Welcome to the Akamai Security Sound Bytes Podcast, a 6-part series with a mission of sharing the latest insights and perspectives from our top security experts on the ever-changing security landscape.
For Episode two, our host and Area Vice President, Randall Palm will be joined by Tony Lauro, Director of Security Technology and Strategy for a discussion around what organizations have learned from their shift to a remote workforce over the past months.
For the first episode in the series, Getting Ready for the Next Business Continuity Challenge, click here: https://www.brighttalk.com/webcast/17608/403388
If you would like to connect to Randall, Tony, or any Akamai Security experts email SecuritySoundBytes@akamai.com
RecordedMay 14 202018 mins
Your place is confirmed, we'll send you email reminders
Steve Winterfeld, Advisory CISO at Akamai, Sean Flynn, Director of Security Technology & Strategy at Akamai
Join us for a case study discussing how boards are starting to ask why passwords are still being used and how to move to solutions that reduce friction, increase security, and lower costs. No, we are not selling unicorns – industry best practices have driven development of phish-proof MFA that provides all three. In this session you will learn:
- The threat methodologies for attacking MFA
- Making Passwordless more than a marketing term
- MFA best practices and selection criteria
Host: Randall Palm, AVP Akamai Technologies, Guest: Mani Sundaram, CIO and EVP, Global Services and IT, Akamai Technologies
Hosted by Randall Palm, AVP, Akamai, this new podcast series is set to bring listeners perspectives from some of the top IT leaders in the US who hold the responsibility of leading their organizations through both good and challenging times.
This past year has provided a whole new set up challenges for all leaders, especially CIOs and CISOs, and Randall guides the conversations so viewers can understand how these leaders faced the challenges.
Introducing; Leadership During Turbulent Times. On this first episode, Randall is joined by Mani Sundaram, CIO and EVP, Global Services and IT at Akamai where they cover everything leadership. They discuss topics from where they get their leadership styles, how they lead their organizations through turbulent times, and what the future looks like for their organizations and for them as leaders.
Tony Lauro, Director Security Technology and Strategy, Akamai
Gartner estimates that by 2023 more than 30% of public-facing web applications will be protected by cloud web application and API protection (WAAP) services, which combine DDoS protection, bot mitigation, API protection, and web application firewalls (WAFs). But organizations continue to struggle with tuning their rule sets, false positives that negatively affect business transactions, and the rapid pace of change in the actual web applications they aim to protect.
In this webinar, you will learn about:
- The evolution of WAF
- Three crucial mistakes that security teams are prone to today
- Akamai’s WAF technology and how we use it
Join Akamai Director of Security Strategy Tony Lauro as he dives into the history of web application security and why WAFs matter for maintaining a strong defensive security posture.
Akamai's Solution Engineers - Ashwini Naidu, Swagata Dutta Choudhury and Felix Addo
Whether you are planning, implementing, or optimizing your information security strategy, deploying a web application security solution will provide your organization with the ability to understand your unique risks, target security gaps, and detect threats.
Join Akamai solution engineers Ashwini Naidu, Swagatta Dutta Choudhury, and Felix Addo for an interactive workshop as they take a deep dive and dispel myths about cloud WAF. Get hands-on with our team to learn how can you get consistent protection without sacrificing customer experience.
You will also learn about:
-The cloud WAF
-WAF management options: manual vs. automatic
-What to look for when choosing a WAF
-A behind-the-scenes look at Akamai’s WAF
Bridget Meuse - Senior Product Marketing Specialist, Akamai and Steve Winterfeld - Advisory CISO, Akamai
2020 saw healthcare transformation plans be overcome by crisis management. This year, security leaders have a chance to refocus on optimizing performance at the edge to drive better patient and staff experiences. Watch this session to gain insight and build out our transformation strategies.
Akamai’s Tara Bartley, Sr. Industry Marketing Manager, and Sam Marenco, Solutions Engineer
The second half of 2021 offers a new opportunity for small to medium-sized businesses to retain and grow their customer base, as consumers move to shop or transact with smaller, more local businesses, turning away from the trends of 2020.
That means their online experience has to be comparable in terms of secure and dynamic experiences that scale. Whether your business is affected by traditional holidays, flash sales, or the occasional unexpected peaks, your website and apps need to be ready.
