Name: Security Analyst Diaries - EP1: Detecting CIS Violations
Start: 2022-02-05T21:23:00Z
End: 2022-02-05T21:23:12.000Z
Location: BrightTALK
Rating: 5

Transform your cybersecurity with frontline intelligence, modern security operations and AI-powered cloud innovation.

Cyber threats are constantly evolving. Learn how to stay ahead of them in 2025 with security expert Andrew Kopcienski.

Join this deep-dive session based on the Cybersecurity Forecast 2025 report, where Andrew will cover key trends and insights to help strengthen your cyber defenses in the year ahead, including:

*Attacker use  of AI
*The evolving threat landscape from Russia, China, Iran, and North Korea
*Ransomware and multifaceted extortion as the most disruptive form of cyber crime
*The growing threat of infostealer malware

Google Cloud Cybersecurity Forecast 2025

In today's interconnected world, sophisticated cyberattacks and data breaches are a constant threat, making robust network security essential for businesses of all sizes. While Google Cloud offers a secure foundation, understanding how to configure and manage your network environment is crucial for protecting your valuable assets.

Building a strong security posture requires a proactive approach. This involves implementing a layered defense strategy that encompasses network segmentation, access control, threat detection, and continuous monitoring.

Join this webinar to:
> Understand the shared responsibility model and how it applies to network security in Google Cloud.
> Learn how to design a secure network architecture using Virtual Private Cloud (VPC), firewalls, and other key components.
> Discover best practices for controlling network access, segmenting resources, and preventing unauthorized connections.
> Explore tools and techniques for detecting and responding to network threats, including intrusion detection and prevention systems.
> Gain insights into securing hybrid and multi-cloud environments connected to Google Cloud.

Register now and gain the knowledge to fortify your network defenses and safeguard your critical resources in Google Cloud.

Security Foundation: How to secure your network in Google Cloud?

Password leaks and data breaches are increasing, exposing user credentials to cybercriminals.

Protect your users and your business with proactive password leak detection.

Register now for this webinar to:
> Understand the scale of password leaks and how they're exploited.
> Discover how reCAPTCHA password leak detection provides insights into leaked credentials  before they're misused.
> Learn how to set up password reset and other mitigation steps empower users to protect their accounts immediately.

Register now to learn how to safeguard your users and business by implementing proactive password security measures that detect and respond to threats.

Beyond Bots: Protecting Your Users from Password Leaks with reCAPTCHA

Mandiant Managed Defense presents a quarterly webinar series, "Tales from the Trenches," to help you navigate the ever-evolving threat landscape. Our security experts will dive into the latest malware and attack trends they've encountered in the previous quarter. You'll gain valuable insights into how these threats were detected, along with actionable advice to strengthen your own defenses.
In the second installment of the series, Managed Defense Consultants will detail findings from July through September 2024.

Tales from the Trenches: Malware and attack trends from Managed Defense, Q3 2024

As your organization expands its footprint in the cloud, managing user access and permissions becomes increasingly complex. Misconfigurations, unauthorized access, and privilege escalation can lead to devastating security breaches and data leaks.

Identity and Access Management (IAM) provides the essential framework for controlling who can access what resources in your cloud environment. By establishing granular access controls and enforcing the principle of least privilege, you can significantly reduce your risk surface and protect your critical assets.

Join this webinar to:
> Understand the fundamental concepts of IAM and its role in cloud security.
> Gain practical insights into implementing IAM in Google Cloud, including creating and managing users, groups, and roles.
> Learn how to leverage IAM to enforce security best practices and achieve compliance with industry regulations.
> Discover strategies for monitoring and auditing user activity to detect and respond to potential security threats.

Register now to establish a strong foundation for cloud security and protect your sensitive data.

Security Foundation: How to get started using IAM in Google Cloud?

A critical zero-day vulnerability in FortiManager appliances has been exploited in the wild, leaving organizations vulnerable to data breaches and lateral movement. In this webinar, Mandiant experts dissect the exploitation tactics, techniques, and procedures (TTPs) of the threat actor we track as UNC5820.

Gain critical insights into:
*Exploitation Details: Understand how UNC5820 leveraged CVE-2024-47575 to compromise FortiManager appliances and exfiltrate sensitive configuration data.
*Threat Actor Profile: Uncover the characteristics and potential motivations of UNC5820 based on our ongoing investigation.
*Mitigation Strategies: Learn practical steps to protect your organization from this vulnerability and similar attacks.
*Detection and Response: Discover how to leverage threat intelligence and hunting techniques to identify and respond to this threat.

