Name: Protect your organization & customers from card skimming Magecart-style attacks
Start: 2020-09-03T15:00:00Z
End: 2020-09-03T15:21:00.000Z
Location: BrightTALK
Rating: 0

Finally, the intelligence, agility, and security you need to create innovative digital experiences customers trust.

You know protecting your apps is critical. How can you take it to the next level? Hear straight from our security experts! Join us for an interactive session where we will cover:

- Benefits of Obfuscation/Anti-Tamper/RASP (Runtime App Self-Protection)
- Best practices of Implementation of Guards
- Environmental guards
- Dynamic instrumentation toolkit
- Actual code manipulation
- Benefits of layering
- Benefits of changing guards release to release
- Demonstration of App Aware

How to Implement Threat Monitoring for Application Security

“If you do something three times, you have a strong argument for automating. We do things thousands of times and want a dependable, deterministic outcome every time.”
– Neale Foulds, NBI

Neale Foulds had a significant challenge when He joined National Broadband Ireland (NBI) as a Release and IT Change Manager. NBI was on the journey to roll out broadband covering 96 percent of Ireland’s land, and Neale had to remove any risks inherent to manual application deployment while also managing release activity in the most efficient way possible.

Watch this webinar with Neale, and learn more about his journey, challenges, and how he changed the game by implementing Continuous Delivery “Right.”

• Successfully implementing continuous release and deploy can be challenging
• Here how one company changed the game by implementing Continuous Delivery “Right”
• National Broadband of Ireland has overcome significant obstacles to meet their customer needs

Continuous Delivery Improves App Rollout for National Broadband Ireland

Agile processes are being implemented and adopted at a rapid pace, with the focus on enabling the delivery of high-quality web and mobile apps at speed and at scale. And with the use of scrum as an agile development methodology, continuous testing is now integral to the development lifecycle. 

How do teams align agile development goals with the testing process to ensure that tests are created, verified, and saved to guarantee that your software is always in a releasable state? 

Tune into this webinar to view a product demo of Test Manager and see how it puts the power of test creation and validation in the hands of any persona, even those without coding skills, to close any skills gaps.

Discover:
• How to use Test Editor as an essential piece of software development and testing
• The core functional components 
• How uniting test management with agile practices will increase collaboration and efficiency

Build, Validate, Execute: Connect Agile requirements with Testing results

Resiliency is a core topic in OWASP’s Mobile Application Security Verification Standard. What’s the key context to know? Dan Shugrue of Digital.ai discusses how to deepen a DevSecOps program by training application owners in code obfuscation, anti-tamper, RASP and monitoring.

In an interview with Information Security Media Group, Shugrue discusses:

-What “deepening” DevSecOps actually means
-The role of resiliency in OWASP’s MASV Standard
-What product owners need to be taught now to help meet resiliency requirements

Use Code Obfuscation and App Monitoring to Protect your Apps

“The DevOps Handbook, Second Edition” provides a broader view from multiple co-authors, additional case studies, and great resources about how to use data to solve and anticipate problems.

Join Silvia Davis, Digital.ai Sr. Product Marketing Manager, and Ben Sapp, Director of Intelligence Services, as they analyze key points of the DevOps telemetry chapters and how Digital.ai Intelligence Change Risk Prediction can help you begin your journey to AI-DevOps.

In this book synopsis, we go over Chapters 14, 15, and 16 of The DevOps Handbook, Second Edition, and give insight on how to:

-Create Telemetry to Enable Seeing and Solving Problems
-Analyze Telemetry to Better Anticipate Problems and Achieve Goals
-Enable Feedback So Development and Operations Can Safely Deploy Code
-Showcase examples of predictable metrics to get you started

The DevOps Handbook: Creating, Implementing, and Analyzing Telemetry Synopsis

Accelerating delivery cycles through DevOps tools and practices is the topic of our time. In fact, according to the “Accelerate State of DevOps 2021” report by DORA, the percentage of organizations reporting “Elite” DevOps performance has grown by more than 370% from 2018 to 2021.

How can you measure and improve DevOps in your organization? The well-known DORA metrics are certainly a good first step, but for the “big leap” you need more than that….

Combining DORA metrics with analytics and AI/ML can help you release better quality software more frequently and enable reliable customer experiences. Join us for this webinar featuring Matthias Zieger, Technical Director at 
Digital.ai, and learn more about:

-Introduction to DORA metrics and what they do (and don’t) tell you
-Using analytics to understand not just “what” is occurring but why
-How AI/ML models can help you identify and eliminate the root cause of DevOps risk factors
-Automating Change and Release governance with metrics and AI/ML
-Digital.ai customer case studies

Improve DevOps effectiveness with DORA metrics + AI

Whenever your organization creates and delivers mobile applications to either employees or customers, they are essentially also delivering a blueprint for bad actors to access your organization’s sensitive data.

As an application owner or product manager, you most likely are aware of the concept of DevSecOps and may have already implemented some best practices to build security into the applications you ship. At the same time, you might be wondering if you are devoting too much—or not enough—time to build security in your CI/CD life cycle, and you may not know which practices are actually the “best” practices.

