Name: Securing Your Active Directory: The Power of a Resilient Password Policy
Start: 2023-12-06T10:00:00Z
End: 2023-12-06T10:00:41.000Z
Location: BrightTALK
Rating: 4.8

Netwrix’s vision is to create a world where every organization has secured its data and identities. The 1Secure™ platform unifies identity and data security to provide complete visibility into where data lives, who can access it, and how it’s governed. With Netwrix, security teams strengthen data protection, safeguard identities, and stay ahead of evolving threats. Today, more than 13,000 customers, including nearly 25% of the Fortune 500, rely on Netwrix solutions across hybrid and AI-driven environments. With a 95% customer satisfaction rating, Netwrix offers flexible delivery models that are quick to deploy, easy to use, and built to scale for organizations of all sizes. 

For more information visit www.netwrix.com. 

Generative AI tools like Microsoft 365 Copilot, ChatGPT, and Claude enable employees to work at unprecedented volume and speed. However, this surge in AI-generated content has also introduced new risks and exposures that regulators are now closely monitoring.

In the era of generative AI, relying solely on tools for content inspection, device control, and endpoint privilege management isn’t enough to satisfy auditors or prevent data loss. Modern compliance frameworks, such as PCI DSS, HIPAA, NIST 800-53, ISO 27001, and CMMC, all require proof that your endpoints are correctly configured and that you have the necessary controls in place.

Join Jeremy Moskowitz, former 20X Microsoft MVP and CTO of Endpoints at Netwrix, to learn how Netwrix prevents data loss and proves compliance across multi-OS endpoint environments the quick and easy way.

During this session, Jeremy will show you how to:
· Prevent sensitive data exposure to LLMs while ensuring safe AI usage and shadow AI discovery.
· Secure USBs with MDM-style controls that include decoupled encryption keys, remote wipe, and password management
· Protect sensitive data across Windows, macOS, and Linux endpoints that connect to printers, Bluetooth devices, and the internet
· Enforce least privilege and prevent unauthorized software installation without disrupting user productivity or increasing helpdesk tickets
· Generate the audit-ready evidence required for CMMC, PCI, HIPAA, NIST, GDPR, and more

You’ll leave with a clear framework for turning everyday endpoint controls into verifiable compliance - proof that your endpoints are not just locked down but entirely governed in the era of AI.

Enforce and Prove Endpoint Compliance in the AI Era

Identity systems are not longer just part of security — they are security. Active Directory and Entra ID control who can authenticate, access critical systems, and recover operations after an incident. Yet most organizations still manage them reactively, discovering gaps only after privilege escalation, lateral movement, or outages expose fundamental weaknesses.
This session is for those responsible for ensuring identity systems remain secure, operational, and recoverable under pressure. We'll walk through the reality of hybrid identity: how misconfigurations accumulate silently, how inherited permissions create shadow admin access, and why monitoring alone won't save you when your identity layer becomes the attack surface or the single point of failure.
We'll cover three critical areas:
Know your exposure: map attack paths, misconfigured trusts, and excessive privileges before adversaries do
Detect what matters: identify privilege changes and anomalous access patterns in real time across AD and Entra ID
Recover with confidence: restore identity infrastructure precisely and quickly, ensuring business continuity when not if incidents occur.

Securing Identity & Access Management in AD/Entra ID

As enterprises rapidly adopt Copilot, GenAI, and modern cloud strategies, maintaining compliance and protecting sensitive information has never been more critical. This session explores how Data Security Posture Management (DSPM) delivers the visibility and control needed to stay ahead of risk while driving innovation. You’ll learn how to:
- Safely integrate Copilot and GenAI without exposing sensitive data
- Identify where sensitive data resides and who has access to it
- Apply governance best practices from security-forward organizations
- Move beyond alerts to proactively remediate risky data exposure
- Align DSPM with today’s security and compliance frameworks

Data Security Posture Management: Visibility, Control, and Trust in a Cloud-First World

