Name: Cloud Security Trends and Strategies in the Asia-Pacific Region
Start: 2020-09-23T04:00:00Z
End: 2020-09-23T04:00:58.000Z
Location: BrightTALK
Rating: 4.4

Thales is a global leader in cybersecurity, helping the most trusted companies, organizations and governments around the world protect critical applications, sensitive data, and identities anywhere at scale. Through our innovative services and integrated platforms, Thales helps customers achieve better visibility of risks, defend against cyber threats, close compliance gaps, and deliver trusted digital experiences for billions of consumers every day.

As organizations accelerate their move toward phishing-resistant, passwordless authentication, managing FIDO hardware security keys at scale has become a major operational challenge—especially for highly regulated sectors such as banking and large enterprises.  
 
Join Thales and Microsoft for an exclusive webinar introducing the new joint solution that brings together Thales Authenticator Lifecycle Manager and Microsoft Entra ID to simplify and secure every stage of your FIDO authenticator lifecycle. 
 
Discover how IT teams can streamline onboarding with pre-registration, centrally enforce security policies, and rapidly unblock or revoke FIDO authenticators  —all while maintaining full auditability for compliance. Learn how security leaders can strengthen governance, reduce operational overhead, and future-proof their authentication strategy with a cloud-native, interoperable platform designed for scale. 
  
If you’re looking to eliminate friction in your passwordless rollout and gain end-to-end control over hardware authenticators, this session is not to be missed. 

Key takeaways: 
• Accelerate your passwordless rollout at scale by eliminating manual processes and reducing friction for both users and IT teams. 
• Enhance security and resilience with end-to-end control over FIDO authenticators across issuance, onboarding, recovery, and revocation. 
• Future-proof your authentication strategy with a scalable, interoperable approach jointly delivered by Thales and Microsoft.

Fast Track to Passwordless at Scale: Simplified FIDO Management for the Enterprise

With 80-90% of data being unstructured and created in the cloud , Data Security Posture Management (DSPM) is becoming essential for organizations to understand what data they have, what the risks are to their sensitive data, and understand the journey data takes in their business environment. While this initial visibility and understanding about data and data risks are valuable, it's what comes next that helps you to achieve an outcome for a particular use case. 

Join our featured speakers, Todd Moore, Thales VP of Data Security, and featured speaker Heidi Shey, principal analyst, Forrester, as they discuss how organizations must evaluate automated data security technologies like data security posture management to track and protect data throughout its life cycle.

Attendees will learn:
• Where to look for security gaps in your organization’s current data protection strategy
• Which data security use cases should be prioritized for successful DSPM adoption
• Why DSPM needs to go beyond cloud-centric visibility and native controls
• How artificial intelligence (AI) and post-quantum cryptography (PQC) will impact your data security strategy.
• Plus, Todd Moore will share how Thales can help your team and organization proactively protect your most critical data and prioritize risk mitigation.

Whether you are planning a deployment or refining your current data security strategy, you’ll gain actionable steps to drive better security outcomes and maximize value.

From Visibility to Value: Leveraging DSPM to Safeguard the Data Lifecycle

AI技術の急速な発展により、これまで専門的なスキルを要したボット攻撃の実行ハードルが大幅に下がっています。その結果、悪性ボットによる通信量は前年比2倍以上に増加し、企業のWebサイトやアプリケーション、APIを狙った攻撃が急激に拡大しています。
本セミナーでは、AIを悪用したボット攻撃の最新動向や、その背後にある攻撃者の手口を解説するとともに、企業が今取り組むべきデータ保護・防御対策の最前線について紹介します。弊社が発行する「悪性ボットレポート」の最新データをもとに、検知・防御のポイントをわかりやすくお伝えします。

「前年比2倍超」悪性ボット通信の実態と、AI悪用ボット攻撃への対策最前線

The newly released Thales 2025 Data Threat Report Healthcare & Life Sciences Edition points to a pivotal shift in global cybersecurity. For healthcare and life sciences organizations, the digital risk landscape is becoming more volatile, and the accelerated adoption of generative AI is adding both promise and peril.

While GenAI offers remarkable opportunities for innovation, its rapid rollout often outpaces security safeguards—putting sensitive data in the crosshairs. With many security teams still grappling with new AI-driven architectures, strengthening data protection has never been more urgent.

In this webinar, we’ll share key findings of the Threat Report with a focus on Healthcare & Life Sciences organizations and the steps they’re taking to address compliance mandates, third-party risks, and a rapidly evolving threat landscape.

Analyst Report: The State of Cybersecurity and AI in Healthcare & Life Sciences

This session in the NHS Cyber Assessment Framework (CAF) series explores the Identify function of the framework, focusing on how NHS organisations can uncover hidden risks, strengthen asset visibility, and build a clear understanding of their threat landscape. By identifying vulnerabilities early, healthcare providers can take proactive steps to protect critical systems and patient data. Join Thales experts to discover how to:
• Find and classify sensitive data based on regulatory and organisational requirements.
• Use machine learning to enhance risk detection accuracy and scoring.
• Inspect incoming requests to applications, identify malicious activity, and block attacks before they impact services.

