Name: Best Practice for Cloud Host-Based Forensics
Start: 2020-10-21T16:00:00Z
End: 2020-10-21T16:00:50.000Z
Location: BrightTALK
Rating: 5

Towerwall is a woman-owned information security company offering a comprehensive suite of security services and solutions using best-of-breed tools and information security services. Our time-tested methodologies provide a consistent, repeatable, and measurable approach to information security; ranging from auditing and profiling to design and implementation. Towerwall’s 4E methodology, Evaluate   Establish   Educate   Enforce,  is time-tested, and provides a consistent, repeatable, and measurable approach to information security.

Cybersecurity threats have been growing year on year, with 2022 seeing ransomware attacks increase by 87% against industrial organizations. If successful, these breaches can come at a high cost; ransomware extortion totaled $456.8 million in 2022, after a high of $765.6 million in 2021. 

But is cyber insurance the answer? Unlike other forms of insurance, cyber insurance language is not standardized, and this can lead to significant variations in policy coverage. Certain offenses, like cyber warfare, are often excluded from coverage, while individual insurers may disagree on what constitutes an approved “loss event.” Yet is it worse to be left without any protection at all?

This panel will discuss:
- The real stakes in cybersecurity right now
- What comprises a robust cyber insurance policy? 
- How the market has changed in 2023

Join Michelle Drolet, Founder & CEO, Towerwall, Michelle Lord, SVP, Eastern Insurance, and Vince Kearns, Cyber Risk Specialist, Trend Micro for this timely panel.

In Case of Emergency Break Glass: Cyber Insurance

Zero Trust is widely regarded as the best approach for protecting organizations, but implementing it is a journey rather than a one-off purchase. 

In this panel,  Michelle Drolet, CEO & Founder of Towerwall, and Tamer Baker, Chief Technology Officer, Zscaler will talk about the adoption of Zero Trust and walk through best practices for establishing it within your company.

Your takeaways post-webinar:

1. Give them an inch, they'll go a mile. What is the right way to handle insiders before they become a threat? 

2. User experience. How to make things seamless and non-disruptive. 

3. Avoiding the "easy way" to Cloud Security. We can't just take what we have today and try and uplift that into the cloud and/or build a new zero trust environment from it. 

4. Hide and Go Seek? Hide all applications from accessibility from the internet (that means not at all being reachable from the internet like we do today with DMZ's and cloud firewalls).

Is ZeroTrust Right for Your Organization? Protecting Against Insider Threats

What takes a big hit yet is typically on the bottom of the priority list? Web Applications.  

Join Michelle Drolet - CEO & Founder of Towerwall and Josh Davies - Principal Technical Product Marketing Manager of Fortra's Alert Logic for a discussion including:

 - Horror stories surrounding web applications 
 - Attack after attack after attack. What are the most common ones? 
 - Is there a way to improve your Web App Security strategy without putting more work on your team?

How Persistent Adversaries Changed Web Application Attacks

We invite you and your colleagues to join Towerwall and Pentera for our next BrightTALK where we will be discussing how to build a solid vulnerability management program with people, process, and technology. 

Join Michelle Drolet - CEO & Founder of Towerwall, Michael Sundberg - Senior Vice President & IT Security Director of Middlesex Savings Bank,  and Justin Baryza - Head of Sales Engineering & Enablement for Pentera for a discussion including:

- The Three Bricks - Why people, process, and technology are critical to your security 
- Why traditional penetration testing falls short
- Towerwall's 7 Dimensions of Cybersecurity
- What is "Automated Security Validation (SecVal)" and how to deploy it

3 Bricks to Build a Solid Vulnerability Management Program

While the ransomware game seems to be ever-changing, it is our job to be proactive in our preventative methods. The first step in managing ransomware attacks is ensuring that they don’t happen. 

We invite you and your colleagues to join Towerwall and Alert Logic for our next BrightTALK where we will be discussing how advanced threat intelligence is necessary in order to be proactive in detecting and responding to such attacks. 

During this dialogue we will discuss:
- Why 24x7 MDR needs to be in your toolkit 
- Using threat intelligence for proactive hunting 
- Immediate steps you can take to protect your company 
- Ransomware is a continuous threat with increased monetary losses

Changing the Game: Hunting Ransomware with Threat Intelligence

Now more than ever, keeping you and your business secure is key. We invite you and your colleagues to join us for our cybersecurity webinar where we will be discussing how to secure and keep your Cyber Insurance in 2022. 

