Name: Why Should I Care About SSL/TLS Decryption? - (ISC)2
Start: 2019-07-26T00:05:00Z
End: 2019-07-26T00:05:51.000Z
Location: BrightTALK
Rating: 3.3

Gigamon offers a deep observability pipeline that harnesses actionable network-level intelligence to amplify the power of observability tools. This powerful combination enables IT organizations to assure security and compliance governance, speed root-cause analysis of performance bottlenecks, and lower operational overhead associated with managing hybrid and multi-cloud IT infrastructures.

Observability provides enormous business value, but organizations that implement it often suffer from data collection sprawl, and incomplete network application visibility. This discussion will focus on how Gigamon improves the value of SIEM and Observability tools by adding Network Intelligence and more to the toolset.

Join host Jon Brown, Senior Analyst – Observability at Enterprise Strategy Group and Martyn Crew, Senior Director at Gigamon as they discuss:
• What network intelligence brings to observability
• Where is observability creating the most business value?
• What’s the role of deep observability in Zero Trust?

What Gigamon Brings to Observability

Dev teams are running fast iteratively modernizing apps, often without involving operations teams. Unmonitored network blind spots continue to increase attack surface and make troubleshooting more difficult, often leading to finger-pointing at NetOps teams.   

At this webinar VMware and Gigamon Product teams will provide you with walk throughs, use cases and best practices, and even show you a demo of new, cutting-edge technologies. 
- 5 steps for successful cloud migration and app modernization 
- Recommendations for containerizing and re-securing apps  
- How to eliminate all east-west blind spots, including container communications, and 
- New technology demo: Feeding intelligence from cloud traffic to your SIEM and observability tools

NSX-T and container blind spots? Here’s what to do.

M-21-31 deadlines are closing in, please join us to learn how Gigamon can help you meet these deadlines while maximizing the investment you’ve already made in your monitoring and security tools. This practical webinar will focus on how Gigamon helps agencies capture, manage, and retain the logging and other data – including encrypted and IoT data - to ensure M-21-31 compliance.  

In this webinar, we will: 
- Review the M-21-31 logging, data capture and retention requirements. 
- Identify some of the most common problems in meeting these requirements. 
- Discuss access and capture of Encrypted, Containers, and IoT/OT data. 
- Demonstrate how Gigamon enables your existing tools to accelerate M-21-31 compliance. 

This session will be led by Gigamon government and technical experts and will focus on practical solutions to meeting the challenges of M-21-31 compliance.

Navigating M-21-31 Compliance with Gigamon

The Security of hybrid cloud models is a crucial topic that holds significance in today's technology world. As the landscape of artificial intelligence continues to expand, safeguarding your data within the diverse realms of cloud environments becomes paramount.  

This webinar will shed light on how prioritizing cloud security is essential for organizations. By investing in best practices for cloud security, businesses can not only fortify their data against potential threats but also optimize cloud performance.  

Discover how the partnership between WWT, Gigamon and Nutanix can provide an innovative approach to securing your hybrid cloud environments.

Securing the Hybrid Cloud: WWT, Nutanix and Gigamon

Hosted By: Gigamon & Carahsoft 

Threat actors conceal lateral movement and data extraction within encrypted communications, making it incredibly difficult to detect when they are present. Gigamon Precryption™ technology is a breakthrough approach to increasing network deep observability in hybrid cloud infrastructure. 

This technology increases deep observability while simultaneously enabling organizations to meet encryption compliance standards. At the same time, Gigamon Precryption technology is reducing complexity and costs to decryption. Precryption offers plaintext visibility into encrypted communications before the payload is encrypted – no decryption required. 

In this complimentary webinar, attendees learned how to: 
- Understand Precryption technology and why it is different 
- Eliminate blind spots and prevent cybercrime using Precryption 
- Help security teams achieve TLS 1.3 compliance, boost DNS security and extend Zero Trust architecture into the hybrid cloud

See Concealed Threat Activity Before Encryption

Hosted By: Gigamon & Carahsoft 

Hybrid cloud infrastructure is complex and time-consuming to secure, manage and maintain. Modern organizations must contend with multiple cloud providers and a myriad cloud, security, and observability tools, which add layers of complexity and make it challenging to detect security threats and performance anomalies. 

The DoD must not only face these challenges, but also must account for disrupted, disconnected, intermittent and low-bandwidth (DDIL) cloud environments that support theaters of operation. This webinar included how the hybrid-cloud network is the foundation of the hyper-connected digital infrastructure, and why network visibility and control are paramount for the proper operation and protection of all the network components and capabilities. 