This webinar describes the existing threat and security landscape and explores how you can take advantage of the latest DevSecOps trends to build security into your mobile applications directly, quickly and easily.

Quick and Easy Ways to Insert Security Into Your Mobile AppDev Life Cycle

Your DevOps practice is making more apps available with greater frequency.

At the same time:

* “Applications are once again the top cause of external breaches” – Forrester 2022
* According to Gartner’s Hype Cycle for 2022, DevSecOps has reached the “Plateau of Productivity”
* US$ 4.35 million average cost of a data breach as reported by the Ponemon Institute

Perhaps you’ve begun to use tools such as SAST, DAST, SCA, to secure the apps you create. But the working examples and zero days your apps contain require a greater level of protection. Watch this webinar to see how you can integrate application security into your DevOps processes.

How to Integrate Application Security into DevOps

With the growth of agile practices in enterprise companies, teams have become siloed, tools have become outdated, and application delivery is not providing the desired business value. Making it even harder to orchestrate and deliver applications and products on time.

Digital.ai commissioned Forrester Consulting to conduct a Total Economic Impact™ (TEI) study where they interviewed our customers to learn about their challenges, their journey to enterprise Agile, and how they were able to change the game and focus on business value.

“We can create value and deliver value in the hands of end-users a lot faster” — Director of enterprise agility, financial services.

Join us, together with our guests Chris Condo and Kris Peterson – from Forrester to learn more about our four customer stories, and the Total Economic Impact™ (TEI) study findings.

In this webinar, you will hear:
- An analyst’s perspective on market trends for Enterprise Agile
- How to calculate ROI and identify quantitative and qualitative metrics
- Customer journeys, values, and results

Driving 312% ROI by Scaling Agile with Guest Forrester

To create secure applications at the speed of DevOps, teams embrace the shift left mantra. But inserting security into app development can appear as a speed bump and even as an obstacle to continuous deployment. If 2021 proved anything it is that securing your applications still has to be priority. But it doesn’t have to be drag. By adopting a DevSecOps mindset and embedding security into the product lifecycle, teams can be fast and secure.

Please join guest speaker Janet Worthington, Forrester Senior Analyst, and Daniel Shugrue, Digital.ai Sr. Product Marketing Manager, to hear the latest on where organizations are in the shift left transformation, the state of application security, and where teams can dig in to further their DevSecOps efforts.

Create secure applications at the speed of DevOps with special guest Forrester

Is your DevOps stuck? How to use AI and analytics to keep your release pipelines flowing

Transformation efforts only drive limited impact if you don’t have the right tools and analytics to address DevOps challenges faced at different stages of the journey. How do you identify, predict, and remove inefficiencies in every step of the release process? And what level of visibility do you have into the performance of the software delivery pipeline across the enterprise?

Join this webinar to get actionable tips on how to use historical analysis, machine learning, and data from across your toolchain. Learn how a holistic value stream delivery platform can meet you where you are, heightening the focus on your closer-in opportunities, from pipeline orchestration and analytics to AI-driven DevOps improvements.

During this session, we will also cover:

-Real life use cases and best practices of using different DevOps functions to overcome common challenges
-How to use metrics to improve release performance and scale end-to-end SDLC
-Ways to identify risky changes in development and ITOps using predictive AI
-Stages in the digital transformation journey and must-have value drivers at each stage

How to use AI and analytics to keep your release pipelines flowing

Application Developers are increasing taking the “DevSecOps” ethos to heart. They are realizing that security is not just something that gets bolted onto apps or around networks. Instead, security needs to be built into the applications that they create. While many have turned to SAST solutions to identify vulnerabilities such as Log4Shell in Log4J, others rightfully wonder how to protect the code that they write themselves, code that – by definition – contains working examples of how to penetrate the security perimeter that their InfoSec colleagues have put in place.

This webinar shows:

* How threat actors reverse engineer applications
* How a “Protection Blueprint” secures applications
* What unobfuscated and disassembled machine code looks like to a threat actor
* How obfuscated machine code makes the threat actor’s job more difficult
* What anti-tamper measures do to prevent reverse engineering of applications

How to Build a Blueprint for Secure Software

Are you encountering bottlenecks as your organization continues to grow and mature Agile practices? Then you aren’t alone. One area where we have seen organizations struggle is orchestrating release planning and deployment within their Agile planning. 

When successfully incorporating Release orchestration, automated deployment and predictable analytics, it offers you complete pipeline visibility, helps pinpoint inefficiencies, and allocates resources that drive precise business results.  

Join Matthias Zieger, Principal Sales Engineer at Digital.ai, and Silvia Davis, Sr. Product Marketing Manager at Digital.ai, who will discuss: 

-How to overcome the misalignment among Agile and DevOps teams  

-Best practices to bring visibility to the entire pipeline and consistency  

-Finding pipeline bottlenecks and automating critical tasks

3 tips to unclog your application pipeline and accelerate your releases

With the growth of agile practices in the enterprise companies, teams have become siloed, tools have become outdated, and application delivery is not providing the desired business value, making it even harder to orchestrate and deliver applications and products on time.

