Name: How Machine Learning Can Be Applied in Network Traffic Analysis
Start: 2020-10-28T16:00:00Z
End: 2020-10-28T16:00:59.000Z
Location: BrightTALK
Rating: 4.2

Security tactics for elite security professionals. We help security teams actively defend their organizations with best practices and expert knowledge on threat hunting, threat intelligence and detection & response.

Join us for a webinar as we explore the latest trends in the threat landscape and why organizations are turning to a Zero Trust Architecture (ZTA) to fortify their cybersecurity. The data and application landscape has evolved drastically, creating new opportunities for adversaries to breach networks. It's time to shift from the outdated concept of "implied trust" and embrace Zero Trust's dynamic verification approach. 

We'll dive deep into the core principles of Zero Trust, which redefine the way organizations approach security in both cloud and multi-cloud environments.

Don't miss out! Join our discussion to learn how you can elevate your defense strategy with Zero Trust. Secure your spot now!

Zero Trust: Modernizing Cybersecurity for Today's Threats

As the security landscape grows increasingly complex and challenging, traditional perimeter-style security architecture needs to be reassessed. The lines between trusted and untrusted entities have blurred, and cyber criminals are taking advantage of the confusion, infiltrating and moving through the network as trusted users. By assuming that nothing is trusted inside or outside the perimeter, Zero Trust Architecture (ZTA) aims to dynamically verify all access to system resources as agencies and companies modernize their cybersecurity.

Join our discussion to discover the power of adopting a crawl, walk, run approach to Zero Trust and unleash the true potential of your existing cybersecurity investments, by:
1. A Path to Cybersecurity with Zero Trust Architecture: Assess cybersecurity posture, leverage existing investments, and enhance foundational components like data loss prevention to strengthen your ZTA strategy.
2. The Who, What, When, Where, and How of Zero Trust: Attain continuous visibility and risk assessment across endpoints, networks, users, and cloud assets. Identify coverage gaps, ensure compliance, and enable effective risk management.
3. Learning and Adapting to Evolving Threats: Harness advanced threat intelligence, anomaly detection, deception technologies, and machine learning. Use dynamic insights from network, cloud, and endpoint metadata empower real-time threat detection, hunting, and response
4. Think Like an Adversary: Assume breaches occur and gather necessary data within a ZTA framework. Utilize automated alerts, policy-based remediation's, and proactive threat detection to counteract malicious activities.

By adopting a crawl, walk, run approach to ZTA, organizations can build upon a solid technical foundation, best leverage their cybersecurity investments for securing data, networks, and boundaries while providing visibility into traffic, particularly for hybrid and multi-cloud communications in the ever-evolving cybersecurity landscape.

Fortifying Your Defenses: A Crawl, Walk, Run Approach to Zero Trust

Ninety percent of the world’s organizations rely on Active Directory (AD) for managing access and control over their valuable networks and data, making it a primary target for adversaries. Attackers use a variety of techniques to infiltrate, elevate credentials, and disappear into the flow of normal user activity. If your AD security can’t keep up, you may not realize the threat to your network until it’s too late. 
 
Join us on July 19th, as we discuss the critical role proactive Active Directory (AD) defense plays for your organization. Chris Kubic, CISO and Arad Inbar, Senior Security Researcher will lead the discussion, providing deep insight into: 
•       How and why cyber adversaries target AD 
•       The limitations of traditional security tools in modern AD environments 
•       Three critical elements that must be prioritized to defend against AD attacks 
 
Don't miss this opportunity to equip yourself with the knowledge and strategies necessary to keep your organization a step ahead of attacks against AD. Register now!

Proactive Measures for Safeguarding Active Directory

The cloud is a powerhouse for rapid innovation. But with great power comes great responsibility. Growing cloud footprints introduce sprawling attack surfaces. Cyber attackers use sophisticated methods to target high value assets. Keeping pace with continuous visibility and assessment is critical for protecting cloud assets. And that means having an effective Cloud Native Application Protection Platform (CNAPP) strategy in place.