During this webinar, attendees learned how to: 
- Access network traffic insights without blind spots through Gigamon's Deep Observability Pipeline 
- Empower their mission to safeguard critical network infrastructure and assets with high-performance, next-generation network visibility 
- Become agile for edge and tactical cloud network deployments 
- Normalize and consolidate network traffic insights with one Visibility Fabric 
- Derive continuous insights into the behavior and activity in their networks

Multi-Cloud Deep Observability From the Enterprise Cloud to the Tactical Edge

Organizations are exploring solutions to fortify their security posture as the threat landscape becomes more sophisticated and the number of breaches skyrockets. As teams look for new solutions, the challenge remains:   

How does an organization secure network traffic once it crosses a firewall and becomes East-West traffic?  

Join us to learn how you can build a security posture that combines firewalls with E-W visibility to enable successful detection and response of security issues.  

In this webinar, you will:   
- Learn the importance of integrating East-West visibility into your security posture  
- Discover the tools you need to effectively analyze East-West traffic  
- Understand how to create a scalable security posture that combines covers North-South, East-West, and encrypted traffic

Why Firewalls Are No Longer Enough

As hybrid cloud architectures become the new normal for enterprises and government organizations, many IT and Security leaders struggle with maintaining the balance of meeting business demands for faster application development and deployment with the need to maintain and enhance their hybrid cloud security posture.  

Is achieving such a balance possible?  

Join us to learn how Micron Technologies successfully fortified their security posture as they rapidly scaled their usage of virtual and containerized environments to support new applications. In this webinar, you will:  
- Learn how Gigamon can help you maintain and enhance your security posture no matter how quickly your infrastructure evolves  
- Understand the power of the newly announced Gigamon PrecryptionTM technology to radically simplify the management of encrypted traffic  
- Discover how Gigamon helps you gain deep observability into VMs and Container traffic to eliminate blind spots and security risks

Ensuring Security for Hybrid Cloud Companies

Has a vendor ever told you “Buy us and your Zero Trust journey is complete?” They either don’t understand Zero Trust or think you don’t. In this session, Gigamon Security CTO Ian Farquhar will discuss what it really takes to operationalize Zero Trust. Hear about minimizing implicit trust, implementing constant risk and posture assessments, and how to orchestrate security responses driven by risk determination. Ian will also discuss how to introduce these concepts to improve overall security posture.

Operationalizing Zero Trust: What It Really Takes

Making security systems more effective with less cost

Ransomware is a devastating cyberthreat that continues to grow and wreak havoc throughout all industries. CISOs have a deep desire to protect against every threat they possibly can, and eliminate every potential blind spot, but rarely have unlimited budget, time, and people to do so. In this webinar, hear from Michael Dickman, Chief Product Officer at Gigamon, and Alan Weckel, Co-Founder and Analyst at the 650 Group, about how you can uplevel your defense against ransomware while keeping costs in check.  

- Hear best practices for making Security investments go further, achieving better signal-to-noise while managing tooling costs 
- Walk away understanding how to detect encrypted lateral movement from a threat actor 
- Take SIEMs, NDRs, IDSs, and Firewalls to the next level

Gigamon Analyst Connection: 5 Pragmatic Tips for Preventing Ransomware

Join Chris Ebley (CTO at Blackwood Associates) and Crist Watts (Splunk Technical Lead at Aplura) as they share security automation strategies and answer frequently asked questions. Both Chris and Crist work for Gigamon professional services partners and have developed successful strategies that leverage Gigamon for faster detection and reaction to threats across the hybrid enterprise. These strategies, ideas, and techniques increase network-layer visibility and your organization’s ability to proactively detect and respond to threats, supporting security operations and compliance efforts as well.

Security Automation Architecture Strategies

If your security tools rely on logs, you may not be seeing the whole picture. In fact, the picture may not even be reliable. That’s because logs can be overwritten, manipulated, and deleted by bad actors. To achieve a more proactive security and compliance posture, adding network-derived context to MELT data brings the entire picture into focus. In this session, we’ll discuss how immutable network intelligence enables you to spot SSL/TLS vulnerabilities, identify port spoofing, and stop rogue activities before damage is done.

Logs or Packets — Which is Better for Hybrid Cloud Security?

SIEMs are one of the most important but also one of the most expensive security tools employed today. However, with the advent of high-performance cloud-based databases and low-cost storage, organizations — including Gigamon — are using these technologies to develop SIEM capabilities at a fraction of the cost of traditional SIEMs. In this session, we will highlight the potential financial and operational benefits of this approach and examine key issues when designing and deploying a security data lake.

