Name: Brinqa Enterprise Vulnerability Management Webinar - Part 2 of 4
Start: 2018-12-05T17:00:00Z
End: 2018-12-05T17:00:19.000Z
Location: BrightTALK
Rating: 0

Brinqa is leading the charge for a new wave of knowledge-driven, risk-based cybersecurity solutions. Brinqa Cyber Risk Graph - the knowledge graph for cybersecurity - connects relevant security and business data, establishes common data ontology, and powers cybersecurity decisions and outcomes. Brinqa solutions apply this knowledge to uniquely inform risk management strategies, standardize data management and analysis, deliver actionable insights, and automate risk remediation. With Brinqa, businesses get all the tools they need to implement risk-based cybersecurity — packaged in a high-performance, enterprise-grade platform. Brinqa solutions evolve with the business and provide a stable, robust and dynamic cybersecurity foundation that supports and enables true digital transformation. 

Organizations' digital transformation initiatives have created complexity. There are simply too many devices and too many applications in an organization’s infrastructure to be able to a meaningful asset inventory, much less keep everything patched and up to date. Given that software vulnerabilities are one of the leading attack vectors for external breaches, it's clear that security teams must stop struggling with spreadsheets and homegrown vulnerability management tools.
 
In this webinar, Forrester VP & Research Director Merritt Maxim will discuss the current state of vulnerability management and the common challenges organizations face managing vulnerabilities and assets at scale.
 
This session will also highlight the value and benefits that security teams can realize from evolving their vulnerability management function into vulnerability risk management teams that can advise application, infrastructure, and business process owners how to best manage the risk of vulnerability exploitation and reduce overall cyber risks.

The Business Value and Benefits of Vulnerability and Asset Management

Brinqa commissioned Forrester Consulting to conduct a Total Economic Impact™ (TEI) study and examine the potential return on investment (ROI) enterprises may realize by deploying Brinqa. The purpose of this study is to provide readers with a framework to evaluate the potential financial impact of Brinqa on their organizations. 

Join us as we welcome the Lead Forrester Consultant for the study, guest speaker Mark Lauritano, to take a deep dive into the study’s methodology, key findings, quantified results, and more. 

The Total Economic Impact™ of Brinqa study revealed that organizations realize benefits of $4.05 million over three years versus costs of $1.31 million, resulting in a net present value (NPV) of $2.74 million and a return on investment (ROI) of 210%, with the Brinqa Platform paying for itself in less than six months. The study quantifies benefits that businesses can achieve through using Brinqa, including:

·      Reduction in business process interruption – 20% to 40% reduction in business process interruptions from security patching.
 
·      Material breach risk reduction savings – 13% to 15% decline in likelihood of a breach.
 
·      Risk analysis efficiency gain – Automation of 30% to 50% of risk analysis processes.
 
·      Asset management efficiency improvement – Uncovering of 20,000 to 24,000 unnecessary device-based licenses.

In addition, the study identifies several areas where businesses achieve qualitative benefits that are instrumental to the success of their cybersecurity organization: reinforced security culture, improved stewardship of assets, ability to scale security programs as needed, regular connector ecosystem expansion, and increased value from existing cybersecurity tools and investments.

Analyzing The Total Economic Impact™ of Brinqa, featuring Forrester

The transition from legacy software architectures and SDLC workflows to cloud native SaaS applications with CI/CD pipelines has cultivated an unprecedented change in enterprise IT development and security practices. Containerized images, Cloud VMs, orchestration platforms, and serverless functions are quickly becoming the standard among software ecosystems.

This complex landscape of technologies and workflows presents new challenges for security teams. Proper DevSecOps obliges organizations to manage vulnerabilities throughout CI/CD pipelines. To do so, security teams must have insight into the nature and severity of risks posed by these ’new’ technologies and a reliable methodology to control their software security risk posture. 
 
What artifacts are in your pipeline? Are there any vulnerabilities or hidden malware associated with them? Which risks do you prioritize for remediation, and how do you fix them? Do you have risk visibility once something has been pushed to production?
 