During this dialogue, you will learn about:
1. Insurance companies are changing coverage requirements to include proof of patching, and other countermeasures 
2. Recommended to work with a consultant who can help you navigate and decide on appropriate coverage
3. What to look for when buying a policy, and why it is important to read the fine print before an incident occurs
4. Determine Your Cyber Risk and know exactly what your responsibilities are

Keeping your Cybersecurity Insurance in 2022

Please join cybersecurity experts Michell Drolet, Founder and CEO of Towerwall, and Sam Heard, President of Data Integrity Services to learn how you can understand and protect key elements across your diocese including parishes, institutions, schools, and charities.

The webinar will focus on “Cybersecurity for Catholic Diocese: What You Need to Know”, including:
- Cybersecurity Programs: Building a program based on “risk”
- Compliance: What it means to the Diocese
- Cybersecurity Insurance: How to get it and keep it
- Vendor Risk Management Policy: Partners, risk and protection
- EDR : Endpoints, risk and protection
- Vulnerability Management: Annual penetration testing

We look forward to having you join us.

Keeping Catholic Diocese Secure - Cybersecurity in 2022

Data breaches are increasingly on the rise; cyber attacks continue to evolve in sophistication, businesses must remain vigilant and informed and arm themselves with the right tools and strategies to defend themselves when the inevitable happens. 

Join this roundtable discussion with security experts to learn more about:

- Trends in cyber attacks and breaches and what's at risk
- Prevention best practices
- Solution recommendations for breach detection and response
- Key factors for CISO success
- What's on the horizon for 2022

Moderated by: 
Michelle Drolet, CEO, Towerwall
Panelists:
Dan Schaipa, Chief Product Officer, Arctic Wolf
Andrew Rose, Resident CISO, EMEA, Proofpoint
David Masson, Director of Enterprise Security, Darktrace

The 2022 Cyber Security Landscape

Just as enterprise organizations are embracing cloud computing, so too are cyber attackers and everyone is justifiably concerned. For all the advantages of the cloud, the framework is not impervious to cyber threats and so security protocols must always be a priority. Yet the myth that cloud is less secure than owned, on-premise security is just that: a myth. A 2020 Gartner forecast stated IaaS workloads would experience 60% fewer security incidents than traditional data centers — at least.

In order to comprehensively deploy a cloud security network, companies must understand the realities of their infrastructures. Identifying the responsibility of the cloud and that of the customer is critical, as is learning what services can be reasonably expected from a leading cloud provider. Only with the right facts can you build a truly secure network.

Join this panel of experts as they discuss the most common myths of cloud security and what you should actually be building your strategy around:

- Cloud vs. On-Premise Security: Which is easier to target?
- Is a public cloud more vulnerable than a private one?
- How automated can — and should — the cloud’s security protocol be?
- Accessibility: How much is too much?

Moderated by: 
Michelle Drolet, CEO, Towerwall

Panelists to include: 
Jessica Charter, EMEA Security Principal, Trustwave
Taylor Smith, Senior Product Marketing Manager, Prisma Cloud, Palo Alto Networks
Rajesh Agnihotri, Senior Solutions Engineer, Middle East, SonicWall
Scott Fanning, Senior Director, Cloud Security, CrowdStrike

Dispelling the Myths and Misconceptions of Cloud Security

As organizations face several different challenges in 2022 and beyond, preparing for a cyber attack is as important as ever. Businesses face a myriad of cyber threats; from phishing to ransomware, it's imperative that your organization puts in place measures to protect your most important assets.

Join top security leaders for an interactive discussion on how to better secure the enterprise in 2021 and learn more about:

- Trends in cyber attacks and what's at risk
- Prevention best practices
- Solution recommendations for attack detection and response
- Top threats on the horizon and what's at risk
- How organisations can take the necessary steps to prepare for the unexpected and build business resilience

Moderated by: 
Michelle Drolet, CEO, Towerwall

Panelists include: 
Rapid7
Kelvin Murray, Snr. Threat Researcher, Carbonite + Webroot, OpenText Business Solutions
Paul Prudhomme, Head of Threat Intelligence Advisory at IntSights, a Rapid7 Company
James Johnson, Cloud & Data Security Specialist, ATG - EMEA, Proofpoint

Threatscape 2022: Cyber Attack Prevention

This May the Fourth, it is important to remember that, even if we think our environments are completely secure, there is always the potential for a breach. So how do we remain secure?

Join Michelle Drolet and Bharath Vasudevan as they examine how the “Layers of Defense Method” is the key to security. Attendees will be entered into a drawing to WIN a 1-Year Subscription to Disney+!