Join us for a webinar where we will explore the dark side of the cloud and how to use CNAPP to illuminate your blind spots and keep your assets safe.
Attendees can expect to learn more about:
• The current state of cloud security and the challenges of managing security in the cloud
• What CNAPP is and why it is critical for cloud security
• Best practices for implementing an effective strategy
• How to detect and respond to cloud security incidents, faster
• Real-world examples of organizations that have improved their CNAPP

Don't miss this opportunity to learn how you can improve your cloud security and build resilience into your cloud infrastructure and secure your organization from cyber threats. Register now to secure your spot.

The Dark Side of the Cloud: CNAPP Strategies that Shine

Can a single XDR platform really help you better detect and hunt cyber threats anywhere on your network? To effectively defend against the growing threat of nation-state actors and cybercriminals, organizations must proactively maintain a strong and resilient security system capable of withstanding a wide range of attacks. They also need to cut through the alert noise and speed threat detection, threat hunting, and response from device to cloud.   

On May 17th, Fidelis Cybersecurity Chief Platform Architect Gregg Anders will discuss innovative new threat detection capabilities we have available today. Coupled with our patented Deep Session Inspection, and award-winning data loss prevention, Active Threat Detection helps users accelerate threat hunting, streamline alerts, and boost their proactive cyber defenses against sophisticated modern cyber threats.  

We understand the critical importance of staying ahead of the curve in today's rapidly changing threat landscape, and we remain dedicated to delivering the highest levels of security and peace of mind to our customers. Register today to learn how Fidelis Cybersecurity can help you!

Threat Hunting: Strategies for Active Threat Detection

In the age of digital transformation, cybercriminals rapidly evolve and use improved techniques to exploit vulnerabilities in organizations’ systems. As a result, disruptions to business operations regularly impact organizations across all industries. Make cyber resilience a priority to ensure minimal impact to your operating environment, no matter what happens. During this webinar, Shanan Winters, Senior Product Marketing Manager from Fidelis Cybersecurity will share:  

- The difference between cybersecurity and cyber resiliency (and why they both matter) 
- The pillars of a cyber-resiliency strategy 
- The benefits of proactive cyber defense 

Keep your business running uninterrupted by implementing a cyber-resilient plan – register today!

Cyber Resilience: How to Build Resilience into Your Security Strategy

Distributed denial of service attacks. Destructive malware. Rampant attacks on critical infrastructure and private sector organizations. Throughout the Russo-Ukraine conflict, these types cyber-attacks (and more) have taken center stage. In fact, the first cyber events pre-dated the initial invasion by a full month. Now, over a year later, nation-state actors and private cyber-criminal gangs continue to leverage the ensuing chaos to ramp up attacks globally.  

In this discussion, Nathan Sissom, Principal Threat Intelligence Lead for Fidelis Cybersecurity provides a deep look into and analysis of the prominent cyber events of the Russo-Ukrainian conflict. By attending, you will learn: 

*Why we all need to follow the emerging cyber security threats emerging from regions in conflict 
*How we track and assess evolving cyber situations 
*How ongoing threat research and threat sharing bolsters cyber resilience globally

A Year of Conflict in Ukraine: Lessons Learned and Next Steps

What do CISA’s new strategy, the DoD’s Zero Trust strategy, the standing executive order, and NIST guidance have in common? If you said, “They all lay the groundwork for cybersecurity best practices,” you’d only be partially correct. In many ways, these guiding documents set similar goals for organizations so that we can collectively ensure that our data and people stay protected through and beyond cyber threats. But they also tend to diverge, and even offer conflicting strategies. Do you know which guidelines to follow for your organization? 

In this month’s Webinar Wednesday, Chris Kubic, CISO of Fidelis Cybersecurity, will walk through the various recommendations from these expert boards so that you can: 

*See where these strategies align and diverge 
*Learn how these directives and guidelines apply to both government and private organizations 
*Draw some valid conclusions that will help you examine, solidify, and validate your existing cybersecurity strategy

Making Sense of Cybersecurity Best Practices

Not every workload is born in the cloud – but chances are, at least part of every workload will end up there. When it comes to deployment strategies, the cloud offers endless flexibility. However, regulatory compliance and standards are much more rigid. Without proper planning and configuration, your hybrid workloads could wreak havoc on your next audit and increase your workload attack surface.

