Name: [The Ransomware Epidemic] The Latest Insights + Trends: Q1 '23
Start: 2023-04-25T17:00:00Z
End: 2023-04-25T17:00:59.000Z
Location: BrightTALK
Rating: 4.8

The GuidePoint Security Channel features presentations by leading real-world certified practitioners in the fields of AppSec, Cloud Security, Digital Forensics, Government Risk & Compliance, Identity & Access Management, Incident Response, Penetration Testing, Security Operations, Vulnerability Management and more. 

Chances are, your Security Operations Center (SOC) was built for a different time. 
Technology has evolved so quickly, that many SOC teams are struggling to keep up. With new tools, playbooks, and processes piled on,  many teams are drowning in alerts, untangling complexity and unsure of what’s actually a priority.

In this Brick House session, GuidePoint Security experts will explore how to address the evolving challenges faced by the modern SOC. From better utilizing AI and threat intelligence, aligning with organizational goals and so much more. Modernize and optimize your operations — without starting from scratch.

Prioritize clean, reliable logs
The role of responsive ticketing, incident response and tracking.

The Brick House: State-of-the-Art SOC (Modernize, Optimize, Repeat)

GuidePoint Security presents "The Brick House: Preparing for the Worst— Incident Response Planning." Join our expert IR Advisory team to learn practical strategies for developing effective incident response capabilities that can transform potential cyber disasters into manageable situations.
• How IR maturity assessments help identify strategic and operational gaps
• What makes tabletop exercises effective for team development and executive alignment
• The importance of designing IR plans and playbooks as adaptable resources—not static checklists

Whether you lead a security team or oversee risk at the organizational level, this discussion will offer guidance on how to make incident response a functional, tested part of your cybersecurity strategy.

Hosted by Gary Brickhouse, CISO at GuidePoint Security, featuring:
• Blake Cifelli, Senior Advisory Consultant
• Bob Bell, Director of Forensic Services/DFIR
• Mark Lance, Senior VP, DFIR & Threat Intelligence
• Tony Cook, VP Innovation, Threat Intelligence

The Brick House: Preparing for the Worst—Incidence Response Planning

Security Validation Through Attack Simulation

As the threat landscape evolves and attack surfaces continue to expand, traditional point-in-time security validation might no longer provide the coverage organizations need. Watch this Brick House roundtable to explore how security leaders are shifting toward continuous penetration testing and validation—using threat intelligence, automation and targeted simulations to stay ahead of adversaries.

This discussion will highlight how leading organizations are applying continuous testing practices—from red team operations to BAS platforms and phishing campaigns—to proactively assess risk across systems, people and supply chains.

In this webinar, you’ll learn about:
  • Third-party risk exposure and the expanding attack surface
  • The limitations of point-in-time validations
  • Building a business case for continuous security validation
  • The strategic use of tools and partners to simulate attacks from multiple perspectives
  • How threat-informed simulations drive more meaningful outcomes

This session brings together experts from GuidePoint’s Threat & Attack Simulation and Penetration Testing teams, sharing how continuous adversary emulation supports real-world resilience.
  • Alberto Rodriguez, Senior Managing Security Consultant
  • Cameron Stish, Senior Security Consultant
  • Dale Madden, Managing Security Consultant
  • Victor Wieczorek, Senior Vice President, Offensive Security

Whether you’re a cybersecurity executive building the strategy or a practitioner implementing the controls, this discussion will show why continuous validation is becoming a cornerstone of effective enterprise security.

The Brick House: Continuous Penetration Testing—Defending Against the Modern Threat Actor

Identity sits at the heart of modern cybersecurity, yet many organizations still grapple with achieving true IAM and PAM maturity. It’s time to move beyond the status quo and build a program that’s resilient, adaptive  and future-ready.

