Data breaches in 2016 got even more personal with big hacks of adult entertainment sites and social media databases. Hackers mined these for gold, in other words, valuable data to create social engineering attacks, ransom operations and identity theft. According to Gemalto’s Breach Level Index, the number of stolen, compromised or lost records increase by 86% in 2016, while the number of breaches decreased by 4%. Hackers are going after more data than ever before, and they are finding it in large databases that are left relatively insecure.
Whether consciously or not, hackers have grasped the idea of situational awareness. They have figured out how to exploit these golden opportunities by keeping a pulse on what is going on. It seems too simple to be true, but it goes back to the age-old principle of information is power. Getting the information comes from being aware of one’s surroundings. To become situationally aware, companies need to change their mindset- building a walled garden isn’t an option anymore. During the webinar, we will look at the major data breach trends and findings from 2016 and discuss how this information can help develop your situational awareness. Join us as we cover topics like:
-What we can learn from Jason Bourne about knowing one’s surroundings
-What we can learn from hackers to better protect valuable data
-What we as security professionals can do by going back to the basics of accountability, integrity, auditability, availability and confidentiality
-How to change our mindset in a new era of a hacker driven gold rush
RecordedJul 11 201745 mins
Your place is confirmed, we'll send you email reminders
New data tells us that companies are making progress when it comes to securing the Internet of Things and the data it produces, but there is still a long way to go in order to secure the projected 20 billion connected devices by 2023. In order to assess the current state of affairs, Gemalto recently surveyed 950 IT and business decision makers around the world with awareness of IoT in their organization. Some of the results were encouraging, while others were less so.
According to the global survey, security is clearly an emerging priority. Companies are now devoting 13 percent of their IoT budgets to security, up from 11 percent last year. Ninety percent said they believe security is a major consideration for their customers and 97 percent believe that a strong approach to IoT security is a key competitive differentiator.
In addition to these data findings from the global study, this webinar will discuss:
•The top technologies companies are utilizing to secure IoT infrastructure and data
•Which countries are most advanced when it comes to the security of IoT
•What companies think about the role of government regulation on IoT security
•Which companies in the IoT ecosystem are most responsible for the security of data
•Are companies adopting Security by Design when it comes to IoT products and services
•What role will technologies like Blockchain play in IoT Security
Following the webinar, attendees will receive a free copy of the global IoT Security report as well as other research and white papers on IoT security.
Security and risk management professionals face ever-increasing needs to encrypt various types of sensitive data stored on-premises, in private and public clouds and in hybrid environments in order to protect their organizations in the event of a data breach. Compliance mandates, internal security audits, data residency issues and threats of hackers are driving the requirements for enterprises to develop a centralized enterprise-wide encryption strategy to prioritize sensitive data protection. In addition, regulations, such as the EU General Data Protection Regulation (GDPR), have dramatically increased pressure on security professional leaders to review and revamp their approach to encryption key management.
To meet these needs, security professionals are using a growing number of encryption tools to protect data within a variety of data storage environments. These may be located within local and external IT environments and systems, such as file stores, databases, big data platforms or various clouds. However, encrypting data in each of these environment results in the creation of islands of encryption and diverse key management platforms which increases complexity, costs and risk of data loss.
In this webinar, you will:
• Gain insight into trends that are driving the digital cloud transformation and how key management plays a role
• Understand the importance of developing a centralized approach to encryption key management
• Examine where and when you should encrypt your organization’s data and typical key management use cases
• Learn how to implement an enterprise-wide key management operational model that can reduce cost of ownership and minimize overall risks
Graeme Pyper, Regional Director A/NZ at Gemalto and Vaqar Khan, Senior Security Consultant, UL Identity Management & Security
Amazon, eBay, Alibaba, Black Friday, Cyber Monday amongst others are all fuelled by online credit card payments. Even traditional bricks and mortar businesses accept card payments through point-of-sale devices, online or via applications on mobile devices. This trend is only going to grow as the world move towards a cashless society.
With the same motivation as criminals stealing cash, in the digital age cyber criminals are now stealing personal financial information from payment card transactions and payment processing systems.
