Name: The Cloud Trust Paradox: Trusting Cloud Computing More Requires Trusting it Less
Start: 2020-12-09T18:00:00Z
End: 2020-12-09T18:00:58.000Z
Location: BrightTALK
Rating: 5

The Fortanix Data Security Expert webinar channel contains educational content related to data security topics including encryption, key management, tokenization, secure devops, and confidential computing.

Data loss is debilitating, and can result in financial impact, as well as damage to business reputation and performance.  With data spread across regions, as well as complex IT and jurisdictions landscapes, protecting a company’s critical asset - the data – is essential. 

Join Gemma Fielding, EMEA Marketing Director, Fortanix, hosting a discussion with Simon Thornell, EMEA Field CISO and Daniel Gaddes, Principal Sales Engineer, to learn more about how to build a data loss prevention strategy for the modern era. Hear about our latest portfolio development, Filesystem Encryption, to learn how to simplify and scale data security deployments to future proof your organisation.  

In covering Filesystem Encryption, we will address frameworks and solutions for the following challenges that concern customers adopting FSE: 

Security Quality with FSE systems – tune in to learn about how we can help you selectively and easily apply post quantum-ready algorithms to your most sensitive, vulnerable data, automatically tailoring our most robust security technology, without letting it slow your organization down. 

Scalability concerns: see how Fortanix Open Policy Agent specification dissolves concerns about scalability that plague other systems 

Access concerns- learn about seamless, file-by-file access management that prevents both malicious and inadvertent inappropriate access that can lead to breaches

Elevate Your Data Loss Prevention Strategy

Data protection and privacy is a long-standing cybersecurity fundamental, with regulatory requirements across borders, and Zero Trust approaches to ensure security at rest, in transit and in use.

The explosion of data and digital transactions has driven the need for faster transactions, in the safest way possible, but how does the Enterprise approach this growing trend?

In our latest webinar, we bring a conversation on Tokenisation. Seen as one of the highest growth markets in security over the next 5 years, Tokenisation provides the ability to anonymise sensitive assets without preventing the availability or integrity of the data, all whilst supporting compliance and regulatory standards.

Join Gemma Fielding, EMEA Marketing Director and Simon Thornell, EMEA Sales Engineering Director, as they talk through the current market and regulatory requirements, specific industry use cases in today's digital landscape, and the future of Tokenisation in relation to GenAI.

Reserve your space today!

“Shift Left” to Improve Data Privacy and Security Across Your Digital Landscape

In today’s digital landscape, CISOs face the challenge of evolving the perception of security from a cost centre to a strategic business enabler. This webinar explores how with Confidential Computing organisations can revolutionise data security, enabling secure multi-party collaborations and driving business growth. With heightened legal concerns, compliance requirements, and board-level scrutiny, security leaders must balance protecting assets like data while facilitating business innovation. 

Participants will learn how leveraging AI for scalable, accurate data analysis can enhance decision-making, unlock new revenue streams, and accelerate time-to-market for services. To facilitate the most secure environment for AI, the webinar will also highlight how Confidential Computing trusted execution environments, allow the use of sensitive data without compromising confidentiality, availability, or integrity. This approach not only simplifies data collaboration but also ensures compliance with regional regulations, reducing data exposure and enhancing security. 

Real-world case studies will demonstrate how businesses have used secure collaboration to gain deeper insights, improve customer retention, and foster loyalty. Attendees will discover how to transform security into a driver of competitive advantage by enabling ethical, secure data sharing and collaboration. 

Join Gemma Fielding, EMEA Marketing Director, and Simon Thornell, EMEA Sales Engineering Director, from Fortanix to understand how to harness AI and Confidential Computing to drive business success through secure collaboration while maintaining the highest standards of security.

Leveraging Secure Collaboration for Competitive Advantage

Embark on a thrilling exploration with industry visionaries as they shatter the conventional presentation mold on quantum-proofing your organization. Join Camille Morhardt from Intel in a discussion of quantum computing's impact on businesses today and tomorrow. Brace yourself for a deep dive into why it matters now! The expert panel will discuss the latest state of quantum research, the sense of urgency you should give post-quantum cryptography and strategies for future-proofing your organization.

