Name: Logs or Packets — Which is Better for Hybrid Cloud Security?
Start: 2024-04-24T17:00:00Z
End: 2024-04-24T17:00:26.000Z
Location: BrightTALK
Rating: 0

Gigamon offers a deep observability pipeline that harnesses actionable network-level intelligence to amplify the power of observability tools. This powerful combination enables IT organizations to assure security and compliance governance, speed root-cause analysis of performance bottlenecks, and lower operational overhead associated with managing hybrid and multi-cloud IT infrastructures.

Critical infrastructure houses our nation’s most crucial assets, making it a prime target for adversaries. To address this threat, robust cybersecurity measures are necessary. In this panel, we’ll hear how Congress has worked together to pass legislation and policy that bolster our nation’s cybersecurity efforts and safeguard crucial assets. The discussion will shed light on recent incidents involving critical infrastructure, including the recent AT&T outage, and will also highlight the work that remains.

Presenters:
[Moderator] Karen Evans, Managing Director, Cyber Readiness Institute
Slate H. Herman, Counsel, Communications and Technology, Energy and Commerce Committee (Majority)
Johanna Thomas, Counsel, Communications and Technology Subcommittee, House Energy and Commerce Committee

Safeguarding Critical Infrastructure

No agency wants to rip and replace existing solutions that support Zero Trust goals. Integration of existing and complementary capabilities is key to the creation of a unified Zero Trust solution that spans on-premises and cloud infrastructure, applications, and services across the five Zero Trust pillars and three cross-cutting capabilities. In this panel discussion, industry experts will outline how they come together to help agencies fully leverage existing solutions to achieve an ‘assume breach’ mindset, enterprise-wide visibility, and a comprehensive Zero Trust reference architecture.

Presenters:
[Moderator] Travis Rosiek, Public Sector Chief Technology Officer, Rubrik
Kam Amir, Director of Technical Alliances, Cribl
Rizwan Jan, Vice President, Chief Information Officer, Center for Naval Analyses
Tim Jones, Regional Vice President of Systems Engineering, Federal, Forescout Technologies, Inc.
Jason White, Senior Solutions Architect and Technical Strategist, Public Sector, Trellix

Build a Unified, Comprehensive Zero Trust Solution

Description:
As agencies forge ahead in their cloud security and resilience journeys, they must consider what gaps have been filled and what remain to cover. Many turn to frameworks such as the five pillars of Zero Trust in CISA’s Zero Trust Maturity Model. In this panel, agency leaders will share how they incorporate these pillars – identity, devices, network, data, and applications and workloads – into their everyday cloud security frameworks, and where they see the most important remaining gaps and risks across hybrid infrastructure.

Presenters:
[Moderator] Michael Dickman, Chief Product Officer, Gigamon
Beth Cappello, Deputy Chief Information Officer, Department of Homeland Security
Guy Cavallo, Chief Information Officer, Office of Personnel Management
Peder Jungck, Vice President and General Manager, BAE

Zero Trust in Multi-cloud Environments

Critical infrastructure and industrial organizations depend on operational technology (OT) to execute, monitor, and control physical processes. In today’s threat environment, IT is needed to configure and manage OT devices and collect data about OT operations to ensure enterprise-wide cybersecurity. As organizations work to implement Zero Trust, the necessary intersection of IT and OT introduces complexity and opportunity. This cross-industry panel will discuss the organizational and technical changes required to implement Zero Trust across IT and OT and their challenges and successes along the way.

Presenters:
[Moderator] John Quezada, Senior Solutions Engineer and SE Manager, Public Sector Civilian, Gigamon
Heather Dyer, Vice President, Chief Information Security Officer, United States Postal Service
Dr. Mark Stanley, Cybersecurity Advisor Architect and Zero Trust Lead, National Aeronautics and Space Administration
Juan Torres, Associate Laboratory Director, Energy Systems Integration, National Renewable Energy Laboratory
Zach Tudor, Associate Laboratory Director, National and Homeland Security, Idaho National Laboratory

At the Intersection of IT and OT, Bridging the Zero Trust Gap

Agencies must manage significant technical and organizational risks as they pursue zero trust, including legacy system integration, technical blind spots, and stagnant budgets and staffing levels. In this panel discussion, industry thought leaders will offer practical advice to help agencies with limited resources maximize impact and minimize risk as they move to a Zero Trust architecture.

Practical and Achievable: Real-World Advice on Zero Trust

Cybersecurity is a critical priority at the Department of Justice (DOJ), where we are committed to both enhancing cybersecurity and fighting cybercrime. The agency is in the midst of a three-year IT strategic plan that includes its journey to zero trust, and in this keynote address, DOJ Chief Information Officer and Deputy Assistant Attorney General Melinda Rogers will highlight DOJ’s progress toward zero trust thus far. She’ll discuss the importance of industry partnerships and offer insights into next steps for zero trust adoption and how to strengthen cyber resilience to secure government into the future.

