Name: The CISO’s Take: Navigating Risk, Resource Constraints, Compliance, & More
Start: 2024-12-12T17:00:00Z
End: 2024-12-12T17:00:22.000Z
Location: BrightTALK
Rating: 5

A global leader in Supply Chain Detection and Response,  SecurityScorecard empowers swift management and mitigation of critical third-party risks.

Our mission is to make the world a safer place by transforming the way organizations understand, mitigate, and communicate cybersecurity risk to their boards, employees, and vendors. Here, you'll find content filled with experts chatting through the evolving cybersecurity threat landscape, how to monitor (and remediate) your cybersecurity posture (and that of your vendors), potential regulation around cyber risk mitigation, and more!

You can monitor your organization's risk with a free account here: https://securityscorecard.com/free-account-trial/

The risk landscape is changing faster than ever. Cyber incidents now spark operational shutdowns, vendor instability exposes sensitive data, and regional disruptions cascade into financial and reputational loss. Risks that once seemed separate now move together and demand an integrated response.

Join Dr. Aleksandr Yampolskiy, CEO of SecurityScorecard, and Jenna Wells, CEO of Supply Wisdom, for a thought-provoking discussion on how leading organizations are redefining readiness in a world of converging threats.

Discover how continuous, multi-domain intelligence helps teams anticipate disruption, act faster, and build confidence across the enterprise.

Learn how to move beyond cyber awareness toward continuous readiness, where real-time insights drive decisive action, regulatory assurance, and resilience that lasts.

Key Discussion Themes: 
• Why readiness today demands a unified view across cyber, financial, operational, and compliance domains
• How connected intelligence empowers security and risk teams to prioritize what matters most
• How collaboration between Supply Wisdom and SecurityScorecard helps enterprises operationalize continuous monitoring and rapid response

Redefining Readiness in an Era of Converging Risk: Why managing cyber risk means managing every kind of risk

La ciberseguridad es hoy un pilar estratégico para proteger a las organizaciones y garantizar continuidad del negocio. En este webinar en vivo, exploraremos cómo planificar la estrategia de ciberseguridad para 2026, utilizando SecurityScorecard como aliado clave en la medición, gestión y reducción de riesgos.

Planificando La estrategia de Ciberseguridad 2026, usando SecurityScorecard

Over half (52.6%) of Indian vendors experienced a third-party breach in the last year,  a signal that India’s globally embedded vendor ecosystem is both a powerhouse and a prime target.

From IT services to pharmaceuticals, attackers are exploiting trust relationships to move laterally across organizations. 
Learn how smarter oversight and continuous monitoring can help secure one of the world’s most critical supplier landscapes.

Our experts, Vikram Bhatti and Adam Denyer-Hampton will discuss: 

• What makes Indian vendors both high-value and high-risk?
• Why vendor scores in India are so polarized — and what that means for you
• Navigating the paradox of secure-yet-breached IT providers
• Red flags to watch when onboarding pharma, auto, and semiconductor suppliers
• Real-time risk monitoring and how to uncover hidden fourth-party exposures
• Practical advice for building resilience across India-dependent supply chains

A Security Assessment of Key Indian Suppliers: Third-Party Cyber Risks to Global Supply Chains

Is your supply chain a cyber risk blind spot? Vulnerabilities within your vendor ecosystem can severely impact your organization's security and bottom line. If you're grappling with limited visibility, complex supplier networks, and the constant threat of third-party breaches, this webinar is for you.

Join us to discover how a managed Supply Chain Detection and Response (SCDR) service, like SecurityScorecard MAX, transforms your approach to vendor risk. We'll explore:

- How to move from merely identifying risks to actively remediating them and building a stronger defense.
- How proactive, expert-led vendor engagement and continuous monitoring directly translate into significant cost savings and operational efficiencies.
- The differences between traditional third-party risk management and managed supply chain detection and response,
- Best practices and success stories from your peers who have adopted this new approach.

Fortifying Your Supply Chain: The ROI of Managed Supply Chain Detection and Response

The STRIKE Threat Intelligence team at SecurityScorecard has just unveiled a new research report on a sweeping espionage operation weaponizing home routers into a global spying operation.

The report on Operation WrtHug underscores a critical shift in global espionage: State-backed actors are systematically co-opting consumer devices like your home router to build pervasive spy networks.

