Name: Modern Nux Security and Least Privilege
Start: 2023-02-13T18:44:00Z
End: 2023-02-13T19:30:55.000Z
Location: BrightTALK
Rating: 5

"Your organization likely leverages one or more vendors to support infrastructure, scale computing resources, provide managed IT services, or other areas to assist your business with daily operations. While beneficial, to be sure, there are a number of consistent security challenges that characterize vendor access:
1. Vendor credential sharing, i.e. missing vendors or “always logged on” vendors
2. Hardware replacement, regarding token breaks or corporate-issued laptops
3. Operational overhead resulting from managing multiple systems for vendor access & onboarding.

So, how do you navigate these challenges with your vendors and input the proper levels of privileged access management (PAM)?

Tune into this on-demand BrightTALK webinar to find out, wherein our panel of experts shares vendor PAM best practices and Elliot Jefferson, Identity and Access Team Lead for Northwestern Medicine, gives his perspective from the vendor side of PAM. "

Vendor Access Best Practices with Vendor PAM

"Like any other major IT initiative, privileged access management (PAM) projects are complex and need to be handled with care. However, for many organizations, these implementations can be difficult to navigate and even harder to understand.
So, how can you build a business case for PAM while ensuring a promising journey with favorable outcomes?
Watch this webinar to hear from industry experts as they discuss the potential pitfalls you can fall victim to when integrating PAM solutions and the best ways to combat them for company-wide success."

PAM Pitfalls Webinar - Federated Insurance

"Today, many organizations have turned to privileged access management (PAM) solutions to grant access to the people, identities, and devices that require a company’s most sensitive data. 
But as breaches and cyberattacks continue to get more advanced, it has become critical for businesses to revamp their audit and compliance strategies. How can this best be done? 
Watch this webinar to gain expert insight into the current security landscape, discover the benefits and challenges of PAM solutions, and learn more about:
• Privileged access and attack pathways
• IT Audit and compliance
• PAM solution demos
• And more"

PAM in Action

"Privileged access has expanded greatly in recent years, with almost any identity considered privileged nowadays. No longer is it just limited to IT admins, opening the door for cyber-attack vectors from every angle of your business. This leaves you vulnerable to a devastating breach and at risk for being non-compliant. 
Join us in this webinar where we explore how to improve compliance with your PAM controls. Topics include:
• Privileged access and common attack paths
• The costs of non(compliance)
• Foundational PAM controls
• Value for global compliance and cyber insurance
• Case studies using CyberArk Access Management"

Fast Track to PAM Deployment

"As cyber-attacks continue to grow in frequency and severity, organizations are increasingly dependent on cyber insurance to reduce the financial risks of data loss. 

In consequence of record-breaking breaches and ransomware payouts last year, cyber insurance premiums increased by over 33% and the number of claims continues to climb. However, since cyber insurance is relatively new, questions regarding its coverage, how to choose a policy, and cost management abound.

If you’re considering a cyber insurance purchase, or are renewing your policy, our webinar on Cyber Insurance: A Preparedness Roadmap is for you.

Join the discussion as our panel of experts will assist in avoiding unnecessary cyber insurance stress, answer FAQs, and offer actionable, prescriptive tips to guide you in the right direction.  "

Cyber Insurance Preparedness Roadmap (AMS)

"One of the most effective tactics in thwarting hackers from stealing your web-based data, some would argue, is knowing exactly how these hackers steal your information—and pivot your protection strategy accordingly.  

In terms of web session hijacking, threat actors are after your secrets, and by secrets we mean:
• Passwords
• Cookies
• And stored data like credit card info and addresses.

Watch the following webinar to discover how to defend your web data and secrets from hackers regardless of location, whether your data is keyed-in, on disk, in memory, or part of intercepted communications.  "

No More Cookies for You! Attacking & Defending Credentials in Chromium Browsers

"How well a given solution aligns with the MITRE ATT&CK framework is a common question for IT and security pros researching ransomware resilient offerings. But this information isn’t always straightforward to source, and neither is a detailed breakdown of MITRE’s core components and structure. 

