Name: Are You Prepared? Aligning Your Cyber Defense Readiness to Threat Exposure
Start: 2023-11-02T18:00:00Z
End: 2023-11-02T18:00:38.000Z
Location: BrightTALK
Rating: 4.5

Interpres Security operationalizes cyber threat intelligence to help CISOs and security practitioners reduce threat exposure. The Interpres Platform analyzes the dynamic relationship between all defensive and adversarial capabilities, prioritizes actions, and optimizes the security ecosystem, so you can focus resources on the most relevant threats and vulnerabilities. To learn more about how Interpres Security can help you right-size your defensive strategy against the cyber threats that matter most to your organization, visit InterpresSecurity.com.

Watch this on-demand event featuring Michael Jenks, Co-Founder and CTO of Interpres Security and Ron Eddings, Head of Hacker Valley Media as they discuss how Gartner defines Continuous Threat Exposure Management (CTEM) programs. Starting with a real-world scenario, Mike and Ron discuss the benefits and potential stumbling blocks of CTEM programs, and illustrate the advantages of adopting a “Yes, and…” approach to CTEM. 

The conversation was designed with CISOs and Threat Analysts in mind, as a well-implemented CTEM program can inform business leaders and security teams, reduce costs, and increase ROI for threat-informed defensive strategies. To learn more about how Interpres Security helps organizations validate and monitor their CTEM programs, visit www.InterpresSecurity.com.

Threat Exposure Management - Prioritizing Threats for Strategic Defense

SANS First Look Event: 
It seems that every day cyber attackers come up with a new technique or tactic to breach victim organizations. It can seem daunting for security teams to keep up with the constant barrage of the latest threats and capabilities. Despite the best-laid plans, adversaries can still find a way in if security teams don’t prioritize their investments against the tech that protects against the threats targeting them.

In this SANS First Look virtual event, we look at Interpres Security – a platform built to help organizations examine their current security posture and how they compare against the latest threats and vulnerabilities. However, Interpres goes a step further, by automating the processes of operationalizing TTP-based threat intelligence and focusing on threats targeting your industry or vertical – allowing your security team to identify and defend against the threats that matter. We’ll discuss how Interpres can help you:
- Focus mitigations against likely threats rather than try to protect against “everything.”
- Direct security spending to capabilities that help you strengthen, not weaken, your posture.
- Examine and improve your current security controls against likely threats.

Join Matt Bromiley of SANS and Michael Jenks, Co-Founder & CTO of Interpres Security to learn about Interpres and how they are helping organizations focus on building the right security posture.

SANS: Operationalized Threat Intelligence - Optimize Defenses to Combat Threats

How have the recent SEC actions changed your approach to cybersecurity strategy and compliance?

Join the conversation and examine how the new SEC regulations reshape the cybersecurity landscape, pushing CISOs beyond compliance into strategic business enablers. Patrick “Pat” Arvidson, Chief Strategy Officer at Interpres and Roger Hockenberry, CEO of cyberconIQ and CEO and co-founder of Cognitio Corp. unpack the heightened responsibilities and challenges that #cisos face in this new regulatory environment.

Expect a comprehensive breakdown of the SEC’s new guidelines, along with practical advice on how to implement them. We'll explore the balance between meeting regulatory demands and driving cybersecurity innovation within organizations.

Cyber Tales from the Trenches: The SEC and the CISO

In this Dark Reading News Desk segment Nick Lantuh, Co-founder & CEO of Interpres talks about the shortcomings of the threat intel industry and why operationalizing TTP-based cyber threat intelligence is a must for threat prioritization. In addition to guidance around key features, Lantuh offers up lessons from a couple customer success stories and how their respective approaches made a difference. He also explains why he encourages customers to look at their security needs through a threat-versus-risk filter, and how that can widen their perspective and boost their defenses.

DarkReading | News Desk: Operationalizing Threat Intelligence with Interpres

Cyber defense strategies typically follow a generalized, one-size-fits-all approach that has repeatedly resulted in failure. This is evidenced by the losing battle against adversaries who continue to enhance their attack techniques, costing businesses billions of dollars when data breaches, ransomware attacks, IP theft and other attacks happen. Add to that the fact that security professionals are still using manual spreadsheets to correlate data from SIEMs, EDRs, and a host of other security tools in their stacks. It’s time for a new approach.