Whether you’re on a path to lift-and-shift, connecting on-prem workloads to cloud-based services, or moving toward a hybrid continuous deployment strategy, this webinar is for you. Shanan Winters, Senior Cloud Security Evangelist for Fidelis Cybersecurity will discuss:

• What workload compliance really means
• Actionable steps to keep workloads compliant and properly configured no matter where they’re running
• How you can maintain continuous workload compliance without sacrificing deployment flexibility

Mastering Workload Compliance for Hybrid Cloud

How fast does the cyber security landscape change? If you blinked, you probably missed something critical. Staying ahead of trends is a full-time job for teams of people. Fortunately, that’s exactly what we do here at Fidelis Cybersecurity. As we wrap up 2022 and welcome 2023, here are our thoughts on how the cyber security market will continue to evolve in 2023 so you can be ready for whatever comes next.

In our December Webinar Wednesday, Fidelis Cybersecurity’s Eric Moseman, President and CRO, and Chris Kubic, CISO, talk about what they believe the future will hold for cyber defenders. Hear their predictions for:

• The most dangerous threat actors and attack vectors, how the threat landscape will change—and where it won’t 
• What will give security teams the greatest challenges in their efforts to secure their organizations
• Emerging cyber security strategies that will stand up to evolving threats
• The single-most important tool in your security arsenal (it’s not what you think!)

Are You Cyber-ready? Security Trends Moving into 2023

The cybersecurity world is one of many roles and responsibilities that come together to keep the digital world safer from cyber threats like malware, ransomware, phishing attacks, and more. Professionals in threat research, threat detection, incident response, and software development play pivotal roles in the development of cybersecurity solutions. And so does sales, HR, services and support, marketing, and the executive suite.... So really, no matter your passion, there are many ways you might see yourself in a cybersecurity career.   
 
At Fidelis Cybersecurity, we’re all passionate about improving security in the digital world, so we’ve asked a few of our colleagues to join us today to talk about their careers. Today our panel will discuss:

• How and why, they chose a career in cybersecurity 
• What drew them to their current roles
• And what helpful advice they have for those who are interested in becoming part of this exciting field.

Careers in Cybersecurity

Deception technology is one of the most important tools in the SOC arsenal, but many people are under the impression that deception in the cloud is just too expensive and difficult to use.  

If your organization is moving into the cloud faster than your SOC team can manage… 

If your security tools are leaving cloud assets vulnerable to exploitation and attack …  

Deception technology may be your best solution.  

Join us to understand how this game-changing technology is not only a practical and economical defense strategy, but imperative for staying ahead of today’s more sophisticated and emerging cloud threats. 

In this webinar, you’ll learn how deception in the cloud can reduce your risk of attack, accelerate post-breach response, and help you continually fortify your defenses. Fidelis Cybersecurity's Rami Mizrahi, VP of Software Engineering, Deception, will discuss: 

What an attack looks like from the attacker’s point of view. 

When attackers move through cloud networks undetected.   

How Fidelis Deception® blends seamlessly into cloud environments to attract and distract attackers - without inflating cloud budgets or introducing complexity. 

Why a shift to proactive cyber defense with Fidelis Deception provides superior protection, both in the cloud and on-premises, against outside threats, ransomware, and malware, as well as offering protection against insider threats.

Struggling to Detect Threats in the Cloud?

When you’re responding to a cybersecurity incident, every second counts. Using forensic data analysis, SOC teams need flexible tools that provide the power to detect faster, dig deeper, and spot anomalies – even in unexpected circumstances – and prevent data loss and intrusion before the damage is done. The ability to customize rules and automate detection and response are imperative in the fight against adversaries. 

Join Fidelis Cybersecurity experts, including Ryan Gurr, as they demonstrate three real-world scenarios where automated and customized rules in Fidelis Elevate have made the difference for customers, including:  

-Preventing HTTP/FTP access to hostile countries or sites to protect critical design information 

-Data loss prevention of intellectual property (IP) across shared systems 

-Rapid detection of non-standard port/protocol/encryption usage on the network

Accelerating Incident Response with Customization and Automation

Healthcare remains one of the most cyberattacked industries in the world , with 90% of organizations reporting that they were targeted by distributed denial of service (DDoS) or ransomware attacks in 2020 alone . Can your organization detect, understand, respond to, and neutralize these threats before critical healthcare services are impacted?