To fill this information gap, Len Noe, a WhiteHat Hacker working with CyberArk, distills the ins and outs of the MITRE ATT&CK framework for ransomware evasion, and explains how CyberArk’s product suite can address—and in many cases mitigate—an active attack at multiple points in the chain using MITRE.

Tune in so you don’t miss these agenda items:
• Overview of MITRE ATT&CK framework
• Ransomware video demonstration
• MITRE Analysis on Ransomware Demo
• Q&A"

MITRE ATT&CK for Ransomware Evasion

"Due to ongoing cloud adoption and digital transformation, the world of privileged access management (PAM) is about to change. More users than ever will require some type of privileged access to business apps, and this expanded user base will lean on auditors and PAM administrators in times of uncertainty. 

Therefore, it’s imperative that you not only provide PAM admins with new controls that streamline their daily tasks; you also must improve the workforce interface, based on modern IAM, that won’t slow users down. 

Access this webinar, presented by CyberArk, to learn how to supercharge your PAM program using 4 new controls and interfaces CyberArk designed for both users and admins in mind:
1. Secure Web Sessions
2. Workforce Password Management
3. Identity Compliance
4. Identity Flows "

Supercharge your PAM program with Modern IAM

Imagine your frustration with package delivery folks walking across your lawn reaches a boiling point, so you pitch a “Keep off the Grass” sign to divert them to your walkway—but this doesn’t stop them. No matter how many signs you put up, your lawn is still the quickest way from their truck to your door.

Now picture this scenario with a security lens: you can anticipate areas of high traffic and prioritize controls, however, your “grass,” i.e. your IT estate, will always be walked on. So how do you properly secure account access and privileges from dynamic threat actors like polymorphic malware?

In this session, Brandon Traffanstedt, Senior Director at CyberArk, will walk you through how to establish comprehensive privileged access management (PAM) in your company, alongside:
• The evolution of PAM and how it exists today 
• 4 strategies to enhance endpoint security and manage nomadic devices 
• Common practices to improve PAM
• And much more

Comprehensive PAM Defending Endpoints, Third Parties, and DevSecOps (OND) (2)

"Is your current endpoint security posture leaving the door open for attackers?
Many organizations don’t have adequate privilege, credential and identity security which makes them extremely vulnerable to cyber attacks. 
Join us in this webinar to explore how a Least Privilege Security Approach is foundational for a robust endpoint security strategy. In this talk, you will learn:
• The power of least privilege 
• How to turn endpoints into dead ends for attackers
• About real use cases from manufacturing and financial services"

From Zero to Immediate Impact with Foundational Endpoint Security

"Your employees’ passwords are likely less secure than you think. For example, according to recent reports from Techradar, Verizon, and Wired:
• 34% of employees share passwords with coworkers
• 40% of passwords were stolen by dumper malware last year
• And upwards of 26 million passwords were stolen from Windows, Notepad, Word, and PDF files.

These shocking statistics illustrate clear gaps in password management. And with employees documenting their business app passwords in excel sheets, browser password auto-fill, and online managers, they pose a major security risk. 

A Workforce Password Manager that empowers secure self-management for business app credentials, however, reduces this risk.

Learn 8 benefits of this solution—and how it works—by watching the following webinar, and glean proven strategies for managing passwords seamlessly across your enterprise.  "

Manage Workforce Passwords Seamlessly Across the Enterprise

"There’s no denying that the rate at which compliance and industry regulations shift today is fast and furious: not only are there regional requirements for America, Europe, and Asia; specific states in the U.S., like California, continue to institute their own compliance laws.

Given this global scope, it’s hard to keep up with the constant regulatory fluctuations. But with a strong access management foundation and adaptable roadmap to enforce informational governance, you’re heading in the right direction.

