Name: Checking the Boxes on Vendor Cybersecurity Assessments
Start: 2021-04-07T16:30:00Z
End: 2021-04-07T16:31:05.000Z
Location: BrightTALK

Cyber threats are evolving everyday BUT having a strong and comprehensive cybersecurity posture doesn't have to be complicated. Defendify hosts a range of cybersecurity experts from government agencies, big and small business, legal firms, non-profit organizations and more - all who share their experienced approach to how to achieve an ongoing, robust cybersecurity program.

Cyber insurance seems complicated, especially when policy requirements keep changing amidst the current rise in cybercriminal activities. In this webinar you’ll hear how cybersecurity insurance providers also have to keep up with the evolving threat landscape, and what impact this has on policy holders.

Joined by legal and insurance experts, Defendify’s Senior Cybersecurity Advocate, Shanna Utgard, breaks through the storm of emerging cybersecurity insurance requirements, and breaks down simple approaches to help policy holders lower their coverage costs.

In this presentation you will learn:
• The sophisticated threats that are driving this market shift.
• What cyber insurance policy requirements have providers been changing, and why.
• Tips for selecting the right type of policy and enough coverage that matches the needs of your organization.
• The basic controls that help keep you protected against sophisticated cyber threats while meeting cyber insurance requirements.

The Perfect Storm for Cyber Insurance: How did it get so complicated?

Cybercriminal tactics are becoming more sophisticated, increasing the risk of a cyberattack for organizations of all sizes. But what happens, from a legal sense, when a cyber breach occurs?

Sid Bose, Data Security and Privacy Attorney for Ice Miller, and Rob Simopoulos, 20+ year security expert and Co-Founder of Defendify, discuss how growing organizations can better protect themselves against potential legal issues arising from a cyber incident.

In this talk, Sid and Rob will review current cases, provide best practice examples, and answer common data security legal questions including:

• Should I be worried about the cybersecurity of my business partners and vendors?
• What legal processes should I prepare for in case of a cyber breach?
• How do I legally report a cyber incident, and when?
• Am I liable if I had completed a customer or vendor security assessment incorrectly?

The Legal Side of Cybersecurity: Steps to Legally Protect your Business

Industry experts weigh in on why ransomware-related cyberattacks are increasing, who is responsible, what is being done to help organizations better understand this evolving threat, and recommendations to shore up cybersecurity protection.

Becoming Ransomware Resilient

As more building technology systems and devices require connections to the internet, technology integrators and service providers must become knowledgeable about current cybersecurity risks, and ensure their teams are trained on how to properly secure new and existing connected technologies within IT environments.

Experts from the Security Industry Association (SIA), and the PSA Security Network discuss the new Security Industry Cybersecurity Certification (SICC) designed for integrators and service providers to prove they have an understanding of current cyber threats, and can be trusted to select, install and configure electronic and physical security devices in a more secure way.

Key takeaways for integrators and service providers include:
• What the new Security Industry Cybersecurity Certification (SICC) is and how it can be a tool to help protect customers and build more business.
• Who should consider the SICC and how it is benefiting the Security industry.
• The evolving world of cyber threats and the factors integrators and providers need to establish for a strong comprehensive cybersecurity program.

Adding Value Through the Security Industry Cybersecurity Certification (SICC)

Being aware of data privacy risk is a foundational element for controlling the strength of cybersecurity protecting your organization, employee, and customer data.

In this webinar Ginny Lee, the Americas Privacy Officer at Cisco, explains how increased data privacy concerns have influenced government regulations, managing a remote workforce, and new technology adoption.

Joined by Rob Simopoulos, 20+ year security veteran and Co-Founder of Defendify, this webinar will outline what both IT and non-IT business leaders can do to quickly identify data privacy and security risks across all departments, and what’s needed to fill the gaps.

In this webinar, you’ll learn:

• New state and Federal privacy laws and regulations, and how to prepare for them.
• Potential risk and best practices for bring your own device (BYOD) and work from home (WFH) technology and data use.
• New privacy concerns facing the internet, emerging applications, and technologies.

Taking Control of Data Privacy & Cybersecurity

Whether it’s complying to a customer cybersecurity requirement, or the need to cyber harden client’s connected systems and devices, technology integrators are increasingly looking for ways to incorporate cybersecurity into their business. But before integrators can meet these growing security demands, they must first look at how they are protecting their own organization against the rapid increase in cybercriminal activity.

