Name: How to Assess and Protect the Modern SaaS Supply Chain
Start: 2023-04-18T18:00:00Z
End: 2023-04-18T18:00:24.000Z
Location: BrightTALK
Rating: 5

At Energize Marketing, we created the TechTalks community to inform, educate and foster conversations for Technology professionals worldwide. Join our channel to hear thought leaders from leading organizations share interviews, discussions, tips, best practices, insights, and technology demonstrations. Topics include, but are not limited to: the latest IT, cyber security, and digital business transformation pressing issues. Learn more about Energize Marketing by visiting: https://energize-marketing.com/.

Join industry experts Lee Sustar, Principal Analyst at Forrester, and Stephen Lawton, Tech Editor at TechTalks, in an enlightening webcast that delves into the evolving landscape of multi-cloud environments and examines this fast-growing category.

The capability of today's business-oriented clouds to handle high-load AI and machine-learning applications.
The unique advantages a multi-cloud approach can offer.
The ongoing issues related to data movement and integration across different cloud platforms.
Discover how enterprises can overcome cybersecurity challenges, manage data transition costs, and prepare for future technologies like quantum computing. Gain insights into the best practices for operating in a multi-cloud environment, and learn about the common misconceptions that could be hindering your cloud strategy.

Don’t miss this opportunity to gain valuable knowledge from leading experts in the field and enhance your understanding of the benefits and complexities of a multi-cloud environment.

Expert Insights Series: Discover the Benefits of a Multi-Cloud Environment

In the rapidly evolving world of artificial intelligence, understanding the legal and regulatory implications is crucial for corporate leaders, legal counsels, and risk officers. Our upcoming webinar will delve into these critical issues from the perspective of both general and outside counsel, providing you with the insights needed to navigate the complexities of AI and Generative AI in a corporate environment.

Expert Insights Series: Understanding the Legal Implications of AI and Gen AI

Join us for an insightful webinar featuring Debbie Reynolds, Data Privacy Expert, and Stephen Lawton, Technology Editor, as they delve into the evolving landscape of privacy laws in the United States.

Speakers:

Debbie Reynolds: Data Privacy Expert
Stephen Lawton: Technology Editor

Tune in to hear about:

Evolving Privacy Laws: Changes this year and their impact on businesses.
Trends and Implications: What senior management and CISOs need to know.
State Laws Impact: Exploring the Maryland Online Data Privacy Act (MODPA) and its potential national influence.
Legislating for Technology: Adapting laws to address emerging tech like ad-targeting cookies.
Financial Services Privacy: Balancing privacy protection with existing laws like the Graham-Leach-Bliley Act (GLBA).
Privacy Patchwork: Challenges and solutions in harmonizing privacy laws.
Key Insights for CISOs: Overlooked aspects and common misconceptions.

Expert Insights Series: The State of Privacy 2024

Speaker bio:

Jeff Carpenter wants to kill your password. He is passionate about securing identities of all types – human and machine. Having spent the bulk of his career in cyber security and identity working for leading technology companies in the space he finds his energy in helping organizations and individuals take advantage of digital identity to do more and stay safe in the online world. He loves innovating and helping to bring new solutions to market that ultimately enable us to interact and do more together in the digital world. Jeff holds both CISSP and CCSP certifications through ISC2.

Abstract:

The most common password this year is Password, according to Dashlane. People continue to use simple passwords because complex ones are too hard to remember, prompting annoying password resets or even account lockout. But simple passwords are a huge liability, and one of the reasons why credential-related attacks remain the leading cause of breaches in every industry and all geographies. 

Fortunately, there is now broad consensus among IT and cybersecurity professionals that we need to move away from the use of static passwords. But how can it be done with legacy hardware and enterprise apps that will always require them? And how can you extend the passwordless experience to your end-user customers?

Join our webinar to learn about eliminating the use of passwords inside large, complex organizations, so you can protect resources like servers, workstations, VPNs, and more. At the same time, your employees will have a seamless experience that provides quick and easy access to the business apps and resources they need to do their jobs. 
  