The Interpres Threat Exposure Management platform analyzes the constantly evolving relationship between defensive capabilities and adversarial threats to provide an unbiased view of your security posture that focuses resources on the most impactful defensive actions. Join this session to learn:
- The top challenges with current threat-informed defense approaches and why they fall short
- How CISOs and security pros can take a more holistic view of their threat detection ecosystem
- How Interpres has helped real organizations ultimately save time, money, and resources while improving their defensive posture

Webinar | Optimizing Your Defense Surface: From Manual to Automated

According to research from Enterprise Strategy Group (ESG) – a leading advisory firm committed to sharing the latest technology trends and insights – today’s CISOs believe that current cybersecurity methods have become too costly, complicated, and siloed.

A threat-centric approach that incorporates defense surface management may well be the answer that cybersecurity teams are looking for. But what does this look like in practice?

Join this informative Fireside Chat to hear from ESG Senior Analyst Mark Bowker and Interpres Security CEO Nick Lantuh as they walk you through the shortcomings of existing security approaches and the value of a threat-centric strategy. Inside, learn about:

• Top challenges with security management today
• Defense surface management: Key concepts and origins
• Steps your organization can take to validate its security strategy
• And more

ESG | Fireside Chat: A Threat Centric Approach to Cybersecurity

In anticipation of future cyber security challenges, as well as enable organizations to address current ones, the US National Institute of Standards and Technology (NIST) released the draft version of NIST Cyber Security Framework (CSF) version 2.0 for comments on August 8, 2023. Once all comments are submitted on November 4, 2023, this new version will be finalized in early 2024. 

This will be a very important tool against cybersecurity risks in 2024 not only because it is a government issued gold standard for cyber security, but also because it emphasizes cyber security governance and cyber security supply chain risk management. A lot of severe cyber incidents in recent years can be traced to a combination of bad decisions and third parties.

In this presentation, Ralph will give the audience a first look at this new upcoming NIST CSF v2.0 and show how they can use it to protect their companies from a myriad of cyber security risks in 2024 and beyond.

NIST CSF v2.0: A Potent Tool Against Cybersecurity Risks in 2024 and Beyond

This session from industry thought leader will provide a 360-degree view on how to develop a strategy that can easily drive a zero day attack, while maintaining ironclad environment. 

Key takeaways:
- Understand the moving part of your organization entities. 
- Establish an enterprise posture that mirror's your assets. 
- Develop a mechanism to manage attack evolution.

Developing Strategy That Enables Zero-Day Exploitation

Explore groundbreaking insights, uncover staggering findings from a threat analysis report of 1.3 million scanned emails, and discover unparalleled defense strategies against advanced threats. Arm yourself with knowledge and AI-powered solutions to safeguard your digital communication.

How to Stay Protected From Advanced Email Attacks With AI

Companies at a senior leadership level recognize operational risk in the form of  their “Risk Appetite & Tolerance”, defined as “the amount and type of risk that an organisation is willing to take in order to meet their strategic objectives”. 

The question companies should ask themselves is how much can cybersecurity risks identified in the 2024 threat forecast impact organizations technology, and how can they communicate effectively what this means to their organizations' strategic objectives?

Tune into this session presented by disaster recovery and cyber resilience expert Steve Yates as he brings to light the operational risk considerations and resilience options for those “scary” technology moments which can cause organizations to face the Maximum Tolerable Period of Disruption, or when an organization faces tough decisions, one of which may mean no choice but to close down!

By the end of the session, you will be able to:
- Be aware of The 2024 threat forecast and potential cybersecurity impacts on technology. 
- Form an understanding of the difficult language that must be used when dealing with the senior leadership team.
- Be conversant with a joined-up thinking approach when reviewing technology operational risk and identifying resilience measures.

Threat Forecast Vs. Operational Risk: What Keeps You Awake At Night?  Part 2

Hear from cybersecurity industry luminary Mark McLaughlin, former Chairman & CEO of Palo Alto Networks, on the hard truths of data security and how known and unknown threats are impacting organizations.

Learn about the state of data security, the impact of known and unknown threats on organizations worldwide, and the need to move beyond prevention. Or just watch for an inspirational leadership lesson or two. 