Modern Device Control and USB Security: Preventing inbound ransomware and outbound data exfiltration in the face of new threats and mixed OS environments.
Modern Device Control needs to support multiple data transfer channels, adapt to emerging business and compliance requirements, and provide detailed, context-aware protections without compromising productivity. Today, data leaves organizations not only through USB sticks, but also through wireless methods such as Bluetooth, local and network printers, peer-to-peer sharing tools like AirDrop, mobile devices, and specialized ports, such as FireWire. Managing these risks is further compounded by mixed OS environments that include Windows, macOS, and Linux.
During this webinar, attendees will learn how to overcome challenges related to:
-            Device Control: Data loss via USB, Bluetooth, printers, mobile devices, and more
-            Ransomware Protection: Blocking unauthorized devices completely and eliminating risk at the hardware level
-            Enforcing Encryption: Encrypting files and devices to accommodate authorized data transfers while controlling access to decryption keys
-            DLP for Mixed OS Environments: Overcoming the unique device control and DLP challenges associated with environments that include Windows, macOS and Linux.

The Do's and Don'ts of Device Control Beyond USB Storage

Les ransomwares demeurent l’une des menaces les plus redoutables en cybersécurité, paralysant des systèmes critiques et infligeant des pertes financières considérables aux organisations. Mais comment ces attaques se déroulent-elles réellement ?
Dans cette session, l’expert en hacking éthique Clemens Domingo, aux côtés d’Anthony Moillic, vous plonge au cœur de l’anatomie d’une attaque de ransomware : de l’intrusion initiale au mouvement latéral, jusqu’au déploiement final de la charge utile. Grâce à des études de cas réels, ils dévoileront les méthodes de réflexion des attaquants, les failles les plus courantes exploitées par ces derniers et les bonnes pratiques pour renforcer vos défenses.
 
Ce que vous allez découvrir :
Les principales portes d’entrée exploitées par les attaquants aujourd’hui, et pourquoi elles restent si efficaces.
Le rôle de l’ingénierie sociale, des erreurs de configuration et des systèmes non corrigés dans les compromissions les plus fréquentes.
Des exemples réels d’attaques réussies et d’incidents évités de justesse, pour tirer des leçons concrètes.
Comment des outils tels que PingCastle permettent d’identifier proactivement les risques liés à Active Directory, avant que les attaquants ne les exploitent.

Ransomware démasqué : Tactiques, vecteurs d’attaque et enseignements concrets

In today’s increasingly decentralized IT environments, organizations are facing a modern identity crisis—one where traditional perimeter-aligned security is no longer effective, and identity has become the new attack surface. As cloud adoption, remote work, and third-party access proliferate, meshes of identities and permissions lead to serious risks. As users gain more and more privileges, identities sprawl, and unauthorized access to sensitive data continues to grow, this session is about how to take back full control.

This webinar explores how Zero Trust principles—rooted in continuous verification and least privilege access—can help organizations regain control. By implementing fine-grained Identity and Access Management (IAM) strategies, security teams can reduce risk, enforce policy consistently across hybrid environments, and protect critical assets from identity-based threats.

Zero Trust, Full Control: Tackling the Modern Identity Crisis in Data Security

Le Role Mining est crucial pour structurer efficacement les accès utilisateurs, renforcer la sécurité, assurer la conformité et optimiser les ressources au sein des opérations d'une solution IGA. 
Il permet de faire émerger les rôles métiers implicites dans vos modèles d'accès existants.
Cette émergences de rôles métiers réduit significativement la complexité de gestion de ces droits en apportant une vision de plus haut niveau.

Cette rationalisation des rôles améliore la sécurité de vos accès en les rendant appréhendables et compréhensible.

Le processus de démonstration de conformité réglementaire s'en trouve facilité en fournissant une vue claire et organisée des droits d'acc_ès des utilisateurs.
En automatisant la détection et l'assignation des rôles, la charge de travail des équipes IT s'en trouve réduite permettant de réaffecter leurs efforts sur des tâches à plus forte valeur ajoutée.