You’ll learn:

● How to give users a passwordless experience while logging into legacy systems and apps
● The differences between passwordless for consumers and for workforce users
● The standards driving passwordless, including FIDO2 WebAuthn, SAML, OAuth, and OpenID Connect

Strengthen Enterprise Security by Eliminating P@ssword$

Security teams that struggle with “blind spots” across their employees’ and partners’ systems risk exposure to cyberattacks. Gaining visibility is expensive, relying on outdated security incident and event solutions that lack cost-effective management of telemetry across all attack vectors and the ability to retain over time. And because data is siloed, visibility is both reactive, passively showing what has happened, and not unactionable across the siloed security team. 

Leaders and security teams are consequently under tremendous pressure to deliver in the face of growing security incidents and regulatory requirements – further exacerbated by limited visibility, lack of business context, or shortage of security expertise.

This webinar focuses on how Security Operations innovations, including performance data management and high-performance Security Analytics – cloud scale, lightning-fast speeds, AI, threat intelligence, and more, can turn security professionals into business leaders who protect against attackers on a lopsided battlefield.

     -The evolution of Security Operations from a technology-driven function to a business enabler
     -How leaders can unravel and action their visibility with advances in Security Analytics
     -The role and use cases of GPT in transforming SOC performance
     -Overview and demo of Anomali Security Analytics

Get ahead and stay ahead of your adversaries while solidifying your security posture across your entire organization. Register now for our Security Analytics webinar and unlock the potential of GPT to fortify your SOC’s defense against emerging cyber threats.

Why Security Analytics w/o Total Threat Visibility is a Hammer without a Nail

The use of passwords as the primary means of authentication has long been the standard in the world of cybersecurity. However, this reliance on passwords has created several challenges and vulnerabilities, not to mention costs incurred to mitigate security risks. In response, leaders from IDC, PwC, and ForgeRock are calling for the use of passwordless authentication methods. 

Join us for an exclusive webinar, Time to Kill the Password?, hosted by Jeff Carpenter, Senior Product Marketing Manager at ForgeRock, featuring special guests Jay Bretzmann, Research Vice President at IDC, Eve Maler, Chief Technology Officer at ForgeRock and Avinash Rajeev, Identity Access Management Implementation Partner at PwC, where they will delve into how the adoption of passwordless methods allows organizations can improve their security and provide a better experience for their users. 

Watch this webinar to learn more about: 

- Current state, trends and predictions for the enterprise security landscape 
- Benefits of passwordless authentication 
- Main considerations from enterprises on shifting to passwordless 
- Embarking on your passwordless journey

Time to Kill the Password?

Join us for an interactive panel discussion on Turning Workforce Identity Challenges into Business Wins, where recognized industry thought leaders will cover the following topics:

- How to protect the most vulnerable enterprise resources from costly data breaches
- How to accelerate remote workforce access and increase productivity
- How to onboard employees, contractors, and business applications in minutes
- What to look for in an AI-driven identity governance solution.

Turning Workforce Identity Challenges into Business Wins

Learn how Nudge Security gives you instant visibility into shadow IT.

SaaS applications are making work faster, easier, and more collaborative for teams scattered all over the globe. It's pretty great…unless you're the person who has to manage and secure all those apps. Join us for a demo webcast and see how Nudge Security gives you instant visibility into all SaaS and cloud accounts ever created at your organization, along with the ability to nudge employees toward more secure practices. 

You’ll see how our platform can help you: 

• Discover all SaaS & cloud accounts
• View first user, privileged users, and all users 
• Audit SSO & MFA status along with OAuth grants 
• Identify accounts of former employees for deactivation
• Review vendor breach histories and get alerted of new incidents

Demo: Discover and secure all SaaS apps with Nudge Security

Recent high-profile breaches at Circle CI, Okta, and Slack reflect a growing trend in attackers targeting enterprise SaaS tools to infiltrate not just the targeted organization’s environment, but that of their customers as well. This new reality requires security teams to expand how they define the modern attack surface, and how they approach monitoring and securing it. 

In this session, we’ll analyze recent SaaS provider attacks and discuss ways organizations can protect and defend themselves from such threats with greater visibility of their always-changing SaaS attack surface and digital supply chain.

About the speaker: Danielle has spent over a decade helping B2B technology companies gain a deep understanding of the challenges faced by IT and security teams in order to keep customer needs at the center of product development. Prior to joining the founding team at Nudge Security, Danielle led product marketing for AT&T Cybersecurity. Her professional experiences span cybersecurity, enterprise networking, telecommunications, and brief, but joyous detours into public radio and environmental sustainability work.

