Name: How to Assess and Protect the Modern SaaS Supply Chain
Start: 2023-04-18T18:00:00Z
End: 2023-04-18T18:00:24.000Z
Location: BrightTALK
Rating: 5

At Energize Marketing, we created the TechTalks community to inform, educate and foster conversations for Technology professionals worldwide. Join our channel to hear thought leaders from leading organizations share interviews, discussions, tips, best practices, insights, and technology demonstrations. Topics include, but are not limited to: the latest IT, cyber security, and digital business transformation pressing issues. Learn more about Energize Marketing by visiting: https://energize-marketing.com/.

Speaker bio:

Jeff Carpenter wants to kill your password. He is passionate about securing identities of all types – human and machine. Having spent the bulk of his career in cyber security and identity working for leading technology companies in the space he finds his energy in helping organizations and individuals take advantage of digital identity to do more and stay safe in the online world. He loves innovating and helping to bring new solutions to market that ultimately enable us to interact and do more together in the digital world. Jeff holds both CISSP and CCSP certifications through ISC2.

Abstract:

The most common password this year is Password, according to Dashlane. People continue to use simple passwords because complex ones are too hard to remember, prompting annoying password resets or even account lockout. But simple passwords are a huge liability, and one of the reasons why credential-related attacks remain the leading cause of breaches in every industry and all geographies. 

Fortunately, there is now broad consensus among IT and cybersecurity professionals that we need to move away from the use of static passwords. But how can it be done with legacy hardware and enterprise apps that will always require them? And how can you extend the passwordless experience to your end-user customers?

Join our webinar to learn about eliminating the use of passwords inside large, complex organizations, so you can protect resources like servers, workstations, VPNs, and more. At the same time, your employees will have a seamless experience that provides quick and easy access to the business apps and resources they need to do their jobs. 
  
You’ll learn:

● How to give users a passwordless experience while logging into legacy systems and apps
● The differences between passwordless for consumers and for workforce users
● The standards driving passwordless, including FIDO2 WebAuthn, SAML, OAuth, and OpenID Connect

Strengthen Enterprise Security by Eliminating P@ssword$

Security teams that struggle with “blind spots” across their employees’ and partners’ systems risk exposure to cyberattacks. Gaining visibility is expensive, relying on outdated security incident and event solutions that lack cost-effective management of telemetry across all attack vectors and the ability to retain over time. And because data is siloed, visibility is both reactive, passively showing what has happened, and not unactionable across the siloed security team. 

Leaders and security teams are consequently under tremendous pressure to deliver in the face of growing security incidents and regulatory requirements – further exacerbated by limited visibility, lack of business context, or shortage of security expertise.

This webinar focuses on how Security Operations innovations, including performance data management and high-performance Security Analytics – cloud scale, lightning-fast speeds, AI, threat intelligence, and more, can turn security professionals into business leaders who protect against attackers on a lopsided battlefield.

     -The evolution of Security Operations from a technology-driven function to a business enabler
     -How leaders can unravel and action their visibility with advances in Security Analytics
     -The role and use cases of GPT in transforming SOC performance
     -Overview and demo of Anomali Security Analytics

Get ahead and stay ahead of your adversaries while solidifying your security posture across your entire organization. Register now for our Security Analytics webinar and unlock the potential of GPT to fortify your SOC’s defense against emerging cyber threats.

Why Security Analytics w/o Total Threat Visibility is a Hammer without a Nail

The use of passwords as the primary means of authentication has long been the standard in the world of cybersecurity. However, this reliance on passwords has created several challenges and vulnerabilities, not to mention costs incurred to mitigate security risks. In response, leaders from IDC, PwC, and ForgeRock are calling for the use of passwordless authentication methods. 

Join us for an exclusive webinar, Time to Kill the Password?, hosted by Jeff Carpenter, Senior Product Marketing Manager at ForgeRock, featuring special guests Jay Bretzmann, Research Vice President at IDC, Eve Maler, Chief Technology Officer at ForgeRock and Avinash Rajeev, Identity Access Management Implementation Partner at PwC, where they will delve into how the adoption of passwordless methods allows organizations can improve their security and provide a better experience for their users. 

