Name: Managing the Long Tail of Log4j
Start: 2022-04-20T17:00:00Z
End: 2022-04-20T17:00:59.000Z
Location: BrightTALK

Traditional firewalls, VPNs, and public point solutions for data security are failing in the AI era, because they expand your attack surface and allow lateral threat movement. The Zero Trust Exchange delivers a new approach that eliminates the concept of implicit trust, operating on the principle: Never trust, always verify. It delivers zero trust architecture as a service from a resilient, cloud-native AI cybersecurity platform. Acting as an intelligent switchboard to enable Zero Trust Everywhere, it provides secure, any-to-any, zero trust communication that uses business policies, not networks, for all of your workforces, branches, and clouds. The platform, built upon the Zero Trust Architecture and AI foundation, provides five integrated solutions: Cyberthreat Protection, Data Security, Zero Trust Branch and Cloud, and Security Operations.

Branch offices are evolving into dynamic, experience-focused spaces resembling cafés—designed for collaboration, productivity, and flexibility. CIOs are rethinking the branch model to meet the modern workforce's demands; seamless connectivity, uncompromised security, and exceptional user experience. Legacy network architectures—reliant on MPLS, SD-WAN, firewalls, and centralized data centers—often cause delays, poor app performance, and a subpar employee experience that no longer supports today’s agile business needs.

A café-like branch strategy transforms how IT leaders connect and secure branches. By adopting a direct-to-cloud architecture powered by zero trust principles, CIOs are not only achieving cost savings but also improving the user experience and reducing the risk of cyberthreats such as ransomware.

Watch this webinar to learn how to adopt a café-like branch strategy to redefine productivity and security for the modern workforce. 

Explore:
The shift to agile, cafe-like branches: Insights into why static, network-centric branch architectures are being replaced with flexible, user and device-centric models.
The role of zero trust: Explore how zero trust ensures secure and direct access to cloud apps without compromising on security.
Cost and complexity reduction: See how cafe-like branches eliminate the need for complex legacy technologies such as firewalls, NAC and expensive proprietary switches.
Real-life success stories: Learn how leading enterprises are embracing café-like branches to enhance employee satisfaction and boost productivity.

Why CIOs are Adopting a Cafe-like Branch Strategy

Today’s IT and Cybersecurity professionals are sharply focused on keeping their organizations flexible, adaptable, responsive, and resilient — but what about your personal resilience?

Organizational resilience is challenging enough, given today’s technology trends that include:

A diverse user base (employees, partners, suppliers, and customers), which for most is remote/hybrid
Fast, secure, and compliant access to cloud-based applications and data from anywhere, on any device
Expectations for great digital experiences, with business continuity as a top priority
Personal resilience for tech pros mustn’t be overlooked. Organizational resilience is our end goal, but tech pros with personal resilience are how we get there.

In this informative webinar, join Derek Brink from Aberdeen Strategy & Research and Kevin Schwarz from Zscaler in their engaging conversation about complimenting your enabling “technologies” with best practices in “people and process” that will strengthen personal resilience for yourself and your team.

Resilience Redefined: Prioritizing People in a Tech-Driven World

La direttiva NIS 2 è entrata in vigore. Un ampio bacino di aziende, dunque, è obbligato a implementare opportune misure per la gestione del rischio associato alla sicurezza informatica. Molte di esse sono coscienti del fatto che l’obbligo di adeguarsi e raggiungere la conformità non debba essere percepito come una minaccia ma, piuttosto, come un’importante opportunità di crescita. Ci sono, infatti, una serie di vantaggi che vanno ben oltre la prevenzione degli attacchi informatici: tra questi, riduzione dei costi, aumento della competitività, garanzia di continuità aziendale e migliore reputazione dei clienti. Tuttavia, pur volendo adeguarsi alla NIS 2 e coglierne i benefici, molte aziende sperimentano difficoltà.

Il webinar è rivolto proprio alle organizzazioni che hanno bisogno di un aiuto nell’implementazione delle misure previste dalla NIS 2 e che, per farlo, necessitano di un provider di servizi di sicurezza informatica capace di offrire, al tempo stesso, la consulenza strategica e le soluzioni operative e tecnologiche (piattaforme cloud native) per implementare un'architettura basata sul modello di sicurezza zero trust.

Questi alcuni dei temi che saranno affrontati:

Cosa devono fare le imprese per essere conformi alla NIS 2: impatti e responsabilità;
Non solo obblighi e sanzioni: perché adeguarsi alla NIS 2 è innanzitutto un’opportunità;
Cos’è il modello di sicurezza zero trust e quali vantaggi offre;
Strategie, piattaforme e soluzioni operative per implementare le misure previste dalla NIS 2.