 
Aqua Security and Brinqa work together to tackle these challenges.
Join us as we discuss how Aqua Security and Brinqa unify premier vulnerability management technologies with unparalleled analytics and insight to help secure the cloud native technologies that drive your business forward.

Risk-based Vulnerability Management for Cloud Native Apps: A Comprehensive View

Executive cyber risk dashboards present a high-level view into the cybersecurity and risk posture of an organization. Commonly used by cybersecurity executives to get a quick window into the state of their programs or to identify problem areas that need more attention, these dashboards are also invaluable when communicating the state of cybersecurity initiatives to non-technical audiences like the c-suite, boards, and other executive leadership. The good news is that most organizations already have programs and security toolsets in place that capture the information necessary for building such a view. The bad news is that these data sources are often highly technical, siloed, and intractable.

Join us for this webinar as we welcome Pez Nikpour and Adrian Hoffman of Slalom Consulting to discuss how they use Brinqa to leverage customers' existing cybersecurity controls monitoring programs and create an Executive Cyber Risk Dashboard that clearly and concisely communicates cybersecurity and risk posture to executives and cybersecurity leadership in large enterprises.

Building an Executive Cyber Risk Dashboard w/ Brinqa & Slalom

In this session we will discuss how modern InfoSec organizations tackle the challenge of securing and protecting their software infrastructure. By taking a knowledge-driven and risk-centric approach, these organizations strategically leverage existing investment in security tools (SAST, DAST, Open Source, Penetration Testing, CMDB, Asset Management, Threat Intel, ITSM) to design application security programs that identify, prioritize and remediate vulnerabilities that pose the biggest threats to the organization — in a highly automated and efficient manner. 

We’d love to answer all of your questions by email, ask them during the session in the chat window, you can email them to me at troy.vera@brinqa.com to be answered by email, or tweet @brinqa with the hashtag of #BrinqaWebinars and we will cover everyone’s questions.

Understanding Application Risk Management

Part 4: Technical Capabilities Necessary for Effective Vulnerability Management

In this part, we discuss the technical capabilities needed by vulnerability management programs to proactively protect an organization. We will look at the nuances of risk modeling, data connectors, automation, remediation and analytics as they apply to vulnerability management and discuss how they come together in an effective vulnerability management program. We will also present 10 rules of thumb that all solution architects must consider as they build vulnerability management programs for their organization.

We’d love to answer all of your questions by email, ask them during the session in the chat window, you can email them to me at troy.vera@brinqa.com to be answered by email, or tweet @brinqa with the hashtag of #BrinqaWebinars and we will cover everyone’s questions.

Brinqa Enterprise Vulnerability Management Webinar part 4 of 4

Part 3: A real-world vulnerability management scenario

In this part, we present a case study detailing vulnerability management at a Fortune 100 Utility company. The case study describes the challenges faced by this large organization and how they were able to systematically address them to achieve vulnerability management success. We will discuss process improvements, key risk and performance metrics, and the risk prioritization model implemented to ensure that critical assets and business functions were protected.

If you have questions you'd like to submit before or after the webinars, we're here for you! Email me at troy.vera@brinqa.com or Tweet to @Brinqa using the hashtag #BrinqaWebinars

Brinqa Enterprise Vulnerability Management Webinar - Part 3 of 4

Part 1: Need for better vulnerability management and common challenges

In this part, we make the case for why vulnerability management is a critical security control that all modern organizations must address. We look at the timeline of the Equifax breach and how the problems leading up to it can be attributed to poor vulnerability management practices. We also discuss common challenges that most organizations face when trying to implement a vulnerability management program.

We’d love to answer all of your questions, you can email them to our host at troy.vera@brinqa.com to be answered by email, or tweet @brinqa with the hashtag of #BrinqaWebinars and we will cover everyone’s questions.

Brinqa: Enterprise Vulnerability Management Webinar - Part 1 of 4

Join us for this webinar as we discuss the visual language necessary to communicate with all the varied stakeholders that are impacted by or part of the vulnerability risk management process: business users, application owners, IT administrators, security professionals, compliance regulators, and others. 
We will discuss the data analysis necessary to create and communicate different types of metrics, including :

Business Exposure: What risks are different business entities exposed to due the vulnerabilities?

