Name: Demystifying Supply Chain Attack Paths & How to Stop Them
Start: 2023-05-30T03:00:00Z
End: 2023-05-30T03:00:22.000Z
Location: BrightTALK
Rating: 0

Palo Alto Networks is the world’s cybersecurity leader. Our next-gen security solutions, expert services,
and industry-leading threat intelligence empower organizations across every sector to transform with
confidence.
Check out this channel for the latest updates and topics on cybersecurity.

Development best practices currently call for organizations to “shift left” with their security efforts by integrating the application security team into the development process right from the beginning.

 

Led by Matt Johnson, Developer Advocate of Prisma Cloud, you will discover best practices in accomplishing those DevOps and DevSecOps goals. Your key takeaways include:

- Why modern application security is so challenging
- The sources of misconfigurations and risks
- Next steps to deploying faster and securely
 
Register now to discover innovative tools and services from forward-thinking vendors that can help you implement those development security best practices.

Shift Left: Best Practices &  Tools for DevOps Processes

XDR (extended detection and response) was coined in 2018 by Nir Zuk, CTO of Palo Alto Networks. Ever since, XDR has captured the collective imagination of security teams and analysts alike. It has also led to confusion on what XDR is and isn’t.

Many see XDR as the key to breaking down data silos, reducing security blind spots and improving SOC efficiency. However, not all users understand the use cases for XDR and which vendors offer true XDR.

Join Greg Smith, Senior Product Marketing Manager from Palo Alto Networks to gain a deeper understanding of:
- The top features and benefits of XDR solutions
- How organizations use XDR for SecOps today
- Tips for identifying XDR imposters
- How to choose the right XDR product for your environment

XDR is what’s next in cybersecurity. Register to learn more.

What XDR Is and Isn't

Explore DSPM and DDR technologies and how they can help you discover, classify, protect, and govern all your data across the different cloud environments

Are you thinking about data and AI security in 2024? Growing data volumes, increased regulation, and the shift towards AI make it difficult for organizations to understand which sensitive data they hold, who can access it, and where it is exposed. To regain visibility and control, organizations are exploring data security posture management (DSPM) with data detection and response (DDR). 

Join Prisma Cloud data security experts, Yotam Ben-Ezra, Dir, Product Management, to find out how the latest advancements in data security can help you discover, classify, protect and govern data in cloud environments.

In this webinar, you will learn:

- Why the cloud creates a new attack surface that is inherently difficult to protect
- The security and compliance risks that stem from unprotected data and AI infrastructure in the cloud
- An introduction to DSPM and Dig Security, which was recently acquired by Palo Alto Networks
- How agentless tools allow you to see a full picture of data risk in your environment within 24 hours, without impacting other business operations
- Getting started with data discovery and classification
- Monitoring data and responding to incidents in near-real time

Stay one step ahead of data risk in 2024 to prevent costly breaches and compliance violations. Explore DSPM and DDR technologies and how they can help you discover, classify, protect, and govern all your data across the different cloud environments.

Securing the Data and AI Landscape  with DSPM and DDR

The rapid shift to the cloud has strained SOC teams, leading to challenges in monitoring the external attack surface. Inadequate visibility into an organization's IT infrastructure poses significant risks, jeopardizing both the organization and its customers.

Join security experts from KuppingerCole Analysts and Palo Alto Networks for an insightful and engaging webinar as they delve into attack surface management (ASM). They'll discuss the challenges faced by organizations and how they can stay ahead of adversaries who don't discriminate.

In the webinar, our experts will discuss:
- What ASM solutions can do.
- How ASM tools improve the visibility into exposures and potential attack vectors.
- Real-world use cases and success stories.
- Best practices for securing your attack surface.
- Why Cortex Xpanse® was rated an Overall, Product, Innovation and Market Leader with our Active Attack Surface Management platform.

Securing Your Digital Frontier with ASM

In the world of cybersecurity, we often have an abundance of valuable information from multiple sources. Here's the burning question: Why does it feel like an uphill battle to stay one step ahead of threats?

Register to learn how automation can help lighten your team’s workload. We’ll focus on use cases that help bridge network security, cloud security and SASE incident response. This includes:
  1. Tracking/Identifying malicious IoCs and automatically pushing these to your EDLs.
  2. Automatically prioritizing noisy virtual machine alerts.
  3. Staying on top of the latest threats without manually checking release updates.
  4. Automating routing and follow-up of incidents to different teams.
  5. Automating the malware and investigation process.
 
