Name: Automating Malware Investigation & Response
Start: 2023-06-16T03:30:00Z
End: 2023-06-16T03:30:46.000Z
Location: BrightTALK
Rating: 5

Palo Alto Networks is the world’s cybersecurity leader. Our next-gen security solutions, expert services,
and industry-leading threat intelligence empower organizations across every sector to transform with
confidence.
Check out this channel for the latest updates and topics on cybersecurity.

XDR (extended detection and response) was coined in 2018 by Nir Zuk, CTO of Palo Alto Networks. Ever since, XDR has captured the collective imagination of security teams and analysts alike. It has also led to confusion on what XDR is and isn’t.

Many see XDR as the key to breaking down data silos, reducing security blind spots and improving SOC efficiency. However, not all users understand the use cases for XDR and which vendors offer true XDR.

Join Greg Smith, Senior Product Marketing Manager from Palo Alto Networks to gain a deeper understanding of:
- The top features and benefits of XDR solutions
- How organizations use XDR for SecOps today
- Tips for identifying XDR imposters
- How to choose the right XDR product for your environment

XDR is what’s next in cybersecurity. Register to learn more.

What XDR Is and Isn't

The rapid shift to the cloud has strained SOC teams, leading to challenges in monitoring the external attack surface. Inadequate visibility into an organization's IT infrastructure poses significant risks, jeopardizing both the organization and its customers.

Join security experts from KuppingerCole Analysts and Palo Alto Networks for an insightful and engaging webinar as they delve into attack surface management (ASM). They'll discuss the challenges faced by organizations and how they can stay ahead of adversaries who don't discriminate.

In the webinar, our experts will discuss:
- What ASM solutions can do.
- How ASM tools improve the visibility into exposures and potential attack vectors.
- Real-world use cases and success stories.
- Best practices for securing your attack surface.
- Why Cortex Xpanse® was rated an Overall, Product, Innovation and Market Leader with our Active Attack Surface Management platform.

Securing Your Digital Frontier with ASM

In the world of cybersecurity, we often have an abundance of valuable information from multiple sources. Here's the burning question: Why does it feel like an uphill battle to stay one step ahead of threats?

Register to learn how automation can help lighten your team’s workload. We’ll focus on use cases that help bridge network security, cloud security and SASE incident response. This includes:
  1. Tracking/Identifying malicious IoCs and automatically pushing these to your EDLs.
  2. Automatically prioritizing noisy virtual machine alerts.
  3. Staying on top of the latest threats without manually checking release updates.
  4. Automating routing and follow-up of incidents to different teams.
  5. Automating the malware and investigation process.
 
If you have NGFWs, SASE, Prisma® Cloud or Cortex XDR® from Palo Alto Networks, we’ll also show how to automate and speed up SecOps across your entire portfolio.

Automate Away SOC Busywork: Speed Up Incident Response With Automation.

As containers solidify their role in modern cloud-native IT development, the need for robust security measures is more crucial than ever. Containers' popularity is growing due to their lightweight flexibility and speed, but those benefits come with tradeoffs: Containerized applications often face inadequate attention when it comes to safeguarding against breaches, malware and malicious actors.

In this Techstrong Learning Experience, we delve into the fundamentals of container security. Gain essential knowledge to ensure that your organization's containers and container environments are fortified against potential threats.

In this session, you'll learn:

 - The core principles of container security that every security team should know.
- Best practices for securing both the management and orchestration aspects of containers.
- Experience a live simulation demonstrating the secure handling of applications and workloads, addressing vulnerabilities head-on.

Don't miss this opportunity to enhance your understanding of container security and fortify your organization's defenses. Register now to stay ahead in the dynamic landscape of IT development.

The Ultimate Guide to Container Security

A VPN-centric approach to secure access has several issues, including weak security, lack of scalability and siloed management. Luckily, the emergence of Zero Trust Network Access (ZTNA) offers a more robust solution for your organization.

In this webinar, join John Grady, Principal Analyst at ESG and Don Meyer, Director of Product Marketing – SASE at PANW as they discuss key considerations you need to have in mind when modernizing secure access. 

Watch now to learn about:
• Why 42% of orgs plan to move more of their applications to ZTNA over time
• The evolution of SASE/ZT overall and how they tie into ZTNA
• What’s holding some organizations back and how to overcome these challenges

The Case for ZTNA over a VPN

Risk, Curated: Introducing Dynamic Risk Prioritization 

As attack surfaces rampantly grow and evolve, security teams find themselves bogged down by manually remediating every new vulnerability. Meanwhile, attackers exploit them within hours — sometimes minutes — of a Common Vulnerabilities and Exposures (CVE) announcement. 