Make sure to take a look at the attachments as well - we've added extra learnings on how to optimise data protection and provided you with additional resources to help set you up for success.

The Evolving Data Threat Landscape: A Fireside Chat w/ Mark McLaughlin

Join Jen Easterly, Director of CISA, and Wendy Thomas, Secureworks CEO, in a thought-provoking fireside chat as they share the rising imperative for cyber defense through collaboration. As threats grow and attack surfaces expand, today's security responsibility extends beyond the CISO, to Boards, CEOs, and other business decision-makers. Jen and Wendy will share real world stories as well as strategies that can fortify organizational defenses by ensuring a united front against modern cyber challenges. Learn why the future of cybersecurity is collaborative.

Defend Your Frontiers with Collaborative Cybersecurity Defenses

Within the cybersecurity sphere, there’s a general reluctance to rock the status-quo: think of the “if it’s not broken, don’t fix it” attitude. Although adopting this mentality, given the current vein of debilitating ransomware, phishing, social engineering, and DDoS attacks, could be your undoing.

As such, it’s important for customers to continually evaluate their security tools and procedures, ROI, and gap analysis, and after which then create action plans to bolster their cyber posture.

On the other side of the coin, security vendors must adopt this evaluation mode, too, inviting and actioning feedback from customers and developing their tools with both customers and the adversaries in mind.

Watch this Fireside Chat featuring Katie Ralph, EMEA Solutions Engineering, SonicWall to discover what happens when customers and vendors rest on their laurels, and to learn how to reverse this trend with a cybersecurity assessment framework.

What Happens When Cybersecurity Pros & Vendors Rest on Their Laurels

There is a common sense that companies need to develop and establish a comprehensive cybersecurity strategy to protect their own perimeter from attacks and also react fast and in the right way if they are under fire.
Despite the fact that still many enterprises don’t have a real strategy until they become a victim – which factors should you take into account when you decide to develop and implement a cybersecurity strategy to protect your company?
 
There is no silver bullet, no strategy you can just clone from another company. Different scales of businesses need to develop different strategies based on
- Budget
- Threat landscape
- Targets
- Type of data
- Business sector
 
In our session you will learn how you can develop a cybersecurity strategy that really that is tailored to really protect your business and helps to to react in the right way to mitigate caber attacks. And you will also learn how much budget you should really invest to be protected.

One fits all? No! All you need to develop the right cybersecurity strategy

Organisations are sitting on an ocean of data. On the surface that ocean looks vast, yet stable. But anyone dropped into its depths knows that it’s teeming with life. Vision is limited, but the more you look - the more data you’ll find. Data is the most critical asset of every organisation and securing this data as it rapidly grows across cloud, SaaS, and on premise is once again one of the most significant challenges facing IT and Security teams in 2024. 

As data is now the primary target of cyberattackers with 59% of organisations reporting a data breach in 2022, and the projection is that a typical organisations’ data volume will triple in the next five years, how do you close the cyber resilience gap and secure your data?

In this fireside chat, you’ll hear from Steve Stone, Head of Rubrik Zero Labs, Rubrik, and Simon Ratcliffe as they discuss:

● The disturbing industry trends of malicious actors success rate
● How beating the attackers depends on your readiness to respond
● The growth of data and its impact on cyber resilience

The Data Seascape: What You Don't Know Will Hurt You

Our presentation team will cover 4 key areas that focus on the time-saving advantages that many large language models (LLMs) can offer, but also highlights important considerations for the potential risks to the organization’s reputation, IP, and overall security posture, by using an LLM.

These 4 areas include:
- AI Applied: The current scenario mindset - examining ROI and competitive advantage.
- AI Risk: The worst-case scenario mindset - reputational risk and loss of intellectual property.
- AI Trust: The best-case scenario mindset – aligning brand values with customer values- every relationship is about trust.
- AI Tomorrow: The unknown-scenario mindset – examining the need for acceptable use policies, and development of data-driven risk management systems.

While there are obvious time-saving and cost-reducing benefits that many LLMs can offer, it’s crucial to maintain staunch awareness of the risks to your organization’s reputation, IP, and overall security posture, just from using an LLM.

The AI Elephant in Every Room

In our ever-evolving digital landscape, the fusion of artificial intelligence (AI) and machine learning (ML) technologies has ushered in a new era of innovation and efficiency. However, as we step into 2024, we must also prepare for the darker side of this technological advancement -- the looming cybersecurity threats posed by both AI and ML.