The PCI Security Standards Council (PCI SSC) offers a set of standards and supporting materials to enhance credit card security. For retailers, financial institutions, payment processors, and a range of other organizations that store, process and/or transmit credit card data, and the service providers that enable their businesses, compliance with the relevant the PCI standards (e.g. PCI PTS, PCI DSS, PCI PIN, PCI P2PE, PCI 3DS) is critical to ensure the safe handling of credit card information at every step.
This webinar will discuss and provide helpful and practical information on:
•The overview of PCI standards and how they apply to businesses
•Encryption and key management requirements in PCI and how to comply with focus on PCI DSS, PCI PIN, PCI P2PE and PCI 3DS
•How to secure sensitive cardholder data & meet the critical challenges of complying with PCI standards
Garrett Bekker, Senior Security Analyst at 451 Research and Stephane Vinsot, Senior Director, IAM Product Strategy at Gemalto
Up until now, PKI hardware’s limitations meant companies could not adopt cloud and mobility projects without having to completely ‘rip and replace’ their current security framework. As a result, companies have been using smart cards and tokens to allow their employees to authenticate themselves while accessing corporate resources, but this was limited to activity within the enterprise perimeter. In addition, companies that use PKI credentials for email encryption and digital signing have also been limited to on-premises environments.
In this webinar, you will learn about how organizations can deploy SafeNet Trusted Access and benefit from single sign on (SSO) and high assurance PKI-based authentication, making it easier and more secure to access cloud and web-based apps and resources from wherever and on any device. Using the solution, employees will no longer have to re-authenticate each time they access a resource with their smart card, enabling more efficiency across the company – while allowing enterprises to maintain high assurance security when needed.
In this webinar you will also learn how to build on current PKI investments, and embrace digital transformation without compromising on security, including:
•Enabling cloud transformation: Organizations can extend PKI credentials to access policies, allowing CISOs to maintain security in the cloud by triggering the use of step up PKI-based authentication to cloud and web-based apps when needed
•Facilitating mobility: Employees can access enterprise applications within virtual environments with their PKI credentials. This means that employees and consultants will be able to access corporate apps via a VDI, from any device and carry out certificate-based transactions, even if they can’t use their smart cards
MNP: Danny Timmins, Cyber Security; Miller Thomson LLP: Imran Ahmad, Business Law Partner; Gemalto: Todd More, SVP Encryption
We live in an environment of ever-increasing cybersecurity risks. As new mandatory breach reporting regulations come into effect on November 1, 2018 – the stakes will soon be even higher.
Canadian organizations must also be prepared to communicate with federal regulators and all affected parties the details of any cyber attack that could potentially lead to “real risk of significant harm.” – or experience costly financial, legal and reputational damages well-above the loss of data and proprietary information.
During this insightful webinar, MNP, Miller Thomson LLP and Gemalto will provide all the information you need to understand the new rules, ready your organization and better protect yourself from the growing criminal and regulatory threats all around you.
Gary Marsden, Senior Director of Data Protection Services at Gemalto
While the technological and commercial advances of the cloud have created significant opportunities for enterprises, service providers and IT vendors alike, this cloud-driven transformation has also undone conventional approaches to data security and created compliance challenges when it comes to data control and ownership.
These changes have unwittingly drawn us into a realm of increasing threat vectors, poor security practices and bad actors. From reducing cost of ownership to empowering IT decision making across the value chain, it is safe to say that the cloud means that life will never be the same for anyone.
During this webinar we will:
- Look at the challenges facing today's IT and security teams;
- See how this wave of disruption can be overcome using ever advancing automation, processing and intelligence technologies that can be used to build and deliver security an increasingly diverse IT landscape; and
- Look at how security will need to evolve in the wake of digital transformation.
Michael Gardinar, Principal Architect, Enterprise & Cybersecurity CTO Office, Gemalto; Brandon Dunlap (Moderator)
We’ve all heard that quantum computers are coming; beyond being a boon for materials science they’re going to wreak havoc for cybersecurity. Part 3 of this series from Gemlato will outline the scope of the problem (it’s more than just algorithms) as well as the work required and being done to protect data through the upcoming transition.
SafeNet Trusted Access (STA) is a cloud-based access management service that makes it easy to manage cloud and web access with single sign-on, access policies and strong multi-factor authentication.
