Name: Under the Hood: Setting Guardrails for your K8S Cluster with Admissions Control
Start: 2022-12-15T15:00:00Z
End: 2022-12-15T15:01:10.000Z
Location: BrightTALK
Rating: 5

Check Point Software Technologies Ltd. (www.checkpoint.com) is a leading AI-powered, cloud-delivered cyber security platform provider protecting over 100,000 organizations worldwide. Check Point leverages the power of AI everywhere to enhance cyber security efficiency and accuracy through its Infinity Platform, with industry-leading catch rates enabling proactive threat anticipation and smarter, faster response times. The comprehensive platform includes cloud-delivered technologies consisting of Check Point Harmony to secure the workspace, Check Point CloudGuard to secure the cloud, Check Point Quantum to secure the network, and Check Point Infinity Core Services for collaborative security operations and services.

AI and automation offer great promise to help security operations teams to improve security and reduce overhead. However, they can also add complexity and risk, while security leaders struggle with how to design and implement projects. In this webinar, Eric Parizo, Omdia Managing Principal Analyst and lead analyst for Omdia's Enterprise Cybersecurity Operations (SecOps) Intelligence Service, will share his latest research on how emerging AI and automation capabilities can benefit security operations, as well as offer market observations and best practices for CISOs and SOC managers seeking to employ these capabilities in a safe and effective manner. 
 
Webinar attendees will learn: 
o How AI and automation can improve security, while dramatically reducing time and effort 
o How XDR, when combined with AI and automation, can be a force multiplier for TDIR programs
o The benefits of a comprehensive, cross-layered approach that consolidates entire security stack

CISO Guide to TDIR Innovation with XDR, AI and Automation

Automate the deployment and configuration of CloudGuard Network Security gateways for Azure Virtual WAN for improved operational efficiency and control.

Terraform is a popular tool for infrastructure as code that allows you to manage your cloud resources in a declarative way.
With Terraform, you can use our predefined templates to deploy CloudGuard NVAs (Network Virtual Appliances) into an existing Virtual WAN hub or a new Virtual WAN deployment. You can also customize the configuration parameters according to your needs.


In this webinar together with CheckMates, we will be going Under the Hood, providing step-by-step guidance so you can make Terraform do all of the hard work of deploying and configuring CloudGuard in order to bring industry-leading cloud network security to your Azure Virtual WAN deployments.

Under the Hood: Automate Azure Virtual WAN security deployments with Terraform

Join us for a deep dive webinar with Cloud Security Operations & Devops Engineer Bert Coddens from Cloudar, diving into the dos and don'ts of securing your AWS cloud environment, drawing insights and lessons from Check Point CNAPP implementation in a large European automotive company.

Navigating the Cloud Security Landscape with Check Point CNAPP

Are you using VMware NSX-T?
Do you want the highest levels of security, with consistent security management for public clouds, private clouds and on-premises networks from a single pane-of-glass?

Join this Under the Hood technical webinar with CheckMates for a step-by-step demo of how to deploy and configure CloudGuard Network Security for VMware NSX-T, and connect the security gateways to Check Point's security management.

Under the Hood: VMware NSX-T East-West security

Join us for a discussion on how to secure complex cloud environments with managed cloud security services. The Check Point CloudGuard team will be joined by our managed cloud detection and response partner, Tamnoon and customer Zinnia, a leading Insurtech company. 

During this webinar, we'll delve into the world of managed cloud security services and explore a case study showcasing how Zinnia leveraged these services to tackle their cloud security challenges and achieve remarkable results.

Securing Complex Cloud Environments with Managed Cloud Security Services

What is the best choice for Azure Virtual WAN security?
Join us for a step-by-step demo of how to deploy CloudGuard Network Security for Azure Virtual WAN, and connect the security gateways to Check Point's security management as-a-service, called Smart-1 Cloud.
Our cloud security expert will explain the different packages and demo the onboarding and deployment process, as well as provide examples of setting up network security policy, including application rules and URL filtering.