Le module de role mining de Netwrix Identity Manager s’appuie sur le Machine Learning pour simplifier et accélérer cette démarche. Au programme de cette session : 

Une démonstration concrète du module de role mining 
L’analyse du retour sur investissement après sa mise en œuvre 
Des retours d’expérience d’entreprises ayant déjà adopté cette approche

L'IA au service de la gouvernance des accès

¿Desea mantener sus datos confidenciales seguros y garantizar el cumplimiento de las regulaciones de protección de datos como GDPR, NIST o PCI DSS? Comience a utilizar Netwrix Endpoint Protector para supervisar y proteger la IP de la empresa, los PII, los datos financieros y otros tipos de datos regulados sin comprometer la productividad.


Vea nuestro seminario web y descubra cómo Netwrix Endpoint Protector puede:
Bloquee, controle y supervise los puertos USB y periféricos para detener la pérdida de datos
Detenga la pérdida de datos en el endpoint con el análisis contextual en Windows, macOS y Linux
Cifre, administre y proteja los dispositivos de almacenamiento USB para proteger los datos en tránsito
Analice los datos confidenciales almacenados en los puntos finales de Windows, macOS y Linux y tome medidas correctivas de forma remota

Cómo mejorar su estrategia de prevención de pérdida de datos con Netwrix Endpoint Protector

The term “privileged access" in Windows is open to interpretation.  Are you simply talking about membership in the local Administrators group?  If so, you need to think about local accounts and if the system is joined to AD then domain accounts.  If it’s an Entra-joined Windows 11 box or an Azure VM then there’s Entra accounts that could be admins. 
But privileged access goes way beyond the Administrators group.  There are a number of admin-equivalent user rights such as “Act as part of the operating system”. 
And again, if the system is part of an AD domain, then anyone with certain group policy related permissions on the OU branch of the computer account has indirect but definite privileged access.  Likewise for systems managed by Intune.  If the system is a VM then it depends on the particular hypervisor or cloud environment.  Azure for instance provides multiple routes of privileged access into VMs based on resource group permissions.
Windows itself has multiple connection points for privileged accounts including RDP, shared folders, WinRM, RPC, etc.  Do you disable these individually or rely on Windows firewall or an external firewall?
Bottom line is there are many vectors to privileged access in Windows, and it can be confusing because so much of this functionality has accreted over time with the progression of IT eras that Windows has lived through. 
In this real training for free session, I will try to give you a comprehensive view of privileged access in Windows covering all these areas and more.  Then I will focus on key choke points that if you understand and properly control will give you confidence that privileged access to your Windows systems is truly locked down to who should actually have it.

Understanding the Multiple Layers of Privileged Access in Windows

Ransomware continues to be one of the most devastating forms of cyberattack, often leaving organizations locked out of critical systems and facing major financial losses. But how do these attacks really happen?
In this session, ethical hacker Clemens Domingo and Anthony Moillic will walk you through the anatomy of a ransomware attack—from initial access to lateral movement and payload deployment. With real-world case studies, they’ll highlight how attackers think, where organizations commonly fail, and how to tighten defenses.

You’ll learn:
The most common entry points attackers use today
How social engineering, misconfigurations, and unpatched systems lead to compromise
Real-world examples of successful attacks and near misses
How tools like PingCastle can help uncover Active Directory risks before attackers do

Ransomware Revealed: Tactics, Entry Points, and Real-World Lessons

Most insider threats start on the machines you and your team manage, where users have too much access, USB ports are wide open, and risky apps slip through the cracks. 
Join Jeremy Moskowitz, 20X Microsoft MVP and CTO of Endpoints at Netwrix, to learn how desktop admins and IT Security Pros can take back control, close dangerous gaps, and stop data loss before it starts.
· Spot common endpoint misconfigurations that enable insider threats
· Learn how to remove local admin rights without breaking workflows
· See how to control USBs, apps, and data movement across endpoints
· Discover how to enforce policy and gain visibility without complicated scripting

Block Insider Threats Where They Start – at the Endpoint

Le principe du moindre privilège est un pilier fondamental des architectures Zero Trust modernes — mais sa mise en œuvre concrète reste un défi pour de nombreuses organisations. Ce webinar vous montrera comment dépasser les modèles d’accès traditionnels pour adopter une gestion des privilèges plus dynamique et axée sur les risques. Vous découvrirez comment réduire la surface d’attaque en éliminant les privilèges permanents, activer des accès à la demande, et garder un contrôle total sur chaque session privilégiée.