To help solve this problem, hear directly from our security experts Greg Heon and Abhi Anbazhagan. You’ll discover why traditional risk prioritization methods aren’t sufficient, what capabilities are needed and how new technology answers key business questions. 

They’ll also reveal the new attack surface management (ASM) features in Cortex® Xpanse™. They help identify, prioritize and investigate attack surface risks with real-world intelligence and AI-empowered workflows. You'll even see a demo of all these new features in action. Join to learn how to:
 - Dynamically prioritize your risks for new vulnerabilities.
 - Safely implement automation to enhance analyst investigation processes.
 - Secure your attack surface before attackers can exploit it.

Speakers:
Abhishek Anbazhagan, Product Marketing Manager, Cortex Xpanse
Greg Heon, Sr. Director, Product Management, Cortex Xpanse

Dynamically prioritize attack surface risks with the latest Xpanse.

74% of businesses today have a permanent hybrid work model. Simultaneously, cyberattacks are on the rise, putting your hybrid organization at risk. This is especially concerning as traditional architectures aren’t designed for cloud-first and hybrid work environments.

This webinar, featuring Don Meyer, Director, Product Marketing, Prisma SASE, explores how to update your VPN infrastructure for better visibility and control. You will learn:
• How to modernize your infrastructure with hybrid work in mind
• What the journey from legacy VPN to Zero Trust Network Access (ZTNA) looks like
• The benefits of using Prisma SASE for your modernization journey

Watch the session now!

Migrating from Legacy VPN to ZTNA

See Why ONLY Cortex Delivers 100% Protection and Detection

The MITRE Engenuity ATT&CK® Evaluations have become the industry standard for evaluating performance of cybersecurity vendors in rigorous real-world attack scenarios. In 2023, MITRE simulated the methods of the notorious Russian-based threat group, Turla. They put 29 vendors to the test and revealed their performance.

Join our experts in this webinar. You’ll gain insights into:
 - The process of the MITRE ATT&CK Evaluations.
 - The threat group Turla, their tactics and how to defeat them.
 - The real-world performance of EDR vendors against Turla attacks.
 - Why ONLY Cortex delivers 100% Protection and Detection

Featured Palo Alto Networks Speakers:
Peter Havens, Director of Product Marketing, Cortex
Parker Crook, Director, Technical Marketing Engineering, Cortex

Unbiased Testing. Unbeatable Results. Explore the 2023 MITRE ATT&CK® results.

Wouldn’t it be great to understand the financial impact an enterprise-wide purchase would have on your organization before you buy it? When it comes to cloud security, you can.

Palo Alto Networks commissioned Forrester Consulting to conduct a Total Economic Impact™ (TEI) study that examines the potential return on investment (ROI) enterprises may see when deploying Prisma Cloud.

The 2023 study reveals that aside from an eye-opening ROI of 264% over 3 years, with payback in less than 6 months, customers using Prisma Cloud are also able to consolidate their cloud security management and secure new code being developed for the cloud.

Join the webinar to:

Understand the Total Economic Impact™ (TEI) enterprise companies have realized by deploying Prisma® Cloud’s Code to Cloud™ platform
Discover how the Code to Cloud approach to security helped organizations effectively secure new code developed for the cloud, reduce SecOps and DevOps effort and drive down possible breach costs
Learn the ROI framework and checklist created for CISOs/CIOs to evaluate the potential financial impact of Prisma Cloud in your own organization

A CISO's Expert ROI insights from Forrester TEI study

Harness the Power of Machine Learning and AI with Cortex® XSIAM™

A proliferation of applications, workloads, microservices and users has created an expanded attack surface that is difficult to protect. Security teams struggle to keep up with thousands of alerts coming in from disconnected sources each day.

While this stresses security teams, it’s the perfect storm for hackers. SOC teams spend time on threats that don’t matter while important alerts get lost without sufficient review and action. How can you get ahead of cyberthreats when it seems like you just keep falling further behind?

Join this webinar to learn how to reimagine cybersecurity using AI for real-time detection and response at scale. Topics we’ll cover include:
- The challenges SOCs face with legacy SIEM technology
- Characteristics of a modern SOC
- Harnessing the power of AI and machine learning with a unified security platform
- Cortex XSIAM demo

Register now to learn how you can unleash the power of AI in your SOC.