Watch this webinar to learn more about: 

- Current state, trends and predictions for the enterprise security landscape 
- Benefits of passwordless authentication 
- Main considerations from enterprises on shifting to passwordless 
- Embarking on your passwordless journey

Time to Kill the Password?

Join us for an interactive panel discussion on Turning Workforce Identity Challenges into Business Wins, where recognized industry thought leaders will cover the following topics:

- How to protect the most vulnerable enterprise resources from costly data breaches
- How to accelerate remote workforce access and increase productivity
- How to onboard employees, contractors, and business applications in minutes
- What to look for in an AI-driven identity governance solution.

Turning Workforce Identity Challenges into Business Wins

Learn how Nudge Security gives you instant visibility into shadow IT.

SaaS applications are making work faster, easier, and more collaborative for teams scattered all over the globe. It's pretty great…unless you're the person who has to manage and secure all those apps. Join us for a demo webcast and see how Nudge Security gives you instant visibility into all SaaS and cloud accounts ever created at your organization, along with the ability to nudge employees toward more secure practices. 

You’ll see how our platform can help you: 

• Discover all SaaS & cloud accounts
• View first user, privileged users, and all users 
• Audit SSO & MFA status along with OAuth grants 
• Identify accounts of former employees for deactivation
• Review vendor breach histories and get alerted of new incidents

Demo: Discover and secure all SaaS apps with Nudge Security

Recent high-profile breaches at Circle CI, Okta, and Slack reflect a growing trend in attackers targeting enterprise SaaS tools to infiltrate not just the targeted organization’s environment, but that of their customers as well. This new reality requires security teams to expand how they define the modern attack surface, and how they approach monitoring and securing it. 

In this session, we’ll analyze recent SaaS provider attacks and discuss ways organizations can protect and defend themselves from such threats with greater visibility of their always-changing SaaS attack surface and digital supply chain.

About the speaker: Danielle has spent over a decade helping B2B technology companies gain a deep understanding of the challenges faced by IT and security teams in order to keep customer needs at the center of product development. Prior to joining the founding team at Nudge Security, Danielle led product marketing for AT&T Cybersecurity. Her professional experiences span cybersecurity, enterprise networking, telecommunications, and brief, but joyous detours into public radio and environmental sustainability work.

How to Assess and Protect the Modern SaaS Supply Chain

Learn About Informatica Cloud Data Integration-Free

Data teams struggle with making data more accessible and reliable. Dealing with these issues eats away at time better spent on customer insights.

How do you overcome these challenges to reap the rewards?
Find out by watching our on-demand webinar “Prep Your Data for Analytics - Fast, Free and Frictionless.” Hear from our resident data experts about how to:

-Combine the best of both ETL and ELT for faster, easier no-code cloud data integration
-Make your data more accessible and reliable
-See how Informatica’s Cloud Data Integration-Free leads to 50X faster data processing

Prep Your Data for Analytics - Fast, Free and Frictionless

Want to make sure your recruitment strategy stays strong and efficient during an economic downturn?
Join Thad Price, Talroo CEO and Talent Acquisition veteran, to:
- Learn how to build an effective recruitment strategy
- Discover tips for recruiting in a recession
- Get tools for hiring the best people for your company

Recession Proof Recruitment Strategy

Security teams are constantly on the lookout for the next hack or vulnerability. With today’s adversaries and attacks becoming more sophisticated, the need for a more proactive approach has never been greater. The problem is that most security teams are stretched thin and overwhelmed, chasing alerts and false positives. 
 
Threat hunting is one of the key activities organizations can utilize to proactively identify threats and look for traces of attackers, past and present, within their environment. Unfortunately, most struggle with visibility and collaboration across silos and the prioritization of threat-hunting activities. In addition, they often employ a manual, analyst-centric approach that can be time-consuming and bring fewer results. 
 
In this session, Patrick McNaught, Solutions Architect at Anomali, will introduce how a threat intelligence-driven XDR solution can help accelerate threat-hunting activities as well as demonstrate how The Anomali Platform can help organizations develop an automated threat-hunting workflow in minutes, enabling them to: 

-Quickly research a threat hunting hypothesis
-Look for evidence of attackers 
-Identify suspected points of a breach for further investigation
 
Join the session and start proactively hunting threats with threat intel-driven detection and response.