Regardez notre webinar pour apprendre comment :
Éliminer les privilèges permanents, afin de réduire l’exposition aux menaces internes et aux abus d’identifiants.
Mettre en place des accès Just-in-Time, pour que chaque utilisateur n’ait que les droits nécessaires, au bon moment.
Surveiller et enregistrer les sessions privilégiées, afin de garantir la traçabilité et faciliter les audits.
Appliquer le principe du moindre privilège de manière cohérente, dans le cadre d’une stratégie Zero Trust globale.

Le Zero Trust commence ici : Sécurisez les accès privilégiés avec le principe du moindre privilège

La mise en place d'une solution de Gestion et Gouvernance des Identités (IGA) est devenue un enjeu stratégique pour les entreprises de toute taille. Pourtant, initier et structurer un tel projet peut s’avérer parfois complexe.
 
Dans ce webinar, nos experts vous guideront à travers les 10 règles essentielles pour garantir le succès de votre projet IGA. Vous apprendrez à :
·       Maîtriser les fondamentaux d'un projet d'IGA pour une mise en place efficace
·       Anticiper les défis et éviter les pièges que beaucoup d'entreprises ont rencontré
·       Lancer votre projet en toute confiance avec une approche claire et structurée

Les 10 règles pour réussir votre projet de gestion des identités

Active Directory has been the foundation of access management for over 25 years, used by most organizations to control access to resources both on-premises and in the cloud. Over time, IT pros have turned to forums, videos, and online communities to troubleshoot AD issues only to discover that a forgotten configuration from years ago, or a well-meaning shortcut like copying user accounts, can lead to major problems today.
With constant security updates from Microsoft and increasingly complex permission structures, many admins -new and experienced alike - struggle to understand who has access to what and why. This session helps you cut through that complexity and take control of your AD environment.

In this session, Sander Berkouwer and Netwrix Solution Engineer Darryl Baker show how PingCastle, Access Analyzer, and Threat Prevention help admins:
- Quickly and securely assign permissions across the organization
- Equip new admins with clear insights into AD and Entra ID permissions and delegations
- Detect and block unauthorized changes to prevent new security issues

Active Directory Recommended Practices, Part 1: Avoiding and detecting unintended permission changes

Active Directory est constamment attaqué, avec 95 millions de comptes ciblés quotidiennement. Les menaces basées sur l'identité permettent aux attaquants de se déplacer latéralement, d'élever les privilèges et de compromettre vos systèmes critiques. Les outils traditionnels ne suffisent pas à les arrêter.

Découvrez comment nos solutions sécurisent votre AD hybride de bout en bout, de l'identification des vulnérabilités à la détection des menaces, en passant par l'automatisation des réponses et la récupération rapide en cas d'incident.

Ce que vous allez apprendre :

Regarder
1) Pourquoi Active Directory est une cible de premier plan et comment les attaquants l'exploitent.
2) Comment Netwrix détecte et contient les menaces basées sur l'identité en temps réel.
3) Les avantages d'une réponse automatisée et d'une récupération rapide.
4) Bonnes pratiques pour protéger votre environnement AD.

Regardez dès maintenant notre webinar et reprenez le contrôle de la sécurité de votre Active Directory !

Maîtrisez la sécurité de l’Active Directory : détectez, répondez, récupérez

Ransomware continues to be one of the most dangerous and financially devastating threats facing organizations today — but it's not just data that's at risk. Ransomware campaigns are increasingly targeting identity systems like Active Directory and Entra ID, seeking to escalate privileges with a goal of complete takeover. Securing identity has become a critical pillar in a modern ransomware defense strategy.
In this webinar, we explore the continuous evolving threat landscape of ransomware, how these attacks unfold, and why identity compromise is often the center of large-scale breaches. We break down the typical ransomware attack chain, highlighting how attackers leverage stolen credentials and Active Directory weaknesses to succeed.
We discuss major ransomware incidents, including wannacry, Revil, and lockbit with real-world examples of the severe impact identity-focused ransomware can cause. We also profile notable threat groups and their tactics to give you actionable insights into how ransomware operations work today compared to just a few years ago.
We finish the session with a live 15-minute demonstration of Netwrix Threat Prevention, showcasing how it can detect ransomware behavior early, identify anomalous activities linked to identity compromise, and automatically take action to contain and stop an attack before it spreads. We also touch on the importance of internal assessments to understand what vulnerabilities potentially lie in your environment.
Security practitioners, junior or senior will all walk away from this sessions with essential strategies to strengthen your defenses, focusing on identity protection as a core component of ransomware resilience.