Steal now, decrypt later: prepare for a Post-Quantum World

In today's interconnected world, data is ubiquitous, spanning from personal devices to corporate networks. However, the management and security of this data often go unquestioned by users, leading to potential vulnerabilities and threats. With global cybercrime damage predicted to hit $10.5 trillion annually by 2025, businesses face significant risks, ranging from financial losses to business disruption, to reputational damage.

In this webinar, titled "Security as a Business Driver", we aim to shed light on the critical role security plays in achieving business goals. With organizations bringing security into the
discussions earlier in planning processes, we believe tangible business value can be achieved and recognized through the adoption of a resilient security strategy.

The webinar will take you through:

- An exploration of the evolving landscape of cyber threats and the potential repercussions for businesses. We will discuss real-world scenarios where companies have fallen victim to cyber-attacks, emphasizing the staggering financial and operational impact.
- Challenges faced by cybersecurity teams, including the widening talent gap and the pervasive stress within the industry.
- Finally, how you can demonstrate tangible business value with security that delivers for business stakeholders.

The webinar will present actionable strategies for integrating security into various facets of business operations. From enhancing customer satisfaction and trust, to improving efficiency and driving growth, security initiatives can directly impact key business metrics. We will explore practical approaches for optimizing investment efficiency, reducing insurance premiums, and capitalizing on digital engagement opportunities.

Join us for an insightful discussion on how security can drive business success in an increasingly digital world.

Security as a Business Driver

Watch our webinar to answer your “burning questions” about safeguarding your organization's sensitive data and ensuring compliance with privacy regulations. In today's data-driven world, personally identifiable information (PII) is everywhere. It is essential to minimize its footprint and ensure its anonymity right from the moment of creation or ingestion.

- Discover strategies for securely sharing data within pipelines or as it moves between applications.
- Learn how to restrict access to data, allowing only specific applications or users to decrypt it.
- Catch a live demo of the Fortanix Tokenization solution.

Keep Sensitive Data Secure, Private, and Compliant

In this webinar, we will discuss how format-preserving encryption or tokenization provides strong data security and simplifies sharing data with downstream applications with minimal risk. Once data is secured with tokenization, you can apply granular access controls at the data level and address Zero Trust principles, no matter where the data resides.

We will highlight real-world use cases of modern organizations containing sensitive data flowing between clouds and data centers and the challenges they face in enforcing data privacy and security regulations. Learn practical tips on applying tokenization in the data’s lifecycle and how to manage the encryption keys.

During this webinar, we will address how tokenization will help you:

- Keep data private and limit risk
- Simplify compliance challenges
- Analyze and find meaning in encrypted data
- Deploy Zero Trust principles at the data level

Tokenization: Make data portable and win at zero trust

Are you confident that all your sensitive data is protected everywhere? Are you meeting data privacy and compliance obligations? Can you enforce least privilege access both now and in a post-quantum era? How well you protect customers’ sensitive data shapes your business and reputation and is a common priority for data, security, and business leaders. Despite companies taking traditional security measures, data breaches continue to result in unwanted headlines and millions in damages. 

At Fortanix, we have a new approach that protects your data at rest, in motion, or moving from application to application. Register now for the must-attend event of the summer and learn how you can unify crypto and security operations, enforce governance and compliance, and manage data masking and tokenization at scale with industry-first SaaS data security and privacy platform, powered by Confidential Computing.

So, grab your seat, don’t forget your mask, and get ready to transform your data security and privacy operation.

At the event you will:
- Hear from Fortanix and our Partners on how to keep data private, wherever it is
- Catch a live demo
- Have the opportunity to ask questions

Fortanix Mask-arade

Digitally signing code is critical to the software development process to validate the integrity of the code and authenticity of the software. However, lax code signing processes and the mishandling of certificates and private keys has led to many high-profile software supply chain vulnerabilities and attacks.
 
To address this, new code signing requirements from the CA/Browser Forum went into effect on June 1, 2023. This major change now requires the use of FIPS 140-2 Level 2 or Common Criteria EAL 4+ hardware security modules (HSMs) or tokens to store and protect private keys associated with all publicly trusted code signing certificates.
 
