Hi [[ session.user.profile.firstName ]]

IoT Security – Debunking the “We Aren’t THAT Connected” Myth

In a world where convenience is key, consumers are adopting every new connected device that hits the shelves - and doing so with the assumption that due diligence security has been considered. But recent IoT attacks suggest otherwise.

As organizations migrate from a primarily offline to online business model, they are failing to consider IoT’s unique threats which traditional solutions are unable to secure. As a result, steps must be taken to ensure that the device, connections and infrastructure are hardened, especially software which runs IoT devices and is the source of ~90% of attacks.

This webinar is ideal for risk, technology, and security professionals that want to understand why a hacker would want to attack their “harmless” IoT device and what the stealth risk to their organization and consumers is.

Topics covered include:

- IoT security – why it’s so different….and tough
- The IoT ecosystem and attack surface
- Managing liability - IoT risks to consumers and vendors
- Auditing IoT software development
Recorded Jun 12 2018 56 mins
Your place is confirmed,
we'll send you email reminders
Presented by
Ed Adams, CEO, Security Innovation
Presentation preview: IoT Security – Debunking the “We Aren’t THAT Connected” Myth

Network with like-minded attendees

  • [[ session.user.profile.displayName ]]
    Add a photo
    • [[ session.user.profile.displayName ]]
    • [[ session.user.profile.jobTitle ]]
    • [[ session.user.profile.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(session.user.profile) ]]
  • [[ card.displayName ]]
    • [[ card.displayName ]]
    • [[ card.jobTitle ]]
    • [[ card.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(card) ]]
  • Channel
  • Channel profile
  • Take the Industry’s Most Authentic Cyber Range for a Security Test Drive Aug 22 2018 5:00 pm UTC 30 mins
    Mike Cooper, Sr. Security Manager
    Unique to the industry, CMD+CTRL are interactive cyber ranges where staff compete to find vulnerabilities in business applications in real-time – learning quickly, that attack and defense are about thinking on your feet, creativity and adaptability.

    Every two weeks, we will offer the opportunity to test drive CMD+CTRL for 24 hours. We'll open up our CMD+CTRL to anyone to participate, score points, and see how they do.

    We will start with a 30 minute live demo to go over the features and functionality of CMD+CTRL, Q&A, and provide the login URL and credentials for your free 24 hour access and you can begin testing your skills immediately.

    Sign up to test drive CMD+CTRL!
  • Take the Industry’s Most Authentic Cyber Range for a Security Test Drive Recorded: Aug 8 2018 24 mins
    Mike Cooper, Sr. Security Manager
    Unique to the industry, CMD+CTRL are interactive cyber ranges where staff compete to find vulnerabilities in business applications in real-time – learning quickly, that attack and defense are about thinking on your feet, creativity and adaptability.

    Every two weeks, we will offer the opportunity to test drive CMD+CTRL for 24 hours. We'll open up our CMD+CTRL to anyone to participate, score points, and see how they do.

    We will start with a 30 minute live demo to go over the features and functionality of CMD+CTRL, Q&A, and provide the login URL and credentials for your free 24 hour access and you can begin testing your skills immediately.

    Sign up to test drive CMD+CTRL!
  • Take the Industry’s Most Authentic Cyber Range for a Security Test Drive Recorded: Jul 18 2018 24 mins
    Mike Cooper, Sr. Security Manager
    Unique to the industry, CMD+CTRL are interactive cyber ranges where staff compete to find vulnerabilities in business applications in real-time – learning quickly, that attack and defense are about thinking on your feet, creativity and adaptability.

    Every two weeks, we will offer the opportunity to test drive CMD+CTRL for 24 hours. We'll open up our CMD+CTRL to anyone to participate, score points, and see how they do.

    We will start with a 30 minute live demo to go over the features and functionality of CMD+CTRL, Q&A, and provide the login URL and credentials for your free 24 hour access and you can begin testing your skills immediately.