Watch the 30-minute demo webinar to learn how you can:
- Simplify user access with cloud single sign-on
- Quickly set up access policies - Start global & go granular
- Enable trust elevation and step-up authentication
- Seamlessly integrate apps with a catalog of ready to use templates
- Optimize security with contextual information
Ferry de Koning, Director Business Development, Gemalto and Gary Marsden, Senior Director, Encryption Products
Fintech startup companies are disrupting the financial services industry, raising more than $120 billion over the last three years. Although these new entrants are changing how money and markets operate, they must still do business within the realities of regulations like GDPR and Australia's Notifiable Data Breaches scheme that the rest of the financial industry must operate. This means that data security and trust are just as important to Fintech companies as it is to traditional banks.
Fintech companies are unique because of their agility, lean operations and that most are built using the cloud and digital technologies that banks are just now adopting. While this makes Fintech companies more nimble and they can enter new markets faster, it also presents more complexities for how Fintech companies need to manage security and meet compliance mandates.
In this webinar you will learn about:
•Fintech compliance and regulation from a data protection perspective.
•How to build a secure the breach strategy using a case study from the physical world
•Understand key elements for building cloud-based data security strategy that fits the needs of Fintech companies
On the eve of quantum computing, the definitive need for crypto-agility is greater than ever. The ability to locate, manage, and securely update digital certificates on a network or on a device seems like a simple task, yet with the advent of new Enterprise use cases and flourishing IoT device introductions, management at massive scale becomes a challenge. Facing mounting pressures, IT security personnel and product managers are tasked with implementing solutions fit for today’s environment plus tomorrow’s post-quantum world. Join renowned Public Key Infrastructure (PKI) expert and Certified Security Solutions (CSS) CTO, Ted Shorter, as he outlines the defense against quantum computing and the IoT device invasion, crypto-agility:
· How can crypto-agility lend itself to a truly future-proof Enterprise and IoT device security strategy?
· Cryptographic kryptonite: demystifying quantum computing
· Challenges with digital certificate/device management at scale
Dr. Shawn Murray, Principal Scientist, US Missile Defense Agency & Director, ISSA International
Ted Shorter, CTO, Certified Security Solutions (CSS)
Michael Gardiner, Principal Architect, Gemalto
Michele Mosca, Founder, Institute for Quantum Computing
Mike Brown, CTO & Co-Founder, ISARA Corporation
Alexander Hanway, Sr. Product Mrky Mgr, Data Protection, Gemalto; Andrea Middleton, Sen Sec. Prod Mgr. NetApp; Brandon Dunlap
The General Data Protection Regulation (GDPR) is the biggest overhaul of EU data protection law in more than 20 years. It’s not simply another regulation. It’s about accountability and it’s reshaping how organizations view and interpret privacy. Join us as we uncover the regulation, define a new lens and perspective to address not only the GDPR, but other regulations which are sure to follow. Understand the ecosystem and seamless integrated security solutions necessary to address these key privacy challenges. Whether you are looking for insight, guidance, or solutions to privacy, join in on this journey with GDPR as a guide to understanding and addressing privacy in today’s organizations.
Cloud, mobile, big data, the internet of things. Your enterprise is undergoing its digital transformation. But these new technologies mean more risk to your data as it moves beyond the perimeter.
You know that a data breach is inevitable. So, when it happens to your business, will your data be secure?
Gemalto’s portfolio of SafeNet identity and data protection solutions provide the centralized data security you need to secure the breach.
Keep your data protected and secure your enterprise’s digital transformation.
Stan Mesceda, Senior Product Manager at Gemalto and Julian Fay, CTO at Senetas
Today enterprises and service providers are increasingly using network functions virtualization (NFV) and software-defined networking (SDN) technologies to design, deploy and manage their networks and cloud-based services. These software-based technologies give organizations cost and operational benefits because they move network functions from dedicated hardware appliances to virtual servers. These same technologies can be now be applied to how encryption is deployed and managed to protect sensitive data and communications the flow across SD-WANs.