If you have NGFWs, SASE, Prisma® Cloud or Cortex XDR® from Palo Alto Networks, we’ll also show how to automate and speed up SecOps across your entire portfolio.

Automate Away SOC Busywork: Speed Up Incident Response With Automation.

As containers solidify their role in modern cloud-native IT development, the need for robust security measures is more crucial than ever. Containers' popularity is growing due to their lightweight flexibility and speed, but those benefits come with tradeoffs: Containerized applications often face inadequate attention when it comes to safeguarding against breaches, malware and malicious actors.

In this Techstrong Learning Experience, we delve into the fundamentals of container security. Gain essential knowledge to ensure that your organization's containers and container environments are fortified against potential threats.

In this session, you'll learn:

 - The core principles of container security that every security team should know.
- Best practices for securing both the management and orchestration aspects of containers.
- Experience a live simulation demonstrating the secure handling of applications and workloads, addressing vulnerabilities head-on.

Don't miss this opportunity to enhance your understanding of container security and fortify your organization's defenses. Register now to stay ahead in the dynamic landscape of IT development.

The Ultimate Guide to Container Security

A VPN-centric approach to secure access has several issues, including weak security, lack of scalability and siloed management. Luckily, the emergence of Zero Trust Network Access (ZTNA) offers a more robust solution for your organization.

In this webinar, join John Grady, Principal Analyst at ESG and Don Meyer, Director of Product Marketing – SASE at PANW as they discuss key considerations you need to have in mind when modernizing secure access. 

Watch now to learn about:
• Why 42% of orgs plan to move more of their applications to ZTNA over time
• The evolution of SASE/ZT overall and how they tie into ZTNA
• What’s holding some organizations back and how to overcome these challenges

The Case for ZTNA over a VPN

Risk, Curated: Introducing Dynamic Risk Prioritization 

As attack surfaces rampantly grow and evolve, security teams find themselves bogged down by manually remediating every new vulnerability. Meanwhile, attackers exploit them within hours — sometimes minutes — of a Common Vulnerabilities and Exposures (CVE) announcement. 

To help solve this problem, hear directly from our security experts Greg Heon and Abhi Anbazhagan. You’ll discover why traditional risk prioritization methods aren’t sufficient, what capabilities are needed and how new technology answers key business questions. 

They’ll also reveal the new attack surface management (ASM) features in Cortex® Xpanse™. They help identify, prioritize and investigate attack surface risks with real-world intelligence and AI-empowered workflows. You'll even see a demo of all these new features in action. Join to learn how to:
 - Dynamically prioritize your risks for new vulnerabilities.
 - Safely implement automation to enhance analyst investigation processes.
 - Secure your attack surface before attackers can exploit it.

Speakers:
Abhishek Anbazhagan, Product Marketing Manager, Cortex Xpanse
Greg Heon, Sr. Director, Product Management, Cortex Xpanse

Dynamically prioritize attack surface risks with the latest Xpanse.

74% of businesses today have a permanent hybrid work model. Simultaneously, cyberattacks are on the rise, putting your hybrid organization at risk. This is especially concerning as traditional architectures aren’t designed for cloud-first and hybrid work environments.

This webinar, featuring Don Meyer, Director, Product Marketing, Prisma SASE, explores how to update your VPN infrastructure for better visibility and control. You will learn:
• How to modernize your infrastructure with hybrid work in mind
• What the journey from legacy VPN to Zero Trust Network Access (ZTNA) looks like
• The benefits of using Prisma SASE for your modernization journey

Watch the session now!

Migrating from Legacy VPN to ZTNA

See Why ONLY Cortex Delivers 100% Protection and Detection

The MITRE Engenuity ATT&CK® Evaluations have become the industry standard for evaluating performance of cybersecurity vendors in rigorous real-world attack scenarios. In 2023, MITRE simulated the methods of the notorious Russian-based threat group, Turla. They put 29 vendors to the test and revealed their performance.

Join our experts in this webinar. You’ll gain insights into:
 - The process of the MITRE ATT&CK Evaluations.
 - The threat group Turla, their tactics and how to defeat them.
 - The real-world performance of EDR vendors against Turla attacks.
 - Why ONLY Cortex delivers 100% Protection and Detection

Featured Palo Alto Networks Speakers:
Peter Havens, Director of Product Marketing, Cortex
Parker Crook, Director, Technical Marketing Engineering, Cortex

Unbiased Testing. Unbeatable Results. Explore the 2023 MITRE ATT&CK® results.

