4 Factors for More Effective Vulnerability Response with ServiceNow + Tenable

Organizations across all industries are seeing threats come in with higher volume, velocity, and coverage. Since there’s no way to address the vast number of vulnerabilities at once, security teams need to identify the threats that could have the largest impact on the business and prioritize their response accordingly. The questions all businesses should be asking themselves are “Have we taken the appropriate measures to ensure that our products/services are delivered securely?” and “How do we know?”

In this session, we will show you how Iceberg Networks can guide your organization through the vulnerability response journey in just 8 weeks with the ServiceNow Security Operations platform. Through this scalable process, we will show you how to identify the information that you can trust to prioritize your vulnerability response. And, with the help of the ServiceNow Security Operations platform, we will enhance the information available to you, automate workflows and populate dashboards with the answers to the most prominent questions that affect the security of your organization.

What if you were focused on the external threat landscape (DoS, malware, phishing) while there was an internal threat you didn’t know about? What if, despite your efforts to protect against outsiders, you were still leaving doors open for them?

Misconfiguration has become an increasingly popular avenue for hackers to access your organization’s infrastructure. In the 2020 Data Breach Investigation Report by Verizon, misconfiguration surpassed ransomware as a leading cause of data breaches.

Join us for an overview of the threat posed by misconfiguration and how Configuration Compliance can:

• link security standards (i.e. HIPAA, CIS Benchmarks, Microsoft Security Compliance) with scanner results and identify failed tests
• auto-assign remediation tasks to relevant support teams
• integrate with existing change management processes

Andrea Castillo, CISSP, Practice Director, Risk & Security, Crossfuze
Kevin Urbanek, Technical Architect, Risk & Security, Crossfuze
Anderson Ferneyhough, Masters in Cyber Security, Technical Consultant, Crossfuze

The SolarWinds breach has quickly attained status as the biggest hack of 2020. By compromising widely-used IT management software suite, SolarWinds Orion, threat actors were able to move across a broader supply chain network. This wide-reaching attack emphasizes the importance of strong vulnerability and vendor management programs with baked-in intelligence.

By this point your incident response teams have been hard at work managing the immediate tasks to identify, detect, and protect affected systems to mitigate the risk of a security incident. But what’s next?

David Soo Hoo, Product Manager atRecorded Future
Alex Cox, Director of Product Management at ServiceNow

Federal Incident & Breach Response: An Automated Security Event Response Solution for Government Agencies

Security experts in the Federal space know all too well the importance of adhering to Federal mandates and compliance. In regards to Federal Incident Response, DHS / OMB guidance requires that Government Agencies follow strict protocol around Incident tracking, response, and reporting.

Deloitte’s Federal Incident & Breach Response Solution incorporates DHS/OMB compliance into ServiceNow’s Security Operations across two primary applications:

1. Security Incident Response
Customized to align with DHS’ US-CERT Incident Reporting Requirements

2. Data Breach Response
Customized to align with OMB M-17-12 Breach Response Requirements

Deloitte created a ready-to-deploy solution for Government Agencies that provides Federal Compliance Out-of-the-Box for both the Security Incident Response and Data Breach Response applications.

Presenters:
Geet Grewal, ServiceNow Enabling PM at Deloitte
Jeff Derose, Managing Director, ServiceNow Practice at Deloitte
Jarrod Alday, ServiceNow SecOps SME at Deloitte
Aastha Swaroop, ServiceNow Developer at Deloitte
Christian Straubs, SecOps/Infrastructure SME at Deloitte

Analyzing network data gives defenders a unique perspective on what the malware is doing versus what the malware could do. It shifts the focus from the software to the attacker. Network data provides unique insights on malicious actions and also on the attackers' decisions and operations. In this session, we will explore real malware traffic, dissecting attackers' behavior, and discussing how we can apply this knowledge to defend our networks better.

In this session, you will learn how the CrowdStrike and ServiceNow partnership provides joint customers streamlined security operations and accelerated identification, prioritization and remediation of threats.

Attend this webinar to learn about:
• Vulnerability assessment and remediation
• How joint customers can benefit from this integration to help with visibility, efficiency and remediation
• How a customer has leveraged both technologies to streamline their remediation of threats