Onboarding CloudGuard for Azure Virtual WAN with Smart-1 Cloud management

Automate deployment and configuration of Azure CloudGuard VMSS to minimize or eliminate User Defined Routes in Azure (includes automating the integration between the VMSS and the Azure Route Server):

In this Under the Hood webinar together with CheckMates, learn how to use Terraform and CME templates to automate deployment and configuration of CloudGuard Network Security with Azure Scale Sets including automating the integration with Azure Route Server.
Integrating with Azure Route Server allows CloudGuard to advertise itself as the next hop for all Azure resources (eliminating the need for User Defined Routes and increasing security when bringing new services into Azure such as SDWAN connections). When using VM Scale Sets, automation is key to verify that any all newly scaled out instances are automatically configured and integrated with the Azure Route Server BGP service.

We will be going Under the Hood, providing sample templates and playbooks so you can make Terraform and CME do all of the hard work of deploying CloudGuard with VM Scale Sets and configuring the BGP integration with Azure in order to bring industry-leading cloud network security to your Azure deployments.

Deploy Azure VMSS CloudGuard Gateways via Terraform and eliminate need for UDRs

According to Check Point research, 1 out of every 5 organizations has suffered a malicious incident through mobile activity.
An emerging threat is Mobile Spyware. It keeps increasing in sophistication with zero-click attacks and nation-state tools being used on public organizations.
Join us to learn more about mobile spyware and how to protect your organization.
Agenda:
Overview of recent trends in mobile threats
A mobile spyware case study
Best practices in protecting your organization from mobile spyware attacks  
Harmony Mobile live demo

Keeping Up with Today’s Top Mobile Spyware Threat Trends | AMER

Keeping Up with Today’s Top Mobile Spyware Threat Trends | APAC\EMEA

Join us for an insightful webinar on how our cutting-edge solution, Quantum Rugged 1595R, helps protect Industrial Control Systems (ICS) and Operational Technology (OT) networks. In an era where cyberattacks on critical infrastructure, including Oil, Gas, Water Treatment, Energy, Biotech, and more, are on the rise, our experts will introduce our solution designed to safeguard these mission-critical environments.

Learn how Check Point can help you protect these environments with 

- Industry-Leading Advanced Threat Prevention
- Secure 5G Connectivity at 1 Gbps 
- IT-OT Network Segmentation
- and more!

Discover the key to safeguarding critical infrastructure and gain insights into real-world applications and deployment strategies. See you there!

Protecting Industrial Control Systems (ICS) and OT Networks from Cyberattacks

AWS Cloud WAN is a managed wide-area networking (WAN) service that you can use to build, manage, and monitor a unified global network that connects resources running across your cloud and on-premises environments. It provides a central dashboard from which you can connect on-premises branch offices, data centers, and Amazon Virtual Private Clouds (VPCs) across the AWS global network. 

In this under the hood webinar together with CheckMates, learn how to secure AWS Cloud WAN, including common design patterns , how to deploy the CloudGuard solution, and security best practices. We'll be going under the hood of each key integration feature to get you ready to secure AWS Cloud WAN with industry-leading cloud network security. 

Agenda:  
 - Introduction
 - Reference Designs
 - How to deploy CGNS
 - Best Practices
 - Q&A

AWS Cloud WAN security: onboarding and configuration

Cloud computing has revolutionized the way organizations operate, providing unparalleled scalability, flexibility, and cost-efficiency. However, this transition to the cloud also introduces new and complex security challenges that demand attention and expertise. In this seminar, we will delve into the Best Practices on Cloud Network Security with a focus on reference architectures to provide a comprehensive understanding of securing cloud-based infrastructure.

Agenda:
• Overview of the agenda and objectives for the seminar
• Understanding Cloud Network Security
• CloudGuard Network Security for AWS, Azure and GCP
• Case Studies: Implementing Reference Architectures

Best practices for CloudGuard Network Security

Securing data used to mean focusing solely on the data itself. But today, threats are more sophisticated. Attackers can bypass traditional measures through stolen keys, excessive permissions, or vulnerabilities in your cloud environment. It's time to shift your strategy and embrace a holistic approach to unifying data security efforts with cloud-native application protection practices.
 
CloudGuard CNAPP is your solution to preventing cloud attacks. It offers a complete view of your cloud environment's security posture, including sensitive data now available through Amazon Macie integration.

