Name: Encrypted Things - Network Detection and Response in an Encrypted World
Start: 2019-11-13T16:00:00Z
End: 2019-11-13T16:00:43.000Z
Location: BrightTALK
Rating: 0

Gigamon offers a deep observability pipeline that harnesses actionable network-level intelligence to amplify the power of observability tools. This powerful combination enables IT organizations to assure security and compliance governance, speed root-cause analysis of performance bottlenecks, and lower operational overhead associated with managing hybrid and multi-cloud IT infrastructures.

Making security systems more effective with less cost

Ransomware is a devastating cyberthreat that continues to grow and wreak havoc throughout all industries. CISOs have a deep desire to protect against every threat they possibly can, and eliminate every potential blind spot, but rarely have unlimited budget, time, and people to do so. In this webinar, hear from Michael Dickman, Chief Product Officer at Gigamon, and Alan Weckel, Co-Founder and Analyst at the 650 Group, about how you can uplevel your defense against ransomware while keeping costs in check.  

- Hear best practices for making Security investments go further, achieving better signal-to-noise while managing tooling costs 
- Walk away understanding how to detect encrypted lateral movement from a threat actor 
- Take SIEMs, NDRs, IDSs, and Firewalls to the next level

5 Pragmatic Tips for Preventing Ransomware

Organizations are exploring solutions to fortify their security posture as the threat landscape becomes more sophisticated and the number of breaches skyrockets. As teams look for new solutions, the challenge remains:   

How does an organization secure network traffic once it crosses a firewall and becomes East-West traffic?  

Join us to learn how you can build a security posture that combines firewalls with E-W visibility to enable successful detection and response of security issues.  

In this webinar, you will:   
- Learn the importance of integrating East-West visibility into your security posture  
- Discover the tools you need to effectively analyze East-West traffic  
- Understand how to create a scalable security posture that combines covers North-South, East-West, and encrypted traffic

Why Firewalls Are No Longer Enough

Regardless of which Zero Trust model you are utilizing, there are some universal solutions that will be common amongst them. Threat actors are observed using the same tactics and techniques over and over again. In this presentation, we will briefly examine two top models and then explore what that means on a practical level. We will broadly look at some traditional network visibility solutions and challenge some of the norms around these systems. Do they really solve the problem in the best way in a world where everything is encrypted and threat actors hide in plain sight? 

Key takeaways:  
- Can classic tools such as logging really solve for the visibility gap? 
- How to deal with the encryption/decryption paradox? 
- What method can solve for lateral visibility?

Zero Trust in An Encrypted World

M-21-31 deadlines are closing in, please join us to learn how Gigamon can help you meet these deadlines while maximizing the investment you’ve already made in your monitoring and security tools. This practical webinar will focus on how Gigamon helps agencies capture, manage, and retain the logging and other data – including encrypted and IoT data - to ensure M-21-31 compliance.  

In this webinar, we will: 
- Review the M-21-31 logging, data capture and retention requirements. 
- Identify some of the most common problems in meeting these requirements. 
- Discuss access and capture of Encrypted, Containers, and IoT/OT data. 
- Demonstrate how Gigamon enables your existing tools to accelerate M-21-31 compliance. 

This session will be led by Gigamon government and technical experts and will focus on practical solutions to meeting the challenges of M-21-31 compliance.

Navigating M-21-31 Compliance

Observability provides enormous business value, but organizations that implement it often suffer from data collection sprawl, and incomplete network application visibility. This discussion will focus on how Gigamon improves the value of SIEM and Observability tools by adding Network Intelligence and more to the toolset.

Join host Jon Brown, Senior Analyst – Observability at Enterprise Strategy Group and Martyn Crew, Senior Director at Gigamon as they discuss:
• What network intelligence brings to observability
• Where is observability creating the most business value?
• What’s the role of deep observability in Zero Trust?

What Gigamon Brings to Observability

Encrypted lateral traffic: Is there a bigger blind spot? We can only search where the light shines, not where we lost that proverbial key. The shadows today’s hybrid-cloud digital infrastructure provides a hiding space for both threat actors and pesky app troubleshooting issues.  

Do any of these apply to your organization? 
- Lack of network traffic visibility into east-west, lateral virtual traffic, including container pod-pod or client-server communications. 
- No practical way to decrypt that traffic, especially TLS 1.3. 
- Current SIEMs and observability tools cannot see and run analytics on unmanaged host communications. 
- Tools cannot ingest network packets because of capability, capacity, and cost challenges. 
- App owners resist agents in their apps and workloads. 
 
You will get a behind the curtain look at this new technology and see a demo of emerging real-life use cases that are just now coming to light. Join us for a view into the future of security and operations.

Shedding Light on Encrypted Lateral Traffic: Precryption™ Technology

How can we get clear-text visibility into a modern encrypted 5G core?” is one of the questions we hear most often from our mobile operator customers. Learn how Gigamon addresses this critical visibility issue and how we support the world’s largest mobile operators when they make the choice to go with a converged core, serving both 4G and 5G traffic.

Gain Visibility into Encrypted Core and 4G+5G Converged Core

Forrester security analyst, Tope Olufon, discusses the threat landscape and how we can deal with it in very practical terms, using deep observability techniques, visibility into encrypted traffic, and focusing on the network layer.