The webinar will examine:

 - What is the “Layers of Defense Method”?
 - Why a Patching & Prevention Defense alone is not enough
 - Why Managed Detection & Response (MDR) should be one of your “layers”
 - What is the best approach for cloud, on-prem and hybrid environments?
 - Do you have all of your layers covered?

What are your layers of defense?

Learn from our panel of experts as they discuss Privacy, Security and Compliance and how to effectively navigate the ever-evolving compliance mandates and regulations.  - Learn how to make information security actionable.

The next wave of Privacy, Security and Compliance - Integrated Risk Management

Data breaches are on the rise, highlighting no organization is safe from cyberattacks. One cause is that workforce mobility and cloud computing has placed most workloads beyond the shelter of corporate networks and traditional perimeter defenses. There are no perimeters.
What are the issues, drivers and considerations for how Information Technology and Security organizations are applying Zero Trust Network Access (ZTNA) capabilities?
In this BrightTalk you will learn about:

1.	Key ways that Zero Trust can simplify infosec implementation.
2.	Tips on how to communicate security risk, and the rewards of Zero Trust, to business owners.
3.	How inherent trust is the root of most pervasive issues facing IT today.
4.	 Zero Trust adoption research findings: perceptions, progress, investments and initiatives
•	How zero trust facilitates a secure work from home world
•	The need for planning in order to pull it off right and securely (ie: these may no longer be endpoints you control)

Zero Trust Architectures

Battle of Midway / Your strategy to Cloud Security: Using Battle of Midway board game to help build a better Cloud defense model. How Cloud host instance forensic acquisition presents certain challenges to your forensics teams. Talk about how traditional forensic methods are not effective in the cloud. Discussion on process and infrastructure required to do this level of inspection. 
By the end of this talk you will be able to apply these strategies to activities such as Threat Hunting. 
We do not guarantee you will be a better Battle of Midway game player but you will walk away with a Cloud defense strategy.

Best Practice for Cloud Host-Based Forensics

Don’t let the Attackers Weaponize Fear: Malware in the time of COVID-19
Wherever we turn it feels like the news is all COVID-19 all the time. Many of us are feeling stressed and overwhelmed and attackers know it. At Microsoft we've seen an increase in the success of phishing attacks, one of the common vectors for malware and ransomware infections. Rather than inventing entirely new exploits, attackers are pivoting their existing infrastructure for ransomware and other malware delivery tools to COVID-19 focused lures to get us to click. In this talk we'll share insights into how the attackers have shifted their lures and provide recommendations for improving detect and response times to reduce the likelihood these attacks will work.

Don’t let the Attackers Weaponize Fear: Malware in the time of COVID-19

Cyberthreats morph rapidly as they try to stay ahead of our defenses; wearing new disguises and breaking down virtual barriers in unique ways. As such, the answer to, "How do I remain secure?" changes as quickly as the cyberthreats we face. 

Join us for an interactive Q&A Panel with experts Chris Chaves of Sophos, and Michelle Drolet and Arun Subramoniam of Towerwall. Engage in a discussion on staying safe in the evolving threat landscape. They'll provide the multi-layered answer to, "How do I stay cybersafe in 2020?", including: 

• What you can do today to remain secure
• The types of threats Sophos Labs is seeing recently
• What we know about COVID-19 scams
• How to correct your security posture

Q&A Panel: How to Stay Cybersafe in 2020

Phishing Attacks

threats

user awareness

threat landscape

education

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

Get powerful end user computing insights from influential EUC experts. Connect with thought leaders and colleagues to get the most up-to-date knowledge on effective approaches to get non-programmers to create working applications.

End User Computing

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Thousands of healthcare IT professionals compose the health IT community on BrightTALK. Learn alongside them with relevant webinars on healthcare IT compliance, big data in healthcare and IT solutions for healthcare organizations. Join the conversation by asking questions and engaging with other participants during live webinars and organized discussions.

Health IT

Healthcare

Get powerful banking and treasury insights for your business. Connect with experts and colleagues to get the most up-to-date knowledge on hot topics such as digital banking, payments disruption and non-bank competition. Learn how the latest treasury management strategies are helping to mitigate operational, financial and reputational risk.

Banking and Treasury

The accounting and finance community on BrightTALK features presentations from leading accountants and finance professionals. The accounting community includes tax planning strategies, QuickBooks webinars and other accounting webinars, while the finance community features presentations on financial capital regulations and forensic data analytics. Join the conversation by attending live financial and accounting presentations and connecting with industry thought leaders.

Best Practice for Cloud Host-Based Forensics

Presented by

About this talk

More from this channel