Policy, Perspective, and Progress Toward Zero Trust

Making security systems more effective with less cost

Ransomware is a devastating cyberthreat that continues to grow and wreak havoc throughout all industries. CISOs have a deep desire to protect against every threat they possibly can, and eliminate every potential blind spot, but rarely have unlimited budget, time, and people to do so. In this webinar, hear from Michael Dickman, Chief Product Officer at Gigamon, and Alan Weckel, Co-Founder and Analyst at the 650 Group, about how you can uplevel your defense against ransomware while keeping costs in check.  

- Hear best practices for making Security investments go further, achieving better signal-to-noise while managing tooling costs 
- Walk away understanding how to detect encrypted lateral movement from a threat actor 
- Take SIEMs, NDRs, IDSs, and Firewalls to the next level

5 Pragmatic Tips for Preventing Ransomware

Organizations are exploring solutions to fortify their security posture as the threat landscape becomes more sophisticated and the number of breaches skyrockets. As teams look for new solutions, the challenge remains:   

How does an organization secure network traffic once it crosses a firewall and becomes East-West traffic?  

Join us to learn how you can build a security posture that combines firewalls with E-W visibility to enable successful detection and response of security issues.  

In this webinar, you will:   
- Learn the importance of integrating East-West visibility into your security posture  
- Discover the tools you need to effectively analyze East-West traffic  
- Understand how to create a scalable security posture that combines covers North-South, East-West, and encrypted traffic

Why Firewalls Are No Longer Enough

As hybrid cloud architectures become the new normal for enterprises and government organizations, many IT and Security leaders struggle with maintaining the balance of meeting business demands for faster application development and deployment with the need to maintain and enhance their hybrid cloud security posture.  

Is achieving such a balance possible?  

Join us to learn how Micron Technologies successfully fortified their security posture as they rapidly scaled their usage of virtual and containerized environments to support new applications. In this webinar, you will:  
- Learn how Gigamon can help you maintain and enhance your security posture no matter how quickly your infrastructure evolves  
- Understand the power of the newly announced Gigamon PrecryptionTM technology to radically simplify the management of encrypted traffic  
- Discover how Gigamon helps you gain deep observability into VMs and Container traffic to eliminate blind spots and security risks

Ensuring Security for Hybrid Cloud Companies

Regardless of which Zero Trust model you are utilizing, there are some universal solutions that will be common amongst them. Threat actors are observed using the same tactics and techniques over and over again. In this presentation, we will briefly examine two top models and then explore what that means on a practical level. We will broadly look at some traditional network visibility solutions and challenge some of the norms around these systems. Do they really solve the problem in the best way in a world where everything is encrypted and threat actors hide in plain sight? 

Key takeaways:  
- Can classic tools such as logging really solve for the visibility gap? 
- How to deal with the encryption/decryption paradox? 
- What method can solve for lateral visibility?

Zero Trust in An Encrypted World

M-21-31 deadlines are closing in, please join us to learn how Gigamon can help you meet these deadlines while maximizing the investment you’ve already made in your monitoring and security tools. This practical webinar will focus on how Gigamon helps agencies capture, manage, and retain the logging and other data – including encrypted and IoT data - to ensure M-21-31 compliance.  

In this webinar, we will: 
- Review the M-21-31 logging, data capture and retention requirements. 
- Identify some of the most common problems in meeting these requirements. 
- Discuss access and capture of Encrypted, Containers, and IoT/OT data. 
- Demonstrate how Gigamon enables your existing tools to accelerate M-21-31 compliance. 

This session will be led by Gigamon government and technical experts and will focus on practical solutions to meeting the challenges of M-21-31 compliance.

Navigating M-21-31 Compliance

Observability provides enormous business value, but organizations that implement it often suffer from data collection sprawl, and incomplete network application visibility. This discussion will focus on how Gigamon improves the value of SIEM and Observability tools by adding Network Intelligence and more to the toolset.

Join host Jon Brown, Senior Analyst – Observability at Enterprise Strategy Group and Martyn Crew, Senior Director at Gigamon as they discuss:
• What network intelligence brings to observability
• Where is observability creating the most business value?
• What’s the role of deep observability in Zero Trust?

What Gigamon Brings to Observability

Zero Trust is a complex and moving target. Threats are constantly changing, and the tools in the security stack are constantly evolving. Through pilots, prototypes, and partnerships, industry and government are working together to develop validated solutions that can simplify and speed Zero Trust implementation. This panel discussion will assess their efforts to “build the plane while flying” and offer guidance that can help agencies reduce Zero Trust complexity.