Using a Security Data Lake to Reduce SIEM Costs

Zero Trust was introduced nearly 15 years ago, but misconceptions and uncertainty around definition, process, and strategy continue to hinder many Zero Trust initiatives. Security and IT leaders are grappling with modern and legacy environments that all need to be considered as organizations build their “Zero Trust plane” while flying it. But the time is now.

Join this discussion with Will Townsend from Moor Insights and Strategy and Michael Dickman from Gigamon as they review the critical principles around Zero Trust and key considerations for implementing Zero Trust in complex environments.

In this 30-minute GigaChat, they’ll cover:
- The definition of Zero Trust and the only NIST principles you need to know
- Why data — not just identity — must be central to Zero Trust
- The challenges and opportunities with Zero Trust in the cloud
- Real world examples of how organizations are successfully implementing Zero Trust today

Architecting Your Zero Trust Journey

In today's rapidly evolving digital landscape, securing your hybrid cloud environment while ensuring network stability has become paramount. Whether you're a seasoned IT professional or just beginning your cloud journey, this webinar is tailored to provide you with actionable insights and strategies to fortify your hybrid cloud infrastructure.

Unlock Ultimate Hybrid Cloud Security: Join Nutanix for Expert Insights

Decryption is not the end goal; it's the means to the end, which is traffic inspection. Our Security CTO will discuss how plaintext data access can introduce privacy and insider threat concerns, and mitigation strategies used by our customers.

We have decrypted traffic. Now what?

How can we get clear-text visibility into a modern encrypted 5G core?” is one of the questions we hear most often from our mobile operator customers. Learn how Gigamon addresses this critical visibility issue and how we support the world’s largest mobile operators when they make the choice to go with a converged core, serving both 4G and 5G traffic.

Gain Visibility into Encrypted Core and 4G+5G Converged Core

As networks grow, so does the resource demands on network monitoring and security tools. Gigamon has an extensive array of tool optimization technologies, designed to extend the life of tools, saving both tool costs and carbon footprint. We’ll talk about the Gigamon tech enabling these savings. Plus, we’ll show you how to estimate your own savings, as well as demonstrate our free Discovery & Optimization Kit, which you can use to directly measure the efficiency savings in your own environment.

Maximizing Tools Efficiency, Minimizing Carbon Footprint

We’ve arrived at the second anniversary of the Equifax breach and we now know much more about what happened due to the August 2018 release of the GAO Report. New information came out of that report that was not well-understood at the time of the breach. For example, did you know that while Equifax used a tool for network layer decryption, they had certificates nine months out of date? This lapse gave the threat actors all the time they needed to break in and exfiltrate reams of personal data. As soon as Equifax updated the certs on their decryption tools, they began to realize what happened.
On the heels of the Equifax breach, we are reminded of the importance of efficient decryption for effective threat detection. That’s more important than ever today; Ponemon Institute reports that 50% of all malware attacks utilize encryption. 
During this webinar, we’ll talk about: 
-How TLS/SSL encryption has become a threat vector
-Why decryption is essential to security and how to effectively perform detection 
-How to make sure your detection tools are working at their greatest capacity without the latency introduced by decryption

Why Should I Care About SSL/TLS Decryption? - (ISC)2

(ISC)2

Decryption

Welcome to the virtualization community on BrightTALK! Whether it affects servers, storage, networks, desktops or other parts of the data center, virtualization provides real benefits by reducing the resources needed for your
infrastructure and creating software-defined data center components. However, it can also complicate your infrastructure. Join this active community to learn best
practices for avoiding virtual machine sprawl and other common virtualization pitfalls as well as how you can make the most of your virtualization environment.

Virtualization

Are you an IT service management professional interested in developing your knowledge and improving your job performance? Join the IT service management community to access the latest updates from industry experts. Learn and share insights related to IT service management (ITSM) including topics such as the service desk, service catalog, problem and incident management, ITIL v4 and more. Engage with industry experts on current best practices and participate in active discussions that address the needs and challenges of the ITSM community.

IT Service Management

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The data center management community focuses on the holistic management and optimization of the data center. From technologies such as virtualization and cloud computing to data center design, colocation, energy efficiency and monitoring, the BrightTALK data center management community provides the most up-to-date and engaging content from industry experts to better your infrastructure and operations. Engage with a community of your peers and industry experts by asking questions, rating presentations and participating in polls during webinars, all while you gain insight that will help you transform your infrastructure into a next generation data center.

Data Center Management

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Why Should I Care About SSL/TLS Decryption? - (ISC)2

Presented by

About this talk

More from this channel