Join this roundtable discussion to learn from top identity security experts as they share actionable insights and proven frameworks for overcoming common IAM challenges, including:

• Prioritizing identity as your security perimeter 
• Continuous identity governance across hybrid and multi-cloud environments
• Create an integrated IAM and PAM strategy to tackle privileged security gaps
• Move to risk-based, continuous access validation
• Building executive alignment for sustained investment in IAM maturity

The Brick House: Identity First—Building & Sustaining a Resilient IAM Program

Ransomware Trends and Threat Intelligence You Can't Miss
Stay ahead in the dynamic world of cybersecurity with our latest presentation from the GuidePoint Research and Intelligence Team as they break down critical findings from Q2 2025, including:

The Shifting Threat Landscape
Explore the first significant drop in ransomware activity in years and what it means for cybersecurity professionals.

New Emerging Threats
Understand the rise of new ransomware groups and their evolving tactics.

Law Enforcement Effects
Gain insight into game-changing interventions disrupting major threat actors.

GRIT Q2 2025 Ransomware & Cyber Threat Report Presentation

Regulatory cybersecurity is no longer just a technical issue—it’s a business-critical risk. With evolving regulations, increased disclosure requirements and growing executive accountability, organizations must prioritize cybersecurity governance to protect their business, investors and reputation.

Key takeaways:
•Why aligning cybersecurity risk with business objectives is essential  
• How cyber risk quantification (CRQ) is revolutionizing risk management  
• Strategies to communicate effectively with stakeholders at all levels  
• How to utilize emerging tools (like AI!) to simplify risk management  
• Building sustainable governance frameworks that balance security and compliance

This is an important discussion for security leadership, executives, CISOs, as well as Governance, Risk and Compliance professionals looking to strengthen their cybersecurity governance strategy and stay ahead of regulatory expectations.

Our expert panel includes:
• Ben Moreland, Practice Director, IA
• Brian Betterton, Vice President, GRC, IA
• Emily O’Carroll, Senior Security Consultant, Southwest
• Denny Dean, Principal Security Advisor, GRC

The Brick House: Prioritizing Cybersecurity Risks for Maximum Business Impact

Cloud-Native Application Protection Platforms (CNAPP) are transforming how cloud environments are secured.  With 99% of cloud security breaches expected to result from misconfigurations and account compromises by 2027, understanding CNAPP is vital for safeguarding your cloud-native stack.
This discussion provides insights into simplifying multi-cloud security operations, managing risks more effectively, improving collaboration between security teams and developers, plus:
• Understanding CNAP and Its Role
• CNAPP Focus and Program Consolidations
• State of CNAP and Tool Integration
• Challenges and Strategies for CNAP Adoption
• Future of CNAP and Final Advice

Learn from the perspectives of  industry leaders and discover how these solutions can strengthen your cloud security posture.

The Brick House: CNAPP for Modern Enterprises—Securing the Cloud

In this Brick House webinar, a panel of AI and Governance experts from GuidePoint Security engaged in a discussion about the complexities of AI Governance, emphasizing the need for effective oversight as AI technologies evolve. The panel discussed the importance of expediting approval processes for AI use cases while ensuring that policies are well-communicated and understood across organizations. They addressed the challenges posed by shadow AI and the necessity of maintaining visibility in AI usage, as well as the critical role of legal teams in governance. The conversation also touched on the need for transparency from AI model developers and the management of risks associated with third-party AI vendors. Watch now to learn more about AI oversight and the collaborative effort required across various departments to navigate the rapidly changing landscape of AI governance.

The Brick House: AI Governance Fundamentals for Compliance II

Cyber attackers started 2025 at a staggering pace. What does this mean for the rest of the year? How do organizations prepare? 

The GuidePoint Security’s Research and Intelligence Team (GRIT) present their key findings from the Q1 2025 Ransomware & Cyber Threat Report that highlights:
• A rise in ransomware activity, with 70 distinct groups observed
• Significant campaigns by Clop, Akira and Ransomhub
• Nonprofit organizations experienced a shocking rise in attacks, while manufacturing also saw increased targeting
• Law enforcement disruption of key players like 8base
• Emerging threats, such as Hellcat, highlight the evolution of ransomware-as-a-service (RaaS) operations

Hear directly from the authors of the report as they break down trends, threat actor tactics and what it all means for defenders in 2025.