Join SecurityScorecard's STRIKE Team—Gilad F. Maizles (Security Researcher), Marty Kareem (Signals Collection Engineer), and Ryan Sherstobitoff (Field Chief Threat Intelligence Officer)—alongside Shannon Vavra, award-winning journalist and Senior Content Writer at SecurityScorecard, for a discussion of the findings and implications of this global espionage campaign:

• The Unique Digital Fingerprint: How STRIKE unearthed thousands of compromised ASUS routers worldwide.

• The Geopolitical Web at Play: Why the operation heavily focused on Taiwan and how the attack's methods align with previously observed China-affiliated campaigns.

• The End-of-Life Threat: Key mitigation steps against attacks that exploit End-of-Life (EoL) devices.

Reserve a seat today!

Read the report and visit the blog on the research: https://securityscorecard.com/blog/operation-wrthug-the-global-espionage-campaign-hiding-in-your-home-router

The Silent Spies Hiding in Thousands of Devices: Operation WrtHug

Are you stuck in a reactive cycle of third-party risk management? Today's threat landscape demands organizations move beyond limited visibility of their supply chain ecosystem and basic due diligence. 

Join us for this session as we demystify the supply chain cybersecurity maturity curve and outline the concrete steps required to turn fragmented defense into a coordinated, long-term capability to identify, prioritize, and take action on cyber risks. We will break down the entire journey from basic due diligence to the most mature stage: supply chain incident response.

In this webinar, you will learn how to:

- Benchmark Your Maturity: Understand the four stages of supply chain cybersecurity maturity and pinpoint the constraints that are holding your program back.
- Implement the SCDR Framework: Discover the approach of Supply Chain Detection and Response (SCDR) and how it shifts your focus from passive measurement to active, coordinated action.
- Leverage Key Accelerators: Learn how you can overcome roadblocks and dramatically accelerate your progress up the curve.
- Achieve Quantifiable Results: Discover how to transform your TPRM team into supply chain incident responders.

From Checkbox Compliance to Active Defense: Mastering the Supply Chain Cybersecurity Maturity Curve

What if you could harness the power of AI to transform your third-party risk management program?

In today's complex supply chain risk environment, managing cyber risk is no longer just about receiving a single security rating and traditional vendor assessments. Manual processes leave security teams spending countless hours gathering data and chasing down responses. This time-consuming, reactive approach leaves you vulnerable and unable to focus on the most critical threats. You need a smarter, more efficient way that provides deeper, proactive insights, such as industry benchmarking for vendors and automating workflows to prioritize the highest-risk issues.

Join us to learn how SecurityScorecard is leveraging AI to help you:

-- Automate Your Workflows: Automatically trigger questionnaires and streamline the entire assessment process.
-- Leverage Intelligent Automation: Analyze vendor documents and auto-fill questionnaire responses, saving you time and ensuring accuracy.
-- Prioritize with Precision: Analyze your portfolio to identify the most critical risks and prioritize your remediation efforts.
-- Operationalize with Ease: Discover how to integrate AI-driven insights into your existing systems for a truly seamless and efficient program.
-- Turn Data into Action: Get a clear, quantifiable view of your risk posture, enabling you to make smarter, data-driven decisions.

Luke, Anne, and Kelsey will discuss our AI vision, how we use AI responsibly and securely, our current AI offerings, and the future of AI at SecurityScorecard. 

Please come with questions! We want to make this webinar interactive and relevant to you.

AI-Powered Third-Party Risk Management: Go Beyond the Score

Únete a nuestro webinar en vivo y descubre cómo automatizar la gestión de riesgos de terceros para fortalecer la postura de ciberseguridad de tu cadena de suministro.
Mostraremos cómo las organizaciones pueden anticiparse a las amenazas con un enfoque más eficiente, continuo y proactivo.

Automatizando la gestión de Riesgos de Terceros

We've entered a new era of cyber risk, where attackers have shifted from targeting organizations directly to exploiting the weakest links in their supply chains. This is a critical concern for CISOs, as a single breach can have catastrophic global consequences.