Forrester Discusses the Power of Visibility in Addressing Threat Landscape

The cloud has done nothing to make IT simpler. Tools, products, and services have proliferated to an alarming degree and many people fear we are recreating the siloes of the 2000s. Learn how the Gigamon Deep Observability Pipeline can provide a single platform to amplify the power of your cloud, security, and observability tools with network-derived intelligence and insights.  Find out how Gigamon: 

- Accesses, optimizes, and distributes data from any cloud source to any cloud tool, product, or service 
- Eliminates agents and mirroring processes that waste CPU resources and network bandwidth 
- Ensures complete North-South and East-West visibility including into encrypted and container traffic 

Join Martyn Crew, Senior Director of Product Marketing at Gigamon, to discover how to get your tools, products, and services working more effectively together to support your organization.

Cloud Tools and Product Success Starts (and Ends) with the Data

The Department of Defense is marching toward Zero Trust, following review of their implementation plans by the Defense Department (DoD) Zero Trust Portfolio Management Office (ZTMPMO) in fall 2023. Their progress will not be in lockstep, but their objectives are aligned. In this keynote address, Randy Resnick, Chief Zero Trust Office of the Department of Defense, will review the process and lessons learned, outline agency priorities for 2024 as adversarial behavior escalates, and provide a candid assessment of the obstacles that must be overcome to reach Target Level Zero Trust across the DoD by 2027.

Next Steps in the DoD’s Advance Toward Zero Trust

SIEMs are one of the most important but also one of the most expensive security tools employed today. However, with the advent of high-performance cloud-based databases and low-cost storage, organizations — including Gigamon — are using these technologies to develop SIEM capabilities at a fraction of the cost of traditional SIEMs. In this session, we will highlight the potential financial and operational benefits of this approach and examine key issues when designing and deploying a security data lake.

Using a Security Data Lake to Reduce SIEM Costs

Zero Trust was introduced nearly 15 years ago, but misconceptions and uncertainty around definition, process, and strategy continue to hinder many Zero Trust initiatives. Security and IT leaders are grappling with modern and legacy environments that all need to be considered as organizations build their “Zero Trust plane” while flying it. But the time is now.

Join this discussion with Will Townsend from Moor Insights and Strategy and Michael Dickman from Gigamon as they review the critical principles around Zero Trust and key considerations for implementing Zero Trust in complex environments.

In this 30-minute GigaChat, they’ll cover:
- The definition of Zero Trust and the only NIST principles you need to know
- Why data — not just identity — must be central to Zero Trust
- The challenges and opportunities with Zero Trust in the cloud
- Real world examples of how organizations are successfully implementing Zero Trust today

Architecting Your Zero Trust Journey

Critical infrastructure and industrial organizations depend on operational technology (OT) to execute, monitor, and control physical processes. In today’s threat environment, IT is needed to configure and manage OT devices and collect data about OT operations to ensure enterprise-wide cybersecurity. As organizations work to implement Zero Trust, the necessary intersection of IT and OT introduces complexity and opportunity. This cross-industry panel will discuss the organizational and technical changes required to implement Zero Trust across IT and OT and their challenges and successes along the way.

Presenters:
[Moderator] John Quezada, Senior Solutions Engineer and SE Manager, Public Sector Civilian, Gigamon
Heather Dyer, Vice President, Chief Information Security Officer, United States Postal Service
Dr. Mark Stanley, Cybersecurity Advisor Architect and Zero Trust Lead, National Aeronautics and Space Administration
Juan Torres, Associate Laboratory Director, Energy Systems Integration, National Renewable Energy Laboratory
Zach Tudor, Associate Laboratory Director, National and Homeland Security, Idaho National Laboratory

At the Intersection of IT and OT, Bridging the Zero Trust Gap

There has been tremendous growth in the percentage of network traffic that is encrypted over the last decade. With this comes many challenges for incident responders. Decrypting the traffic is often hard, if not impossible. The rise in encrypted traffic has undoubtedly increased privacy for users but we know that threat actors take advantage of it as well. As network defenders our visibility is impacted, and traditional network monitoring detection will not always work.

In this talk we will discuss the problem of encrypted traffic as it pertains to network detection and response, educate you on new developments in SSL/TLS, and demonstrate how you can still hunt for and detect badness in encrypted traffic. This talk will be relevant to junior analysts all the way up to senior analysts at mature SOCs.

Encrypted Things - Network Detection and Response in an Encrypted World

Encryption

Welcome to the virtualization community on BrightTALK! Whether it affects servers, storage, networks, desktops or other parts of the data center, virtualization provides real benefits by reducing the resources needed for your
infrastructure and creating software-defined data center components. However, it can also complicate your infrastructure. Join this active community to learn best
practices for avoiding virtual machine sprawl and other common virtualization pitfalls as well as how you can make the most of your virtualization environment.

Virtualization

Are you an IT service management professional interested in developing your knowledge and improving your job performance? Join the IT service management community to access the latest updates from industry experts. Learn and share insights related to IT service management (ITSM) including topics such as the service desk, service catalog, problem and incident management, ITIL v4 and more. Engage with industry experts on current best practices and participate in active discussions that address the needs and challenges of the ITSM community.

IT Service Management

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The data center management community focuses on the holistic management and optimization of the data center. From technologies such as virtualization and cloud computing to data center design, colocation, energy efficiency and monitoring, the BrightTALK data center management community provides the most up-to-date and engaging content from industry experts to better your infrastructure and operations. Engage with a community of your peers and industry experts by asking questions, rating presentations and participating in polls during webinars, all while you gain insight that will help you transform your infrastructure into a next generation data center.

Data Center Management

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Encrypted Things - Network Detection and Response in an Encrypted World

Presented by

About this talk

More from this channel