Defendify hosts an expert panel of leading technology integrators who will discuss the challenges they faced to protect their own organization against evolving cyber threats, and how they implemented security programs successfully.

Join security veteran and Co-Founder of Defendify, Rob Simopoulos, an he walks through how Lone Star Communications, Unlimited Technology, Inc., Electronic Contracting Co., and the National Systems Contractors Association (NSCA) view the integrators role and responsibility with cybersecurity.

Integrator Panelists Include:
• Tom LeBlanc | Director, Industry Outreach @ NSCA
• Brian Banks | Information Security Officer @ Lone Star Communications
• Jim DeStefano | Sr. Vice President @ Unlimited Technology, Inc.
• Matt Thorne | Executive Vice President @ Electronic Contracting Company

Getting Started in Cybersecurity: Expert Tips from Integrators for Integrators

What exactly is the Presidential Executive Order 14028?
As the former Director of Cybersecurity at The White House, Rob Knake explains the meaning and impact of the May 12, 2021 Executive Order by the Biden Administration to improve the nation's cybersecurity.

In this presentation you will learn:
• The cause and effect of new cybersecurity requirements.
• Timing and implementation plans for Executive Order 14028.
• What organizations who provide products or services to Federal agencies may need to know to prepare.


Rob Knake has held many prominent cybersecurity roles, most notably, as the Director of Cybersecurity for The White House under the Obama Administration, where he was responsible for developing and managing U.S. cybersecurity policies. He now is a Sr. Advisor at Defendify, and is the co-author of The Fifth Domain and Cyber War.

Unpacking Executive Order 14028: Improving the Nation's Cybersecurity

With accelerated levels of recent cyberattacks, many IT Managed Service Providers (MSPs) have seen an uptick in client demand for more data protection. Furthermore, cybercriminals are increasingly targeting IT service providers as a means to breach and access their customer data.

While MSPs quickly find ways to meet client requests for cybersecurity-related services, they are also considering how they are protecting their own organization. Where should they begin and what should they look for to maintain a strong cybersecurity program?

Defendify hosts an expert panel of IT Managed Service Providers who shed light on how they quickly understood what data security vulnerabilities they had, saw what was needed to fill security gaps, and how they got started providing a cybersecurity-as-a-service offering to their clients.

Join Shanna Utgard, award-winning Success Manager at Defendify, as she walks through how RoundTable Technologies, Computer Technology Management Systems, Lighthouse IT Solutions, and the Michigan Nonprofit Association Technology Services got started in building comprehensive cybersecurity programs for their organization, and for their customers.

They Didn’t Know, But They Do Now: How These MSPs Got Started in Cybersecurity

Phishing emails remain the #1 threat vehicle that result in a cyber breach, attributing to an average loss of $17,700 every minute. As phishing emails grow in sophistication, the best approach to prevent a costly phishing attack is to know how to spot a phish.

Shanna Utgard, award-winning cybersecurity trainer and success manager at Defendify, walks you through current phishing trends, their impact on organizations of all sizes , and ways you and your team can detect them.

How to Spot a Phish: Tips to Spoil Advanced Phishing Attempts

Evolved cyber threats impact organizations with limited security resources and staff who can’t manage a complicated (and often expensive) cybersecurity program. So how can these organizations build comprehensive cybersecurity plans, policies, procedures, education, training, scanning, remediation, and more across your entire organization? 

Join 20+ year security veteran, and Co-Founder of Defendify, Rob Simopoulos, who explains how a 24/7 cybersecurity program can be streamlined across people, process, and technology, without needing multiple complex tools or specialized security professionals on staff. In this presentation you will learn smart steps to implement: 

• A cyber-solid foundation of plans, policies, and procedures.
• A cyber-smart company culture of training and institutional knowledge. 
• Cyber-strong technology that goes beyond traditional anti-virus and firewalls. 

Speaker: Rob Simopoulos | Co-Founder | Defendify
With more than 20 years of security experience, Rob is a frequent speaker and thought leader across security groups and publications. As Co-Founder of Defendify, Rob helped introduce the award-winning cybersecurity platform for small and mid-sized businesses that is trusted by thousands of users across the globe. 