NIS 2: Strategie e soluzioni operative - Webinar su implicazioni e adempimenti per aziende e professionisti

Your infosec and SOC colleagues are facing the threats and preventing the outages.

As they work towards ensuring organisational resiliency, what can infosec leaders do to help build resilient mindsets? How can your organisation foster a culture of resiliency, ensuring teams and people are prepared and empowered to handle cyber incidents and failures?

In this episode of teissTalk with Christoph Schuhwerk, CISO in Residence – EMEA, we’ll explore:

1. Analysing how your teams cope with a cyber incident or a failure scenario
2. Learning from crises - building resilience strategies to mitigate future incidents
3. Building a cyber resilient mindset within your infosec team and in the wider organisation

Join this episode as we discuss learning from crises to improve organisational cyber resilience, and a resilient mindset.

Teiss Talk: Building resilient infosec teams

The inevitability of a “failure scenario” involving a cyber-attack means the spotlight is falling on your cyber-resilience strategy.

Is your cyber resilience strategy ready to play the leading role in protecting your organisation, or is there a gap between confidence and effectiveness?

In this episode of teissTalk in association with Zscaler, Industry leader Thom Langford and James Tucker, Head of CISOs in Residence – EMEA, explores:

1. Identifying and removing barriers to cyber resilience
2. Reducing complexity - consolidating and eliminating legacy systems
3. Building a cyber-resilient organisation - moving from a reactive to a proactive model

Watch this episode as we explore how you can make your organisation truly cyber-resilient by design.

Teiss Talk: Why Resilient by Design is the next cyber-security imperative

The accelerating pace of cyberattacks—leveraging encrypted communication channels and generative AI—has rendered traditional security measures ineffective against the evolving threat landscape. To stay ahead, organizations must adopt a forward-thinking approach to web security. Join us for a webinar where we’ll delve into the transformative benefits of deploying a cloud-native secure web gateway (SWG) as part of your Security Service Edge (SSE) strategy, leveraging Zscaler’s pioneering innovations in zero trust and cloud security.

Featuring real-world insights from a compelling customer case study, we’ll discuss how Zscaler’s cloud-native, zero trust architecture-based SWG solution enables organizations to deliver seamless, scalable security for users, workloads, and IoT/OT devices – all while laying the groundwork for future advancements in SSE and zero trust.

Key Takeaways:

1. The limitations of traditional security strategies in defending against today’s sophisticated cyber threats. Discover why legacy solutions fall short and how adopting a cloud-native SWG revolutionizes web security.
2. Critical distinctions between cloud-native and legacy SWG models. Understand what sets a fully cloud-native SWG apart and why organizations are embracing cloud-first strategies
3. The integral role of Zscaler SWG in SSE and zero trust strategies. Explore how the Zscaler Zero Trust Exchange simplifies zero-trust adoption while safeguarding users, workloads, and IoT/OT devices
4. Customer success in action. Learn how a prominent organization enhanced security performance and aligned its cybersecurity goals with digital transformation initiatives by deploying Zscaler SWG

Future-Ready Web Security: The Power of Zscaler SWG in Your SSE Strategy

Looking to deliver faster issue resolutions or reduce troubleshooting times by 99.7%? With Zscaler Digital Experience (ZDX) Network Intelligence, you can detect ISP-related incidents in just five minutes and quickly resolve them by rerouting users to avoid problematic ISPs. As part of the Zscaler Zero Trust Exchange, ZDX provides full end-to-end visibility for all users, across any device and location. With 160+ globally distributed Zscaler data centers, finding a healthy path around provider disruptions is simple.

In this session, we’ll explore the recent Red Sea cable cut that caused widespread ISP disruptions and how ZDX Network Intelligence proactively detected the issue six hours before it was publicly announced. We’ll highlight our new Peer Insights capability, which provides powerful real‑time crowd context to validate ISP incident triage.

You’ll learn how to:

1. Reduce the time to detect problematic ISP issues by 99.7%
2. Quickly identify ISP issues across dozens of customer environments with the Network Intelligence Dashboard
3. Reroute impacted users to the best alternate Zscaler data center, bypassing ISP issues fast

3 Steps to Reroute Around ISP Trouble, Fast

Bad actors are escalating sophisticated attacks, leveraging tools like Generative AI and compromising identities for undetected lateral movement and privilege escalation. To prevent breaches, organizations must strengthen defenses across the entire cyber kill chain.


Learn how deception technology disrupts attackers at every phase. See real-world examples demonstrating how decoys—mimicking networks, endpoints, Active Directory, and cloud assets—are critical for stopping attacks.