    Sign up to test drive CMD+CTRL!
  • CMD+CTRL Cyber Range Peek & Play Recorded: Jul 6 2018 27 mins
    Roman Garber, Security Engineer & Program Manager
    Unique to the industry, CMD+CTRL are interactive cyber ranges where staff compete to find vulnerabilities in business applications in real-time – learning quickly, that attack and defense are about thinking on your feet, creativity and adaptability.

    Every two weeks, we will offer the opportunity to test drive CMD+CTRL for 24 hours. We'll open up our CMD+CTRL to anyone to participate, score points, and see how they do.

    We will start with a 30 minute live demo to go over the features and functionality of CMD+CTRL, Q&A, and provide the login URL and credentials for your free 24 hour access and you can begin testing your skills immediately.

    Sign up to test drive CMD+CTRL!
  • IoT Security – Debunking the “We Aren’t THAT Connected” Myth Recorded: Jun 12 2018 56 mins
    Ed Adams, CEO, Security Innovation
    In a world where convenience is key, consumers are adopting every new connected device that hits the shelves - and doing so with the assumption that due diligence security has been considered. But recent IoT attacks suggest otherwise.

    As organizations migrate from a primarily offline to online business model, they are failing to consider IoT’s unique threats which traditional solutions are unable to secure. As a result, steps must be taken to ensure that the device, connections and infrastructure are hardened, especially software which runs IoT devices and is the source of ~90% of attacks.

    This webinar is ideal for risk, technology, and security professionals that want to understand why a hacker would want to attack their “harmless” IoT device and what the stealth risk to their organization and consumers is.

    Topics covered include:

    - IoT security – why it’s so different….and tough
    - The IoT ecosystem and attack surface
    - Managing liability - IoT risks to consumers and vendors
    - Auditing IoT software development
  • Threat Modeling – Locking the Door on Vulnerabilities Recorded: May 9 2018 63 mins
    Ed Adams, CEO by day, engineer at heart
    Did you lock the door before leaving your house this morning? If you did, you threat modeled without even realizing it. Threat modeling is identifying potential threats (house robbery) and implementing measures to mitigate the risk (locking your door).

    Protecting valuable assets, no matter if personal assets or business-related assets such as the software you are developing, threat modeling should become an instinctual and necessary part of your process.

    Our talk highlights how nearly 50% of security flaws can be mitigated through threat modeling. We help you prevent and mitigate risks by utilizing a reliable and hard-hitting analysis technique that can be applied to individual applications or across an entire portfolio. We show you how to effectively apply these techniques at the start of the design phase and throughout every phase of the development lifecycle so you can maximize the ROI of your security efforts.

    Topics covered include:
    • Threat Modeling 101
    • The propagating effect of poor design
    • Tabletop exercise – a world with and without threat modeling
    • Best practices and metrics for every stakeholder
  • GDPR: The AppSec Twist Recorded: Mar 21 2018 63 mins
    Roman Garber, Development Manager at Security Innovation and Edward Skraba, Lead Penetration Tester at Smarttech247
    When GDPR becomes law in a few months, it will be the most wide-ranging and stringent data protection initiative in history. To prepare for this sea change, most organizations have streamlined and detailed their information security policies; however, many are unaware that immature application security programs arguably pose the biggest threat of a data breach. This oft-forgotten piece of data protection puts organizations at risk of GDPR fines.  

    Attend this joint webinar with Security Innovation and Smarttech247 to learn practical tips on incorporating application security best practices into an InfoSec program to achieve GDPR compliance. 

    Topics include:  
    * Summary of GDPR key concepts
    * Security of data processing in software and the CIA triad
    * The people and process problem of GDPR: Governance
    * Using Data Protection by Design for secure design and business logic
    * Assessments to verify the security of processing

    Presenters:
    Roman Garber, Security Innovation
    Edward Skraba, Smarttech247
  • The OWASP Top 10 2017 - Let's Cut to The Chase Recorded: Feb 7 2018 60 mins
    Kevin Poniatowski and Mark Burnett
    What Do You REALLY Need to Know About the New OWASP Top Ten?