Utilizing Intelligence-Driven XDR for Threat Hunting

ITOps and SecOps use an array of tools and data to mitigate security posture exposures, ensure business resiliency, and protect sensitive data. However, audit readiness and compliance validation remain a top challenge.
 
Why? Asset intelligence, across the myriad of users, endpoints, applications, networks and cloud infrastructure, is siloed and fragmented. The higher order need to efficiently aggregate, correlate, and analyze the information is impacted by the disjointed data within different divisions, departments and management tools. With increased audit frequency and scope to meet expanding internal, industry and regulated specifications – how can organizations reduce complications, delays and expenditures?
 
Join Dave Neuman, Advisor and Senior Analyst, TAG Cyber, Ken Pfeil Chief Data Officer, and Jon Davis, CISO at Oomnitza, as they examine the issues impacting audit readiness and compliance validation efficacy and where to apply business process automation to improve audit and compliance efficacy.
 
This expert / practitioner session reviews the operational considerations and means to modernize audit readiness and compliance validation processes. Key topics covered are:
 
- Overcoming data acquisition and analysis gaps that yield audit and compliance exposures
- How to apply ISO and CIS frameworks to facilitate more effective auditing processes
- Mapping policies, technologies and controls for monitoring, investigation, resolution and reporting
- Automating audit processes “from scoping to evidence generation” that enable repetitive, measurable outcomes
- A platform approach to negate incomplete, inaccurate and outdated asset and security data

Why, Where, & How to Automate Audit Readiness & Compliance Validation Processes

The great resignation, hybrid workforce and current economic uncertainty have created unprecedented employee turnover. Beyond the business impact, IT and security teams require a more streamlined and effective approach to remove exiting employee and contractor access to applications, cloud resources and sensitive information, as well as to warrant that respective endpoints, licenses and workspace data are appropriately reclaimed, imaged, disposed or transferred. Given the volume of turnover and the scope of technology, how can organizations ensure secure offboarding process efficacy and operational control?  

Join Jon Oltsik, senior principal analyst and fellow at Enterprise Strategy Group, and Ramin Ettehad, co-founder of Oomnitza, as they examine the challenges impacting enterprise offboarding efficiency, where to apply best practices and how to enable process automation to mitigate the risk of data breach and financial loss.

This expert/practitioner session examines the issues and operational considerations to modernize secure offboarding capabilities and key business processes from Separation to Recovery. Key topics covered are:

Overcoming operational gaps that yield security, compliance, and financial exposures
Mapping offboarding scenarios, policies, technologies and resources, and management systems
Automating processes “from separation to recovery” 
Enabling auditability from deprovisioning and technology reclamation to legal hold, imaging and repurposing
Reducing losses due to unclaimed technology assets and inaccurate reuse, refresh, renewal and depreciation data

Automated Secure Offboarding: Mitigating Data Breach & Financial Loss

According to a 2022 McKinsey report, a staggering 50% of people quit their jobs so far in 2022, and the average turnover rate last year was 47%, cites a PwC Pulse Survey. This unprecedented turnover creates a significant pinch point beyond the impact on hiring efforts: the necessity of establishing a secure and efficient offboarding process.

Removing existing employees’ access to business apps, cloud resources, and sensitive information is just the start. Endpoints, licenses, and workspace data must be appropriately reclaimed, imaged, disposed, or transferred. But during times of high turnover, performing this process manually can be downright daunting.

To help you automate offboarding in your company, tune into this session wherein Jon Oltsik, ESG senior principal analyst and Ramin Ettehad, co-founder of Oomnitza, examine secure offboarding best practices and explain how process automation mitigates the risk of data breach and financial loss during offboarding.

Secure and Compliant Offboarding Best Practices that Prevent Data Breach

Security teams and businesses often get bogged down in the trenches of the security battle. They are relentlessly shifting efforts from one threat or attack to the next. But what is the bigger picture here to guide evolution and making pace with the advances in attack sophistication and security controls? What can inspire, mobilize, and sustain your business and security teams to be the best? 
 