How to Assess and Protect the Modern SaaS Supply Chain

Want to make sure your recruitment strategy stays strong and efficient during an economic downturn?
Join Thad Price, Talroo CEO and Talent Acquisition veteran, to:
- Learn how to build an effective recruitment strategy
- Discover tips for recruiting in a recession
- Get tools for hiring the best people for your company

Recession Proof Recruitment Strategy

Security teams are constantly on the lookout for the next hack or vulnerability. With today’s adversaries and attacks becoming more sophisticated, the need for a more proactive approach has never been greater. The problem is that most security teams are stretched thin and overwhelmed, chasing alerts and false positives. 
 
Threat hunting is one of the key activities organizations can utilize to proactively identify threats and look for traces of attackers, past and present, within their environment. Unfortunately, most struggle with visibility and collaboration across silos and the prioritization of threat-hunting activities. In addition, they often employ a manual, analyst-centric approach that can be time-consuming and bring fewer results. 
 
In this session, Patrick McNaught, Solutions Architect at Anomali, will introduce how a threat intelligence-driven XDR solution can help accelerate threat-hunting activities as well as demonstrate how The Anomali Platform can help organizations develop an automated threat-hunting workflow in minutes, enabling them to: 

-Quickly research a threat hunting hypothesis
-Look for evidence of attackers 
-Identify suspected points of a breach for further investigation
 
Join the session and start proactively hunting threats with threat intel-driven detection and response.

Utilizing Intelligence-Driven XDR for Threat Hunting

ITOps and SecOps use an array of tools and data to mitigate security posture exposures, ensure business resiliency, and protect sensitive data. However, audit readiness and compliance validation remain a top challenge.
 
Why? Asset intelligence, across the myriad of users, endpoints, applications, networks and cloud infrastructure, is siloed and fragmented. The higher order need to efficiently aggregate, correlate, and analyze the information is impacted by the disjointed data within different divisions, departments and management tools. With increased audit frequency and scope to meet expanding internal, industry and regulated specifications – how can organizations reduce complications, delays and expenditures?
 
Join Dave Neuman, Advisor and Senior Analyst, TAG Cyber, Ken Pfeil Chief Data Officer, and Jon Davis, CISO at Oomnitza, as they examine the issues impacting audit readiness and compliance validation efficacy and where to apply business process automation to improve audit and compliance efficacy.
 
This expert / practitioner session reviews the operational considerations and means to modernize audit readiness and compliance validation processes. Key topics covered are:
 
- Overcoming data acquisition and analysis gaps that yield audit and compliance exposures
- How to apply ISO and CIS frameworks to facilitate more effective auditing processes
- Mapping policies, technologies and controls for monitoring, investigation, resolution and reporting
- Automating audit processes “from scoping to evidence generation” that enable repetitive, measurable outcomes
- A platform approach to negate incomplete, inaccurate and outdated asset and security data

Why, Where, & How to Automate Audit Readiness & Compliance Validation Processes

The great resignation, hybrid workforce and current economic uncertainty have created unprecedented employee turnover. Beyond the business impact, IT and security teams require a more streamlined and effective approach to remove exiting employee and contractor access to applications, cloud resources and sensitive information, as well as to warrant that respective endpoints, licenses and workspace data are appropriately reclaimed, imaged, disposed or transferred. Given the volume of turnover and the scope of technology, how can organizations ensure secure offboarding process efficacy and operational control?  

Join Jon Oltsik, senior principal analyst and fellow at Enterprise Strategy Group, and Ramin Ettehad, co-founder of Oomnitza, as they examine the challenges impacting enterprise offboarding efficiency, where to apply best practices and how to enable process automation to mitigate the risk of data breach and financial loss.

This expert/practitioner session examines the issues and operational considerations to modernize secure offboarding capabilities and key business processes from Separation to Recovery. Key topics covered are:

Overcoming operational gaps that yield security, compliance, and financial exposures
Mapping offboarding scenarios, policies, technologies and resources, and management systems
Automating processes “from separation to recovery” 
Enabling auditability from deprovisioning and technology reclamation to legal hold, imaging and repurposing
Reducing losses due to unclaimed technology assets and inaccurate reuse, refresh, renewal and depreciation data

Automated Secure Offboarding: Mitigating Data Breach & Financial Loss

According to a 2022 McKinsey report, a staggering 50% of people quit their jobs so far in 2022, and the average turnover rate last year was 47%, cites a PwC Pulse Survey. This unprecedented turnover creates a significant pinch point beyond the impact on hiring efforts: the necessity of establishing a secure and efficient offboarding process.