Vulnerability Impact: How do different technologies and various types of vulnerabilities contribute to risk?

Remediation Performance: How effective and efficient are current remediation efforts?

And More...

Vulnerability Analytics : The Visual Language of Vulnerability Management

With growing numbers of new vulnerabilities disclosed every year, increasing attacker sophistication, and a myriad of tools and teams that have to be synchronized for effective response, most organizations struggle with designing and implementing an effective vulnerability management program. In this webinar we discuss 3 key components that all modern vulnerability programs must address :  

- Knowledge: How to create actionable intelligence from business context, threat intelligence, and any other relevant data source 
- Automation: How to implement automation to streamline significant parts of the VM process 
- Analytics: How to effectively engage and inform all stakeholders

Modern Vulnerability Management : Knowledge, Automation, Analytics ﻿

The remediation gap is real. 

You have completed your network and application scans to identify the vulnerabilities in your technology infrastructure. Now begins the long journey from a vulnerability being identified and reported, to appropriate actions being taken to address the problem. This ‘Remediation Gap’ is the window of opportunity for attackers to exploit a weakness. According to research, vulnerabilities typically spend hundreds of days in this limbo, leaving organizations exposed to attacks. Fortunately, there are concrete steps that you can take to combat this problem.

Join us for this webinar as we discuss 7 practical strategies designed to reduce the remediation gap while improving effectiveness, efficiency, and consistency, including how to

Ensure that remediation efforts prioritize the most critical problems

Improve remediation coverage while reducing overhead

Leverage existing ITSM systems and processes

Automate significant parts of the process

7 Strategies for Effective Vulnerability Remediation

[Webinar] Vulnerability Risk Management - Lessons From the Trenches
One of the largest retailers in the world, top 5 medical insurance firm, largest US electric utilities provider - these are just some of the industry leaders that rely on Brinqa Vulnerability Risk Management to secure their critical assets. How do these cybersecurity organizations - representing some of the most complex, diverse and vast technology ecosystems in the world - tackle the most pressing vulnerability management problems of today?

Join us as we share lessons learned from down in the trenches of vulnerability risk management :
How top risk leaders and organizations approach risk prioritization
How to reduce remediation overhead while improving effectiveness
How you can gain insights into emerging threats like Meltdown and Spectre
How to future-proof your vulnerability risk management program

Vulnerability Risk Management - Lessons From the Trenches

Web applications are a prime target for hackers. According to the Verizon DBIR 2017 report, web application attacks were the #1 source of data breaches in the past year. With increasing attacker sophistication and a growing web application footprint for most businesses, investing in the cutting edge of web application vulnerability detection and remediation is crucial. 

Two technologies leading the charge are NetSparker and Brinqa.Netsparker is a scalable and dead accurate enterprise web application security solutions that enables businesses to easily identify vulnerabilities in web applications and APIs.Brinqa is a cyber risk management platform that helps security professionals triage and remediate application vulnerabilities in context of likelihood of weaponization and impact to business. 

In this webinar we discuss how these two innovative technologies work together to create a comprehensive web application security program that helps AppSec programs identify, prioritize, remediate and report the most imminent and impactful vulnerabilities in your organization's software infrastructure.

Web Applications: Secure Your Most Exposed Attack Surface w/ Brinqa & Netsparker

Vulnerability management is consistently ranked among the top priorities for information security organizations. With an ever-growing attack surface and increasingly sophisticated malicious actors, traditional approaches to vulnerability management are struggling to keep pace with the changing threat landscape. Inconsistent, inefficient, manual processes to analyze, triage and remediate vulnerabilities doom many organizations to a never-ending game of catch-up. 

In this webinar, we’re going to explore a strategy that can help organizations break out of ‘whack-a-mole’ vulnerability management cycles and begin to secure their IT infrastructure proactively : Automation. 