Digital.ai commissioned Forrester Consulting to conduct a Total Economic Impact™ (TEI) study where they interviewed our customers to learn about their challenges, their journey to enterprise Agile, and how they were able to change the game and focus on business value.

“We can create value and deliver value in the hands of end-users a lot faster” — Director of enterprise agility, financial services.

Join us, together with our guests Chris Condo and Kris Peterson – from Forrester to learn more about our four customer stories, and the Total Economic Impact™ (TEI) study findings. In this webinar, you will hear:

- An analyst's perspective on market trends for Enterprise Agile
- How to calculate ROI and identify quantitative and qualitative metrics
- Customer journeys, values, and results

TEI Webinar featuring Forrester: Driving 312% ROI by Scaling Agile

The IDC estimates that the amount of digital data created over the next five years will be greater than twice the amount of data created since the advent of digital storage. 

It’s therefore no surprise that it’s a pressing need for organizations to become more data-driven and to be able to quickly process deluges of data to quickly derive actionable insights. It’s becoming increasingly apparent that this requires an agile data management approach that makes the most of both technology and humans.

Still a relatively new term, this is termed DataOps. DataOps seeks to expand the virtues of DevOps, and advocates for clear communication and collaboration across all data stakeholders to eliminate the inefficiencies of traditional data integration, and drive efficiency.

In this episode, Helen Beal and guests will be discussing how DataOps can eliminate silos and foster a Data Culture throughout your organization. Join them to hear them share ideas that will help you understand and overcome the challenges around data in the DevOps space.

They’ll be discussing:

- Why DataOps isn’t just DevOps for Data
- How DataOps reduces complexity for organizations and shouldn’t be viewed as ‘just another thing for data professionals to worry about’
- What the importance of individuals and interactions, as well as tools and processes, are in DataOps
- How to demonstrate value early and encourage executive buy-in
- And more

Applying Data to DevOps: A Comprehensive Guide to DataOps

You can’t rely on network or perimeter security to protect web applications, your business or your customers from card skimming attacks. The reason? Web apps that use  HTML, CSS or JavaScript, including your eCommerce checkout page, are especially vulnerable to client-side attacks that can result in a devastating data breach like the ones that affected British Airways and Ticketmaster. And the bad news is that these Magecart-style data exfiltration attacks are only becoming more targeted, more frequent, and are resulting in fines and or penalties in the hundreds of millions of dollars.

To protect against data theft, most organizations depend on traditional security controls that monitor network and server traffic, not client side code. But as more business logic and functionality is being executed in the browser in order to improve customer experience and performance, the riskier this strategy becomes.

As the busiest shopping season of the year approaches, is your website – and your customer data – protected? Find out how you can defend against client-side data exfiltration and prevent web apps from becoming an attack vector. 

In this webinar, we’ll cover:
-How Magecart and other digital skimming attacks are able to thwart traditional security measures
-How to protect web apps against client side threats
-What you should look for in an application security solution

Protect your organization & customers from card skimming Magecart-style attacks

Web Application Security

Application Security

Cyber Threats

Zero Trust

Threat Intelligence

Data Security

Application security

Threat analytics

API protection

Reverse Engineering

Welcome to the mobile computing community on BrightTALK! With the consumerization of IT and the widespread adoption of mobile devices across the globe, mobile computing has become an important part of many people's lives in a culture of bring your own device (BYOD). With mobile devices doubling as work phones and more employees working from home, businesses need to provide secure access to data and work applications from anywhere at any time. Join this growing community and hear from industry thought leaders in webinars and videos as they share their insight on mobile computing research and trends.

Mobile Computing

Are you an IT service management professional interested in developing your knowledge and improving your job performance? Join the IT service management community to access the latest updates from industry experts. Learn and share insights related to IT service management (ITSM) including topics such as the service desk, service catalog, problem and incident management, ITIL v4 and more. Engage with industry experts on current best practices and participate in active discussions that address the needs and challenges of the ITSM community.

IT Service Management

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The application development community features top thought leadership focusing on optimal practices in software development, SDLC methodology, mobile app development and application development platforms and tools. Join top software engineers and coders as they cover emerging trends in everything from enterprise app development to developing for mobile platforms such as Android and iOS.

Application Development

Unified communications improve collaboration and increase productivity among employees through technologies such as VoIP, instant messaging and social media. Join this community to learn how to benefit from the full value of unified communications and collaboration technologies.

Collaboration and UC

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

Practicing business intelligence allows your company to transform raw data into sets of insights for targeted business growth. The business intelligence and analytics community on BrightTALK is made up of thousands of data scientists, database administrators, business analysts and other data professionals. Find relevant webinars and videos on business analytics, business intelligence, data analysis and more presented by recognized thought leaders. Join the conversation by participating in live webinars and round table discussions.

Business Intelligence and Analytics

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

Get powerful help desk and support insights from influential experts. Connect with thought leaders and colleagues to get the most up-to-date knowledge on the help desk and support strategies that effect business value and growth.

Help Desk and Support

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Protect your organization & customers from card skimming Magecart-style attacks

Presented by

About this talk

More from this channel