Name: Protect your organization & customers from card skimming Magecart-style attacks
Start: 2020-09-03T15:00:00Z
End: 2020-09-03T15:00:21.000Z
Location: BrightTALK
Rating: 0

Finally, the intelligence, agility, and security you need to create innovative digital experiences customers trust.

Agile practices have been evolving for 17 years, and the dynamic business environment is shifting faster all the time – we need Agile more than ever. Agile methodologies have proven they can transform the way businesses succeed, but Agilists are encountering more and greater challenges, so it's time to ask: Where does Agile go from here? 

Join this engaging webinar, sponsored by Digital.ai, as an expert panel discusses the key findings from the 17th State of Agile Report, addressing crucial questions such as: 

- What are the big changes for Agile in 2024? Where will we pivot next? 
- Why is Agile the best way to handle externally-driven changes as well as ongoing internal challenges? 
- How can we bridge the gap between team-level success and business leaders to overcome the time, money, and risk challenges in Agile adoption?

What is the Future of Agile in the Age of Continuous Pivots?

As digital transformation sweeps across the Financial Services industry, enterprises are grappling with increasing challenges - from maintaining stellar customer service amid growing user bases to ensuring ironclad security for sensitive customer information. The need for efficient, secure, and rapid software delivery has never been greater.  

In this webinar, we will delve into real-world case studies of major financial institutions that have conquered these challenges by adopting an AI-powered DevSecOps platform. Your key takeaways will include how:

- A major US insurance and financial services company is using enterprise agile planning at scale to drive project success  

- A major US bank standardized its development process and increased productivity  

- A European bank slashed a two-day process down to less than two hours 

- Other leading financial institutions are leveraging predictive intelligence to accelerate their time to market

Overcoming Digital Disruption: Financial Services Success Stories

Efficient Agile and DevOps Practices have made mobile, web, and desktop apps from Financial Services companies more ubiquitous than ever. While these efficiencies greatly enhance the customer experience, they also present an enticing attack surface to threat actors.

Join us for an ethical hacking seminar where you’ll learn:

-Why threat actors specifically target financial services applications
-The top tactics, techniques, and practices threat actors will use in 2023 and beyond
-How DevSecOps defense-in-depth protects your apps and organization from attacks
-The benefits of obfuscation, anti-tamper, and RASP (Runtime App Self-Protection)

Ethical Hacking: The Future of Attacks on Financial Services

“Complexity and Change Fatigue" – these are the new curveballs leaders need to catch. 

Dive into The State of DevOps 2023 Insight Report! We've got some eye-opening tidbits about burnout and its ripple effects on team performance and delivery.  

Join us for a candid panel conversation. The report's writers, together with experts in DevOps and AI, will dive into strategies to move a culture that enhances team environments, creates an innovative spirit, and improves developer experience. 

• How to deal with the effects of "complexity and change fatigue"  
• What does a “happy developer’s team” mean? 
• How to keep the team energy up and burnout down

Navigating Complexity and Change Fatigue: Strategies from the DevOps 2023 Report

Large-scale software releases across hybrid environments presents a unique challenge, especially for heavyweight financial services firms. As one of the globe's most stringently regulated industries, these organizations are tasked with a formidable endeavor. They must balance the critical need for consistent, streamlined processes to ensure compliance and security against the mounting pressure to innovate and deliver at pace. This balancing act has seen many traditional financial entities struggle to keep pace with their more agile, modern counterparts.  

Join us as we share software release strategies that our financial services customers are employing to efficiently manage their own software release process and how they are deriving benefits and positive business outcomes by employing automation and standardization across their DevOps process. 

Get insights into how standardization can lead to resource optimization, easier troubleshooting, economies of scale, and common metrics, all leading to increased velocity and faster delivery of compliant and secure software. Additionally, we'll offer a demo of our release governance templates that these customers are using today, showing you firsthand how these templates can be integrated into your organization's processes. 

Our focus will be to empower CIOs, VPs of Engineering, and Product Owners in the financial services sector, showcasing the potential of software release process standardization to mitigate risks and increase efficiencies.  

Audience Takeaways: 

Real-life examples of how top Digital.ai financial customers of various levels of maturity are adopting a standardized approach to their release process.  

Practical insights of the benefits these customers have gained, including resource optimization, simplified troubleshooting, and establishing common metrics. 

The webinar will equip attendees with an actionable asset - a questionnaire that can be used within their businesses.

Driving Application Release Automation and Efficiency in Financial Services

AI has been around for some time, however in the past year its usage has grown massively to where an estimated 92% of developers are using AI coding tools. While the benefits of being able to increase productivity and release velocity are too great to ignore, there are some challenges that must be addressed.  