NHS CAF Principles In Focus: Identifying Cyber Risk

Are you aware that 33% of critical infrastructure organizations are in advanced stages of AI adoption, but that 73% cited the fast-moving AI ecosystem as their top concern? Or that only 2% of critical infrastructure have encrypted 80% or more of their sensitive cloud data? Discover how to tackle these and other challenges in 2025 with insights from Accenture, S&P Global, and Thales. 

Join us as we delve into the latest data security trends, challenges and expert recommendations from our latest Thales Data Threat Report Critical Infrastructure Edition. This report includes the responses from 513 security leaders working for key energy, utilities, telecommunications and transportation organizations around the world.

The webinar will cover: 
• How AI changes the ecosystem and impacts security budgets. 
• The challenges of Quantum Computing  
• With an average of 2.1 IaaS and 102 SaaS platforms, complexity makes security more challenging. 
• The threat landscape, root causes and causes of breaches. 
• Recommendations and guidance. 

Attendees will receive a free copy of the 2025 Thales Data Threat Report Critical Infrastructure Edition, prepared by S&P Global for Thales.

2025 Critical Infrastructure Data Threat Report with S&P Global, Accenture & Thales

As the dawn of quantum computing rapidly approaches, today's cryptographic defenses face unprecedented challenges. Organizations must re-evaluate their security strategies to address emerging quantum threats that will render traditional encryption obsolete. At the same time, Artificial Intelligence (AI) is revolutionizing the cybersecurity landscape, offering both new defenses and unique integration opportunities.
Join industry leaders from Thales and Kyndryl for an exclusive webinar, "Navigating Quantum threats: the Good and Bad of the convergence of AI and PQC", where we will explore cutting-edge strategies at the intersection of AI and post-quantum cryptography (PQC). Discover how AI can help identify vulnerabilities, accelerate the transition to quantum-safe architectures, and fortify your organization's defenses against evolving threats.
This session will provide practical insights and actionable recommendations for CISOs, IT Directors, and Business Leaders looking to future-proof their security. Don’t miss this chance to get ahead of the curve in an era where quantum computing and AI define the new frontier of cybersecurity.

Navigating Quantum threats: the Good and Bad of the convergence of AI and PQC

As European organizations navigate evolving regulatory landscapes and increasing cyber threats, the need for digital sovereignty has never been more urgent. Join experts from Microsoft, Thales, and Avanade for a 45-minute session exploring how the Microsoft Cloud for Sovereignty empowers public sector and regulated industries - finance, healthcare, and government - to maintain control over sensitive data while meeting compliance and residency requirements.
This webinar will cover:
• The challenges European organizations face in securing sensitive data
• How Microsoft’s Sovereign Cloud, Avanade, and Thales’ cyber security solutions address these challenges
• Real-world examples of risk-based control and compliance in action

Enhanced Security and Risk-Based Control Over Sensitive Data in Microsoft Azure: A Sovereign Cloud Perspective

This session in the NHS Cyber Assessment Framework (CAF) series explores the Govern function of the framework, and how NHS organisations can establish clear oversight, accountability, and visibility across their digital environments — turning complex cyber data into actionable insight. Join Thales experts to discover how to:
• Gain visibility, control, and insight over sensitive data and compliance status.
• Produce a uniform data risk status and risk score by consolidating disparate risk metrics.
• Prioritise mitigation through clear, evidence-based recommendations for corrective action.
• Reduce third-party and supply chain risk by protecting applications, data, and identities in the cloud.
• Enforce consistent security policies and regulatory requirements over data, access, and identities.

NHS CAF Principles In Focus: Managing Security Risk, Governance, Assets and Supply Chain

Quantum computing’s potential to break traditional cryptographic algorithms poses an urgent threat to data security, trust, and operational resilience. At the same time, regional regulators are mandating organizations to adopt quantum-resilient cybersecurity infrastructures and ensure robust compliance.
In this webinar, Thales and ASTRI combine their cybersecurity expertise to provide strategic insights into the evolving quantum threat landscape. ASTRI plays a key role in post-quantum computing development, offering valuable guidance to governments and enterprises in the region. Their initiatives drive innovation, helping Hong Kong lead in quantum technology advancement.
Experts will discuss practical strategies to transform your security solutions to withstand quantum threats, integrating post-quantum protections seamlessly into your cybersecurity framework. This session is essential for IT professionals and cybersecurity leaders committed to future-proofing their organizations in the quantum era. 
Prepare to safeguard your data and applications against tomorrow’s challenges.
Agenda: 
• Quantum threat landscape and PQC Readiness
• Strategic framework for quantum risk mitigation
Remarks: The Fireside Chat will be delivered in Cantonese, with English terminology and presentation materials.