While this change is initially disruptive, it can also be used to modernize and improve your code signing process. By implementing a SaaS code signing solution backed by a compliant cloud-based HSM, you can seamlessly integrate secure and compliant code signing into your CI/CD pipeline.  
 
Join experts from AppViewX and Fortanix as we discuss this change, the impact to you and an integrated cloud signing and HSM solution you can deploy today. 
Here’s what you’ll learn by attending:
 - Instant SaaS deployment and rapid time to value
 - Fully compliant HSM and secure code signing process
 - Seamless integration with CI/CD pipeline to boost performance
 - Accelerate agile and secure software development

Accelerating DevOps with Secure Code Signing and Key Storage in the Cloud

Due to the bearer nature of tokens, Web3 businesses have unique security requirements. Once you lose control of a token, there is no point in trying to recover it. Secure wallet seed and key management practices are crucial for Web3 businesses. Not only should wallet seeds and keys be created and used securely, but quorum-based access control over wallets is necessary.  

Join our speakers, Shashi Kiran, Chief Marketing Officer - Fortanix, Pralhad Deshpande, Senior Solutions Architect - Fortanix, Faisal Faruqui, VP Solutions Engineering - Fortanix, and Jaydeep Korde, Co-founder and CEO – Launchnodes, as they discuss enterprise-grade confidential computing powered next-gen security infrastructure for Web3. This infrastructure provides strong protection against insider and outsider threats by not only protecting secrets but also critical business logic that interacts with the secrets.

Next-Gen Security Infrastructure for Web3

Multi-cloud and hybrid environments have become the gold standard for business agility globally - and the banking & finance sector is no exception. However, when it comes to data security the space is still nascent with rapidly evolving security standards and architectural patterns.  

Bottomline - The traditional perimeter-based security as we know it is not adequate in the new cloud-world order.

The complexities around global and regional compliance combined with the bid to secure and process sensitive client data create a complex setup that’s often prone to data blindspots that are easy to exploit. The need of the hour commands Data to be the focal point of security initiatives and not fluctuating environments.

Join our experts, Rob Soh, Sales Engineering, Abhinav Nagpal, Regional Sales Manager, APAC and Aroop Menon, Product Marketing as they walk you through the nitty-gritty of how the Banking & Financial Services sector can enable pervasive, scalable, and dynamic security across clouds with Fortanix.

We will discuss:

- Cloud migration and its impact on data security and compliance within Banking
- The resulting security challenges- Why the traditional data security framework may not be adequate?
- What's required - The must-have data security capabilities for Banking
- How has Fortanix supported Banking organizations on their cloud migration journey?

Secure Your Cloud Data Without Breaking The Bank

In today’s fast-moving world where everything is connected, a company’s data has become a highly precious commodity that is critically important to ensuring a company’s future success.  The threat of losing your company’s data, or even the risk of losing access can cause Security Professionals concerns about how they can best safeguard their organization's sensitive data and reputation.

Imperva and Fortanix have joined forces to offer the best of both worlds, from identifying where your sensitive data resides, classifying all data to determine the most critical data, through to encryption for data throughout its lifecycle: ‘at-rest’, ‘in-transit’ and ‘in-use’. The challenge however is how to do that at scale, ensuring that all data held in disparate locations and in various states are catered for.

Join our Security Subject Matter Experts as they discuss:
• How to protect sensitive data-at-scale, 
• Explore the potential pitfalls and how to be assured that your data is in safe hands. 
• How to satisfy all the regulatory requirements and data privacy laws.

Protecting Sensitive Data at Scale with Imperva and Fortanix

With the increased proliferation of privacy regulations and compliance requirements, Tokenization has become a critical security mechanism to secure data within healthcare databases, payment cards, mobile wallets and SaaS applications. Tokenization can also be combined with data encryption to provide an additional layer of security that protects against insiders having access to decrypted sensitive data. 