    The OWASP Top Ten is the de-facto web application security standard because it reflects the evolving threat landscape, providing organizations a framework to manage and mitigate application security risk.

    This dual-presenter format will examine the critical newcomers and pesky incumbents from both an offensive and defensive perspective. Attend to get our expert insight on how to harden Web applications and align your program towards OWASP compliance.


    Topics covered include:

    - The newcomers – why they are so tricky and elude traditional test efforts
    - XSS and Injection – mistakes organizations keep making that land these preventable threats on every Top Ten list
    - Design flaws that cause them and coding errors that expose them
    - High impact activities that reduce exploitability, prevalence and impact

    Meet the Presenters:

    Kevin Poniatowski, Sr. Security Instructor & Engineer at Security Innovation, brings an optimal blend of speaking ability, technical savvy, and an insatiable passion for security to Security Innovation's training customers. Kevin entered the application security field in 2007 with Security Innovation, where he has split time between application security course development and delivering instructor-led courses.

    Mark Burnett is a security consultant, author, and researcher who specializes in application security, authentication, and hardening Microsoft Windows-based servers and networks. Since 1999 he has worked in numerous areas of IT security, developing unique strategies and techniques for protecting critical assets. Mark is author and coauthor of a number of security books and publishes security articles for several web sites, newsletters, and magazines.
  • Reducing Application Risk: What Technology Can & Can’t Protect Against Recorded: Jan 12 2018 49 mins
    Mike Cooper, Sr. Security Manager, Security Innovation
    Applications are the primary target of attack due to their prevalence and inherent exposure, and require a solid defense in depth strategy to reduce risk. This on-demand webinar aims to educate IT and development teams on technologies available to build and deploy more secure software systems and debunks common myths about what each can and cannot protect.

    Topics include:

    - Network vs. Application Security
    - Secure Communication Technologies: Virtual Private Networks (VPNs), -
    Firewalls and Intrusion Detection Systems (IDS)
    - Hardening and Lockdown Tools: integrity checkers, anti-virus, access control, vulnerability assessment, and run-time application self-protection (RASP)
    - Shields Up: building stronger defenses
  • How To Test For The OWASP Top Ten Recorded: Dec 14 2017 63 mins
    Jason Taylor, CTO, Security Innovation
    The OWASP Top 10 is an expert consensus of the most critical web application security threats. If properly understood, it is an invaluable framework to prioritize efforts and address flaws that expose your organization to attack.

    Watch this on-demand webinar as Jason Taylor, one of our most experienced security experts, takes us through the journey of identifying the tell-tale markers of the OWASP Top Ten and reveals the techniques used to hunt them down.

    This session covers:

    Vulnerability anatomy – how they present themselves
    Analysis of vulnerability root cause and protection schemas
    Test procedures to validate susceptibility (or not) for each threat
  • OWASP Top Ten - Threats & Mitigations Recorded: Dec 1 2017 59 mins
    Jason Taylor, CTO, Security Innovation
    The OWASP Top Ten is an expert consensus of the most critical web application security threats. If properly understood, it is an invaluable framework to prioritize efforts and address flaws that expose your organization to attack.

    This on demand webinar presents the OWASP Top Ten in an abridged format, interpreting the threats for you and providing actionable offensive and defensive best practices. It is ideal for all IT/development stakeholders that want to take a risk-based approach to Web application security.
Securing software in the connected world
In today's connected world, software runs everything - from smart phones to banking applications, cars to home security systems, even refrigerators, garage doors and other every day devices are "connected." Software is everywhere – and unfortunately, it provides the largest attack surface for hackers. We are a cybersecurity company leveraging our deep knowledge of software security to create relevant products and services.

Embed in website or blog

Successfully added emails: 0
Remove all
  • Title: IoT Security – Debunking the “We Aren’t THAT Connected” Myth
  • Live at: Jun 12 2018 6:00 pm
  • Presented by: Ed Adams, CEO, Security Innovation
  • From:
Your email has been sent.
or close