The AI-Driven Security Operations Platform

#SASE consolidates the network and security architectures, providing a secure work experience.  Join #TheSASEshow as Mike Laytham, Engineering General Manager, Commonwealth Bank of Australia, outlines how the bank is delivering improved security, seamless user experience, and operational efficiency across an entire distributed network with single-vendor SASE.

Why Single-Vendor SASE is the way forward

Watch 7-Eleven Vice President and Chief Information Security Officer, Sujeet Bambawale, as he shares his cybersecurity vision and best practices on CISO Masterclass. Sujeet discusses with Sid Deshpande, Palo Alto Networks Regional Chief Security Officer, on the importance of taking a customer centric view to cybersecurity strategy, improving user experience and the relevance of SASE as a medium for network and security transformation.

#SASE #paloaltonetworks #cybersecurity

CISO Masterclass on Digital Transformation and SASE

Transforming SecOps to combat advanced attacks

Modern security threats are evolving at a faster pace than security technologies. Well-funded threat actors are investing in tools like machine learning (ML), automation and artificial intelligence (AI).

SOCs with legacy technologies aren’t equipped to accurately detect and defend modern attacks. How can security technologies fight back?


Watch this webinar to learn how you can transform SecOps to combat advanced attacks and improve efficiencies to get your SOC ready for the future. We will share our SOC transformation playbook that highlights:
- Today’s cyberthreats
- The challenges facing traditional SOCs
- 5 steps to building a super SOC
- 4 superpowers for building a resilient and effective SOC

Register now and get ready to activate your SOC superpowers.

Building a Super SOC with Cortex

Automation Trends and Insights for SecOps.

Are you facing challenges in effectively managing incidents received by your SOC? Renowned analyst firm GigaOm recently published their SOAR Radar report. This comprehensive comparison of SOAR vendors helps SecOps teams select the right option for them. To further assist, we’ve created an exclusive fireside chat featuring GigaOm analyst Andrew Green, and Josh Zelonis, security strategist at Palo Alto Networks.

Andrew and Josh will discuss the latest trends in the SOAR market and how your peers are effectively leveraging automation. Topics include:
  - How the SOAR industry is evolving to meet today’s SOC challenges.
  - Is low-code/no-code automation hype or reality?
  - How AI will impact incident investigation and response.
  - How to apply SOAR beyond the SOC to network and cloud operations.
  - How automation is deployed by XSOAR customers.

Expert Speakers: 
Jane Goh, Product Marketing Manager, Palo Alto Networks
Josh Zelonis, Principal Security Strategist, Palo Alto Networks
Andrew Green, Analyst, GigaOm

The Evolving SOAR: What's Next?

Protecting cloud applications has become incredibly complex. You may even wonder if it’s still humanly possible. 

That’s why we’re excited to announce our latest Prisma® Cloud release, which introduces Code to CloudTM intelligence  with contextual, intuitive security to provide risk context: see how auto-correlated issues pose a threat to your business, understand the applications deployed across clouds and classify business critical assets and view the full app lifecycle and link production vulnerabilities back to the source code

Discover how the biggest innovations in Prisma Cloud are helping organizations prioritize and fix critical application risks at the source, in a matter of minutes. You'll get to: 

- Learn how you can move past operational inefficiencies caused by stitching together siloed solutions and effectively reduce risk across the app lifecycle
- Gain a simple and intuitive approach using code-to-cloud intelligence as the ultimate method for breach prevention
- Recognize the growing connection between Cloud Security and AppSec, and explore the future of innovation in this AI-powered landscape

You won’t want to miss this exclusive event where you’ll hear directly from leading industry experts about Prisma Cloud innovations that protect applications from code to cloud.

CNAPP Supercharged:  A Radically New Approach to Cloud Security

Don’t Settle for Second-Class Security. Demand the Best.

Cybercriminals continue to devise new ways to compromise endpoints which are targeted as a primary access point for infiltration. These devious adversaries can bypass defenses by avoiding the use of known indicators of compromise (IoCs) and attack techniques. 

To thwart these attacks, you need best-in-class endpoint security that prevents, detects and responds to threats. Traditional endpoint protection solutions just can’t keep up. It’s time for an upgrade.