"Dear Identity": A Ransom Note and Deep Dive into Ransomware Attacks and Proactive Identity Security

Join our comprehensive 60-minute webinar designed to empower IT professionals with the expertise to manage and secure
endpoints using Netwrix Solutions. Dive deep into the technical landscape with a live demonstration that showcases how
Netwrix can streamline your endpoint management processes. Additionally, explore the architectural framework of Netwrix,
revealing how seamless integration can strengthen your existing IT infrastructure. Gain insights into operational best
practices that enhance workflow efficiency and discover sophisticated security features for proactive threat detection
and compliance. Learn how customization options allow scalable solutions tailored to your organization's unique needs.
Don’t miss this chance to elevate your endpoint management strategy with expert guidance and practical insights.

Mastering Endpoint Management with Netwrix

Les fuites de données ne proviennent pas toujours de l’extérieur. Une simple erreur humaine, un collaborateur négligent ou malveillant peut exposer vos données sensibles et compromettre votre conformité réglementaire. Ce webinaire vous montrera comment Netwrix aide les organisations à détecter, bloquer et gérer efficacement les risques internes.
Grâce à une surveillance fine des transferts de données, à un contrôle précis des périphériques et à la centralisation des politiques de sécurité, vous pourrez minimiser les risques sans entraver la productivité.
Ce que vous allez apprendre :
Détection des comportements à risque et des violations potentielles
Contrôle des périphériques USB, des ports et des transferts réseau
Application de politiques de sécurité granulaires sur tous les systèmes d’exploitation
Démonstration en direct des capacités de protection contre les menaces internes
Regardez notre webinaire pour apprendre à reprendre le contrôle de vos données, même face aux risques invisibles venant de l’intérieur.

Données à Risque : Comment Prévenir les Fuites Internes avec Netwrix

As data collection and analysis become increasingly central to business, research, and governance, protecting sensitive information is more crucial than ever. This session will examine the privacy, ethical, and security challenges involved in analyzing sensitive data such as personal health records, financial information, and other confidential datasets. 

Key questions to be addressed include: 
- How can sensitive data be ethically and responsibly analyzed while still protecting individual privacy? 
- What technical and policy safeguards are essential when working with sensitive data? 
- How can risks related to re-identification, unauthorized access, and data leakage be mitigated? 
 
This talk presented industry thought leader Donald Farmer will review best practices and frameworks for enabling secure and ethical data analysis across various industries and applications. Expert perspectives on navigating emerging regulations, managing tradeoffs, and aligning analytical objectives with privacy values will be discussed. Attendees will gain critical insights into analyzing sensitive data securely while upholding public trust and mitigating risks.

Analyzing Sensitive Data: Privacy, Ethics, and Security Considerations

The US data privacy laws in the US are shifting from a "harms-prevention-based" approach to a "rights-based approach exemplified by the European Union's General Data Protection Regulation (GDPR). Following California's lead, four other states, including Colorado, Connecticut, Utah, and Virginia, will begin enforcing new GDPR-inspired statutes in 2023. The shift in the philosophical framework will have profound implications for data privacy protection.

The US has historically allowed businesses and institutions to collect personal information without consent while regulating those uses to prevent or mitigate harm in specific sectors. The EU, on the other hand, has long pursued a rights-based regime for protecting personal information, which holds that data privacy is a fundamental human right. This has roots in Europe's history of suffering through the infamous data collection of the Nazis and the similar collection of data by the formerly communist East Germany's secret police. The GDPR, which became enforceable in 2018, codified several key principles reflecting the Europeans' human rights philosophy. The new laws will be applicable to specific industries and types of institutions and will impose restrictions on industries and institutions regarding their handling of personal information. More states are likely to follow the GDPR in the coming years.

