Name: Anatomy of an Attack – How to defend against a multi-stage attack
Start: 2014-09-24T19:00:00Z
End: 2014-09-24T19:55:15.000Z
Location: BrightTALK

Security Connected provides McAfee customers the ability achieve optimized security each day, enabling their business while reducing risk, driving compliance and realizing operational efficiencies

Many enterprises have leveraged the correlation, visualization and case management of SIEM to drive the workflow of their Security Operations Center and much of the daily activity of the security team.  With the introduction of big data scale, machine learning-based analytics and instantly-accessible forensic data, Network and User Behavior Analytics is a terrific complement to SIEM.  Intel and Niara will explain how these new capabilities can be seamlessly introduced to SIEM and demonstrate both enhanced attack detection as well as accelerated investigations and response directly from the McAfee Enterprise Service Management (ESM) console.

How UBA and Machine Learning Can Turbocharge SIEM

Security and risk professionals are dealing with staggering amounts of endpoint-related data loss and risk exposure. To mitigate these risks, security pros need to rethink their current endpoint security strategies and focus on getting the basic foundations in place on the endpoint. Join guest speaker Chris Sherman, Analyst at Forrester Research, as he discusses Forrester’s "Targeted-Attack Hierarchy of Needs”. Chris will highlight the core endpoint security needs critical to an enterprise security strategy. 
  
Hosted by Intel Security and its Security Innovation Alliance partner Avecto, this webinar will provide practical advice on how to build a smart and simple strategy that fits with your existing McAfee ePO infrastructure. Sharing real world examples and data, this session will provide a clear and jargon-free overview of today’s security landscape, demonstrating proactive security that stops cyber attacks.

You will learn
•How to prioritize Forrester’s Targeted Attack Hierarchy of Needs  
•Insights from Forrester’s 2016 Security Survey 
•How to deal with the multitude of threats targeting endpoints through a balance of attack surface reduction and threat detection
•How advancements such as Intel Security TIE/DXL are enabling more intelligent and connected security decisions via orchestration and automation

6 pillars of an Effective Endpoint Security Strategy

Many enterprise organizations are moving beyond antivirus software, adding new types of controls and monitoring tools to improve incident prevention, detection, and response on their endpoints.  Unfortunately, some of these firms are doing so by adding tactical technologies that offering incremental benefits only.  
So what’s needed?  
A strategic approach that covers the entire ESG endpoint security continuum from threat prevention to incident response.  A truly comprehensive solution will also include advanced endpoint security controls that reduce the attack surface and tight integration with network security, SIEM, and threat intelligence to improve threat detection and response processes.
Join ESG senior principal analyst Jon Oltsik, Intel Security, and Bufferzone on a webinar on July 21 at 10am PT/1pm ET to learn more about next-generation endpoint security requirements and strategies.

A Comprehensive Approach to Next-Generation Endpoint Security

By now, we all recognize the need of securing our data against the inevitable breach – but in doing so, is the business being put at risk in other ways?  Often times putting security in place means the IT and security departments having to take a lot of time to learn, deploy, fine-tune and monitor the solution, effectively ‘back-burnering” initiatives that can drive the business forward.  This can ultimately costs the business money. What security makes sense and is there a way to make it transparent to the IT and security manager? With more data in more places being more critical than ever, is it possible to deploy effective security that leverages and works in conjunction with your existing environment AND provides a great user experience for IT and the business?

Join us for this Intel Security/Vormetric webcast where Analyst, EMA, will frame this increasing problem that often pits the business & IT folks against each other. Gain real knowledge into the issues confronting both, as well as real ways to solve some of the most daunting security issues without hitting the speedbumps to the business.

Key take aways:   
1.Understand the challenge IT organizations must address today specifically with securing data against increase security threats
2.Learn how security the joint Intel Security / Vormetric solution can help solve the need to secure environments specifically with McAfee  DSM & ESM and Vormetric encryption and reporting
3.Understand the applicability to the attendee’s business by learning about real use cases that are relevant to them

Vormetric and EMA present:  The Data Security Offense Playbook

The use of cloud applications to share, collaborate, and store data has grown drastically. Learn how employees can safely utilize cloud services such as Office365, Box, Dropbox, Google Drive, etc. See how a solution from Intel Security can provide encrypted file security for PCs, cloud, and mobile devices while preserving the end user experience.
-Understand the challenges of handling and sharing data in the cloud
-See how Intel Security's cross platform solution can protect data
-Learn best practices of implementation for the Intel Security solution

From PC to Cloud to Mobile - Protect Your Data Everywhere

With all of the high profile and often successful hacks, we know what cyber criminals are after, IT’S THE DATA
With the significant security risks posed by both unstructured and structured data on physical, hybrid and virtual environments 
THERE IS NO SILVER BULLET TO PROTECT IT ALL
There however is a structured and methodical way to approach these threats by coordinating comprehensive database and file security with proactive threat analytics and complete end-to-end forensics which can significantly mitigate data breach risks  without breaking the bank.
 