Wouldn’t it be great to understand the financial impact an enterprise-wide purchase would have on your organization before you buy it? When it comes to cloud security, you can.

Palo Alto Networks commissioned Forrester Consulting to conduct a Total Economic Impact™ (TEI) study that examines the potential return on investment (ROI) enterprises may see when deploying Prisma Cloud.

The 2023 study reveals that aside from an eye-opening ROI of 264% over 3 years, with payback in less than 6 months, customers using Prisma Cloud are also able to consolidate their cloud security management and secure new code being developed for the cloud.

Join the webinar to:

Understand the Total Economic Impact™ (TEI) enterprise companies have realized by deploying Prisma® Cloud’s Code to Cloud™ platform
Discover how the Code to Cloud approach to security helped organizations effectively secure new code developed for the cloud, reduce SecOps and DevOps effort and drive down possible breach costs
Learn the ROI framework and checklist created for CISOs/CIOs to evaluate the potential financial impact of Prisma Cloud in your own organization

A CISO's Expert ROI insights from Forrester TEI study

Harness the Power of Machine Learning and AI with Cortex® XSIAM™

A proliferation of applications, workloads, microservices and users has created an expanded attack surface that is difficult to protect. Security teams struggle to keep up with thousands of alerts coming in from disconnected sources each day.

While this stresses security teams, it’s the perfect storm for hackers. SOC teams spend time on threats that don’t matter while important alerts get lost without sufficient review and action. How can you get ahead of cyberthreats when it seems like you just keep falling further behind?

Join this webinar to learn how to reimagine cybersecurity using AI for real-time detection and response at scale. Topics we’ll cover include:
- The challenges SOCs face with legacy SIEM technology
- Characteristics of a modern SOC
- Harnessing the power of AI and machine learning with a unified security platform
- Cortex XSIAM demo

Register now to learn how you can unleash the power of AI in your SOC.

The AI-Driven Security Operations Platform

#SASE consolidates the network and security architectures, providing a secure work experience.  Join #TheSASEshow as Mike Laytham, Engineering General Manager, Commonwealth Bank of Australia, outlines how the bank is delivering improved security, seamless user experience, and operational efficiency across an entire distributed network with single-vendor SASE.

Why Single-Vendor SASE is the way forward

Watch 7-Eleven Vice President and Chief Information Security Officer, Sujeet Bambawale, as he shares his cybersecurity vision and best practices on CISO Masterclass. Sujeet discusses with Sid Deshpande, Palo Alto Networks Regional Chief Security Officer, on the importance of taking a customer centric view to cybersecurity strategy, improving user experience and the relevance of SASE as a medium for network and security transformation.

#SASE #paloaltonetworks #cybersecurity

CISO Masterclass on Digital Transformation and SASE

Transforming SecOps to combat advanced attacks

Modern security threats are evolving at a faster pace than security technologies. Well-funded threat actors are investing in tools like machine learning (ML), automation and artificial intelligence (AI).

SOCs with legacy technologies aren’t equipped to accurately detect and defend modern attacks. How can security technologies fight back?


Watch this webinar to learn how you can transform SecOps to combat advanced attacks and improve efficiencies to get your SOC ready for the future. We will share our SOC transformation playbook that highlights:
- Today’s cyberthreats
- The challenges facing traditional SOCs
- 5 steps to building a super SOC
- 4 superpowers for building a resilient and effective SOC

Register now and get ready to activate your SOC superpowers.

Building a Super SOC with Cortex

Automation Trends and Insights for SecOps.

Are you facing challenges in effectively managing incidents received by your SOC? Renowned analyst firm GigaOm recently published their SOAR Radar report. This comprehensive comparison of SOAR vendors helps SecOps teams select the right option for them. To further assist, we’ve created an exclusive fireside chat featuring GigaOm analyst Andrew Green, and Josh Zelonis, security strategist at Palo Alto Networks.

Andrew and Josh will discuss the latest trends in the SOAR market and how your peers are effectively leveraging automation. Topics include:
  - How the SOAR industry is evolving to meet today’s SOC challenges.
  - Is low-code/no-code automation hype or reality?
  - How AI will impact incident investigation and response.
  - How to apply SOAR beyond the SOC to network and cloud operations.
  - How automation is deployed by XSOAR customers.