Join this on-demand webinar to learn how to:

1. Trap Attackers Early: Identify and capture attackers during reconnaissance using realistic decoys
2. Prevent Malicious Activity: Thwart malware delivery and installation with endpoint and network decoys
3. Stop Lateral Movement: Block command-and-control (CnC) and lateral movement within your environment
4. Reveal Intent: Gain insight into attacker intent and block their activities at the earliest stages

Seize this opportunity to understand how deception enhances security, proactively disrupts attacks, and delivers high-fidelity threat intelligence.

Disrupting the Cyber Kill Chain: Stop Attackers in Their Tracks

The Client Connector endpoint agent is the key Zscaler technology powering security for end users. With its Windows v4.8 release, Client Connector will introduce Location-Based Policy to intelligently secure traffic based on device networks.

With the release, organizations can protect their endpoints by minimizing their attack surfaces and enhancing DNS privacy and data security—while simultaneously reducing policy management overhead.

Join this webinar to gain deep insights into:

1. The necessity of granular traffic steering for DNS queries, app-based bypasses, and destination IP inclusions/exclusions
2. Zscaler Client Connector’s new ability to automatically manage inbound and outbound host firewall rules
3. How streamlined ease of use reduces complexity and administrative burden, saving customers time and money

What’s New in Client Connector: Location-Based Policy

Zscaler recently announced the acquisition of innovative AI security pioneer SPLX, extending our Zero Trust Exchange with shift-left AI asset discovery, automated red teaming and governance. These new solutions enable organizations to accelerate the safe deployment of AI chatbots and applications, and stay competitive in the market.

LLMs are rapidly transforming how we work and innovate, but they also unleash a new generation of complex and often hidden security risks. Traditional approaches, such as manual red teaming, are inadequate for today’s dynamic AI systems. Automated approaches are needed for threat detection, remediation and governance across the entire AI lifecycle.

Zscaler’s Secure AI solution helps organizations:

1. Discover AI Assets and Assess Risks
2. Automate AI Red Teaming and Remediation
3. Enforce Runtime Guardrails
4. Govern AI Systems and Ensure Compliance

Zscaler Expands Platform for Secure AI with New Acquisition

As AI adoption accelerates, security and IT leaders face the critical challenge of securing a complex ecosystem that spans public GenAI applications, private models, and intelligent agents. This rapid adoption has outpaced traditional security frameworks. A recent study revealed that 63% of breached organizations either lacked or were still developing an AI security and governance policy. This significant gap underscores an urgent need for robust strategies to ensure AI is not only scalable and efficient but also inherently safe and secure.

Join our experts for an insightful webinar to explore the critical steps organizations must take to secure their AI transformation journey. We’ll guide you through building a resilient AI security foundation, equipping you with the knowledge to protect your data in an increasingly AI-driven world.

In this session, you will learn:

1. Emerging AI Trends: Understand the pressing security challenges and risks shaping the future of AI
2. Building a Robust AI Security Foundation: Discover strategies for responsible and secure AI adoption
3. A Comprehensive AI Security Checklist: Practical, actionable checklist to strengthen your AI security posture

AI Readiness: Your Checklist to Secure AI

Zero Firewalls and Zero Complexity with Zero Trust Cloud:

1. Secure Devin AI environment: Apply a true Zero Trust approach to protect your AI and developer environments.
2. Unify Multi-Cloud Security: Seamlessly connect and secure workloads with a single policy across AWS, Azure, and GCP.
3. Accelerate Cloud Migration: Confidently lift and shift mission-critical applications like SAP to the public cloud.
4. Stop Lateral Threat Movement: Shield your most critical apps from breaches with powerful, identity-based microsegmentation.
5. Prevent Breach Propagation: Implement comprehensive segmentation that extends from cloud-to-cloud and region-to-region, all the way down to individual processes.

New Innovations in Zero Trust Cloud

Test webinar - Manpreet

In today’s evolving threat landscape, organizations struggle to manage expanding attack surfaces and increasingly cunning adversaries. This session will reveal the unexpected advantages of exposure management—beyond reducing attack likelihood and improving operational efficiency—to showcase the surprising wins you might not anticipate.

Don’t miss this chance to gain a CISO’s perspective on building an exposure management program that not only mitigates risks but delivers tangible benefits across your organization.

Key takeaways include how an exposure management program can help:

1. Establish an organization-wide awareness of risk
2. Eliminate manual processes using spreadsheets and BI tools
3. Consistently meet SLA targets for faster remediation
4. Maximize the value of your existing security investments

Empower your security team to move beyond outdated vulnerability management and embrace a more strategic, proactive approach.

5 Unexpected Wins in Exposure Management

Third-party vendors, contractors, and remote IT staff require deep, privileged access to your systems—but every remote connection presents a potential breach point. Legacy solutions like VPNs and jump servers often grant excessive trust and fail to prevent lateral movement, data theft or malware injection, leaving your environment exposed and your data at risk.