Building the Plane While Flying

Encrypted lateral traffic: Is there a bigger blind spot? We can only search where the light shines, not where we lost that proverbial key. The shadows today’s hybrid-cloud digital infrastructure provides a hiding space for both threat actors and pesky app troubleshooting issues.  

Do any of these apply to your organization? 
- Lack of network traffic visibility into east-west, lateral virtual traffic, including container pod-pod or client-server communications. 
- No practical way to decrypt that traffic, especially TLS 1.3. 
- Current SIEMs and observability tools cannot see and run analytics on unmanaged host communications. 
- Tools cannot ingest network packets because of capability, capacity, and cost challenges. 
- App owners resist agents in their apps and workloads. 
 
You will get a behind the curtain look at this new technology and see a demo of emerging real-life use cases that are just now coming to light. Join us for a view into the future of security and operations.

Shedding Light on Encrypted Lateral Traffic: Precryption™ Technology

How can we get clear-text visibility into a modern encrypted 5G core?” is one of the questions we hear most often from our mobile operator customers. Learn how Gigamon addresses this critical visibility issue and how we support the world’s largest mobile operators when they make the choice to go with a converged core, serving both 4G and 5G traffic.

Gain Visibility into Encrypted Core and 4G+5G Converged Core

Forrester security analyst, Tope Olufon, discusses the threat landscape and how we can deal with it in very practical terms, using deep observability techniques, visibility into encrypted traffic, and focusing on the network layer.

Forrester Discusses the Power of Visibility in Addressing Threat Landscape

The cloud has done nothing to make IT simpler. Tools, products, and services have proliferated to an alarming degree and many people fear we are recreating the siloes of the 2000s. Learn how the Gigamon Deep Observability Pipeline can provide a single platform to amplify the power of your cloud, security, and observability tools with network-derived intelligence and insights.  Find out how Gigamon: 

- Accesses, optimizes, and distributes data from any cloud source to any cloud tool, product, or service 
- Eliminates agents and mirroring processes that waste CPU resources and network bandwidth 
- Ensures complete North-South and East-West visibility including into encrypted and container traffic 

Join Martyn Crew, Senior Director of Product Marketing at Gigamon, to discover how to get your tools, products, and services working more effectively together to support your organization.

Cloud Tools and Product Success Starts (and Ends) with the Data

The Department of Defense is marching toward Zero Trust, following review of their implementation plans by the Defense Department (DoD) Zero Trust Portfolio Management Office (ZTMPMO) in fall 2023. Their progress will not be in lockstep, but their objectives are aligned. In this keynote address, Randy Resnick, Chief Zero Trust Office of the Department of Defense, will review the process and lessons learned, outline agency priorities for 2024 as adversarial behavior escalates, and provide a candid assessment of the obstacles that must be overcome to reach Target Level Zero Trust across the DoD by 2027.

Next Steps in the DoD’s Advance Toward Zero Trust

If your security tools rely on logs, you may not be seeing the whole picture. In fact, the picture may not even be reliable. That’s because logs can be overwritten, manipulated, and deleted by bad actors. To achieve a more proactive security and compliance posture, adding network-derived context to MELT data brings the entire picture into focus. In this session, we’ll discuss how immutable network intelligence enables you to spot SSL/TLS vulnerabilities, identify port spoofing, and stop rogue activities before damage is done.

Logs or Packets — Which is Better for Hybrid Cloud Security?

Logs

packets

Data Security

Cloud Security

Network Security

Network Intelligence

IT Cost Management

Security Strategy

Risk Mitigation

Welcome to the virtualization community on BrightTALK! Whether it affects servers, storage, networks, desktops or other parts of the data center, virtualization provides real benefits by reducing the resources needed for your
infrastructure and creating software-defined data center components. However, it can also complicate your infrastructure. Join this active community to learn best
practices for avoiding virtual machine sprawl and other common virtualization pitfalls as well as how you can make the most of your virtualization environment.

Virtualization

Are you an IT service management professional interested in developing your knowledge and improving your job performance? Join the IT service management community to access the latest updates from industry experts. Learn and share insights related to IT service management (ITSM) including topics such as the service desk, service catalog, problem and incident management, ITIL v4 and more. Engage with industry experts on current best practices and participate in active discussions that address the needs and challenges of the ITSM community.

IT Service Management

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The data center management community focuses on the holistic management and optimization of the data center. From technologies such as virtualization and cloud computing to data center design, colocation, energy efficiency and monitoring, the BrightTALK data center management community provides the most up-to-date and engaging content from industry experts to better your infrastructure and operations. Engage with a community of your peers and industry experts by asking questions, rating presentations and participating in polls during webinars, all while you gain insight that will help you transform your infrastructure into a next generation data center.

Data Center Management

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Logs or Packets — Which is Better for Hybrid Cloud Security?

Presented by

About this talk

More from this channel