Join 451 Research, Intel Security, & Vormetric for an enlightening webinar where you will be briefed on the current state of the data threat and the right methodology to secure your data and your organization.

Taking a Structured Security Approach to your Structured & Unstructured Data

For years, most endpoint security strategies have revolved around endpoint anti-virus, but this approach is clearly unable to keep pace with modern threats. To mitigate their risks, IT organizations need to rethink their current endpoint security strategies and move past these reactive security technologies. In order to set organizations down the right path, we will present Forrester’s five design principles of an effective endpoint security strategy, helping security professionals to place attack surface reduction and tool integration as their central focus points within their own strategies. Ultimately, this will allow organizations to better deal with the influx of new device types and data access requirements while reducing the likelihood of data breaches.

Intel Security & BufferZone host Forrester: Moving Beyond The Blacklist

Attend this webcast to see how endpoint encryption can keep your data safe. Learn the differences between the traditional enterprise-grade drive encryption and the native encryption that is provided by the OS vendors; BitLocker for Windows and FileVault for Macs. The webcast will help you decide which encryption method is best for your business and which data protection solution will fulfill your needs.

Intel Security Explains How Endpoint Encryption Keeps Your Data Safe

Organizations need to be more business-centric in their approach if data loss prevention is to be successful.  By supplying McAfee Data Loss Prevention (DLP) with reliable insight into the meaning and value of data, Classifier complements the detection methods based on keywords and regular expressions alone, helping reduce the risk of data- loss.

The combination of Boldon James Classifier and McAfee DLP reduces the likelihood of data loss by providing the DLP solution with predictable, meaningful classification metadata that greatly improves the reliability of DLP decision making, improves system effectiveness and reduces false positives.

In this webinar we will explore:

- The role of user-driven classification
- How user-driven classification benefits DLP
- When to introduce user-driven classification into a DLP project
- How to measure and monitor the benefits of user-driven classification

User-Driven Classification: Adding a New Dimension to McAfee DLP

As enterprises struggle to control and secure their assets across internal file stores, an ever-increasing universe of mobile devices, and a plethora of non-secure cloud storage services, they are searching for solutions that allow them to quickly identify and isolate noncompliant data sharing and prevent unauthorized access to sensitive information.  

Intel Security and Topia Technology have partnered to develop an integrated product for organizations to store, analyze and share documents from a mobile device or a cloud computing platform.

Learn how:
•Secrata deployed with McAfee provides a unified file sync and share experience with military-grade security, to address this need.  
•McAfee Enterprise Security Manager enables businesses with true, real-time situational awareness and the speed and scale required to identify critical threats, respond intelligently, and ensure continuous compliance monitoring.

Mobile and Cloud Computing Enterprise Security Platform

Would you ever consider leaving your house for the day without locking your door?  Of course not!! 
It is as important to protect and control front-door access of your databases as it is to lock the front door of your house.   That is why we use a suite of database discovery and activity monitoring tools to control the front door access of our databases.   Yet hackers and miscreant insiders know that the back door of databases are all too often left wide open—and it is the path of least resistance to steal valuable data.   
 
Vormetric has partnered with Intel Security to integrate with McAfee Database Activity Monitoring (DAM) and McAfee Enterprise Security Manager (ESM) to extend data-security coverage.   Vormetric adds another layer of security to McAfee DAM by preventing unauthorized users and processes from accessing or viewing the database files through transparent encryption.
 
In this presentation, Vormetric will demonstrate:
•        How to complete database security, to assure that back door entry is as locked down as the front door
•        How to protect the database, and its associated files such as configuration, logs and reports, from not only physical theft, but also from insider threats and hackers

Database Security: Don’t Forget to Lock the Back Door

Attend this webcast to learn about best practices for managing the native encryption for Macs (Apple FileVault) and for Windows based PCs (Microsoft BitLocker). The webinar will highlight functional aspects of McAfee Management of Native Encryption software.