Fireside Chat x ASTRI: Navigating the Transition to Quantum-Safe Solutions [Cantonese]

Customer identity volumes in financial and insurance firms are growing rapidly, with typical stacks spanning four or more vendors. This complexity fuels friction, elevates security risks -- including emerging threats like AI-powered deepfakes and synthetic identities -- and increases regulatory exposure. 

In Thales’ latest survey, 70% of financial firms face platform sprawl, and over half struggle to balance security, customer experience, operational efficiency, and regulatory requirements. Left unchecked, these challenges put revenue, reputation, and compliance at risk during one of the busiest business cycles of the year. 

Join financial services leaders, strategists, and technologists for a peer-driven discussion on simplifying Customer Identity and Access Management. Hear real-world experiences, compare approaches across use cases, and gain actionable strategies to streamline identity management, enforce consistent security and compliance, and stay agile in a fast-evolving market.

Key Takeaways:
1. Identify architectural bottlenecks caused by CIAM sprawl across legacy and cloud environments.
2. Explore platform unification strategies to streamline identity orchestration and eliminate vendor overlap.
3. Discover how to enforce consistent security policies across hybrid infrastructure without disrupting UX.
4. Learn scalable, API-first CIAM design patterns to meet evolving compliance and customer demands.
5. Hear how financial institutions align CIAM modernization with business continuity and digital transformation.

Panelists: 
Marissa Schlagenhauf, Financial Services Senior Analyst and Risk Consulting Director, RSM US LLP 
Vaishnavi Vaidyanathan, Cybersecurity Leader, RSM US LLP 
Ammar Faheem, CIAM Product Marketing Director, Thales

Simplifying CIAM to Reduce Fraud, Strengthen Security and Elevate UX

AI is revolutionizing industries—but is your organization protected?
Join our exclusive three-part webinar series featuring Securing AI, and learn how to strengthen your AI security posture from evolving threats with enhanced visibility, control, and protection. Each session delivers actionable insights from our AI Security experts.

Episode 3 – Securing AI: Mitigating Cyber Risks from DevSecOps
As AI integrates into DevSecOps cycles, new vulnerabilities emerge—from poisoned training data and compromised model repositories to exploited runtime environments.
In our final session of the Securing AI webinar series, our experts reveal how to embed security without slowing innovation
- AI-Specific DevSecOps Challenges
- Built-in Protections
Secure Your Spot Now to ensure your AI pipelines are protected.

Securing AI: Mitigating Cyber Risks from DevSecOps

Many organizations plan on maintaining on-premises resources for the foreseeable future—either because of logistical or security reasons. Whether applications live in the cloud or on-prem, securing authentication and access is non-negotiable. However, security teams struggle to adopt MFA methods that are both resistant to modern attack tactics, while also maintaining a consistent and intuitive user experience, regardless of what (or where) your employees are accessing.  

In this webinar, we will discuss why some forms of MFA fall short, and how FIDO security keys have become the new industry standard for phishing-resistant authentication—now supported and supplied by Thales for all your applications in the cloud and on-prem. Get a first-look at these latest innovations and explore what’s possible with passwordless authentication.

Extending FIDO Authentication from On-Prem to the Cloud

Identity is no longer just about security in the Banking, Financial Services & Insurance (BFSI) sector — it’s a business-critical priority. 

As institutions grapple not only with AI-driven threats, third-party identity sprawl, eroding customer trust, and intensifying regulatory demands, but also with explosive growth in the number of identities to manage, identity now sits at the core of operational resilience, and if done right, can be turned into a profit center.

This webinar shares key findings from nearly 500 senior executives across the U.S., U.K., Singapore, captured in Thales’ latest survey conducted by ESG: “Identity & Access in Banking, Financial Services and Insurance:” This is one of the largest survey of its kind.

As 2026 roadmaps come into focus, discover how leading institutions are reframing identity, not just as a risk to manage, but as a lever for agility, compliance, and competitive advantage.

Key Takeaways: 

1. Industry Snapshot - An overview of how BFSI organizations are managing CIAM, workforce IAM, and third-party access, highlighting key maturity gaps.

2. Emerging Pressures - An exploration of evolving risks, including regulatory demands, AI-driven threats, and operational challenges impacting identity strategy.

3. Forward-Looking Priorities - Insight into where peers are focusing their identity modernization efforts, and the strategic drivers shaping the 2026 planning.

4. Strategic Guidance - Practical advice to help you refine your IAM roadmap, closing critical gaps while aligning identity with broader business goals.