Removing existing employees’ access to business apps, cloud resources, and sensitive information is just the start. Endpoints, licenses, and workspace data must be appropriately reclaimed, imaged, disposed, or transferred. But during times of high turnover, performing this process manually can be downright daunting.

To help you automate offboarding in your company, tune into this session wherein Jon Oltsik, ESG senior principal analyst and Ramin Ettehad, co-founder of Oomnitza, examine secure offboarding best practices and explain how process automation mitigates the risk of data breach and financial loss during offboarding.

Secure and Compliant Offboarding Best Practices that Prevent Data Breach

Security teams and businesses often get bogged down in the trenches of the security battle. They are relentlessly shifting efforts from one threat or attack to the next. But what is the bigger picture here to guide evolution and making pace with the advances in attack sophistication and security controls? What can inspire, mobilize, and sustain your business and security teams to be the best? 
 
During his time as CSO and Deputy CISO of BT, Steve Benton, VP Anomali Threat Research & GM Belfast at Anomali, developed a set of mantras and mechanics to guide the transformation of security strategy and operations with intelligence as the steel thread through the business and MITRE as the axle for the wheels of operation. In this webinar, Steve will share these mantras and mechanics in a lively discussion with Michael Krieger, Host, Energize Marketing.

Mantras and Mechanics for Intelligence Empowered Organizations

Dark Mode has become a necessary addition to the email marketer’s and designer’s toolkit. User experience is key, but creating emails for dark mode can pose both design and technical concerns.

Join Elliot Ross, SparkPost Email Ambassador and Ben Tweedy, Email Design System Developer at Sparkpost, as they help you better understand what goes into designing for dark mode and answer any questions you might have on the topic. We’ll be covering:

An overview of dark mode and how to avoid common pitfalls within your current implementation
Tips, tricks and insight you can use to start designing for dark mode today
Optimizing your approach for best results
Designing email that meets the needs and preferences of your recipients is key in delivering an experience they will want to actually engage with and table stakes for netting the best results from your campaigns.

There is a lot to consider when implementing and designing for dark mode. Both technical and design elements need to be kept in mind to hit the mark. Join our experts to learn more about how best to use dark mode to design emails your recipients will enjoy interacting with.

Dark Mode for Email Marketers & Designers

In this virtual Send It School class, SparkPost’s deliverability experts will provide the cheat codes you need to achieve rock solid email deliverability. (And no, you can’t actually cheat your way to better inboxing, but these tips really are the key to success!)

In this 60-minute course, you’ll learn pro tips for:

Optimizing opt-in and unsubscribe processes
Complying with various stringent legal requirements
Keeping your subscribers engaged
How to avoid spam traps
Keeping your email lists healthy
Email deliverability is one of the key areas of any email marketing operation, but it can be one that gets overlooked in favor of the more ‘creative’ aspects. Its importance can’t be overlooked, however, and it’s not just about emails landing in your subscriber’s inbox!

Email deliverability goes beyond emails landing in your subscriber’s inbox – although this is a big part of it! Your customers need to be respected and looked after from the point of opt-in (or when they choose to opt-out).

Join our experts to learn more about email deliverability and the importance it plays, not just in your email campaigns, but in your customer lifecycle.

Send It School: 10 Pro Tips for Peak Inbox Performance

SaaS

Supply Chain

Cloud Security

SaaS Security

Data Breach

SaaS Adoption

SaaS Supply Chain

Attack Vectors

Are you an IT service management professional interested in developing your knowledge and improving your job performance? Join the IT service management community to access the latest updates from industry experts. Learn and share insights related to IT service management (ITSM) including topics such as the service desk, service catalog, problem and incident management, ITIL v4 and more. Engage with industry experts on current best practices and participate in active discussions that address the needs and challenges of the ITSM community.

IT Service Management

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The IT project management community on BrightTALK includes thousands of IT project and portfolio management professionals. Find relevant webinars and videos on agile methodologies, scrum strategy, project management processes and more. Attend live webinars or view on demand content presented by recognized thought leaders in the IT project management industry.

IT Project Management

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

How to Assess and Protect the Modern SaaS Supply Chain

Presented by

About this talk

Energize Marketing: TechTalks