As regulatory bodies intensify their focus on supply chain cybersecurity, many organizations find themselves unprepared to effectively manage their supply chain risk programs. Enter Supply Chain Detection and Response (SCDR). Join us to discover how you can enhance your organization’s security posture and protect against sophisticated threats

Becoming Supply Chain Resilient: Lessons from Recent Cyber Outages
--> Supply chain disruptions can be catastrophic, highlighting the need to know your supply chain (KYSC) for cyber resilience. Security teams must map dependencies, identify critical vendors, and gain visibility into their extended ecosystem. 

Transforming Supply Chain Security into Proactive Detection and Incident Response
--> Explore the latest tactics, techniques, and procedures cybercriminals use to target supply chains and how a managed service can streamline security processes and reduce operational costs.

From Reactive to Resilient: A New Mindset for Supply Chain Cybersecurity

We've entered a new era of cyber risk, where attackers have shifted from targeting organizations directly to exploiting the weakest links in their supply chains. This is a critical concern for CISOs, as a single breach can have catastrophic global consequences.

As regulatory bodies intensify their focus on supply chain cybersecurity, many organizations find themselves unprepared to effectively manage their supply chain risk programs. Enter Supply Chain Detection and Response (SCDR). Join us to discover how you can enhance your organization’s security posture and protect against sophisticated threats.

--> Becoming Supply Chain Resilient: Lessons from Recent Cyber Outages
--> Supply chain disruptions can be catastrophic, highlighting the need to know your supply chain (KYSC) for cyber resilience. Security teams must map dependencies, identify critical vendors, and gain visibility into their extended ecosystem. 
--> Transforming Supply Chain Security into Proactive Detection and Incident Response
--> Explore the latest tactics, techniques, and procedures cybercriminals use to target supply chains and how a managed service can streamline security processes and reduce operational costs.

As boards face AI risk, digital transformation, and evolving regulation, technical expertise has become essential. But when it comes to board seats, CISOs or CTOs are often underrepresented.

Why Every CEO Needs a CISO or CIO on the Board and How to Get a Board Seat if You Are One

Adversarial AI is geometrically making cyber a symmetric threat, fundamentally altering the cybersecurity equation. However, there are leaders who have successfully navigated these emerging challenges and understand the implications. Join Dr. Aleksandr Yampolskiy (CEO & Co-Founder, SecurityScorecard) and Dr. Srinivas Mukkamala (CEO, Securin Inc.) as they dive into:

- Adversarial AI geometrically making cyber a symmetric threat - How AI is eliminating traditional defender advantages and creating equal-footing warfare
- AI in general, what it means for a new attack surface - The expansion beyond traditional vectors into AI-specific vulnerabilities and exploitation methods
- Are we prepared and ready for AI attacks - Current organizational readiness, gaps in defense capabilities, and what immediate action is required

Save your seat today!

Adversarial AI: The New Symmetric Threat Landscape

China-linked threat actors, nation-state threats, and criminals are strategically targeting critical infrastructure and telecommunications in the United States. These operations have compromised presidential campaign communications and telecommunications firms.

Telecom infrastructure’s legacy technology, sprawling networks, and sensitive information make it a high-value, hard-to-defend target for resourced hackers. This webinar will convene SecurityScorecard experts to discuss geopolitical stakes, operational challenges, and defense strategies needed to counter these threats.

- Why telecom is a priority target for China-linked actors and what Salt Typhoon reveals about systemic vulnerabilities
- How public-private coordination can improve detection, response, and resilience across the telecom ecosystem
- Practical steps to strengthen visibility, harden defenses, and secure the telecom supply chain through continuous monitoring

Register today!

Defending Telecommunications and Critical Infrastructure Against China-Linked Threat Actors and Emerging Risks

Your business relies on a complex network of suppliers. This creates opportunities for attackers. New research shows that over 70% of organizations experienced a material third-party cyber incident in the past year. Your current risk management strategy may not be enough to protect you.

This webinar explores the critical findings from our 2025 Supply Chain Cybersecurity Trends report. We surveyed nearly 550 global security leaders to understand the gap between perceived security and actual resilience.