Don't miss this opportunity to gain expert insights and strengthen your defenses against this emerging threat. 

Register today!

FortiManager Zero-Day: Intel for Actionable Mitigation Strategies

When developing tools, AI has proven to be a performance booster. If language models employed for simplifying programmers’ jobs are tainted with malicious code, the results will poison all stages of the production chain. In this webinar, we will:

- Share key security challenges in AI development and the software supply chain and how to mitigate 
- Discuss strategies for vulnerability management and code security
- Provide an overview of Google Cloud tools and capabilities that secure the AI development lifecycle

Securing the AI software supply chain

Social engineering attacks are a constant and evolving threat to global organizations. Attackers use sophisticated techniques such as phishing, vishing, smishing, and social media tactics to manipulate individuals into revealing sensitive information or compromising security. 

This webinar will discuss the latest trends in social engineering attacks and provide practical strategies to defend against them. We'll cover topics such as:

- Recognizing the signs of a social engineering attack  
- Educating employees about social engineering risks  
- Implementing security measures to help prevent social engineering attacks  
- Responding effectively to a social engineering attack  

We'll also examine real-world examples and discuss how artificial intelligence (AI) is being used to both perpetrate and defend against these attacks.  

Why you should attend:

- Stay ahead of the curve: Learn about the latest social engineering tactics and how to identify them before they impact your organization.  
- Enhance your security posture: Gain practical strategies and actionable insights to strengthen your organization's defenses against social engineering attacks.  
- Protect your organization: Learn how to educate employees and develop a culture of vigilance to mitigate the risk of falling victim to these malicious tactics.

Social Engineering: New Tricks, New Threats, New Defenses

AI applications and models are fueled by data and data context. Understanding and protecting this sensitive data is critical to ensuring successful deployments and proper use. In this webinar, we will:

- Discuss important data protection laws organizations need to consider when deploying AI systems 
- Provide methods for preparing data for model training and how to protect against prompt injection
- Share best practices for demonstrating transparency, preventing biases, and building public trust

Protecting sensitive data & building trust in AI systems

In today's dynamic threat landscape, reactive security measures are no longer enough. Gain a critical advantage by understanding your cloud vulnerabilities before attackers do.

This webinar explores the power of virtual red teaming, a cutting-edge approach that simulates millions of attack scenarios against a digital twin of your cloud environment.

Join this webinar to:

> See Through the Eyes of an Attacker: Discover how virtual red teaming proactively identifies potential attack paths and prioritizes critical risks.
> Quantify Your Blast Radius: Visualize the potential impact of a successful attack and understand the cascading consequences across your cloud infrastructure.
> Build a Proactive Defense: Learn how to fortify your cloud defenses and mitigate vulnerabilities before they are exploited.

Join us to explore the future of cloud security and learn how to shift from reactive to proactive defense.

Proactive Cloud Security with Virtual Red Teaming

Account takeover attacks are escalating, leading to financial losses, damaged reputations, and eroded user trust.  

Learn how reCAPTCHA can strengthen your defenses against account takeovers, protecting your users and your platform's integrity.  

Register now for this webinar to:
> Uncover the latest tactics used by fraudsters to hijack user accounts.
> Explore how reCAPTCHA’s multi-layered defense identifies and blocks suspicious login attempts.
> Understand how real-time threat detection and response helps you stay ahead of emerging fraud trends.

Register now to learn how to safeguard your users and business from account takeovers by proactively detecting and stopping attacks.

Beyond Bots: Protect your business from account takeovers with reCAPTCHA

Explore best practices for effectively integrating AI into your existing business processes. In this webinar, we will:

- Explain the key components of a AI governance framework, enabling you to drive ethical and responsible AI practices throughout your organization
- Demonstrate how Google Cloud solutions can streamline AI deployment and management within your enterprise

Best practices for implementing AI securely

AI presents unique security challenges for today's organizations. In this webinar, we will:
- Explore the evolving threat landscape of AI, examining vulnerabilities such as prompt injection and adversarial attacks
- Discuss our approach to securing AI systems and provide insights on leading secure AI adoption initiatives

AI security foundations: Understanding the unique risks associated with AI systems

In today's dynamic cloud landscape, maintaining a strong security posture is paramount. Google Cloud's Security Foundation offers a comprehensive set of cloud-first security controls to address common cloud adoption use cases.