During his time as CSO and Deputy CISO of BT, Steve Benton, VP Anomali Threat Research & GM Belfast at Anomali, developed a set of mantras and mechanics to guide the transformation of security strategy and operations with intelligence as the steel thread through the business and MITRE as the axle for the wheels of operation. In this webinar, Steve will share these mantras and mechanics in a lively discussion with Michael Krieger, Host, Energize Marketing.

Mantras and Mechanics for Intelligence Empowered Organizations

Data democratization empowers stakeholders and data consumers across critical business processes by seamlessly connecting data intelligence to data delivery. Doing this helps accelerate data science and machine learning initiatives. To deliver this, you need to enable data sharing across on-premises, hybrid and multi-cloud sources. This will make data readily available for self-service discovery and access.

In “Meet the Experts: Fostering Data Sharing with Cloud Data Marketplace,” we’ll explore Informatica’s cloud-native, intelligent solution for data sharing. 

You will learn how our unified solution for predictive data intelligence drives data democratization with:
An intuitive shopping experience for data
Greater flexibility and choice for data delivery
The ability to publish AI / ML and analytics models in consumable packages for data scientists
Multiple entry points for users to access data in the marketplace

Meet the Experts: Fostering Data Sharing with Cloud Data Marketplace

Connecting data producers and data consumers in a data marketplace lets leading hedge fund Point72 spend less time searching for valuable data and more time using it to drive analytics for better business decisions and outcomes.

“Data Sharing Empowers Trust in Analytics at Point72,” an Informatica Data Empowerment Experts webinar, explores how the firm has improved its ability to find, understand, trust, and access reliable data. 

You will learn about:
Uncovering data, enabling trusted use, and bringing stakeholders together
Increasing data democratization and data literacy
Leveraging automation to improve data-driven decisions

Data Sharing Empowers Trust in Analytics at Point72

Dolby Laboratories’ high-fidelity audio and video are iconic. By creating a new platform, dolby.io, they went from supporting just a handful of customers to hosting thousands of users. While this transformation created new market opportunities and increased revenues, it also presented some internal challenges.

Ashish Meta, Dolby’s Director of Global Enterprise Applications, will walk you through the applications strategy needed to support the subscription model and boost customer engagement. 

Topics include how they:
Overcame challenges and successfully moved to a new business model 
Monetized APIs and created a subscription business
Partnered with Informatica’s technology, solutions, customer service and community for support 
Planned for the future and next steps

APIs Enable the Democratization of Dolby Magic

Automate Complex Business Processes in a Hybrid Environment

The faster you can meet customer demands and deliver exceptional experiences, the better you can outperform your competition. In today’s turbocharged marketplace, that doesn’t just mean automating key tasks. It means automating entire business processes.

“Adopting Hyperautomation with Application Integration and AI” explores how leading forklift manufacturer Hyster-Yale Group transforms their business operations with the Informatica Intelligent Data Management Cloud and achieves enterprise-wide hyperautomation. 

We will cover:
Integrating applications in a low-code/no-code environment
Fulfilling API and AI strategies
Using drag-and-drop-capabilities to hyperautomate business processes

Adopting Hyperautomation with Application Integration and AI

SaaS

Supply Chain

Cloud Security

SaaS Security

Data Breach

SaaS Adoption

SaaS Supply Chain

Attack Vectors

Are you an IT service management professional interested in developing your knowledge and improving your job performance? Join the IT service management community to access the latest updates from industry experts. Learn and share insights related to IT service management (ITSM) including topics such as the service desk, service catalog, problem and incident management, ITIL v4 and more. Engage with industry experts on current best practices and participate in active discussions that address the needs and challenges of the ITSM community.

IT Service Management

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The IT project management community on BrightTALK includes thousands of IT project and portfolio management professionals. Find relevant webinars and videos on agile methodologies, scrum strategy, project management processes and more. Attend live webinars or view on demand content presented by recognized thought leaders in the IT project management industry.

IT Project Management

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

How to Assess and Protect the Modern SaaS Supply Chain

Presented by

About this talk

More from this channel