Join us to learn:

- Why visibility is a critical failure point. Fewer than half of organizations monitor the cybersecurity of even 50% of their nth-party supply chains. Most companies are blind to their most significant risks.
- How leaders assess the impact of an attack. Breaches create a chain reaction of consequences. These include financial recovery costs, production downtime, and service delivery disruption.
- Why confidence may be an illusion. 88% of executives express concern about supply chain risks. Fewer than half are "very confident" they could maintain operations after a critical vendor incident.
- How to move from passive monitoring to active response. Many security programs rely on vendor questionnaires and cyber insurance. See why leading teams are integrating rapid incident response to build true operational resilience.

Beyond Prevention: Why Your Supply Chain Requires Real-Time Incident Response

“The Israel-Iran conflict underscores a critical shift in modern warfare: Cyber-operations are no longer secondary but fundamental to geopolitical disputes.”

Join Ryan Sherstobitoff (Field Chief Threat Intelligence Officer), Gilad Maizles (Security Researcher), and Shannon Vavra (Intelligence Content Strategist) for this webinar, where they’ll take a deeper dive into the:

-- 250K+ messages analyzed and the role of Telegram
-- Rise of hybrid threat actors and more complicated attribution
-- Future of cyber warfare in conjunction with kinetic conflict

Save your seat today!

From the Depths of the Shadows: IRGC & Hacker Collectives of the 12-Day War

“It is also a common trap of giving inexperienced customers a false sense of security…” 
~Navigating Supply Chain Cyber Risk

TPRM processes today are filled with thousands of pages of questionnaires, assessments, and more, but does that status quo really help secure your vendor ecosystem?

Join Aleksandr Yampolskiy (CEO & Co-Founder, SecurityScorecard) and Alex Golbin (Co-Author, Navigating Supply Chain Cyber Risk) as they chat about:
-- The journey to becoming a TPRM expert and how the space has evolved 
-- Best practices for organizations to better manage their vendor ecosystem risk
-- How the AI agent economy is set to impact the future of TPRM

Save your seat today!

The Author’s Take: The Past, Present, & Future of Third Party (Cyber) Risk Management

“If you are solving problems at human speed, you are at a huge disadvantage, because your attackers are operating at machine speed.”

As cyber risk – in both the financial services sector and more broadly – accelerates at the pace of automation and AI, securing our future requires practitioners to be more strategic than the threat actors after our assets.

Join Aleksandr Yampolskiy (CEO & Co-Founder, SecurityScorecard) and Peter Keenan (CISO, Lazard) as they discuss:
-- The evolution of the threat landscape 
-- How organizations can go from compliance to cyber resilience
-- Best practices on managing cyber risk within the financial services ecosystem

Save your seat today!

The CISO’s Take: Navigating Cyber Risk in Financial Services

“The best way to compromise a ‘secure organization’ was to go find the things they didn’t know about.”

Vulnerability management – within both the enterprise as well as the vendor ecosystem – is largely broken. 

Join Aleksandr Yampolskiy and HD Moore for this webinar discussing:
-- HD’s career arc from offensive to defensive security
-- how to better secure the enterprise and vendor ecosystem
-- the state of vulnerability management today and the future of cybersecurity

Save your seat today!

The CEO’s Take: Blind Spots in the Enterprise & Ecosystem

“In 2024, at least 35.5% of all data breaches originated from third-party compromises.”

Join Aleksandr Yampolskiy (CEO & Co-Founder, SecurityScorecard) and Nick Schneider (President & CEO, Arctic Wolf) for this discussion on:
-- How to start and stay scrappy, even as you scale an organization
-- Using AI to augment human talent and be more valuable to customers
-- Making security work for both the enterprise and the vendor ecosystem

Save your seat today!

The CEO’s Take: Making Security Work

With vast confidential data, financial services are high-value targets for hackers. The industry's digital evolution demands a proactive, strategic approach to security. Join Aleksandr Yampolskiy and Jeff Lunglhofer for actionable insights on:

- Identifying and understanding the latest cyber threats to finance.
- Addressing the vulnerabilities created by digital platform growth.
- Overcoming the challenges of increasingly complex attacks.
- Implementing strategies to enhance organizational cyber resilience.

The CISO's Take: Securing the Future of Financial Services

Despite the connection with Robert De Niro, we won’t be spoiling Zero Day for you yet. But there is a large intersection between the future of media, cybersecurity, and AI, and we’re excited to jump into it!