Zero Trust is an architectural approach that assumes every person, place, or thing accessing your organization is untrustworthy until proven otherwise.  When implemented properly, Zero Trust can help healthcare organizations reduce breach risk and speed detection times, improve efficiency of cyber operations, ease compliance auditing, and better protect sensitive healthcare data. 

Join Chris Kubic, CISO at Fidelis Cybersecurity®, as he discusses Zero Trust as a critical component of your evolving cybersecurity architecture. In this webinar, you will learn:

-The mindset behind Zero Trust, as well as the architectural framework
-How Zero Trust directly addresses healthcare industry security challenges
-The role of AI-based threat detection in Zero Trust architectures 
-How to begin the Zero Trust journey without starting from scratch

Is Zero Trust Right for Healthcare?

Identifying and neutralizing threats early on is key to staying ahead of a sophisticated and evolving attack surface. As detection and response strategies race to detect adversaries before damage can be done, new mechanisms will be required to root out low-and-slow attacks early in the attack chain. 

The key to staying ahead in the race to protect your organization is to be proactive. Active XDR (extended detection and response) integrates deception technology with detection and response from the cloud network and endpoint. In this session, presented by Dave Gruber, Principal ESG Cybersecurity Industry Analyst, we’ll discuss:

-  Modern detection and response strategies
-  The role of extended detection and response 
-  How different approaches to XDR are shaping up to support evolving security strategies
-  How to leverage deception technology

A Guide To Active XDR: Shift To Proactive Cybersecurity

Are you confident in your ability to identify, investigate and respond to today’s advanced threats? Join us for this session on Mastering Forensics and Incident Response and understand how to better examine system data, user activity and other digital evidence. Learn the key steps you need to take to detect, contain and recover from a breach.

Mastering Forensics and Incident Response

Do you truly know what’s on your network, or do you kind of wing it until the alarms sound? It’s like knowing that your eating habits are bad and just waiting for a heart attack. It’s time to understand the traffic crossing your network. Learn to look more broadly and dig deeper. Couple that expanded visibility with context based on machine learning, telemetry and more. Understand how having context, speed and accuracy will enable you to find and truly understand threats that may be lurking on your network. Most importantly, you’ll be able to neutralize threats before they hurt your organization.

What's Lurking on Your Network?

Apache is nearly ubiquitous – so when Log4Shell vulnerability came to light, it was immediately clear that the scope of impact for this specific vulnerability was likely to be quite significant. Join Fidelis Cybersecurity as we discuss the threat from three perspectives: the CISO, Product Engineering, and Threat Research. In this session, you will learn:

*What happened
*Why this vulnerability was so difficult to mitigate
*Steps each role took when the vulnerability was discovered
*What advice each would give to protect from the next big attack

Lessons from Log4Shell

In the new security landscape, blind spots in network traffic can not solely be monitored by security tools designed for simple, on-premise traditional architectures. 

Modern organizations are implementing a combination of machine learning, advanced analytics, and rule-based detection to detect suspicious activities on enterprise networks.

In this presentation we'll go through three uses cases where machine learning can be applied in network traffic analysis:

*Detecting Credential Misuse using Lateral Movement
*Identify Credential Stuffing Attack using Behavioral Modeling
*C2 (Command & Control) Detection using Relationship Based Modeling

How Machine Learning Can Be Applied in Network Traffic Analysis

Network Architecture

Machine Learning

Cyber Attacks

Network Security

Network Based Applications

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Get powerful insights to run your business. CEOs, CFOs, CMOs, COOs, CTOs and CIOs are among the leaders in this community who connect with peers and experts to grow their businesses.

CxO Strategy

In the business management community, commercial experts will be sharing webinars and videos on an array of subjects. From sales and marketing, to finance, productivity and growth, this content will help you stay up-to-date with the current economic environment and provide timely management insight to drive business growth.

How Machine Learning Can Be Applied in Network Traffic Analysis

Presented by

About this talk

More from this channel