In this webinar, learn about the recommended security products and capabilities to build a strong layered defense architecture. We will delve into four key use cases and showcase how Security Foundation can help you secure:

> AI & GenAI: Secure AI workloads and address prompt injections, AI model theft & more
> Infrastructure Modernization: Protect VMs and containers and address risks like crypto mining and unauthorized access.
> Application Modernization: Shift left with vulnerability detection, supply chain security, and runtime protections.
> Data & Analytics: Maintain data governance, identify, categorize, and control access to your data.

Register now to empower your organization to safeguard its most valuable assets in the cloud.

Security Foundation: How to secure your sensitive data in Google Cloud?

The 20+ year old SIEM market has been undergoing tectonic shifts - technological advances in cloud security, threat intelligence and of course AI, are fundamentally changing how SecOps teams need to operate. The SIEM vendor landscape is also changing rapidly, with market exits and mergers of legacy providers, and the rapid rise of more modern SecOps platform providers. 

In this webinar, our guest speaker, Allie Mellen, Principal Analyst at Forrester, and Chris Corde, Director of Product Management at Google Cloud Security will unpack the recent developments in the SIEM market and provide recommendations on how SecOps professionals should navigate the current and future landscape to better prepare for today’s and tomorrow’s cyber threats.

Navigating the SIEM market shakeup, featuring Forrester Research and Google Cloud Security

Account-based fraud, such as credential stuffing and account takeover, is a growing threat to businesses and their customers.

Learn how reCAPTCHA can be your first line of defense, protecting your users and your bottom line.

Register now for this webinar to:
> Discover the latest account-based fraud tactics and their potential damage.
> Learn how reCAPTCHA can stop unauthorized access and protect your users' accounts.
> Understand best practices for implementing reCAPTCHA to enhance security without compromising user experience.

Register now to equip yourself with the knowledge to combat account-based fraud effectively and safeguard your users' accounts.

Beyond Bots: Shielding Your Business from Account-Based Fraud with reCAPTCHA

Modernizing cloud security practices is a necessity and many organizations still struggle to implement effective cloud security measures, despite the availability of tried-and-true best practices. Discover ten key areas where organizations can focus their efforts to improve their cloud security posture (with an overview of the "new ways" in which cloud security best practices are evolving). It’s critical to adapt security strategies to the ever-changing landscape of cloud computing, and we fortunately have a good understanding of what this shift looks like today.

Evolving Cloud Security with a Modern Approach

In today's dynamic cloud landscape, maintaining a strong security posture is paramount. Google Cloud's Security Foundation offers a comprehensive set of recommended controls to address common cloud adoption use cases.

In this webinar, learn about four key use cases for strengthening your cloud security posture:
>AI & GenAI: Secure AI workloads, leverage AI for threat detection and efficiency, and ensure data governance.
> Infrastructure Modernization: Protect VMs and containers with identity-based access, network security, lifecycle management, monitoring, and governance.
> App Modernization: Shift left with vulnerability detection, supply chain security, and runtime protections.
> Data & Analytics: Maintain data governance, identify, categorize, and control access to your data.

Security Foundation: How to secure your cloud environment with built-in controls?

Google Chronicle’s Security Analyst Diaries is a video and blog series capturing practitioner and security analyst focused use cases. We will share stories of how our customers are driving superior security outcomes using Google Chronicle, and building scalable, consistent, and effective detection and response programs.

In our first video, we highlight key features that our customers love:
- CIS violation detection content can be added in 3 easy steps
- Chronicle to GCP connectivity is turnkey
- Detection alerts are automatically enriched to make alerts actionable
- Complete flexibility to customize detection content exists right inside the product

The detection rules in this video can be downloaded from our public Github page: https://github.com/chronicle/detection-rules

You can also learn more by reading the blog: https://chroniclesec.medium.com/security-analyst-diaries-detecting-gcp-cis-control-violations-with-native-gcp-cloud-audit-logging-46db231627ee

Security Analyst Diaries - EP1: Detecting CIS Violations

CIS Controls

Cloud Security

Google Cloud

SecOps

Security Compliance

Threat Detection

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

The storage community on BrightTALK is made up of thousands of storage and IT professionals. Find relevant webinars and videos on storage architecture, cloud storage, storage virtualization and more presented by recognized thought leaders. Join the conversation by participating in live webinars and round table discussions.

Storage

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Security Analyst Diaries - EP1: Detecting CIS Violations

Presented by

About this talk

More from this channel