How Leading Financial Institutions Are Eliminating Friction and Fraud in Digital Access

Data security has shifted from being a bit-part player among a broader cybersecurity discussion to become a standalone discipline, assuming its logical place as the foundation of a wider, multi-tier cybersecurity posture. When organizations can map out and understand their data landscape, they are more confident in their security measures to defend it and reduce the risk of non-compliance —resulting in significant sanctions or penalties from regulators.
In 2026, data security is projected to be the most critical aspect of a digital asset strategy. Data security posture management (DSPM) can provide a firm foundation as your organization builds out transformation projects, including AI and Quantum. 

Join our speakers as we discuss Omdia’s assessment of the DSPM market, qualified vendors, and real-world use cases, including:
• How Omdia defines DSPM into two capability areas: data security and posture management.
• Why AI and quantum introduce new complexities to IT and the DSPM infrastructure.
• What to look for when selecting a vendor.
• How Thales can help build customer-centric business value.

DSPM at a Turning Point: 2026 Outlook for Data Security Posture Management

Finance and insurance firms face a clear and present danger: expanding third-party and B2B risks are stretching identity perimeters to the breaking point. With 74% of organizations seeing surging third-party identity growth and 89% citing external access as a major risk, legacy IAM can no longer keep pace.

In this webinar, you’ll learn how modern B2B IAM serves as financial services’ shield, protecting against breaches while enabling business growth. We’ll explore how risk-based, adaptive IAM can secure vendors, partners, supply chain and external networks, bridging Zero Trust security with business continuity to protect without blocking. Through real-world case studies, expert perspectives, and a practical roadmap, you’ll learn how to balance resilience, compliance, and business growth by modernizing IAM for external and B2B use cases.

Key Takeaways
1. B2B IAM Maturity Assessment: Benchmark your organization’s readiness for modern IAM.
2. Risk-Based Access Insights: Practical guidance on moving from static roles to adaptive, context-aware controls.
3. Third-Party Security Strategies: Tactics for securing vendors, partners, and external networks.
4. Modernization Roadmap: Step-by-step approach to credential vaults, adaptive MFA, and identity orchestration.
5. Resources for Action: Exclusive eBook and whitepaper to reduce your B2B attack surface.

Clear and Present Danger: Securing Third-Party Access with Modern B2B IAM

Descubre cómo las instituciones financieras están transformando la experiencia de pago, combinando seguridad y fluidez. Exploraremos el caso práctico de Click to Pay y Passkey, mostrando estrategias de Autenticación Basada en Riesgo y medidas de prevención de fraude para proteger a todos los usuarios, dispositivos e interacciones frente a deepfakes impulsados por IA, mientras se ofrecen transacciones confiables y sin fricciones que mejoran la satisfacción del cliente y cumplen con los estándares de seguridad más exigentes.

Presentadores:
- Pedro Lara Perez, Identity Expert, Thales
- Rogelio Tejada Galindo, Digital Payment Expert, Thales

Lo que aprenderás:
- Lecciones del caso práctico de Click to Pay y Passkey que pueden aplicarse en tu institución financiera.
- Mejores prácticas para ofrecer pagos confiables y fluidos que mejoran la experiencia del cliente.
- Estrategias efectivas de prevención de fraude frente a amenazas emergentes como deepfakes impulsados por IA.
- Cómo implementar la autenticación con passkey para proteger usuarios, dispositivos e interacciones.

Este taller fue organizado por la Asociación de Bancos de México ABM, A.C.

Construyendo experiencias confiables y fluidas -  Caso Click to Pay & Passkey

En la industria de servicios financieros, proteger la información confidencial es fundamental para mantener la confianza y el cumplimiento. Exploraremos los desafíos únicos que enfrentan las instituciones financieras al administrar secretos, incluidas claves API, credenciales y claves de cifrado. Los expertos de la industria discutirán las mejores prácticas, los requisitos regulatorios y los estudios de casos que resaltan la importancia de la gestión de secretos para proteger los datos de los clientes y mantener la integridad operativa.

El papel fundamental de la Gestión de Secretos en los Servicios Financieros

Simplifying and securing access to the cloud is becoming more complex for IT security teams. Today's enterprises use, on average, 29 different cloud applications and services. In fact, 10% of organizations use more than 100 cloud services. In addition, cloud services are seen as one of the leading source of data breaches. 

This session will discuss how IT security teams can simplify secure access to the cloud while providing a more simple and seamless way for employees to access cloud services without having to worry about password fatigue. This session will also include a live demonstration of SafeNet Trusted Access, Thales' cloud-based access management solution.

Securing Cloud Apps with Next Gen Access Management Solutions (Live Demo)

There is an old Chinse saying, where there is opportunity there is also risk. This applies to the digital transformation journey many businesses are undertaking today. Businesses are driving significant digital transformation initiatives in order to accelerate performance and create new opportunities. Much of this transformation is being powered by the cloud. This means that more data and information is being stored in the cloud, creating significant risk especially for cyberattacks and data breaches. This interactive Tech Talk will discuss the challenges of maintaining a strong security posture in the cloud and how to think ahead of attacks before placing sensitive data in the cloud.  This session will also present a playbook of practical steps organizations should follow for cloud security.