This webinar entails to:
- Introduce the market drivers of the US privacy laws industry and their roles.
- Illustrate the shift in the philosophy underlying data privacy laws in the US.
- Comparison of the US "harms-prevention-based" approach vs the European Union's approach is more rights-based.
- Summary of the EU ‘s General Data Protection Regulation (GDPR), which became enforceable in 2018.
- Understanding how the principles reflected in the new data privacy framework will have profound implications in the years to come.

The New Era of Data Privacy Laws

The difficulties of securing data in cloud-native applications are many, for example:
• There exists a proliferation of data islands, complicating the creation of a unified cloud security view;
• As microservices are created, evolved, and removed, those islands can remain unused—yet still pose a risk to you;
• Propagation and caching of sensitive data between microservices can result in compliance blindness.

That’s not to mention the variety of data storage formats with which IT pros must contend and protect (such as file, object, block, and SQL). Let’s hit the reset button, shall we?

Join us in this Fireside Chat at the Data Security Risks and Challenges BrightTALK Summit to discover 5 principles—based on the basics—with which you can improve cloud-native app security and to see how CNAPP solutions are making a real difference. Tim Miller, Technical Marketing Engineer at Outshift by Cisco joins the discussion with Enterprise Strategy Group analysts.

Securing Your Data in a Cloud-Native Application World

Companies need to understand “wicked” problems, and the best way to navigate the organization during periods of uncertainty.

Companies should ask themselves how speedy their response be to a data security incident, when escalating to the senior leadership team, more so when it is an extortion and/or ransomware attack that involves critical data sets.

Tune into this session presented by disaster recovery and cyber resilience expert Steve Yates as he brings to light the crisis management options for those scary technology moments for when super speedy decisions are needed (or are they)?

By the end of the session, you will be able to:
- Be aware of data security incident management processes and procedures. 
- Form an understanding of the need for having a plan (runbooks/playbooks) and agreed crisis escalation process.
- Be conversant with a joined-up thinking approach when reviewing technology incident management that is “fit-for-purpose”.

Data Security Incident Management: What Keeps You Awake At Night? Part 3

In IDC’s recent survey (Data Loss Prevention Survey, sponsored by Forcepoint, October 2023), 80% of customers indicated they are synching their DLP policies across endpoint, cloud applications (CASB), and web traffic (SWG) but they find it extremely time consuming and resource intensive. Given the option, even more (85%) would choose a single DLP solution that they could manage across endpoint, CASB, and SWG channels.

In this webinar, Frank Dickson, IDC Group Vice President and Jim Fulton, Vice President, Product Marketing show how 31% productivity gains can be achieved as well as cost and time savings by moving to a single DLP solution across endpoint, cloud, and web applications.

Join this session to learn how Forcepoint can solve this problem for you with Data Security Everywhere.

1: IDC’s recent survey (Data Loss Prevention Survey, sponsored by Forcepoint, October 2023, US51335023

Unified DLP Revolution: IDC Unveils Game-Changing Solutions

Data, your most important asset, is growing at a breakneck pace and must be accessible to be useful in today’s business. How do we enable agility and innovation while enabling the necessary security controls? Gaining visibility into your data, where it resides, and who has access can help you proactively limit the scope and impact of a cyber attack. Join our industry experts as they discuss strategies and best practices for a proactive approach to data security.

Make sure to take a look at the attachments as well - we've added extra learnings on how to optimise data protection and provided you with additional resources to help set you up for success.

Strategies and Best Practices for Proactive Data Security

The International Standards Organization’s ISO 27701 privacy information management standard is a framework that covers both security and privacy compliance aspects of various privacy regulations around the world. As a certified ISO 27701 Lead Auditor, Ralph Villanueva is more than happy to help the audience and their organizations resolve their data privacy risks and issues by pointing out how to use this very useful framework. 