Join our webinar to learn: 

1. What are potential data risks in the cloud  
2. How to pinpoint sensitive data with Amazon Macie 
3. How to holistically view a cloud data risk with CIEM & CSPM 
4. How to remediate Cloud Data Risks & Strengthen Cloud Data Posture 

Don't miss this opportunity to take your data security to new heights. Join us for this insightful webinar and gain the knowledge you need to protect your cloud data effectively.

Take Your Data Security Posture Management to the Next Level with CNAPP

Traditional approaches to security involve using products which work on a specific enforcement point - maybe on a gateway or on an endpoint. The assumption is that attacks and threats are are contained to a specific vector.

In reality, security operations teams can't keep up with the spread of attacks through the organization. While security products work in silos, cyber criminals attack consistently and creatively, across an organization.

In this webinar Check Point's Security Operations experts will introduce a new way of working with security people, products and processes. We'll learn why collaborative security is the only way to ensure threat prevention, and how you can achieve a level of collaboration that will extend the reach of your siloed security tools.

Security Collaboration in Action

A staggering 71% of organizations have fallen victim to ransomware attacks, with an average breach cost of $4.35 million. 
Is your organization fully protected? 

Join us on October 18th to learn from our cyber experts why multi-layered security is the answer to your ransomware concerns. 

Together we’ll learn how: 
• Ransomware evolved during the first half of 2023
• Threat actors paralyze organizations - Dive into the anatomy of a ransomware attack
• Risk assessment & prevention are key to gaining complete ransomware protection

Join Check Point’s Incident Response & Threat Intelligence Experts on October  18th

Concerned about Ransomware? Understand the Inner Workings of an Attack/AMER

Traditional approaches to security involve using products which work on a specific enforcement point - maybe on a gateway or on an endpoint. The assumption is that attacks and threats are are contained to a specific vector.

Concerned about Ransomware? Understand the Inner Workings of an Attack/EMEA_APAC

Simplifying & securing your hybrid WAN with Azure Virtual WAN & Check Point

Under the Hood: Migrating from Azure Hub & Spoke to Azure Virtual WAN

Under the Hood: Analyze Attack Path with Graph-Based Context Visualization

Configure zero-trust with CloudGuard and Virtual WAN. #2: Threat Prevention

Configure Zero-Trust with CloudGuard and Azure Virtual WAN #1: Access Control

Under the Hood: From Anomalies to Action - Threat Hunting in the Cloud

Under the Hood: Deploy a redundant and scalable Remote Access VPN architecture

Under the Hood: A Deep Dive into the Next Evolution of Risk Management

Under the Hood: Building and Automating Pipeline Security

Under the Hood: You deserve the best Azure Virtual WAN security

Under the Hood: Securing Infrastructure as Code Pipelines at Maximum Velocity

Under the Hood: Preemptive Web Application Protection using Contextual AI/ML

Under the Hood: Simplify your AWS network security using GWLB, with a twist

Admission Control: Easily setting policies and guardrails for cluster operations

How to Manage Permissions with Cloud Infrastructure and Entitlement Management

Under the Hood: Technical Preview of CloudGuard Network Security as a Service

Under the Hood: How to deploy Cross-AZ clusters in AWS for improved availability

Under the Hood: Secure Azure Virtual WAN with maximum operational efficiency

Under the Hood: How to Shift CNAPP Left with New CloudGuard Shift Left Tooling

CloudGuard, Under the Hood

As we saw during last Under The Hood session, CloudGuard offers the ability to enforce compliance with industry regulations and security best practices during pre-deployment with the ShiftLeft tool. 
Today we will talk about using Admission Control to enforce post-deployment governance where CloudGuard ensures that the live environment adheres to the compliance and security frameworks mandated. Runtime Protection monitors system calls done by workload containers, or you can configure CloudGuard to block unwanted, malicious, or anomalous activity that it discovers with easy to setup use cases.

Under the Hood: Setting Guardrails for your K8S Cluster with Admissions Control

Cloud

Kubernetes

Cloud Security

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

The application development community features top thought leadership focusing on optimal practices in software development, SDLC methodology, mobile app development and application development platforms and tools. Join top software engineers and coders as they cover emerging trends in everything from enterprise app development to developing for mobile platforms such as Android and iOS.

Application Development

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Under the Hood: Setting Guardrails for your K8S Cluster with Admissions Control

Presented by

About this talk

More from this channel