Hosted by Gary S. Miliefsky, fmDHS, CISSP, Publisher of Cyber Defense Magazine.

A Smart Approach to Building Comprehensive Cybersecurity Without Security Staff

What does cybersecurity look like at your business?

Most small and mid-sized businesses would fail a cybersecurity assessment test today because they lack even basic data security measures. So how do you know if your cybersecurity posture can meet the grade?

Understanding risk and managing a strong cybersecurity posture doesn’t have to be complicated, or expensive.

Security veteran and Defendify Co-Founder, Rob Simopoulos, breaks down how cyber threats have evolved, and what security vulnerabilities every company should look out for. Using straight talk, not tech talk, Rob outlines simple steps that both business Leaders and IT managers can take to build a comprehensive cybersecurity program across their entire organization.

In this presentation you’ll learn:

• Recent cyber incidents that have impacted small and mid-sized businesses
• The evolution of modern cyber threats
• How cybercriminals attack organizations
• What organizations can do to strengthen cybersecurity beyond traditional methods

ABCs of Cybersecurity and Strategies to Build a Strong Cybersecurity Posture

Organizations with basic cybersecurity tools are being threatened by the same sophisticated cyberattacks as larger enterprises. If your cybersecurity program has not evolved to protect against modern threats, many attacks may go undetected, and most will result in a hefty expense to fix the breach.

Protecting data across your entire organization does not mean you need to build a complicated security technology stack, and hire an internal team of security experts to manage it 24/7.

Former White House Director of Cybersecurity, Rob Knake, explains the current cyber threat landscape, and how organizations without security teams can gain the same comprehensive protection of larger enterprise cybersecurity solutions - but without the expense or complexity. 

Joined by 20+ year security veteran and Co-Founder of Defendify, Rob Simopoulos, you will learn steps to update your cybersecurity program to have a “single pane of glass”, allowing you to proactively prevent and remove sophisticated cyber attacks.

Key takeaways include:
•	Reducing the complexity of building a comprehensive cybersecurity program 
•	Streamlining cybersecurity across people, process, and technology
•	Gaining visibility of overall cybersecurity risks with clear steps for remediation
•	Simplifying breach detection and response

Hosted by Spiceworks

Remove Complexity of Sophisticated Cybersecurity to Beat Sophisticated Threats

How do you know if you can pass a security assessment from a key customer, partner, industry group, or government agency?


Alan Wade, the former Chief Information Officer (CIO) at the U.S. Central Intelligence Agency (CIA), and Rob Simopoulos, 20+ year security expert and Co-Founder of Defendify, explain what security standards to look out for, and what resources, processes, and frameworks can help with satisfying those requirements.


Key takeaways for growing businesses:

• How common compliancy and regulations, like CMMC, PCI, GDPR and HIPAA, are evolving around security
• Understanding non-compliance risks, and steps to proactively meet requirements
• How to map your cybersecurity posture to key security frameworks like NIST and CIS controls
• What processes to consider to consistently address regulatory and industry compliance

Cybersecurity Compliance: Expert Tips from the former CIO of the CIA

While many businesses reacted to the COVID-19 situation by transitioning to a Work-From-Home (WFH) model, cyber-attackers have been taking advantage of the uncertainty, looking for weaknesses in newly created remote workforce operations.

Defendify Co-Founder, Rob Simopoulos, and Defendify Success Manager, Shanna Utgard, discuss easy steps to take to help you stay cyber-safe while staying home.

Original presentation date: 3/26/20

Cybersecurity from Home: Safety Tips for WFH Situations

Cybercriminal tactics are becoming more sophisticated, increasing the risk of a cyberattack for organizations of all sizes. But what happens, from a legal sense, when a cyber breach occurs at your or your client's business?

Sid Bose, Data Security and Privacy Attorney for Ice Miller, and Shanna Utgard of Defendify, will discuss how Managed Service Providers and Integrators can better protect themselves against potential legal issues arising from a cyber incident.

In this talk, Sid and Shanna will review current cases, provide best practice examples, and answer common data security legal questions including:

• As I deploy, monitor, and maintain my client's systems, how can I legally protect my business in the case they experience a cyber breach?
• What do I do if I am breached and cause a compromise on a client's system?
• What should be included in customer agreements around cybersecurity to reduce any liability?