Tune into this informative talk to learn the benefits of this new frameworks and how to make the best use of it. Even better, this framework will make enterprise-wide privacy compliance more cost effective across geographic locations, and add more value to the audience’s privacy work within the company as well.

How to Leverage ISO 27701 to Fulfill Data Privacy and Compliance Requirements

Staying ahead in the dynamic landscape of data privacy and compliance is not just a necessity but a strategic advantage in order to stay compliant and gain trust from your customers. As we approach 2024, several key trends are emerging that will reshape your understanding of and methodology to these crucial areas. 

Our live talk, on December 5 at 2 pm ET, led by Gary Brickhouse, CISO along with Dan Mengel, Practice Director, Compliance and Jason Eddinger, Senior Security Consultant, Data Privacy will discuss these pivotal shifts that will significantly impact your strategy heading into 2024.

Register today.

Navigating Compliance and Data Privacy Trends Into 2024

There is no shortage of privacy laws and regulations. We keep hearing that the latest privacy laws “will change everything”, but have they made a real difference? This session proposes an alternative approach. Privacy can be treated as an attribute of personally identifiable information and can be managed using data management techniques. Rather than building privacy programs on compliance with laws, it may be more productive to manage the data itself.  

Key takeaways include:
1.      Why and how data privacy has been managed in recent years.
2.      How the compliance-based approach to privacy has shaped organizational approaches to the issue.
3.      How data management principles can offer a different, and perhaps better, way for managing privacy.
4.      How a data management approach would alter organizational structures.

Have We Been Doing Data Privacy The Right Way?

With the explosion in AI, organizations need to be mindful of the security risks that this cutting-edge technology can bring. Rob Van de Veer, Senior Security Director and Trusted EU Advisor, shares how to implement rigorous security protocols in the world of AI engineering, AI lifecycle management, AI models, and privacy controls.

A.I. Security | A strategic guide to implementing security and risk controls

In an era where artificial intelligence (AI) is transforming industries and reshaping the way we live and work, striking the delicate balance between innovation and data privacy compliance is paramount. This session delves into the evolving landscape of AI, discussing how businesses can harness its power while safeguarding sensitive data and adhering to privacy regulations. Explore the challenges, ethical considerations, and strategies that are shaping the future of AI in a privacy-conscious world.

In this session, you will: 
1. Recognize how AI is reshaping industries and business operations, presenting exciting opportunities for innovation.
2. Understand the increasing concern regarding data privacy as AI systems rely on vast amounts of personal and sensitive information.
3. Gain insights into navigating the complex regulatory landscape, including GDPR and CCPA, to ensure compliance in AI projects. 
4. Explore ethical concerns such as bias, fairness, and transparency in AI development and their intersection with data privacy.
5. Learn about strategies and best practices for maintaining a balance between AI innovation and data privacy, building trust with consumers, and staying compliant.

Data Privacy and the Future of AI: Balancing Innovation and Compliance

Data Security Risks and Challenges

Join the BrightTALK Summits webinar addressing Data Security Risks and Challenges!

Say farewell to the era of weak passwords vulnerable to modern threats. Safeguarding your Active Directory necessitates a robust password policy. Native Windows tools often fall short in tackling today's security challenges and complex compliance requirements. The struggle is real, isn't it?

Introducing the game-changers: Netwrix Password Policy Enforcer and Netwrix Password Secure. Brace yourself for password enforcement that's not only powerful but also incredibly user-friendly. Bid farewell to the headaches and embrace rock-solid security. Your Active Directory will thank you!

Watch this session to discover how to:

- Set up a robust and user-friendly password policy for your Active Directory.
- Prevent the use of weak passwords by customizing dictionaries and cross-referencing against the HIBP database of compromised passwords.
- Simplify password compliance with pre-defined policy templates.
- Enforce the generation of passwords that meet policy requirements.
- Ensure secure password sharing among your employees.

Securing Your Active Directory: The Power of a Resilient Password Policy

Cyber Crime

Cyber Defence

Password Management

Active Directory

Information Security

IT Security

Data Security

Cyber Defense

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Securing Your Active Directory: The Power of a Resilient Password Policy

Presented by

About this talk

Netwrix