Regulated industries like Banking, Healthcare etc. deal with vast volumes of digital data, which now more easily flow across regional or national boundaries. Security teams and developers face the challenge of balancing the fluid data flows with strict privacy and security regulations in these industries like GDPR, Schrems, SOX, HIPAA etc. And most regulations have come out with clear specifications for safeguarding Personally Identifiable Information using Tokenization. Organizations can use tokenization to solve several loopholes within their security apparatus and have better risk management in place.

Join our speakers Divya Mehra, Senior Director, Product Management, Fortanix and Aroop Menon, Principal PMM, Fortanix, as they explain how organizations can adopt Tokenization to secure PII. They will also delve into the industry-first data-centric architecture offered by Fortanix to secure data, wherever it resides.

This webinar will give you insights into:
- Cybersecurity and data privacy challenges
- Why Tokenization could be the gamechanger for securing PII
- What's required while evaluating a Tokenization solution? 
- Overview of Fortanix Tokenization solution

Securing Personally Identifiable Information With A Data-Centric Architecture

The Securities and Exchange Board of India (SEBI) announced a new framework for the Adoption of Cloud Services by SEBI Regulated Entities (REs) on Mar 6, 2023. The new framework requires regulated entities to:

- Compulsorily use Hardware Security Modules (HSM) and Key Management Systems (KMS) to store encryption keys and to secure cloud data effectively
- Ensure "In-USE" data protection by implementing encryption in use
- Retain control of Keys when using cloud services with either Bring-Your-Own-Key (BYOK) or Bring-Your-Own-Encryption (BYOE) approaches

Join Fortanix experts Ted Hendriks, Head of Sales Engineering, Ganesh Prasad, Head of Sales Engineering, Imperva, India, and Aroop Menon, Product Marketing, as they provide an educational overview of the SEBI framework, what it mandates, and why it's critical for entities moving to the cloud. You will also learn how Fortanix can help meet the SEBI mandates with its Confidential Computing powered unified data security platform.

The Securities and Exchange Board of India Framework for Cloud Services Adoption

The changing dynamics of the data security and threat landscape has made certificate and key lifecycle management more complex and notably harder to keep track of.  There are multiple certificates for different operations, often unique to each device and with varying lifecycles.  Then there are passwords, tokens, secret tokens, digital certificates, cryptographic keys, machine identities and a myriad of other IAM credentials to be managed and secured. 

When these variables are scaled across a global enterprise, certificate management becomes a nightmare for IT Professionals —often susceptible to expiration, revocation, or mismanagement when managed manually.

Join this webinar and live demo to:
• Discover how to simplify operations through automating certificate renewal and provisioning across all devices and workloads in hybrid and multi-cloud environments.
• Explore how to protect Private Keys, from key generation and storage through to management, using FIPS 140-2 Level 3 certified Fortanix HSM on-prem or in the cloud.
• See how to integrate EJBCA with Fortanix Data Security Manager (DSM) in a live demo.

Key Management requirements for PKI deployments

AWS brings a lot of innovations, including a Key Management System (KMS) to keep track of your cryptographic operations. However, many organizations hold back on migrating workloads to AWS because they need more control of their keys to satisfy the many regulatory and privacy requirements that exist in the Asia Pacific region today.

These regulations require organizations to ensure PII data from its citizens remain within its borders. To achieve this, data must be protected using state-of-the-art encryption, and the encryption keys must be in the sole custody of the data importer.

Fortanix functions as an AWS external key store to enable organizations to move sensitive data to the cloud with the highest level of security and control for their keys.

Join our speakers Anand Kashyap, CEO, Fortanix and Gerry Sillars, VP, Sales - APAC, Fortanix, as they discuss how AWS KMS External Key Store (XKS) helps elevate data privacy, sovereignty, and compliance in the cloud. We are also joined by Meg Peddada from AWS. Meg is a senior security consultant working for AWS Professional Service practice, focusing on security, risk and compliance.

This webinar will give you insights into:

- Data protection + compliance concerns: What does GDPR and other APAC-specific regulations demand
- Security framework in the cloud to meet the complex compliances – Separating keys from data
- AWS and Fortanix: A perfect combination to secure your data in the cloud.