Join Aleksandr Yampolskiy (CEO & Co-Founder, SecurityScorecard) and Sandy Climan (President, Entertainment Media Ventures, Inc.) in this webinar, where they chat about:
-- The evolution of media and bridging Hollywood, Silicon Valley, & cybersecurity
-- Building trust in the age of cyber threats & misinformation
-- How AI is redefining risk & opportunity in cybersecurity & entertainment

Save your seat today!

The Media Mogul’s Take: Cyber & Storytelling in the Age of AI

“Human error contributes to 95% of data breaches.”

From unsecured collaboration channels to poor password hygiene, the attack surface of an organization extends across both its vendor ecosystem as well as all of the employees within it.

Join Aleksandr Yampolskiy (CEO & Co-Founder, SecurityScorecard) and Marc van Zadelhoff (CEO, Mimecast) for this discussion on:
-- Lessons learned in the shifting cybersecurity and collaboration landscape
-- How to improve human risk management today
-- Considerations across your vendor and nth-party ecosystem

Save your seat today!

The CEO’s Take: The Human Element of Security

In retrospect, it’s a lot easier to determine whether or not something has been overhyped. But for the moment? We’re bullish on agentic systems – and their adoption. 

Is your enterprise ready for the age of autonomous AI?

Join Aleksandr Yampolskiy (CEO & Co-Founder, SecurityScorecard) and Ilya Mezyin (SVP, Head of Data Science, Dun & Bradstreet) for this discussion on:
-- the evolution of the data landscape and the algorithms and models they feed
-- managing AI risk and compliance across the enterprise and within product innovation
-- the rise of AI agents and the challenges they’ll need to overcome for adoption

Save your seat today!

The Data Scientist’s Take: Making AI Work for the Enterprise

“Doing well by doing good” – there’s something to be said for that.

Join Aleksandr Yampolskiy (CEO & Co-Founder, SecurityScorecard) and Craig Newmark (Founder, craigslist, Craig Newmark Philanthropies) for this discussion on:
-- Building craigslist and some of the decisions made along the way
-- Philanthropic efforts to bolster U.S. cybersecurity and resilience
-- Initiatives to improve cyber civil defense and discerning use of AI

Save your seat today!

The Philanthropist's Take: Bolstering Cyber Civil Defense

“150 companies account for 90% of the technology products and services across the global attack surface. 41% of those companies had evidence of at least one compromised device in the past year.”

With organizations as interconnected as they are, even organizations who “have” good cybersecurity are only as good as their weakest link. 

Join Aleksandr Yampolskiy (SecurityScorecard) and Joe Levy (Sophos) for their take on:
-- Shifts in the cybersecurity landscape (past, present, and future)
-- Nth party risk and the importance of bridging the cybersecurity divide
-- Digital detritus and bolstering cyber resilience within the ecosystem

Save your seat today!

The CEO's Take: Bridging the Cybersecurity Divide To Address Cyber Risk

New year, new threats… Except some aren’t so new; they’ve been years in the making. As the future of financial services evolves from relying on traditional banking to other platforms, securing our future requires practitioners to be more strategic than the threat actors after our assets.

Join Aleksandr Yampolskiy and Jeff Lunglhofer for their take on:
-- The evolution of the threat landscape and financial services
-- Best practices around MFA and boosting cyber resilience
-- Predictions for 2025

Save your seat today!

The CISO's Take: Securing the Future of Financial Services & More

99% of Global 2000 companies are directly connected to vendors that have had recent breaches. Coupled with the concentration risk of just a fragment of these vendors across the supply chain, understanding your vendor ecosystem is more important than ever.

Join Aleksandr Yampolskiy (CEO & Co-Founder, SecurityScorecard), Oleg Stryzhak (Digital Supply Chain Risk Manager) and Tom Thimot (CEO, Supply Wisdom) as they dive into:
-- Key trends and threats within the cybersecurity landscape
-- Multi-domain risk monitoring and benefits of a holistic TPRM approach
-- Predictions for the 2024 security landscape, and more!

Save your seat today!

Secure Your Supply Chain: Expanding Your Risk Horizon Beyond Cybersecurity

“There is no machine unlearning.” 