How to Think Ahead of the Attacker: Taking Control of Security in the Cloud

Cloud adoption is the stepping stone for any organization’s digital transformation initiative. As digital-native businesses emerge, and incumbent businesses embark on their journey to transform their internal and external processes; IaaS and SaaS become the very fabric of the business. But as the adoption of cloud services evolves, so does the threat landscape. Often, IT teams find themselves scrambling to keep pace with business needs because their age-old perimeter-based security controls were not built to scale in today’s digital world. 

Join Thales and CipherCloud experts to learn how to navigate this very fluid threat landscape with solutions that scale up with your business needs, and help you achieve the true potential of your digital transformation objectives.

Putting Continuous Security First in Your Cloud-first Strategy

Organizations making the digital transformation have a lot of considerations to make with compliance being one of the most important. In navigating security for digital transformation, it is easy for organizations to fall into the trap of addressing just the most basic compliance obligations first before fully grasping more complex issues that have implications in the software development lifecycle. 

In this session, Thales and VMware Tanzu will discuss how they work together so security serves as a tool that facilitates the transition to the ‘cloud-native’, DevOps world. Attendees will also learn how the collaboration between VMware Tanzu and Thales eases the friction business leaders face in digitally transforming their organizations.

Securing the Application Development Lifecycle at the Speed of DevOps

Seamless authentication and continuous access to online resources has been an elusive target. While many have tried, few have been able to achieve it. The ones who claim success have built it on proprietary protocols and niche implementations that only address a small spectrum of digital security industry. In this talk we describe Continuous Access and Evaluation Protocol (CAEP), a new approach to cybersecurity using a user’s complete online footprint collected through a collaborative exchange of events and signals between multiple parties. CAEP was started by Google, and now has support of many key players in identity and security industry including Microsoft, Cisco, SailPoint, Amazon, Ping and Thales. We will explain how CAEP can help deliver Zero Trust by providing signals and events as input to machine learning capabilities, and thereby address current challenges around continuous access to online resources.

Securing Cloud Access with Continuous Access Evaluation Protocol (CAEP)

In this Tech Talk, you will hear about approaches and be able to ask questions about how to manage and secure the keys to encrypted data in the Google Cloud.

Managing Keys in the Google Cloud Platform

Ensuring secure access into cloud infrastructure is the best defence for cloud computing.  Modern cloud services must accommodate any-any connectivity amongst a wide range of devices, applications and third parties across the Internet and other communication channels.
 
Network encryption provides essential intrinsic protection for cloud services and is mandated in many laws and regulations.
 
Today’s network encryption devices must handle intensive encryption algorithms, operate across a diverse range of cloud architectures and connectivity and be future proof against emerging threats. 
 
In this session Stan Mesceda and Julian Fay will discuss the importance of providing encrypted network access into cloud environments and give strategies for managing the security of cloud environments today and into the future using the Thales HSE product family.

Network Data Encryption: The Key to Cloud Security

There is no shortage of cloud services. While most organizations think of AWS, Azure and Google as the go-to destinations for software, infrastructure and platform as a services offerings, there are also other emerging marketplaces for cloud services. These marketplaces aggregate cloud services from multiple other providers and so give end users the same ability to consume services on-demand with simple pricing and billing but across multiple vendor offerings. In this session you learn more about these types of marketplaces, how they deliver and deploy services and how we are right at the tip of the iceberg in terms of changes in the cloud marketplace world.  Tarik Faouzi from CloudBlue and Gary Marsden from Thales will provide an overview of the market changes, how to best leverage cloud based marketplaces and the associated processes to maximum benefit for your organization.

Rethinking Cloud Marketplaces

Strategic IT initiatives such as O365 adoption, MFA consolidation, SSO for All alongside compelling events such as COVID 19 – often drive enterprise IT modernization. At no time is this more relevant than the present, when cloud adoption, accelerated by the need to support work from home, has exposed many weaknesses in existing on-premises legacy schemes.

This session will discuss why Access Management and Authentication is at the heart of enterprise security and how drives a Zero Trust architecture and creates synergies across IT modernization programs and present a technical demonstration of how a cloud-based access management can simplify user access to cloud services and enterprise apps.

Driving Access Management Adoption in Large Enterprises - APAC Edition

The need to enable mass work from home has exposed weaknesses in existing on-premises security solutions. As traditional security perimeters disintegrate, the login point becomes the front line of enterprise security. 

Now is the time to rethink how identity-centric Zero Trust models can offer an effective strategic framework for transforming security schemes in order to accommodate our users’ need for anywhere, anytime access to cloud applications and services. 