In this webinar, we will discuss: 

—Avoiding security vulnerabilities by applying policies specified as code enforcement 
—Mitigating risks of copyright infringement with automated checkpoints on AI-assisted code 
—Ensuring compliance with automated audit reports with full traceability 

Join Sr. Director, Sales Engineering Adam Kentosh and Product Marketing Manager Jonny Steiner for a webinar covering the Orchestration and Governance of AI-generated code in which they will discuss: 

—AI Generated code vulnerabilities  
—Data Privacy concerns  
—Quantifying ROI of AI code difficulties

How to Make AI-generated code Secure, Private and Compliant

Financial Services governance template demo

Did you know that 55% of apps were run in unsafe environments or with modified code? Don’t let your application become another statistic!

The DevSecOps model seeks to unite security and DevOps with the shared goal of rapid and secure software delivery. A powerful aspect of this approach is Application Hardening – the innovative practice of obfuscating code, monitoring apps in the wild, and giving apps the ability to react to attacks.

Watch our Digital.ai webinar with guest speaker Katie Norton, IDC Senior Research Analyst renowned for her expertise in DevSecOps, to discover the secrets of securing your applications in today’s ever-evolving threat landscape. Katie will also discuss how to:

-Improve security posture with build-time application hardening without burdening developers
-Gain visibility into potential attacks through tampering protections
-Empower applications to automatically react to attacks with Runtime Application Self-Protection (RASP)
-Integrate app hardening with DevOps processes

Application Hardening as Part of a Holistic DevSecOps Strategy

As enterprises continue actively making more apps available with greater frequency, Application Security is a top priority for organizations to safeguard their apps against threat actors seeking to reverse engineer them. This approach aims to prevent breaches in their perimeter security and protect valuable assets like IP, money, and more.

While you may already be familiar with tools such as SAST, DAST, and SCA to secure the apps you create, the working examples and zero-day vulnerabilities your apps contain require a greater level of protection.  

Join our webinar that explores:     
- Current challenges with DevOps and how to meet those challenges
- How a DevSecOps defense-in-depth approach protects your apps and organization from attacks
- The benefits of obfuscation, anti-tamper, and RASP (Runtime App Self-Protection)

How to Integrate Application Security into DevOps

You know protecting your apps is critical. How can you take it to the next level? Hear straight from our security experts! Join us for an interactive session where we will cover:

- Benefits of Obfuscation/Anti-Tamper/RASP (Runtime App Self-Protection)
- Best practices of Implementation of Guards
- Environmental guards
- Dynamic instrumentation toolkit
- Actual code manipulation
- Benefits of layering
- Benefits of changing guards release to release
- Demonstration of App Aware

How to Implement Threat Monitoring for Application Security

Remember the time your release caused a major failure? That moment when you were trying to figure out what happened and fix it as soon as possible? It’s one of those situations you want to prevent! And it just gets more complex as you need to deploy to multiple environments like cloud, on-prem, VMs and containers.

The fact is that enterprises have yet to master the art of transparency throughout their DevOps pipeline to gain efficiency, reduce failure and recover faster.

Join our webinar, where Charitra Agrawal, Director of Product Management and John Kantirakis, Sr. Solution Engineer, will show you how to predict the unpredictable! We’ll help equip you with AI-powered predictive data that empowers you for timely deliveries and fast risk detection. It’s time to get smarter and reduce the headaches and make your DevOps “continuous.”

In this webinar you will learn how to:
* Prevent release delays by proactively understanding the release dependencies and their risks
* Predict the probability of change failure with the change credit score and give a fast pass to low-risk changes
* Remediate problems faster with data that correlates application releases with incidents and production events

Continuous Delivery on Multi-Cloud: Predicting the Unpredictable

Enterprises across industries continue to push mobile applications into their customers’ hands. Unfortunately, each of those apps contain a working example showing how to access back-office assets.

The real question is: What do we know about the security posture of those applications? Unfortunately, very little. While spend on perimeter security and SIEMs has been growing faster than inflation for years, relatively little is invested in protecting and monitoring apps that live in the wild, outside of the security perimeter.

That changed in August 2023 when we released our 2023 Application Threat Report.

Watch this webinar where we’ll reveal the highlights of the report, including:
—The odds that any mobile/web/desktop application will be attacked
—The odds of attacks on apps by industry
—The most common types of attacks
—The types of platforms that are attacked most often
—Ways to protect and monitor apps

Application Threat Report

The hype around AI is deafening and reaching the point of driving organizations to distraction. Cutting through the noise to understand the true value AI brings is a challenge as the term is being overly used as an attention grabber. That said, there are many real-life, practical AI and ML use cases that software organizations can leverage – today.