The Legal Side of Cybersecurity: How MSPs and Integrators Can Protect Themselves

Businesses have been reacting to the many challenges brought on by the COVID-19 pandemic, but some Managed Service Providers have been able to add value by offering cybersecurity to better protect clients through uncertainty.

Join Rob Simopoulos, Co-Founder of Defendify, as he hosts a panel of Managed Service Provider leaders to learn how they are navigating their business, and their clients, around industry challenges, and how adding cybersecurity services have increased recurring revenue opportunities.

In this webinar, you’ll learn:

• Perspectives around the state of Managed Services
• Emerging cybersecurity risks facing MSP clients
• How to add comprehensive cybersecurity solutions as an offering

The State of Managed Services and How Leading MSPs View Cybersecurity

Small and midsized businesses are increasingly becoming the subject of sophisticated cyberattacks, just like large enterprises. What’s fueling this trend?

Unlike their enterprise counterparts, smaller organizations aren’t aware they are targets and typically don’t have cyber alarm systems in place to detect advanced threats, or the ability to properly protect against or contain them when they do happen.

In this webinar, the former White House Director of Cybersecurity, and Director of Policy at the National Security Council, Rob Knake, explains how cyber-criminals and state actors have become more capable of, and interested in, targeting businesses of all sizes.

Rob will advise non-enterprise businesses, often with 500 employees or less, on the state of cybersecurity, providing alternative breach detection and response approaches to thwart advanced persistent threats that won’t require complicated tools or hiring highly specialized internal cybersecurity experts.

Hosted by 20+ year security veteran and Co-Founder of Defendify, Rob Simopoulos, this webinar will provide attendees with key insights into real world threats and critical steps to prevent advanced cyberattacks.

Why Cyberattacks Aren’t Just For The Enterprise, And What To Do About It

With more sophisticated cyber attacks targeting small and midsized organizations, larger enterprises are now requiring data security assessments prior to doing business. How do you know if you can check the boxes of a 3rd party cybersecurity assessment?

Iron Mountain's VP of Information Security, Seth Bailey, and Jenna Wells, Director of Third Party Risk Management together break down typical assessment requirements, and how small and midsized organizations can proactively prepare for one. 

Hosted by Rob Simopoulos, Co-Founder of Defendify, you will also learn when to expect a 3rd party cybersecurity assessment, and how you can check your own vendor's cybersecurity posture.

Key takeaways include:
• What a 3rd party cybersecurity assessment is, and when can you expect to get one
• What steps can small and midsized organizations take to prepare for 3rd party cybersecurity assessments
• How to assess the strength your vendors’ cybersecurity to ensure your data won’t risk a compromise

Checking the Boxes on Vendor Cybersecurity Assessments

Data Security

Risk Assessment

Risk Mitigation

Risk Based Security

Information Risk

Information Security

Cyber Security

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Get powerful manufacturing insights from influential experts. Connect with thought leaders and colleagues to get the most up-to-date knowledge on strategies and techniques to accelerate production cycles while increasing efficiencies and improving profitability.

Manufacturing

The research and development community on BrightTALK brings together leading professionals in healthcare, technology and manufacturing to present on current topics in their fields. From big data in healthcare to online forensics training and medical research practices, the community is an exceptional resource for those looking to expand their knowledge. Be part of the conversation by joining the community and participating in interactive live webinars.

Research and Development

In today’s economic climate, successful small businesses need to overcome an array of challenges. Client dependence, legal issues, small business financing… as an entrepreneur, where can you find the information you need to help inform your decisions? In the small business management community, discover how you can create a successful small business from the business plan up!

Small Business

Get powerful insights to run your business. CEOs, CFOs, CMOs, COOs, CTOs and CIOs are among the leaders in this community who connect with peers and experts to grow their businesses.

CxO Strategy

Get powerful operations insights for your business. Connect with experts and colleagues to get the most up-to-date knowledge on which systems and processes are driving operational efficiency, maximizing value and customer success.

Operations

In the business management community, commercial experts will be sharing webinars and videos on an array of subjects. From sales and marketing, to finance, productivity and growth, this content will help you stay up-to-date with the current economic environment and provide timely management insight to drive business growth.

Checking the Boxes on Vendor Cybersecurity Assessments

Presented by

About this talk

Cybersecurity T@LKS