GRIT 2025 Q1 Ransomware & Cyber Threat Report Presentation

Traditional Vulnerability Management focuses on discovering weaknesses—while prioritization, validation and remediation remain major challenges. Continuous Threat Exposure Management (CTEM) enhances existing security functions to help teams focus on real threats and take meaningful action.

Watch this expert-led discussion on how CTEM enhances multiple security practices including VM, AppSec, and Cloud Security; shifts the focus to exploitable risks with prioritization and validation; and closes the gap between security teams and remediations owners.

The Brick House: Evolving Vulnerability Management with CTEM

As artificial intelligence becomes a core part of business and cybersecurity strategies, effective governance is critical. Organizations must ensure AI systems are secure, transparent and compliant with evolving regulations—yet many face challenges such as unclear requirements, lack of expertise and the struggle to monitor AI use effectively.
• Compliance requirements and evolving regulatory expectations
• The importance of discovery, monitoring, and security controls
• Balancing AI innovation with risk management

The Brick House: AI Governance Fundamentals for Compliance & Security

Converged Identity Platforms (CIP) are emerging as a groundbreaking approach for consolidating multiple identity solutions into a single, centralized platform. By integrating Identity Governance and Administration (IGA), Access Management, Privileged Access Management (PAM), Vendor Access Management (VAM), and Governance, Risk, and Compliance (GRC), CIP offers a holistic strategy to fortify security at the identity level.

Watch this timely and insightful roundtable discussion where cybersecurity experts explore how CIP is reshaping the future of access controls.

The Brick House: Identity Platform Convergence & the Future of Access Controls

Annual Ransomware Retrospective: 2024 Insights & 2025 Expectations
Ransomware remained one of the most persistent and disruptive threats organizations faced in 2024. The GRIT 2025 Ransomware & Cyber Threat Report Presentation from the GuidePoint Research and Intelligence Team (GRIT) is your trusted source for understanding the state of ransomware, contemporary cybercrime and their broader implications for the cybersecurity community.

GRIT 2025 Ransomware & Cyber Threat Report Presentation

Watch a panel of seasoned cybersecurity leaders as they explore the pressing trends and challenges that will shape the market. Get practical advice from industry experts who share their real-world experiences adopting new technologies, managing risks and developing security strategies. 

Learn about the important trends in the informational "Fact or Fiction" segment where you will hear different perspectives to help you prepare your organization.
• Continuous assessments and holistic CTEM models
• Identity and Access Management (IAM) innovation and cloud transformation
• The balance between consolidation and innovation
• How generative AI technologies will shape cybersecurity

The Brick House: Moving the Needle—Cyber Trends Shaping the Market

As cloud environments grow more complex, the need to effectively manage access and secure applications has become more urgent than ever. Cloud security is no longer just about protecting infrastructure—it’s about ensuring that the right people have access to the right resources and that applications themselves are fortified against evolving threats.

Watch this discussion on how integrating Identity and Access Management (IAM) and Application Security (AppSec) can strengthen your cloud security posture. They will discuss key strategies for securing user access across multi-cloud environments, addressing vulnerabilities in cloud-native applications and building a unified defense strategy. Whether you are dealing with multi-cloud environments, hybrid infrastructures, or cloud-native applications, this discussion will provide actionable insights to protect your organization’s most valuable assets.

