights, and immediate answers. Join this webinar to learn about:
* New ways of visualizing threats, including risk scores and headlines
* New detections including network privilege escalation
* Threat feed integration with your wire data
* “Need to know” decryption that respects privacy requirements
* TLS 1.3 support, including decryption for ephemeral session keys
* Integrations with Anomali, Palo Alto Networks, ServiceNow, and Splunk
Eric Ogren, Senior Analyst at 451 Research; Barbara Kay Sr. Director of Security Product Marketing at ExtraHop
The network doesn’t lie. That’s one reason companies are increasingly turning to their network to simplify and speed up common SOC workflows. Network Traffic Analytics (NTA) complements log data and endpoint instrumentation with an objective view of threat behavior on the network, and dramatically reduces the time to detect and respond to threats.
In this webinar, you will learn how your peers are using NTA technology based on a new market research from 451 Research, as well as ExtraHop’s approach to NTA that goes beyond just detecting threats to also include automated investigation and robust forensics capabilities.
Raja Mukerji, President and co-founder of ExtraHop Networks
Raja Mukerji is the President and co-founder of ExtraHop Networks, where he is responsible for Customer Services, Systems Engineering, and Solutions Architecture. Raja ensures customer success, leveraging his background in the financial-services industry.
Raja co-founded ExtraHop after a seven-year tenure at F5 Networks where he was a Senior Software Architect and co-inventor of the TMOS platform. He was one of the lead developers behind the BIG-IP v9 product and the major-accounts liaison for critical issues within Product Development. Prior to F5, Raja worked as a Technology Architect at Strong Capital Management.
Raja is a renowned expert in application delivery and network protocols. He was involved in the FreeBSD project and contributed several enhancements to its TCP stack. Raja holds a bachelor’s degree in Computer Engineering from the Milwaukee School of Engineering.
Nick Frost (Principal Consultant, ISF) | Raja Mukerji (ExtraHop) | Patrick Grillo (Fortinet) | Rob McGovern (LogRhythm)
What are the lessons learned from the biggest ransomware attacks to date (Wannacry, NotPetya)? How are organizations preparing against the next big attack?
Join top security experts for this interactive Q&A discussion on:
- Trends in ransomware attacks
- Backups, patches and other ways to protect your data
- How to bolster your organization's security culture
- Other threats on the horizon
- Nick Frost, Principal Consultant, Information Security Forum (ISF)
- Raja Mukerji, Co-Founder and President, ExtraHop
- Patrick Grillo, Senior Director Solutions Marketing, Fortinet
- Rob McGovern, Technical Product Manager, LogRhythm
The session will be streamed LIVE from London from the Infosecurity Europe conference.
Jon Oltsik, Sr. Principal Analyst, ESG, and Barbara Kay, Sr. Dir. Security, ExtraHop
Orchestration and automation theory has graduated to a concrete architecture for implementation. An action-driven architecture supports more proactive analysis and investigation for more effective detection, triage, investigation, and response.
The foundation of a successful security architecture in this model requires:
- Rich, trustworthy data covering all aspects of the environment
- Consolidated data sources and analytics processes
- Automated investigation and response capabilities
- Integration between tools and services for total coverage of every critical asset and data set.
In this webinar, we'll discuss how to build an action-oriented security architecture, key use cases, and critical success factors.
Diana Kelley (Microsoft) | Mary Writz (Micro Focus) | Chris Morales (Vectra Networks) | Barbara Kay (ExtraHop)
Artificial intelligence and machine learning can power cyber attacks and disrupt the operations of organizations on a global level. ML can also help organizations detect and analyze threats faster, as well as respond to attacks and security incidents. What are the latest advancements in AL & ML? How can we incorporate ML to improve our security posture and better protect our data?
Join security experts, researchers and practitioners for an interactive Q&A roundtable discussion. Viewers will learn more about:
- The latest AI/ML trends and applications in cyber security
- ML tasks for better security
- Threats, detection & response
- Hype vs. reality
- Recommendations for CISOs
- Diana Kelley, Cybersecurity Field CTO, Microsoft
- Mary Writz, Director of Product Management, ArcSight, Micro Focus
- Chris Morales, Head of Security Analytics, Vectra Networks
- Barbara Kay, Sr. Director of Security, ExtraHop
This is a CPE credit session in partnership with ITSPmagazine and (ISC)². This panel will be streamed LIVE from San Francisco during RSAC week.
Brad Casemore - Research Director for Datacenter Networks, IDC and Eric Thomas - Director of Cloud Solutions, ExtraHop
In the early days of aviation, flight instrumentation made it safer to fly in bad weather. Today, cloud computing is taking off and revolutionizing how applications are built and delivered. But while these technologies offer new possibilities, they also can obscure visibility and make it much more difficult for IT Operations teams to detect security threats and diagnose the root cause of performance issues.
There is hope: the network remains the common denominator for all applications and provides a source of real-time insight across hybrid, multi-cloud environments.
In this webinar, IDC Research Director Brad Casemore and ExtraHop’s Director of Solutions Architecture, Eric Thomas, discuss how organizations can tap into network communications and maintain visibility for security and performance.
Ernie Hood, Senior Research Director with the Advisory Board and former Vice President and CIO at Group Health
Securing your healthcare organization goes beyond investing in technology to secure your devices, data, and applications. In today's complex digital healthcare environment, your healthcare workflows broaden your risk exposure by interacting with multiple apps, devices, and users spread across multiple geographies. Securing these interactions and all of the components within these workflows requires investing in a comprehensive cybersecurity ecosystem that is more focused on business objectives and less focused on securing individual applications and devices.
This webinar will discuss the pieces of a cybersecurity ecosystem model, and how this type of model requires policies, processes, and technologies that allow your healthcare organization to take a more proactive approach to risk management and security.
Scot Brooks, PCC - Network Engineer, Juan Garza, APCON - RSM, Ryan Davis, ExtraHop - Sr. Product Marketing Manager
Join us on November 8th, as ExtraHop, APCON, and Portland Community College (PCC) discuss the challenges PCC faced when trying to expand visibility and aggregate network traffic from multiple remote sites. The group will discuss how PCC was troubleshooting and managing their network in the past and how they’re now able to have visibility across multiple remote sites, access to instant dashboards, and the ability to go back in time to look at historical metrics -- all while staying within a tight budget.
Automating and streamlining security investigations.
This channel provides educational webinars about security analytics and investigation automation, and product info about ExtraHop Reveal(x), the network security analytics platform powered by AI, providing unprecedented visibility, advanced behavioral analytics, and investigation automation capabilities. Using real-time analytics and ML-driven anomaly detection, ExtraHop Reveal(x) enables security teams to accelerate investigations, reduce false positives, and optimize the capabilities of expert security analysts. To learn more visit www.extrahop.com/revealx
Infosecurity 2016: Which are the Critical Vulnerabilities in the IoT?Raja Mukerji, President & Co-Founder, Extrahop Networks & Josh Downs, Community Manager, BrightTALK[[ webcastStartDate * 1000 | amDateFormat: 'MMM D YYYY h:mm a' ]]6 mins