In this session, we will:
 - Demonstrate the limitations of legacy endpoint protection platform (EPP) solutions.
 - Explore recent innovations to endpoint protection, like EDR and XDR, that help put a stop to today’s most dangerous threats.
 - Analyze recent endpoint attacks and how they were defeated with best-in-class endpoint security.

The Endpoint of No Return

Untangling the Global Attack Surface: Inside our latest Unit 42® Attack Surface Threat Report.

Attack surfaces are expanding in complexity due to growing cloud services and edge computing. However, it’s challenging for security teams to keep track of assets to effectively manage their attack surface.

Unit 42® studied Cortex® Xpanse™ data from 250 organizations and their internet-accessible exposures. They discovered attackers are taking advantage of new Common Vulnerabilities and Exposures (CVEs) faster than ever before.

Watch this webinar where our experts shine a light into our "2023 Unit 42 Attack Surface Threat Report." Viewers will walk away with an understanding of:
  - Top attack surface risks across the world.
  - The uniqueness of various industry attack surfaces.
  - Key recommendations for proactively managing your attack surface.

Don't miss gaining a competitive edge over attackers and ensuring your attack surface is secure. 


Palo Alto Networks Speakers:
Matt Kraning, CTO, Cortex 
Ross Worden, Senior Consulting Director, NAM DFIR, Unit 42
Abhishek Anbazhagan, Product Marketing Manager, Cortex Xpanse

Insights for Securing Your Fragmented Attack Surface

Your 30-Day, 90-Day and 180-Day SOAR Adoption Plans

Security automation, orchestration and response (SOAR) can greatly enhance the productivity and effectiveness of a SOC. However, without the expertise to properly implement best practices, SecOps teams could find themselves adrift and unable to realize the full benefits of SOAR.

Join our webinar with Josh Zelonis, director of security strategy, to deep dive into the journeys of our most successful XSOAR customers and their real-life deployments. You’ll better understand:
   - What a successful customer journey looks like.
   - The three stages of successful automation deployments.
   - Our most popular content packs.

The Insider’s Guide to SOAR Adoption

The damage caused by malware is well known, so limiting that damage is always a top priority for cybersecurity teams. Unfortunately, manually investigating an attack, including gathering data from multiple security products, can take a long time, during which malware may continue to propagate.

Let the new Cortex XSOAR Malware Investigation and Response content pack be your new detective investigating attacks and automating remediation tasks for you.

In this webinar, we share:
- Best practices for automating and speeding up malware investigations.
- How to leverage your EDR tools, sandboxes, and other SOC tools in automated workflows.
- How to get real-time intel for an in-progress attack versus trying to piece data together after the fact.
- How to fully optimize your EDR tools such as Cortex XDR, CrowdStrike Falcon, and Microsoft Defender to speed up detection and shut down potential attacks.

Join us to find out how your team can speed up malware investigations and reduce attacker dwell time.

Our Speakers:
- Shravanthi Reddy, Sr. Product Marketing Manager, Cortex XSOAR
- Brian Miller, Director Product Management, Cortex XSOAR
- Nicholas Ericksen, Solutions Architect, Cortex XSOAR

Automating Malware Investigation & Response

Malware

Automation

Response Time

SOAR

Cyber Intelligence

IT Security

SecOps

Endpoint Security

Threat Intelligence

Network Automation

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The application development community features top thought leadership focusing on optimal practices in software development, SDLC methodology, mobile app development and application development platforms and tools. Join top software engineers and coders as they cover emerging trends in everything from enterprise app development to developing for mobile platforms such as Android and iOS.

Application Development

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Join this new, vibrant community to learn and connect with top thought leaders, startups and banks who are disrupting the financial services industry. Keep up with the latest news and trends in Fintech and take part in lively debates on topical issues and challenges.

Fintech

The accounting and finance community on BrightTALK features presentations from leading accountants and finance professionals. The accounting community includes tax planning strategies, QuickBooks webinars and other accounting webinars, while the finance community features presentations on financial capital regulations and forensic data analytics. Join the conversation by attending live financial and accounting presentations and connecting with industry thought leaders.

Finance

Get powerful insights to run your business. CEOs, CFOs, CMOs, COOs, CTOs and CIOs are among the leaders in this community who connect with peers and experts to grow their businesses.

CxO Strategy

In the business management community, commercial experts will be sharing webinars and videos on an array of subjects. From sales and marketing, to finance, productivity and growth, this content will help you stay up-to-date with the current economic environment and provide timely management insight to drive business growth.

Automating Malware Investigation & Response

Presented by

About this talk

More from this channel