Data sits at the intersection of privacy, security, and trust, and in the AI era, this is more important than ever. Accordingly, people, processes, and technology are crucial to the more responsible use of data and AI governance. Join Aleksandr Yampolskiy (CEO & Co-Founder, SecurityScorecard) and Kabir Barday (CEO & Founder, OneTrust) as they dive into the:
- Impact of a dynamic regulatory regime and threats on the use of data in AI
- Different “chapters” of how to build and scale an organization, including some caveats around balance and fundamental shifts impacting the state of product-market fit
- Best practices in TPRM, the future of organizations with respect to trust, and more!

Save your seat today!

The Founder’s Take: The Responsible Use Of Data In An AI Era

“Culture” is often thrown around as a differentiator, but for plenty of companies, it’s often ephemeral or just a list of bullets on the website (or the office walls). So it shouldn’t really come as a surprise that the tech industry has long been known for its high turnover. 

However, there are cultures that have clearly driven companies to success; NetApp was recognized as one of the Best Companies to Work For® consistently for many years. Join Aleksandr Yampolskiy (CEO & Co-Founder, SecurityScorecard) and Tom Mendoza (former President and Vice Chairman, NetApp) as they dive into:
- Tenets of culture that bring teams together and incentivize the behaviors that drive success for the business
- How the focus of an organization should shift as it gets off the ground and scales
- Best practices to prepare for and work with your Board, and more!

Save your seat today!

Creating A Culture That Drives Success

Building a start-up – cybersecurity or otherwise – has plenty of ups and downs. 

Join Aleksandr Yampolskiy (CEO & Co-Founder, SecurityScorecard) and Ross Haleliuk (Head of Product, LimaCharlie) as they chat about:
- Venture in Security and Cyber for Builders
- Factors of failure (and lessons learned) in building teams and cybersecurity start-ups
- Trends and solutions that might shape the future of cybersecurity

Save your seat today!

The Builder’s Take: Tales from the Crypt & The Future of Cybersecurity

Between malicious threat actors (cue data breaches and cyber attacks) and risk concentration of vendors within the technology landscape (cue cascading cyber incidents), having a resilient cybersecurity supply chain is more important than ever.

But first, you need to know and understand your cybersecurity supply chain.

Join Aleksandr Yampolskiy (CEO & Co-Founder, SecurityScorecard), Ofer Klein (CEO & Co-Founder, Reco), and Andrea Bailiff-Gush (Head of Marketing, Reco) for this webinar, where they’ll discuss:
- Best practices for detecting connected nth-party and shadow IT and securing them
- How to protect your organization with a holistic – inside-out and outside-in – cybersecurity approach
- Metrics that matter and promising solutions within the cybersecurity landscape

Breaches Beyond Borders: Securing Your SaaS Enterprise & Vendor Ecosystem

DARPA. Expanse (Qadium). Escape Dynamics. Stanford and Caltech. Google Ventures and Sequoia. From entrepreneurship to academia to VC, there’s a lot to unpack.

Join Shaun Maguire (General Partner, Sequoia Capital) and Aleksandr Yampolskiy (CEO & CO-Founder SecurityScorecard) as they discuss:
- Key things to note within the investment landscape
- How to build and scale businesses that are category creators
- Lessons learned in making and/or taking mentors and opportunities

Save your seat today!

The Investor-Operator’s Take: Irrational Motivation to Build & Scale Businesses

Cybersecurity is increasingly a team sport; you aren’t going to boost your cyber resilience without engaged executives and secure suppliers.

To that end, join SecurityScorecard’s Aleksandr Yampolskiy and the Cyber Rescue Alliance’s Kevin Duffey for this discussion on:
- Benefits of a more collaborative cybersecurity community
- Building on highly predictive cyber risk scores to improve security posture 
- Best practices to engage your executives, employees, and vendor ecosystem to move the dial on managing (and reducing!) cyber supply chain risk 

Save your seat today!

Engage Executives & Support Suppliers to Boost Cyber Resilience

It wouldn’t be a webinar in 2024 if we didn’t talk about AI. 

But we’re going beyond the hype and taking a more practical approach. Join Aleksandr Yampolskiy (CEO and Co-Founder, SecurityScorecard) and Michael Schrage (Visiting fellow, Imperial College Business School; Research fellow, MIT Sloan Initiative on the Digital Economy) for this discussion on how AI-powered:
- Selvesware and recommendation engines will shape the future of self-improvement
- KPIs can continuously learn and improve an organization’s growth
- Data-curation can drive both insights and security in the future

Save your seat today!