Join Akamai’s Tara Bartley, Senior Industry Marketing Manager, and Solutions Engineer Sam Marenco, as they share:
- Best practices for peak/seasonal readiness as it relates to security, optimized and immersive experiences, and reliability
- What other SMBs have implemented in terms of checklists and preparedness across technology stacks
- The importance of partnering with trusted technology providers
Join this session to learn top strategies for reducing your API attack surface, from automatically discovering unknown and changing APIs, to protecting against volumetric attacks and vulnerability exploits. You will leave with a holistic approach to API security that will help improve your security posture and increase trust in your API ecosystem.
Steve Winterfeld, Advisory CISO, Akamai Technologies
The complexity of ransomware deployment and execution makes it difficult to stop. In this talk, Akamai Advisory CISO, Steve Winterfeld uses the cyber kill chain to show the multiple points where defenders can interrupt the attack to help stop this epidemic.
Steve Ragan – Editor, Security Research, Akamai and Jonathan Singer – Senior Manager - Global Games Industry, Akamai
In 2020, criminals spent increased time targeting gamers and gaming companies. Akamai's research team is dedicated to serving the gaming industry. In 2020, we saw a 224% increase in credential stuffing attacks while web attacks aimed at gaming companies were up 340%.
Join us for a live session where we'll share our insights from the latest SOTI Research report: Gaming in a Pandemic. We will explore these numbers, reveal preferred attack methods, and look at the rise in phishing as a service kits.
Matthew Mosher, Global Director of Prolexic Security - Akamai and Susan McReynolds - Product Marketing Manager, Akamai
Your risk of a DDoS attack changed significantly in 2020, mostly driven by the largest global extortion campaign ever launched. But unlike other extortion activity from years past, where there was little follow-through on the actual threat, show-of-force attacks in 2020 reached 500+ Gbps — a clear sign of highly capable and motivated threat actors.
Join this session to understand the evolution of DDoS extortion, its ramifications on 2021 security postures, and the latest best practices to fight back and reduce your risk.
Tony Lauro, Director, Security Technology and Strategy, Akamai
Account takeovers (ATO) continue to rise in severity and pervasiveness, particularly in industries where digital valuables are getting created at a faster rate than physical ones.
In this session, we’ll explore the innovations your organization can use to change the future from one where attackers have the upper hand to one where you can fight back against the disruptive nature of account takeover
Rob Yates, Senior Solutions Engineer and Adam Torres, Solutions Engineer
Sophisticated bot attacks could put revenue, productivity, and reputation all at risk. No matter what your organization is calling it — credential abuse, credential stuffing, bad bots, or account takeover — preparing for and preventing these automated attacks doesn’t need to be your Achilles’ heel.
Join Rob Yates, Senior Solutions Engineer and Adam Torres, Solutions Engineer at Akamai for an interactive workshop and a behind-the-scenes look at the configured actions on bot activity at the edge server.
In this 45-minute workshop, Rob will cover:
- Why bot detection is important, and the costs of bots to business and IT
- The architectural challenge to employing today’s bot management solutions effectively
- Best-practice approaches to bot management, including mobile SDK
Ben Munsen - Fierce Video, Martin Bergenwell - Verimatrix, Elisha Lawrence - ABD-CBN, Ilker Ürgenc - Akamai
Despite differing definitions of what constitutes video piracy, there’s a consensus around the idea that piracy in all its forms takes potential revenue off the table for streaming providers and content owners. Piracy Monitor’s Steve Hawley breaks down video piracy into four categories: theft of content, theft of services, theft of advertising and theft of you, or the exploitation of individuals through web browsers, streaming devices, and other platforms.
- How can streaming media companies best address the forms of piracy that impact them the most?
- What’s the best mix of proactive and reactive measures?
- Can companies like Netflix crackdown on habits like password sharing in ways that don’t alienate loyal subscribers?
Kate Fazini - CEO, Flore Albo LLC and Steve Winterfeld - Advisory CISO, Akamai
Financial Services businesses are increasingly moving customer engagement capabilities to an API infrastructure, but the security guardrails are often not as mature as more traditional application deployments.
Join Kate Fazzini and Steve Winterfeld for a moderated discussion amongst your peers on the challenges faced and what approaches have worked to protect API environments across diverse infrastructure.