Join this webinar to learn how you can automate large parts of the vulnerability risk management process, including:

* Create accurate asset and vulnerability repositories
* Prioritize vulnerability risk based on business context and threat intelligence
* Group vulnerabilities into tickets, assign ownership and enforce SLAs
* Engage and inform all stakeholders

Automating Vulnerability Risk Management, An Essential Cybersecurity Strategy

All Brinqa applications include powerful self-service reporting capabilities. Using Brinqa Risk Analytics end-users can create detailed actionable reports for their risk, operations and business audiences. In this video we will walk you through creating a vulnerability report from scratch.

Some metrics represented in this report :
Critical Vulnerabilities
Exploitable Production and External Vulnerabilities
Most vulnerable host and CVE
Vulnerability Risk by OS and Ownership
Most Vulnerability Operating Systems
Vulnerability Risk Trend
In the video we will cover how you can :
Create single value metrics
Create tables and lists
Create visual metrics including pie, bar, columns charts
Create trend charts
Style reports with extensive appearance options

Demo : Self-Service Metrics & Reporting

In this session, presented originally at the Qualys Security Conference is Las Vegas on Oct 19 2017, we discuss how Brinqa customers are creating a new breed of cyber risk intelligence programs by making Qualys vulnerability management a central focus of their efforts.

These programs take vulnerability management effectiveness to a new level, by introducing automation at every step of the process – whether it is integration and correlation of data from multiple sources, prioritization of vulnerability and asset risks, creation and management of tickets based on optimal remediation strategies, or representation and distribution of real-time metrics and KPIs.

By taking these core capabilities and applying them to additional sources of security data — asset inventory, network management, web application scanning, BC/DR, policy compliance, IDS/IPS, change and configuration management, directory services, SIEM, etc. — these programs are providing security analysts, business owners and executives with actionable insights that were previously unattainable.

Building a Comprehensive Cyber Risk Program

Part 2: A modern, cyber risk approach to vulnerability management

In this part, we discuss how modern cyber risk management programs address vulnerability management challenges. We will look at the benefits of taking knowledge-centric and risk-centric approaches to vulnerability management and how these impact your program structure and performance. We present knowledge graphs as a potential solution to vulnerability management woes and put forth critical questions of vulnerability risk that all organizations must answer. 

We’d love to answer all of your questions by email, ask them during the session in the chat window, you can email them to me at troy.vera@brinqa.com to be answered by email, or tweet @brinqa with the hashtag of #BrinqaWebinars and we will cover everyone’s questions.

Brinqa Enterprise Vulnerability Management Webinar - Part 2 of 4

Cyber Security

Application Security

Vulnerability Management

Threat Intelligence

Welcome to the virtualization community on BrightTALK! Whether it affects servers, storage, networks, desktops or other parts of the data center, virtualization provides real benefits by reducing the resources needed for your
infrastructure and creating software-defined data center components. However, it can also complicate your infrastructure. Join this active community to learn best
practices for avoiding virtual machine sprawl and other common virtualization pitfalls as well as how you can make the most of your virtualization environment.

Virtualization

Are you an IT service management professional interested in developing your knowledge and improving your job performance? Join the IT service management community to access the latest updates from industry experts. Learn and share insights related to IT service management (ITSM) including topics such as the service desk, service catalog, problem and incident management, ITIL v4 and more. Engage with industry experts on current best practices and participate in active discussions that address the needs and challenges of the ITSM community.

IT Service Management

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

Welcome to the big data and data management community on BrightTALK. Join thousands of data quality engineers, data scientists, database administrators and other professionals to find more information about the hottest topics affecting your data. Subscribe now to learn about efficiently storing, optimizing a complex infrastructure, developing governing policies, ensuring data quality and analyzing data to make better informed decisions. Join the conversation by watching live and on-demand webinars and take the opportunity to interact with top experts and thought leaders in the field.

Big Data and Data Management

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Thousands of healthcare IT professionals compose the health IT community on BrightTALK. Learn alongside them with relevant webinars on healthcare IT compliance, big data in healthcare and IT solutions for healthcare organizations. Join the conversation by asking questions and engaging with other participants during live webinars and organized discussions.

Brinqa Enterprise Vulnerability Management Webinar - Part 2 of 4

Presented by

About this talk

More from this channel