Implementing, adopting and scaling up the use of AI across the software development lifecycle can seem risky, expensive, and potentially disruptive. But it doesn’t have to be!

Join us for this webinar where we will:
• Explain the 3 pillars of an AI-centric approach to software development
• Show how AI-ML powered insights use the data generated by software development to derive predictive outcomes around Change Risk Prediction and Flow Acceleration
• Demonstrate how automation can significantly accelerate your software delivery workflows 

Join us and learn how to get your enterprise AI-ready!

The 3 Pillars of AI – Practical Use Cases you can Leverage Today

Join us for a chat with our Agile experts as they discuss key takeaways of the 16th Annual State of Agile report, why it matters, and how your organization may already be ahead of the curve for the next level of business transformation – value-based delivery.

Learn the basics of value-based delivery and how to:
* Visualize concept to customer process to determine flow of value, set strategic direction, and gain enterprise-wide transparency
* Connect disparate work streams into an optimized delivery engine focused on producing business and customer value
* Measure against KPIs, uncover risks and opportunities, and make data-driven decisions to stay the course or quickly pivot to address a market or business change

What's Trending in Scaled Agile in 2023 - Value-based Delivery

AI-powered DevSecOps for the enterprise is not just another trendy term; it is the catalyst for scaling and accelerating innovation across the enterprise. Learn about the 3 pillars of enterprise AI in this interview with Derek Holt, CEO of Digital.ai, by Alan Shimel of TechStrong TV.

AI-Powered DevSecOps for the Enterprise

You can’t rely on network or perimeter security to protect web applications, your business or your customers from card skimming attacks. The reason? Web apps that use  HTML, CSS or JavaScript, including your eCommerce checkout page, are especially vulnerable to client-side attacks that can result in a devastating data breach like the ones that affected British Airways and Ticketmaster. And the bad news is that these Magecart-style data exfiltration attacks are only becoming more targeted, more frequent, and are resulting in fines and or penalties in the hundreds of millions of dollars.

To protect against data theft, most organizations depend on traditional security controls that monitor network and server traffic, not client side code. But as more business logic and functionality is being executed in the browser in order to improve customer experience and performance, the riskier this strategy becomes.

As the busiest shopping season of the year approaches, is your website – and your customer data – protected? Find out how you can defend against client-side data exfiltration and prevent web apps from becoming an attack vector. 

In this webinar, we’ll cover:
-How Magecart and other digital skimming attacks are able to thwart traditional security measures
-How to protect web apps against client side threats
-What you should look for in an application security solution

Protect your organization & customers from card skimming Magecart-style attacks

Web Application Security

Application Security

Cyber Threats

Zero Trust

Threat Intelligence

Data Security

Application security

Threat analytics

API protection

Reverse Engineering

Welcome to the mobile computing community on BrightTALK! With the consumerization of IT and the widespread adoption of mobile devices across the globe, mobile computing has become an important part of many people's lives in a culture of bring your own device (BYOD). With mobile devices doubling as work phones and more employees working from home, businesses need to provide secure access to data and work applications from anywhere at any time. Join this growing community and hear from industry thought leaders in webinars and videos as they share their insight on mobile computing research and trends.

Mobile Computing

Are you an IT service management professional interested in developing your knowledge and improving your job performance? Join the IT service management community to access the latest updates from industry experts. Learn and share insights related to IT service management (ITSM) including topics such as the service desk, service catalog, problem and incident management, ITIL v4 and more. Engage with industry experts on current best practices and participate in active discussions that address the needs and challenges of the ITSM community.

IT Service Management

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The application development community features top thought leadership focusing on optimal practices in software development, SDLC methodology, mobile app development and application development platforms and tools. Join top software engineers and coders as they cover emerging trends in everything from enterprise app development to developing for mobile platforms such as Android and iOS.

Application Development

Unified communications improve collaboration and increase productivity among employees through technologies such as VoIP, instant messaging and social media. Join this community to learn how to benefit from the full value of unified communications and collaboration technologies.

Collaboration and UC

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

Practicing business intelligence allows your company to transform raw data into sets of insights for targeted business growth. The business intelligence and analytics community on BrightTALK is made up of thousands of data scientists, database administrators, business analysts and other data professionals. Find relevant webinars and videos on business analytics, business intelligence, data analysis and more presented by recognized thought leaders. Join the conversation by participating in live webinars and round table discussions.

Business Intelligence and Analytics

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

Get powerful help desk and support insights from influential experts. Connect with thought leaders and colleagues to get the most up-to-date knowledge on the help desk and support strategies that effect business value and growth.

Help Desk and Support

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Protect your organization & customers from card skimming Magecart-style attacks

Presented by

About this talk

More from this channel