Watch our webinar to discover how Zscaler Privileged Remote Access (PRA) delivers a modern Remote Privileged Access Management (RPAM) solution. Built on zero trust, PRA enables secure, agentless, browser-based privileged access without VPNs—offering granular governance controls and full isolation for every remote session.

We will cover:

1. Why VPN-based privileged access leaves your organization exposed
2. How zero trust + RPAM secures remote access for external users and third parties
3. Methods for eliminating unmanaged device risk with agentless connectivity
4. Real-world insights from enterprises enhancing security and resilience

Beyond VPNs — Secure Remote PAM for Third-Party Access

Newfound Productivity from a New Approach to Secure Browsing

Productivity isn’t just for full-time employees—contractors, partners, and part-time staff also require fast, secure browsing with easy access to apps. The Zscaler Zero Trust Browser transforms existing browsers into secure, seamless workspaces for anyone. With integrated threat protection and data security, organizations can safeguard web-based productivity, manage SaaS and private app access, prevent data leakage, and simplify IT operations without compromising efficiency.

Join us to explore:

1. Effortless, secure app access for employees, contractors, and partners using their own browsers
2. Integrated, invisible security: Govern access, protect data, and monitor activity without impacting user experience
3. Streamlined IT operations: Replace VDI software, avoid new hardware purchases, and eliminate the need for additional browsers

Don’t miss this webinar to see how the Zscaler Zero Trust Browser redefines secure productivity for today’s workforce. Register now!

Secure Productivity Anywhere with Zscaler Zero Trust Browser

With so many tools and tickets, how quickly did you detect the impact of the Slack, Zoom, or Microsoft Outlook outages on your users? Was the issue caused by an ISP, Wi-Fi , or the application itself?

Watch the launch event to discover new innovations that help Zscaler Zero Trust customers detect user performance issues faster, easily identify root causes, and remotely remediate problems–keeping users happy and productive.

New innovations include:

1. Detect comprehensive device events like system and software crashes and internet-scale network anomalies
2. Diagnose end user performance issues at scale with AI-powered root cause across last-mile and intermediate ISP issues
3. Remediate enterprise-wide device issues remotely, while addressing persistent internet issues that impact end-to-end user experience

No extra installation–Zscaler customers receive these new capabilities through the same agent.

Zscaler Digital Experience: Detect, Diagnose, and Remediate User Performance Issues Faster with AI

GenAI is revolutionizing productivity and enterprise efficiency—while introducing new security risks. Cyber adversaries are exploiting GenAI infrastructure to compromise data, exfiltrate sensitive information, and manipulate AI systems. Addressing these sophisticated threats requires innovative approaches and cutting-edge security solutions.

Discover how advanced GenAI decoys can protect your assets, detect threats, and disarm attackers targeting your AI systems. Learn how customizable decoys designed to emulate GenAI platforms—such as chatbots, large language models (LLMs), and AI APIs—can thwart attackers while providing actionable intelligence on emerging threat tactics.

In this session, we’ll examine how GenAI decoys:

1. Safeguard AI systems through real-world attack scenarios
2. Expand coverage across endpoints, networks, and cloud environments to mitigate legacy and modern cyber risks
3. Halt advanced threats like reconnaissance, lateral movement, and prompt injection attacks
4. Enhance deception strategies alongside other assets (Active Directory, storage systems, threat intelligence) for comprehensive cyber kill chain defense

Don’t miss this opportunity to explore how deception technology can expose hidden attackers within your enterprise and fortify your AI infrastructure against future threats.

Protecting the AI-Powered Enterprise: Adapting Deception for the New Threat Landscape

If you haven’t done so already, it’s time to buckle in and prepare for the long process of dealing with the Log4j / Log4Shell (CVE-2021-44228) vulnerability, used in millions of websites and applications.

The official lists of newly discovered sources and exploits related to this historic flaw are being updated daily. While thousands of patched updates have already been issued, the industry is still waiting for thousands more while bracing for the reality that many instances may never be patched.

With every organization facing the long-term risks of the pervasive Log4j vulnerability, it's critical that your SecOps team prepares for a cybersecurity marathon, consisting of an effective plan for continuously managing the scale and complexity of this serious threat.

Watch our webinar to learn how to create an effective SecOps plan for handling Log4j, including best practices to proactively:

- Expose threat activity
- Test your defenses
- Eliminate threat vectors

Managing the Long Tail of Log4j

Threat Detection

Threat Defense

Cyber Attacks

Cyber Security

Cyber Crime

Cyber Incident Response

Cyber Defense

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Managing the Long Tail of Log4j

Presented by

About this talk

Zscaler