Expert Speakers: 
Jane Goh, Product Marketing Manager, Palo Alto Networks
Josh Zelonis, Principal Security Strategist, Palo Alto Networks
Andrew Green, Analyst, GigaOm

The Evolving SOAR: What's Next?

Protecting cloud applications has become incredibly complex. You may even wonder if it’s still humanly possible. 

That’s why we’re excited to announce our latest Prisma® Cloud release, which introduces Code to CloudTM intelligence  with contextual, intuitive security to provide risk context: see how auto-correlated issues pose a threat to your business, understand the applications deployed across clouds and classify business critical assets and view the full app lifecycle and link production vulnerabilities back to the source code

Discover how the biggest innovations in Prisma Cloud are helping organizations prioritize and fix critical application risks at the source, in a matter of minutes. You'll get to: 

- Learn how you can move past operational inefficiencies caused by stitching together siloed solutions and effectively reduce risk across the app lifecycle
- Gain a simple and intuitive approach using code-to-cloud intelligence as the ultimate method for breach prevention
- Recognize the growing connection between Cloud Security and AppSec, and explore the future of innovation in this AI-powered landscape

You won’t want to miss this exclusive event where you’ll hear directly from leading industry experts about Prisma Cloud innovations that protect applications from code to cloud.

CNAPP Supercharged:  A Radically New Approach to Cloud Security

Don’t Settle for Second-Class Security. Demand the Best.

Cybercriminals continue to devise new ways to compromise endpoints which are targeted as a primary access point for infiltration. These devious adversaries can bypass defenses by avoiding the use of known indicators of compromise (IoCs) and attack techniques. 

To thwart these attacks, you need best-in-class endpoint security that prevents, detects and responds to threats. Traditional endpoint protection solutions just can’t keep up. It’s time for an upgrade.

In this session, we will:
 - Demonstrate the limitations of legacy endpoint protection platform (EPP) solutions.
 - Explore recent innovations to endpoint protection, like EDR and XDR, that help put a stop to today’s most dangerous threats.
 - Analyze recent endpoint attacks and how they were defeated with best-in-class endpoint security.

The Endpoint of No Return

All software supply chain attacks share a core trait in common: they allow threat actors to break into organizations’ IT estate by exploiting vulnerabilities in software created by other entities, not the business itself.

 

However, the types of vulnerabilities that attackers may exploit during supply chain incidents come in many forms. The exploitation methods that attackers use to execute supply chain incidents also vary. For these reasons, protecting your business against supply chain threats requires understanding the most common software supply chain attack paths and deploying a multi-pronged defense against all of them.



With that in mind, our Cloud Security Architect, Sai Krishna Kumar will walk through the common supply chain attack paths, compare and contrast the severity of each type of attack, and discuss best practices to prevent attack &  vulnerabilities.

Demystifying Supply Chain Attack Paths & How to Stop Them

Cloud Security

Cloud Applications

Supply Chain

Cloud Hybrid

Cloud Architecture

Attack Vectors

Cyber Attacks

Application Security

Hybrid Cloud

Software Security

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The application development community features top thought leadership focusing on optimal practices in software development, SDLC methodology, mobile app development and application development platforms and tools. Join top software engineers and coders as they cover emerging trends in everything from enterprise app development to developing for mobile platforms such as Android and iOS.

Application Development

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Join this new, vibrant community to learn and connect with top thought leaders, startups and banks who are disrupting the financial services industry. Keep up with the latest news and trends in Fintech and take part in lively debates on topical issues and challenges.

Fintech

The accounting and finance community on BrightTALK features presentations from leading accountants and finance professionals. The accounting community includes tax planning strategies, QuickBooks webinars and other accounting webinars, while the finance community features presentations on financial capital regulations and forensic data analytics. Join the conversation by attending live financial and accounting presentations and connecting with industry thought leaders.

Finance

Get powerful insights to run your business. CEOs, CFOs, CMOs, COOs, CTOs and CIOs are among the leaders in this community who connect with peers and experts to grow their businesses.

CxO Strategy

In the business management community, commercial experts will be sharing webinars and videos on an array of subjects. From sales and marketing, to finance, productivity and growth, this content will help you stay up-to-date with the current economic environment and provide timely management insight to drive business growth.

Demystifying Supply Chain Attack Paths & How to Stop Them

Presented by

About this talk

More from this channel