Analyst frameworks can be a great resource, but to provide value, most have to be tailored to fit each company. Gartner’s secure access service edge (SASE) is a great framework example. It is gaining traction within the industry because it drives benefits like reducing vendor management overhead and complexity, but because different companies will have their own priorities, the framework doesn’t provide a set solution.
This talk will map out how to develop your requirements, conduct a gap analysis, lock in a plan, and get buy-in for your SASE-based program.
You will gain:
• An understanding of the SASE framework and its benefits
• Step-by-step detail about how to operationalize the framework
• Tools to help you develop the strategy and business case
Join us for a quick but actionable overview of how to integrate the protection of your edge!
Akamai's Matt Mosher, Global Director of Prolexic Security Specialists and Dennis Birchard, Principal Lead Security Architect
Join Akamai security experts Matthew Mosher and Dennis Birchard for a live workshop to learn what is shaping the DDoS threat landscape today, why the attacks are so persistent, and how you can protect your business.
During this 45-minute workshop, we will:
- Review the basics of DDoS and what makes it inherently different from other cyberattacks
- Go behind the scenes into the Akamai environment and explore how we leverage the cloud to defend against DDoS attacks
- Walkthrough reference architectures that highlight where DDoS protection fits in your security strategy
- Showcase how Akamai tailors proactive mitigation controls to your clean network traffic
MFA is critical to reducing risk in the enterprise. But not all MFA factors are equally effective. Join us as we discuss how attackers are taking advantage of weaknesses in the most popular MFA factor. We will review a strong authentication factor based on the FIDO2 standards, which presents its own challenges in balancing security against cost and productivity. Finally, we will introduce a modern authentication factor and service tailored to your business model and needs that delivers a secure, cost effective and low friction solution.
What you will learn:
Why the most popular MFA factor should worry a security professional
The advantages of a strong authentication factor based on FIDO2
The Risk Management challenge: security vs cost & productivity
How to solve the Risk Management challenge with a modern authentication factor
With 178 billion WAF rule triggers every 24 hours, Akamai harnesses unmatched visibility into attacks to deliver curated and highly accurate WAF protections that keep up with the latest threats.
In this webinar we will be covering Akamai’s flagship security solution Kona Site Defender (KSD). Seamlessly built on the Akamai Intelligent Edge Platform, Kona Site Defender provides always-on protection from DDoS and application-layer attacks, with dramatically lower management overhead.
Join Pratyush Sinha, Technical Account Manager at Akamai, on how you can take control and manage your web application firewall, your way.
1. Threat Review and Trends
2. Overview of Kona Site Defender
3. Web Security Analytics
4. Logs & Alerts
5. Integration & Support
Akamai Solution Engineers - Les Waltman, Rob Higgins, and Carlo Alvarado
Are you interested in learning how to better secure your APIs?
Cyberattackers are criminals who intend to access and disrupt your services. These criminals are targeting APIs now more than ever.
Join Akamai solutions experts Les Waltman, Rob Higgins, and Carlo Alvarado as they share how to:
- Scale, protect, and manage all of your APIs through a single pane of glass
- Secure JSON or XML APIs
- Move away from signature-based controls and move at the speed of development
- Defend APIs from rate-based abuse or DDoS attacks
Patrick Sullivan, CTO, Security Strategist at Akamai, Steve Ragan Security Research/Technical Writer at Akamai
It was another record-breaking year for cyberattacks. Globally, there were 193 billion credential stuffing attacks. We also saw 6.3 billion web attacks, with SQL Injection and Local File Inclusion being the most common attacks. Along with an overall increase in incidents, 2020 saw new daily peaks, with global credential abuse reaching 1,003,963,614 attacks in a single day. And we witnessed the rise of phishing kits, which introduced a whole new approach for hackers to take. In our latest report, we team up with WMC Global to bring you a complete, in-depth look at the current state of cyberthreats and highlight a highly targeted vertical for attacks: FinServ businesses.
Discover the latest talks and webinars with Akamai expert perspectives
Akamai secures and delivers digital experiences for the world’s largest companies. Our intelligent edge platform keeps apps and experiences closer to users — and attacks and threats far away. Top brands globally rely on Akamai so their businesses can be fast, smart, and secure.