Best Practices for Apple FileVault and Microsoft BitLocker Management

Apple FileVault & Microsoft BitLocker Management - for EMEA Customers

Cyber attacks frequently progress through a number of stages. Understanding each stage of an attack and the potential disruption points in the chain can assist IT security teams to better defend their networks. Join this webcast to look at today’s attacks relative to the stages of the cyber attack chain and discuss what defenses can mitigate each stage to help prevent an attack.

•Understand how the cyber attack chain phases map to McAfee’s Security Connected solutions
•Apply cyber attack chain mitigation strategies to specific projects or acquisitions
•Articulate the importance of collecting intrusion artifacts and intelligence

Use the Cyber Attack Chain to Make Intelligent  IT Decisions

McAfee Labs has followed a group of sophisticated actors who persistently and methodically attacked major global organizations for more than three years. This campaign involved a series of targeted attacks, primarily through email phishing, that resulted in the exfiltration of sensitive government data. 

In this webcast, McAfee principal security researcher Ryan Sherstobitoff provides an in-depth look at the Archangel cyber-espionage campaign and give recommendations on how to prevent similar attacks from impacting your organization.

Operation Archangel: A Deep Dive into Targeted Attacks

Microsoft Office 365 enables customers to work in the office or on the go, with the idea of enabling businesses to run more effectively.  Yet, phishing tactics are increasingly sophisticated.  As organizations consider moving email infrastructure to Exchange Online, is there a need to complement built-in security with additional solutions?

Join this session to learn how advanced threats are being delivered, and how McAfee uniquely extends critical protection to organizations using Office 365 for email.  A free offer to run an assessment of your organization’s ability to detect phishing will also be provided.

Why You Need Advanced Security for Microsoft Office 365 Exchange Online

Vast amounts of your organization's sensitive data are accessible, stored, and used by authorized employees and partners on a host of devices and servers.  Protecting that data where ever it is stored or travels is a top priority.  Join the webinar and learn from an DLP expert from Intel Security on best practices on implementing DLP in stages, including:
•Understand what data is leaving your organization
•Build and manage policies 
•Simplify workflow
•How to automate remediation.

Best Practices for Implementing Data Loss Prevention

Recently, we’ve seen the emergence of multi-stage attacks, such as the widely reported Target breach. Multi-stage attacks employ multiple technologies, deployed in multiple stages, to penetrate an organization’s defenses. For example, a phishing email can result in a malware download which, in turn, can collect and transfer credit card data to an external server.

In this session, respected industry analyst Michael Osterman will examine the anatomy of a multi-stage attack and describe how an organization can employ a defense- in-depth strategy to block the attempt to compromise your security at each stage. 

Join this webinar on Anatomy of an Attack as:
•You will learn details of how a multi-stage attack works.
• Examine the vulnerabilities which each stage of the attack is targeting.
•Learn how to protect each stage in a coordinated defense.

This session is a must-see for any IT or security professional concerned with protecting an organization against the type of sophisticated, multi-stage attack which resulted in the breach of more than 40 million credit card numbers.

Anatomy of an Attack – How to defend against a multi-stage attack

Email

Protection

phishing

protection

Osterman

Welcome to the virtualization community on BrightTALK! Whether it affects servers, storage, networks, desktops or other parts of the data center, virtualization provides real benefits by reducing the resources needed for your
infrastructure and creating software-defined data center components. However, it can also complicate your infrastructure. Join this active community to learn best
practices for avoiding virtual machine sprawl and other common virtualization pitfalls as well as how you can make the most of your virtualization environment.

Virtualization

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

The data center management community focuses on the holistic management and optimization of the data center. From technologies such as virtualization and cloud computing to data center design, colocation, energy efficiency and monitoring, the BrightTALK data center management community provides the most up-to-date and engaging content from industry experts to better your infrastructure and operations. Engage with a community of your peers and industry experts by asking questions, rating presentations and participating in polls during webinars, all while you gain insight that will help you transform your infrastructure into a next generation data center.

Data Center Management

The unexpected nature of natural disasters and other disruptive events means that preparation is key to managing disaster recovery and business continuity planning. Join the business continuity and disaster recovery community for live and recorded presentations discussing best practices for business continuity planning, disaster recovery programs and business continuity management. Learn from BCDR experts to develop your critical infrastructure and gain insight into tactical solutions to your BCDR issues.

Business Continuity / Disaster Recovery

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Anatomy of an Attack – How to defend against a multi-stage attack

Presented by

About this talk

More from this channel