In this webinar you will learn about:
•What is the best network fit for virtualized encryption
•How to implement a virtual network encryption appliance in software-defined network
•What are the cost, operational and performance benefits of virtual encryption
•What it means to be transport layer independent and how you can protect network traffic simultaneously across Layers 2, 3 and 4
Thanks to SafeNet Trusted Access by Gemalto you can centrally manage access to cloud applications. The solution is flexible enough to easily adapt to business and security requirements but also convenient for employees thanks to the enhanced Single Sign On capability.
With Safenet Trusted Access, you have a central service that lets you manage single sign on with granular access control and enforce appropriate levels of authentication across your enterprise cloud applications.
For more information visit https://safenet.gemalto.com/access-management/idaas-safenet-trusted-access/
Gorav Arora, Director, Office of CTO, at Gemalto & Ben Rogers, Solution Architect, Venafi
Machines are increasingly taking over tasks traditionally conducted by humans. Moreover, they often work independently to improve business productivity. As more and more machines come into existence, we need to be able to reliably identity which machines should be trusted and which shouldn’t. But the security that protects machine identities can no longer be slowed down by traditional manual or homegrown methods. These methods are no longer sufficient to allow organizations to scale and thrive at the speed of business.
Join us at this webinar to learn how Gemalto and Venafi help organizations address these challenges.
A hardware security module is a dedicated crypto processor, designed to protect the crypto key lifecycle, validated for security by third parties (FIPS 140-2, Common Criteria, PCI HSM, FIPS 201).
A hardware security module is a trust anchor. A trust anchor that protects the things we use every day. Things like SSL, DNS, banking and websites. Mobile devices. Smart meters. Medical devices. National identity cards. Credit card data and PINs. Mobile payments and verbal banking. Digital documents. Passports.
And so much more. Hardware security modules typically are appliances or cards. Appliances or cards that ensure compliance. Simplify audits. Improve performance. Securely generate and store keys.
Hardware security modules are trusted by the most security-conscious companies, agencies, banks, and service providers in the world.
Hardware security modules: trust anchors in a digital world.
For more information, visit https://safenet.gemalto.com/data-encryption/hardware-security-modules-hsms/
Gorav Arora, CTO Office Director of Technology at Gemalto
A familiar buzz word over the past few years has been the Internet of Things (IoT). We have all heard the talk about it being the next big thing, its massive growth potential and the benefits to everyone. The IoT will generate more data, connect more devices and enable more users, and somehow these interactions will be safe and secure.
We take a pragmatic view of IoT, cutting through the hype to uncover the core objective. Furthermore, we take a persona based approach to IoT security, and have identified four main ones: cloud service providers, consumers, device makers and third-party service providers. Each persona faces the obstacle of securing different parts of the ecosystem whether its access, the device, data and/or the user. However, it is necessary that security is provided holistically, as the weakest security link in the chain could compromise it all. In addition to security, the personas are used to demonstrate the ‘Stages of IoT’ from the digital identity of physical products to actualization of new business opportunities. No matter what persona in the IoT ecosystem you are (or are not), the webinar cuts through the hype to understand the real business opportunities and share with attendees the technology tool box (predictive analytics, security, connectivity, data collection and business intelligence) to create and improve services and leverage the generated data internally and externally.
Join us for the webinar, “IoT Security Over Tea: Steeping out the Hype”, to learn more about:
•A grounded perspective on IoT
•Why IoT security matters for everyone
•The persona analysis of IoT security
•Key considerations as it begins to take off
•How to protect what matters most to you
SafeNet Data Protection On Demand is a cloud-based platform providing a wide range of on-demand key management and encryption services through a simple online marketplace. Security is now simpler, more cost effective and easier to manage because there is no hardware to buy, deploy and maintain. Just click and deploy the services you need, provision users, add devices and get usage reporting in minutes.
As the global leader in digital security, Gemalto brings trust to an increasingly connected world. From secure software to biometrics and encryption, our technologies and services enable businesses and governments to authenticate identities and protect data so they stay safe and enable services in personal devices, connected objects, the cloud and in between.
Gemalto’s solutions are at the heart of modern life, from digital payments and transactions to enterprise security and the Internet of things. We authenticate people, transactions and objects, encrypt data and create value for software – enabling our clients to deliver secure digital services for billions of individuals and things.