AWS + Fortanix: Elevate Data Security and Privacy with Cloud External Key Store

Multi-cloud and hybrid environments have become the gold standard for business agility globally - and the banking & finance sector is no exception. However, when it comes to data security the space is still nascent with rapidly evolving security standards and architectural patterns.  

Bottomline - The traditional perimeter-based security as we know it is not adequate in the new cloud-world order.

The complexities around global and regional compliance combined with the bid to secure and process sensitive client data create a complex setup that’s often prone to data blindspots that are easy to exploit. The need of the hour commands Data to be the focal point of security initiatives and not fluctuating environments.

Join our experts, Faisal Faruqui (VP, Engineering) and Sander Temme (Senior Director, Product Management) as they walk you through the nitty-gritty of how the Banking & Financial Services sector can enable pervasive, scalable, and dynamic security across clouds with Fortanix.

We will discuss:

Cloud migration and its impact on data security and compliance within Banking
The resulting security challenges- Why the traditional data security framework may not be adequate?
What's required - The must-have data security capabilities for Banking
How has Fortanix supported Banking organizations on their cloud migration journey?

Secure Cloud Data Without Breaking The Bank

Regulations like the Schrems II ruling and the GDPR require organizations to ensure PII data from citizens in the European Economic Area (EEA) remains within these borders. This data must be protected using state-of-the-art encryption, and the encryption keys must be in the sole custody of the data importer.

By using a centralized, external key store, customers get full custody of their keys with complete control over the data encryption policies on AWS or other cloud providers.

Join our speakers Hildegard von Waldenfels, Regional Sales Manager Central Europe, Fortanix and Wolfgang Joppich, Senior Solutions Architect, Fortanix, as they discuss how AWS KMS External Key Store (XKS) helps elevate data privacy, sovereignty, and compliance in the cloud. We will also be joined by Patrick Palmer, Senior Security Specialist with AWS, as he explains why organizations should leverage this groundbreaking security innovation.

Join us for the practical demonstration of Fortanix integration with AWS S3 buckets and witness how the misuse of keys can be prevented by applying multi-control and role-based access control (RBAC) systems.

This webinar will give you insights into:

- Data protection + compliance concerns: What does GDPR and Schrems II demand?
- Security framework in the cloud to meet the complex compliances – Separating keys from data
- AWS and Fortanix: A perfect combination to secure your data in the cloud
- Learn how to create an AWS external key store and connect it to Fortanix DSM
- Learn how Fortanix DSM can manage keys for AWS cloud services through XKS

AWS & Fortanix: Supporting Digital Sovereignty in the Cloud

Today the very concept of “using public cloud” is inseparably connected to “trusting your cloud provider.” While many have taken that leap of faith, there are important workloads that organizations and regulatory bodies are reluctant to move to the cloud because they can’t verifiably prevent the cloud provider from getting access to their data. 

What if you could move data to the cloud without your cloud provider having access to the data or the encryption keys?

Google Cloud Platform (GCP) is the first public cloud to announce the availability of External Key Manager (EKM) with early adopter PayPal, using Fortanix to store and manage encryption keys off-cloud for data encrypted in GCP. One year later, this webinar will examine how customers are using GCP EKM and Fortanix to move sensitive data in financial services, healthcare, and government onto the public cloud, while ensuring that the organization maintains control of the encryption keys and data at all times. 

In this webinar, you will learn about:
- Real-world use cases where customers are using external key management to solve data security challenges
- A cloud data security control model for understanding the differences and trade-offs between public cloud data security options. 
- Using virtual data sovereignty to solve regional data residency requirements
- Compliance interpretations that require or encourage External Key Management 
- How to implement centralized key management for multicloud data security

The Cloud Trust Paradox: Trusting Cloud Computing More Requires Trusting it Less

multicloud

Key Management

Cloud Security

Public Cloud

External Key Management

multicloud data security

Google Cloud Platform

google cloud

Data Encryption

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

The Cloud Trust Paradox: Trusting Cloud Computing More Requires Trusting it Less

Presented by

About this talk

Fortanix Data Security Expert Series