This webinar will dissect the most recent trends and vulnerabilities that cybercriminals are likely to exploit using AI and ML techniques. From AI-driven social engineering attacks to ML-powered malware, we will explore the full spectrum of threats and discuss practical strategies to defend against them. With insights from real-world incidents and cutting-edge research, this webinar aims to equip individuals and organizations with the knowledge and tools needed to safeguard their digital assets and privacy in the face of evolving cyber threats driven by AI and ML technologies.

Will 2024 Bring Us a Year of AI and ML Threats?

For decades, security professionals have been managing the security of their data leveraging Data Loss Prevention (DLP) tools.

However, contemporary teams are embracing a more holistic approach through the adoption of Data Security Posture Management (DSPM).  This webinar will explore DSPM, shedding light on its fundamental principles, its practical implications, and its pivotal role in modern cybersecurity.

Key takeaways include:

1) Understanding the Evolution: Discover the historical context of data security and how DSPM is reshaping the landscape.
2) Navigating Comprehensive Security: Explore the multifaceted aspects of DSPM and its application in achieving a robust data security posture.
3) Strategic Imperatives: Gain insights into why DSPM is not just a buzzword but an essential component for safeguarding data integrity in today's dynamic threat landscape.

Join Metomic CEO, Rich Vibert as he chats to Christopher Reed, CISO at SunFire, and Mackenzie Jackson, Developer Advocate at Git Guardian about the importance of DSPM, and why every business should have it in place.

From DLP to DSPM: Where are we Headed with Data Security Posture Management

The pace of the adoption of generative AI is set to eclipse nearly every other major technology introduction in the past two decades. As an inherently democratised technology usable by technical and non-technical users alike, security professionals are being challenged to leverage it as a tool – and view it as a threat. 
 
In this session, we will examine the defensive and offensive uses of generative AI, and attempt to predict what the future holds for the cybersecurity industry as we adjust to the rapidly growing "new normal". You will learn about: 
 
 • The emerging threat surface created and embodied by generative AI technologies
 • Ways that adversaries use and abuse generative AI, and possible defences
 • A simple way to classify AI workloads that you can easily apply
 • What the future holds for AI-backed security

Generative AI in Cyber Security: A Double-Edged Sword

Emotet, SocGholish and AgentTesla are amongst 2023’s top malware distributed by email messages.  Carl Leonard, Cybersecurity Strategist at Proofpoint, will take a look at what this means for those tasked with defending organisations like yours and how you might adapt based on these and other trends anticipated in the future threat landscape.  

Are you ready for changes in lure topics and threat delivery that seeks to exploit your employee’s willingness to read, click and otherwise interact with malicious payloads?  
How can you help your employees to help themselves and so not have cyber criminals help themselves to your employee’s credentials?

But threats to your organisation are not delivered solely by the external attacker – Carl will also touch on how employee behaviour can present risk to your critical data in terms of careless actions and malicious intent.

Understanding the most critical variable in today’s cyber threats – people.

The 2024 Threatscape

Today’s approach to assess defensive capabilities is broken.  The manual processes used by security teams for threat mapping are manual, time-intensive, inefficient, usually focus on IOC-based threat intelligence, and are reliant on point-in-time data. As a result, there’s a lack of understanding between actual threat and defensive capabilities. New exploits are discovered weekly and with multiple CISA advisories/alerts every month, the process to assess readiness after every release is daunting.

The ability to quickly understand cyber defense readiness is critical to staying on the offensive or left of boom.  What if you could shift this approach from manual to automated and focus preparedness on the threats that matter most?

Join us as we explore a new approach for automating Cyber Defense Readiness that aligns your controls and fleet assets with the threats targeting your organization. We’ll share how Interpres helps organizations reduce their time to analyze security technologies and protective policies from hours to minutes a day.

Are You Prepared? Aligning Your Cyber Defense Readiness to Threat Exposure

Cyber Defense

exposure management

Threat Intelligence

proactive security

Cyber Defence

Cyber Attacks

Cyber Threats

Cyber Incident Response

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Are You Prepared? Aligning Your Cyber Defense Readiness to Threat Exposure

Presented by

About this talk

Interpres | Threat Exposure Management