Selvesware, Enhanced Metrics, and The Future of Advice

When start-ups scale-up, their cybersecurity -- or lack thereof -- is increasingly viewed as the backdoor into the larger organizations they serve.

Join Aleksandr Yampolskiy (CEO and Co-Founder of SecurityScorecard) and Harry Moseley (former CIO at Zoom, KPMG, and more) for a conversation on the:
- evolution of the C-Suite's interest in cybersecurity and data within an organization
- strategies to emulate (and avoid) in scaling up the security architecture of a growing organization
- key things to think about in scaling the security of organizations in an era where third-party breaches are on the rise

Save your seat today!

Cybersecurity In An Era of Scaling Start-Ups & Data Breaches

DoubleClick. MongoDB. Gilt Groupe. Business Insider. Zola.com. Nomad Health. And so many more. 

Join Kevin Ryan (the “Godfather” of NYC Tech) and Aleksandr Yampolskiy (CEO & CO-Founder SecurityScorecard) for this webinar discussing the:
- Ideas worth incubating in the NYC tech space in 2024 and beyond
- Broader trends to note in what may be the next innovative start-ups
- Lessons learned in scaling up across various stages of building an enterprise

Save your seat today!

The Founders’ Take: Strategies for Start-Ups & Scaling Up

“Companies are in the cross hairs of hackers of many stripes, and corporate leaders have become de facto national security decision-makers.” ~ Sue Gordon and Eric Rosenbach 

Years later, the words are prescient in an era of increased cyber conflict across companies and countries.

Join Aleksandr Yampolskiy (CEO & CO-Founder SecurityScorecard) and the Honorable Sue Gordon (former Principal Deputy Director for National Intelligence) for this discussion on the:
- Evolution of (cyber) security over the past few years, including the types of threats Russia, China, and others pose
- Best practices for decision-makers and their teams, including communication and execution across different levels of an organization
- Role of public-private partnerships, including which organizations are helping drive security forward

Save your seat today!

Public-Private Partnerships: Rebuilding Trust In An Era of Cyber Conflict

Complexity breeds insecurity: vulnerabilities and zero-day exploit campaigns are increasing in velocity like never before. However, there are plenty of solutions and steps organizations can take to proactively manage supply chain cyber risks, stay ahead of evolving threats, and improve their cyber resilience.

Join Aleksandr Yampolskiy and Renaud Deraison as they discuss:
- Vulnerability assessment and management in an increasingly complex ecosystem
- Entrepreneurship in the cyber security space
- The evolution of our digital infrastructure and the future of cyber security

Save your seat today!

About Renaud Deraison 
Renaud Deraison, Co-Founder and former CTO of Tenable, is widely regarded in the global security community as the father of the Nessus vulnerability scanner. He has authored multiple patents and also serves as an Advisor at multiple companies, including SecurityScorecard.

About Aleksandr Yampolskiy
Dr. Aleksandr Yampolskiy, Co-Founder and CEO of SecurityScorecard, is a globally recognized cybersecurity innovator, leader, and expert. Yampolskiy has served as CTO at BlogTalkRadio and was also CISO at Gilt Groupe, overseeing IT infrastructure security, fraud, application development, and PCI compliance.

The Founders’ Take: Strategies for Cyber Resilience Despite Insecurity

It’s no surprise that one of the most daunting challenges faced by CISOs is the task of persuading their organization to invest in security capabilities. Security experts often focus on very granular, technical details, while boards want ROI and risk quantified in dollars and cents. 

But in an era of increasing regulations, cost-cutting measures, and a surge in third-party cyber risk at the enterprise level, how can cybersecurity practitioners and CISOs better translate cyber risk into the language of their board and stakeholders? 

Join distinguished CISO and security leader, Jim Routh and Aleksandr Yampolskiy, CEO and Co-founder of SecurityScorecard, as they discuss strategies on how CISOs can: 
- Demonstrate ROI in cybersecurity, aligning priorities of the security organization to broader business goals
- Identify KPIs that matter, including the benefits and pitfalls of security ratings
- Understand your audience and speak the same language as the board, opting for the economics and storytelling over tech talk
- Navigate the evolving cybersecurity landscape, including how the new SEC regulations and increased C-level personal liability will change the way CISOs communicate with the board

About Jim Routh
Jim Routh is a distinguished CISO and security leader with over 3 decades of experience at Fortune 500 companies, including American Express, Aetna, CVS Health, JPMorgan Chase, and MassMutual. He also serves as an Advisor and Board Member at multiple companies, including SecurityScorecard.