In this vein, experts from CyberArk and Accenture answer 6 of your most pertinent IT audit and compliance questions and provide practical guidance you can act on. Tune in to discover: 
1. How can we keep up with compliance & regulatory updates?
2. When migrating to the cloud, what do we need to worry about?
3. What are the top pain points when working on an IT security compliance plan?
4. And 3 more"

Audit and CompliancePractical&Strategic Considerations Webinar - 09-14-2022

"Endpoint security suffers from a fatal flaw. And with increased spend giving endpoint security the top spot in information security spending, according to Gartner, organizations like you recognize this fact. However, the increase in spending hasn’t translated into reduced cyber attacks. 
So, what gives?
Join us in this webinar as we discuss the foundational controls being ignored in endpoint security. In this discussion you will learn:
• Analysis on the latest endpoint attack trends
• Why endpoint least privilege is often ignored
• How endpoint security by design is vulnerable to privilege-based attacks
• How to address these endpoint shortcomings"

Endpoint Security Gap Are you leaving the door open to attackers

"Now that identity reigns as the new perimeter—in which the physical perimeter of working within a corporate office has dissolved and our endpoints, and therefore identities, are wherever we are. These locations range from home offices to coworking spaces to business application access via VPN in public cafes.

Given this freeform working model, there’s a rigorous need for security teams to lockdown this “dispersed perimeter” for both human and non-human identities. For instance, you can revoke admin rights from employee devices to stop errant attacks from running amok in your network.

But this tactic alone is not enough. 

Kurt Sand of CyberArk and Tim Phillips from The Register discuss the state of application identity security in this webinar, which includes 5 important 2023 trends, 1 surprising prediction, and best practices to apply in your organization. "

Securing Application Identities in 2023 Five Trends And A Prediction

"With the modern threat landscape constantly evolving, there has never been a more important time to assess your cloud and application security. But according to a recent CyberArk survey, 67% of organizations have not done a formal assessment or education on software supply chain risk.
How can you enable human and non-human identities within your organization to use the resources in your environment safely and securely?
Watch this webcast to learn about 3 ways you can secure your apps and AWS workloads, including a solution designed to help your security teams manage cloud-native secrets from a single, unified view."

3 Easy Ways to Secure Your Apps and AWS Workloads

"On average, companies use 976 applications. And of these 976 applications, only 28% are integrated, according to a 2022 MuleSoft report. 
Failure to integrate applications opens up organizations to risk, which can result in financial and reputational loss. How can you protect your company from such damages? Consider automating your identity processes with CyberArk Identity Flows. 
This webcast explores how, along with closing your data silos, CyberArk’s custom workflows can simplify your onboarding and offboarding processes. 
Watch now to see Identity Flows in action. "

Identity Workflows Made Easy Automating Lifecycle Management [AMS]

"The MITRE ATT&CK 11.2 framework for Linux was just released, a hallmark of the expanded Linux attack surface at the hands of today’s threat actors. For example, because more workloads than ever currently leverage Linux, the scope and variety of data and access attackers can get ahold of has likewise expanded. 

But because of this self-same widespread adoption, you must strike a balance between adding security and preventing detriment to operational ability, as Linux users typically have a lower expectation of constraint compared to other administrators. 

To dial into how the Linux attack landscape is evolving and access 7 proactive Linux security best practices, view this webinar. In the session Cameron Skidmore, Global Solutions Architect at Red Hat, and Brandon Traffanstedt, Sr. Director in CyberArk’s Field Technology Office, will walk you through these and other agenda items. "

Modern Nux Security and Least Privilege

Mitre Attacks

Linux

Red Hat Enterprise Linux

Open Source

Open Source Security

Data Security

Application Security

Software Security

Security Threats

Security Trends

Welcome to the big data and data management community on BrightTALK. Join thousands of data quality engineers, data scientists, database administrators and other professionals to find more information about the hottest topics affecting your data. Subscribe now to learn about efficiently storing, optimizing a complex infrastructure, developing governing policies, ensuring data quality and analyzing data to make better informed decisions. Join the conversation by watching live and on-demand webinars and take the opportunity to interact with top experts and thought leaders in the field.

Big Data and Data Management

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Modern Nux Security and Least Privilege

Presented by

About this talk

More from this channel