During this session we’ll discuss:
• The Benefits of ID-centric Zero Trust
• How ID-centric zero trust concepts can address the fast moving needs related to COVID-19
• The advantages of identity-centric zero trust for modernizing IAM schemes

Identity-Centric Zero Trust Models for a Multi-Cloud World - APAC Edition

While numerous business transformation and technology modernization initiatives are focused on moving significant workloads to cloud infrastructures and platforms, most organizations will continue to operate a combination of data centers, private-cloud and public-cloud resources for the foreseeable future. 
During this session we will discuss the strategic shifts in the threat landscape, how access security can help mitigate those risks by securing cloud apps at the access point, and how access management solutions can help you comply in an agile way with ever evolving regulations.

How to Leverage Cloud Transformation to Improve Security Profile and Compliance

Cloud trends, including storing sensitive data in cloud and the recognition that data security mandates also apply there, drive both cloud consumers and providers to endeavor to share the challenge of keeping data secure in Salesforce.com. This webinar will discuss those trends, discuss the various challenges protecting data in Software as a Service, or SaaS, environments, and then provide a case study of the rapid evolution of Salesforce Shield Platform Encryption and its leadership in customer key management solutions.

Understanding How to Bring Your Own Key to Salesforce

Cloud trends, including storing sensitive data in cloud and the recognition that data security mandates also apply there, drive both cloud consumers and providers to endeavor to share the challenge of keeping data secure in Amazon Web Services. This webinar will discuss those trends, introduce a cloud data security toolkit, including a solution that fulfills best practices for managing cloud data encryption keys.

Understanding How to Bring Your Own Key - AWS

Cloud trends, including storing sensitive data in cloud and the recognition that data security mandates also apply there, drive both cloud consumers and providers to endeavor to share the challenge of keeping data secure in Microsoft Azure. This webinar will discuss those trends, introduce a cloud data security toolkit, including a solution that fulfills best practices for managing cloud data encryption keys.

Understanding How to Bring Your Own Key to Azure

Strategic IT initiatives such as O365 adoption, MFA consolidation, SSO for All alongside compelling events such as COVID 19 – often drive enterprise IT modernization. At no time is this more relevant than the present, when cloud adoption, accelerated by the need to support work from home, has exposed many weaknesses in existing on-premises legacy schemes. 

This session will discuss why Access Management and Authentication is at the heart of enterprise security and how drives a Zero Trust architecture and creates synergies across IT modernization programs and present a technical demonstration of how a cloud-based access management can simplify user access to cloud services and enterprise apps.

Driving Access Management Adoption in Large Enterprises

The need to enable mass work from home has exposed weaknesses in existing on-premises security solutions. As traditional security perimeters disintegrate, the login point becomes the front line of enterprise security. Now is the time to rethink how identity-centric Zero Trust models can offer an effective strategic framework for transforming security schemes in order to accommodate our users’ need for anywhere, anytime access to cloud applications and services. During this session we’ll discuss:
•        The Benefits of ID-centric Zero Trust
•        How ID-centric zero trust concepts can address the fast moving needs related to COVID-19
•        The advantages of identity-centric zero trust for modernizing IAM schemes

Identity-Centric Zero Trust Models for a Multi-Cloud World

The 2020 Thales Data Threat Report found that 100% of surveyed organizations have sensitive data in the cloud and 57% of it is encrypted.  In addition, the trend shows organizations are encrypting more often to protect brand reputation, authorize data use, and to meet regulations.  However, selecting the right encryption solutions for different cloud use cases isn’t always obvious.  In this webinar we will discuss the available options, trade offs, and how to streamline supporting the ultimate mix of solutions most organizations need to deploy encryption across their multi-cloud and hybrid cloud environments.

Bring Your Own Encryption Strategies for a Multi-Cloud World

A centralized cloud key management strategy puts security professionals in the driver’s seat. However, today only about half of organizations have complete control the keys of the keys to their encrypted data in the cloud. This webinar will review best practices and the different approaches for maintaining access and control over your keys with BYOK and cloud HSM technologies, so your organization will continue to benefit from the scale and cost effectiveness that the cloud provides, while ensuring that data is secure and financial risks are minimized.

Bring Your Own Key Strategies for a Multi-Cloud World

Although most major cloud providers now offer native cloud Hardware Security Module (HSM) services, how do you choose the right cloud HSM? According to 451 Research, 69% of enterprises now have a hybrid, multi-cloud strategy. With hybrid, multi-cloud environments  being the norm in 2020, managing multiple cloud HSMs will increase complexity, cost of ownership and operational overhead.

Join us as we discuss the complexities of managing native cloud HSMs separately, leading to islands of security with different features and rules for each. We’ll show you how the smarter and simpler route is to use a cloud HSM provider that can centrally manage and secure your entire cryptographic operations across all cloud environments.