Panelists:
Kevin Converse, Vice President, Identity and Access Management
Jonathan Villa, Practice Director, Cloud Security
Robert Darwin, Senior Director of Security Engineering

The Brick House: Unified Cloud Defense With Identity, Access and Application Security

This report presentation by Jason Baker and Grayson North from GuidePoint's Research and Intelligence Team covered the July-September 2024 ransomware landscape including industry, geography, group activity and trends. Key points included the emergence of new prolific groups like Ransomhub, which saw a 150% increase in victims, and the decline of traditional heavyweights like Lockbit and Alpha/Black Cat. The total number of observed victims dropped by 22% compared to the same period last year. The discussion highlighted the shift to a "new middle class" of ransomware groups and the impact of law enforcement disruptions. Additionally, the use of AI in ransomware operations and phishing techniques exploiting legitimate services were noted.

Exploring Ransomware's Emerging Middle Class Evolving Cyber Threats—A GRIT Presentation

[PART TWO] In Part One of our series, we explored the threat intelligence life cycle, the importance of setting intelligence requirements and how threat modeling helps identify adversaries and protect your organization.

In Part Two of our series, we build on those concepts by discussing the importance of continuous improvement, feedback loop and aligning threat intelligence with an organization’s security goals. Our panelists will also touch on how to enhance threat intelligence maturity, refine intelligence objectives and further integrate these practices into daily operations. Don’t miss this in-depth discussion on advancing your threat intelligence program.

Featured Panelists:
• Tony Cook, Senior Director, DFIR & Threat Intelligence, GuidePoint Security
• Jason Baker, Principal Security Consultant
• Will Baxter, Security Engineer, Team Cymru
• Henry Carpenter, Senior Solutions Engineer, Cyware
• Dan Kropp, Director of Intelligence Services, Recorded Future

Part Two: A Day in the Life of a Threat Analyst

[PART ONE] Get a behind-the-scenes look at the daily routines of threat analysts working on the front lines of cyber intelligence. In this live panel, experts from GuidePoint Security, Cyware, Team Cymru, and Recorded Future discuss the workflows, tools and strategies they rely on to defend against evolving threats. Whether you're sharpening your skills or exploring new career paths, this session offers valuable insights into the world of threat intelligence.

Featured Panelists:
• Tony Cook, Senior Director, DFIR & Threat Intelligence, GuidePoint Security
• Jason Baker, Principal Security Consultant, GuidePoint Security
• Will Baxter, Security Engineer, Team Cymru
• Henry Carpenter, Senior Solutions Engineer, Cyware
• Dan Kropp, Director of Intelligence Services, Recorded Future

Part One: A Day in the Life of a Threat Analyst

As the world continues to reel from the aftermath of highly publicized ransomware attacks in the past year, the cybersecurity industry has been in overdrive to come up with new strategies to combat these insidious threats.

In this upcoming live talk with the GuidePoint Research & Intelligence Team [GRIT], they'll be taking a comprehensive review into the Q1 2023 Ransomware Report, which promises to provide critical insights into the latest trends, tactics, and vulnerabilities in the ransomware landscape.

This exclusive event will feature GRIT experts who will analyze the key findings of their report and offer practical recommendations for businesses looking to strengthen their defenses against ransomware attacks.

With the threat of ransomware attacks constantly evolving, it's more important than ever for your organization to stay ahead of the curve. Don't miss this opportunity to learn from our ransomware experts and protect your business from this growing threat. Join us for this essential talk and ensure your business is prepared to face the challenges of the future.

[The Ransomware Epidemic] The Latest Insights + Trends: Q1 '23

Ransomware

IT Security

Cyber Security

Information Security

Cyber Attacks

Cybersecurity

Research Report

Intelligence

Threat Analysis

Critical Infrastructure

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The unexpected nature of natural disasters and other disruptive events means that preparation is key to managing disaster recovery and business continuity planning. Join the business continuity and disaster recovery community for live and recorded presentations discussing best practices for business continuity planning, disaster recovery programs and business continuity management. Learn from BCDR experts to develop your critical infrastructure and gain insight into tactical solutions to your BCDR issues.

Business Continuity / Disaster Recovery

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

[The Ransomware Epidemic] The Latest Insights + Trends: Q1 '23

Presented by

About this talk

GuidePoint Security Channel