About Aleksandr Yampolskiy
Dr. Aleksandr Yampolskiy, Co-Founder and CEO of SecurityScorecard, is a globally recognized cybersecurity innovator, leader, and expert. Yampolskiy has served as CTO at BlogTalkRadio and was also CISO at Gilt Groupe, overseeing IT infrastructure security, fraud, application development, and PCI compliance.

A CISO’s Guide to Demystifying Cyber Risk for the Board

The CISO’s job has always been hard… and it is about to get a whole lot harder. New regulations place additional reporting and compliance requirements squarely on the head of security leaders. 

In this webinar, Joe Sullivan (former Chief Security Officer at Facebook, Uber, and Cloudflare and current CEO at Ukraine Friends) and Aleksandr Yampolskiy (SecurityScorecard CEO and Co-founder) talk about how CISOs can weather this new normal and protect their business — and themselves — from the onslaught of new reporting requirements and compliance mandates. 

Expect to hear about the:
- Impact of the new SEC cyber reporting rules 
- Implications of the SolarWinds case in exposing CISOs to personal liability
- Steps CISOs should consider to secure their companies and themselves, including benefits and pitfalls of security ratings
- Importance of threat intelligence for federal governments during geopolitical conflicts and cyber warfare
- Ukraine Friends' mission, including how people and technology can restore normalcy and connectedness
- Ways security leaders can thrive in this new normal, including investment in personal development, teams, partners, and tools

About Joe Sullivan
Joe Sullivan has been at the forefront of managing security risk in prominent high-tech companies. He served as the Chief Security Officer at Cloudflare, Uber, and Facebook, where he oversaw the protection of billions of users and their data. Joe was also involved in a landmark legal case for a breach at Uber that serves as a precedent for executive liability in cybersecurity going forward.

About Aleksandr Yampolskiy
Dr. Aleksandr Yampolskiy, Co-Founder and CEO of SecurityScorecard, is a globally recognized cybersecurity innovator, leader, and expert. Yampolskiy has also served as CTO at BlogTalkRadio and was also CISO at Gilt Groupe, overseeing IT infrastructure security, fraud, application development, and PCI compliance.

The New Normal for CISOs, Security Ratings, and Cyber Warfare

The Executive's Take

99% of Global 2000 companies are directly connected to vendors that have had recent breaches, per our latest collaboration with the Cyentia Institute. (Isn’t that a thought just in time for spooky season?!)

Join Aleksandr Yampolskiy (CEO & Co-Founder, SecurityScorecard) and Tom Quinn (CISO, T. Rowe Price) as they dive into:
- 3rd-, 4th-, and nth- party risk management with respect to evolving business needs
- Navigating the new normal of CISOs, including compliance and resource constraints
- Metrics that matter and the future of cybersecurity

Save your seat today!

The CISO’s Take: Navigating Risk, Resource Constraints, Compliance, & More

Cyber Security

Cyber Risk Management

Vendor Resiliency

Vendor Risk Management

CISO

Risk Management

Compliance

Incident Response

Metrics

Are you an IT service management professional interested in developing your knowledge and improving your job performance? Join the IT service management community to access the latest updates from industry experts. Learn and share insights related to IT service management (ITSM) including topics such as the service desk, service catalog, problem and incident management, ITIL v4 and more. Engage with industry experts on current best practices and participate in active discussions that address the needs and challenges of the ITSM community.

IT Service Management

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The unexpected nature of natural disasters and other disruptive events means that preparation is key to managing disaster recovery and business continuity planning. Join the business continuity and disaster recovery community for live and recorded presentations discussing best practices for business continuity planning, disaster recovery programs and business continuity management. Learn from BCDR experts to develop your critical infrastructure and gain insight into tactical solutions to your BCDR issues.

Business Continuity / Disaster Recovery

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

The CISO’s Take: Navigating Risk, Resource Constraints, Compliance, & More

Presented by

About this talk

SecurityScorecard