This informative webinar will cover:
• A current view of the cloud’s impact on IT business models
• Why HSMs are critical to data security on premise or in the cloud
• How creating centralized key management and security strategy will make your cloud life a whole lot easier
• Building blocks for an HSM strategy for security across all cloud and hybrid IT environments

How to Choose the Right Cloud HSM

Several of the most well-known data breaches have involved unsecured Amazon Simple Storage (S3) buckets that resulted in millions of customer data records be exposed. In most cases the main culprit was human error: Administrators who improperly configured the security settings.

While cloud native encryption and key management can be used, these options are mostly “just good enough security” and do not follow best practices for encryption and key management. Using third party encryption and key management solutions give users total control over the security of sensitive data in the cloud. 

For cloud and security teams, understanding the most effective encryption technology available for securing data in AWS can help them make them make the right choices. In this webinar, you will learn about a more secure approach for protecting sensitive data in AWS S3 buckets using Vormetric Transparent Encryption (VTE).

Key topics in this webinar will be:
• Causes of misconfigured permissions to AWS S3 buckets
• What happens if an S3 bucket is intentionally or unintentionally exposed
• Why Bring Your Own Encryption is better than cloud native encryption
• The specific techniques VTE offers to provide a more effective encryption mechanism to secure sensitive data in AWS S3 buckets

Leaky Buckets: Effective Encryption Techniques to Secure AWS S3 Buckets

Thales research conducted earlier this year captured the opinions from risk management and cloud security professionals just as the Covid-19 emergency erupted. Three months on, we have a unique vantage point to assess how this data lines up with the way remote access has played out in reality. Join us in this session to hear the latest trends and future directions in IAM as we discuss the findings of Thales’s annual Access Management Index for North America.

COVID-19’s Impact on How CISOs View Cloud Access Management and Remote Working

Based on the findings from 2020 Thales Data Threat Report – Global Edition, digital transformation and the move to the cloud are fundamentally changing business operations across the globe and are putting organizations sensitive data at risk. According to the report, 50% of all corporate data is now stored in the cloud, and 42% of all data stored in the cloud is sensitive. However, only 57% of that sensitive data is protected by encryption.

In this webinar we’ll address the state of data security for enterprises today, the changing landscape of risks to data due to cloud adoption and digital transformation, and IT security pros priorities for data security. Specifically, you can expect to learn about:
- How the adoption of digital transformation technologies, and especially cloud, is putting sensitive data at greater risk
- The data security challenges facing enterprises today, including emerging threats like quantum computing
- Critical analyst recommendations for how organizations can be most effective when selecting the right tools to protect their sensitive data

The Global State of Data Security: Zero Trust in a Multi-Cloud World

Complexity is one of the biggest challenges to implementing effective data security in the cloud. With numerous products and services needed to discover, protect, and control sensitive data in the cloud and on-premise, it's difficult for IT security professionals to achieve unified visiblity into the efficacy of an organizations data security operations because of the siloed nature of these products and services. In this session you will learn how you can simplify data security with the CipherTrust Data Security Platform. This new and innovative platform from Thales unifies data discovery, classification, encryption and key management in a single solution, giving you a single plan of glass to implement data protection across your entire organization and in the cloud. This session will also have a live demonstration of the platform.

Discover, Protect & Control Your Data in the Cloud

Major cloud providers, from AWS and Azure to Google and IBM, offer a wide range of security services to complement their infrastructure, platform and software as a service offerings. These security services include cloud native encryption, key management and IAM tools. However, most of these offerings provide "just good enough" security and still leave the cloud provider in control of your data, keys and identities. Businesses and organizations need to apply Zero Trust strategies when it comes to cloud providers in order to be in total control of their data and identities both in terms of security best practices and compliance mandates. This session will take a look at how organizations can bring their own security, specifically encryption, key management and access management technologies to their cloud environments and take a centralized approach to applying these technologies to protect data and secure access to all of their cloud environments.

Is Native Cloud Security Enough?

Zero-Trust is a hot industry buzz word with no shortage of solutions from a myriad of vendors.  The greatest challenge has been implementing a comprehensive solution that covers identities, devices, and data end-to-end.  Deploying multi-vendor piecemeal solutions becomes expensive to operate and often leaves exceptions that hackers identify and exploit.

In this session we will introduce the Zero-Trust Triad Framework for a comprehensive cyber security solution that spans all IT assets and users across an organization.

Join us in this session to learn:
• The latest strategies and considerations when architecting a zero-trust solution that include identities, devices and data
• How to secure your business on-premises and through cloud adoptions    
• To control risk while expanding remote workers and broadening use of devices

Introducing the Zero-Trust Triad Framework for End-to-End Cyber Security

The cloud has fundamentally changed the IT and security landscape by breaking down traditional approaches to security with the need for new strategies that move security closer to the new perimeter: data and identities. This panel discussion will address the current state of cloud security, practical approaches for protecting data and identities in the cloud with zero trust strategies that focus on centralized encryption, key management, cloud access management and identity governance strategies.

Speakers: 
Garrett Bekker, Senior Analyst, 451 Research
Charles Goldberg, VP, Thales
Manav Khanna, Sr. Director, Thales

Roundtable: Securing Data and Identities in the Cloud

If the recent race to the cloud has taught us anything, it is that businesses and organizations of every shape and size are embracing it. 

However, this has created significant security and compliance challenges, especially for small and medium-sized businesses. While larger enterprises have the resources to deploy and manage an enterprise-wide security infrastructure and strategy, the SMB community has not because of the investment and skills required, especially when it comes to complex data security and access management regulatory requirements.

Join this webinar to learn how a cloud first, easily consumable alternative for data protection and access management can help this significant and incredibly economically important business sector can implement security in easier and more cost effective manner. Specifically, you will hear about the following:
• How adopting a cloud first approach can help achieve compliance and increase data protection 
• Why encrypting data is not the monster task SMBs believe it to be
• How other SMBs are addressing the challenge of  being forced by their supply chains to adopt encryption as part of their supply agreements
• Why SMBs are more at risk from brand damage, financial ruin if a data breach occurs and how cloud based encryption will address this challenge 
• How Thales is enabling the SMB to change the game

Cloud Security: Now It Is a Game Changer for SMBs

Today’s economy is driven by data and the most successful companies are those that can use data to get closer to their customers, create new products and operate more efficiently. Cloud services are a key enabler in this. They allow the capture, storage and use of vast amounts of data. They enable the rapid development and deployment of new applications as well as the modernization of existing ones. 

Concerns over Risk & Compliance Are Slowing Adoption
However, the use of these services causes concerns over risk and compliance and these are slowing the adoption of cloud services. While organizations understand how their internal controls meet their compliance obligations the same is not true for the use of cloud services. It is also clear that many of the security incidents result from the customer’s own use of these services. For example, security and compliance are often outside the skills of DevOps teams or are overlooked and this can lead to the existence of critical vulnerabilities that can be exploited. An additional concern is the risk of government interference in the operation of the service or demands for access to the data.

Information Protection for the Hybrid Cloud
To benefit from the opportunities provided by cloud services it is essential that organizations fully understand their responsibilities, and these are centered around access to data. The customer is always responsible for ensuring that their obligations around this access are met and that their controls for this are effective. This means taking a data-centric approach to cloud security and compliance. This webinar will highlight:
- The challenges around security and compliance in today’s hybrid IT environment
- The information protection lifecycle and how this is applied in the hybrid cloud
- Why you need to control access and manage how your data is encrypted
- What else you need to take care of

Data Centric Cloud Security and Compliance

Tina Stewart, Vice President of Global Marketing at Thales, shares what you can expect from the Thales Cloud Security Summit. Learn about best practices and trends in cloud security – from access management, encryption and key management strategies so your organization can discover, protect and control access to sensitive data wherever it resides. You will also learn more about the new Thales CipherTrust Data Security Platform.

Thales Cloud Security Summit Welcome Video

Thales Cloud Security Summit

Digital transformation and the move to the cloud are fundamentally changing business operations throughout the Asia-Pacific region and are putting organizations’ sensitive data at risk. Traditional market leaders are driven to digital transformation by the opportunity for greater efficiency, flexibility and new business models – while also fending off rivals entering their markets with an “all digital” focus. In this session we’ll address the state of cloud and data security in Asia-Pacific enterprises today, the changing landscape of risks to data due to digital transformation, and IT security pros priorities for data security today.

Based on the results from the 2020 Thales Data Threat Report – APAC Edition, in this webinar you will learn about:
- How the adoption of digital transformation technologies, and especially cloud, is putting sensitive data at greater risk
- The data security challenges facing Asia-Pacific enterprises today
- Recommendations for how organizations can be most effective when selecting the right tools to protect their sensitive data

Cloud Security Trends and Strategies in the Asia-Pacific Region

Cloud Security

Data Security

Compliance

Encryption

Access Management

Key Management

Cybersecurity

Welcome to the virtualization community on BrightTALK! Whether it affects servers, storage, networks, desktops or other parts of the data center, virtualization provides real benefits by reducing the resources needed for your
infrastructure and creating software-defined data center components. However, it can also complicate your infrastructure. Join this active community to learn best
practices for avoiding virtual machine sprawl and other common virtualization pitfalls as well as how you can make the most of your virtualization environment.

Virtualization

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The application development community features top thought leadership focusing on optimal practices in software development, SDLC methodology, mobile app development and application development platforms and tools. Join top software engineers and coders as they cover emerging trends in everything from enterprise app development to developing for mobile platforms such as Android and iOS.

Application Development

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Cloud Security Trends and Strategies in the Asia-Pacific Region

Presented by

About this talk

Thales - Cybersecurity Solutions