Name: From Vulnerability Management to Exposure Management: Evolution or Revolution?
Start: 2024-03-20T17:00:00Z
End: 2024-03-20T17:00:59.000Z
Location: BrightTALK
Rating: 4.8

The ISC2 Knowledge Vault brings the community relevant and cutting edge infosecurity discussions presented by subject matter experts. Subscribers also benefit from pre-recorded mini webcasts that give viewers a sneak peek into each of ISC2’s certifications' domains, including the gold standard cybersecurity certification, the CISSP, and ISC2’s fastest growing certification, the CCSP.

Embark on a foresight journey into the future of cybersecurity, highlighting key trends and innovations that are set to redefine the digital defense landscape in the year ahead. Discover how advancements in artificial intelligence will revolutionize the way security teams reduce cybersecurity risks and improve their abilities to defend against modern threats. Join Steve Piper, Founder & CEO of CyberEdge (and proud CISSP), as he shares his top five cybersecurity predictions for 2025.

Top Five Cybersecurity Predictions for 2025

Has your organization jumped on the passwordless authentication bandwagon yet? If not, it should. Passwordless authentication embraces possession factors, such as certificates and hardware tokens, and inherence factors, such as fingerprints and face scans, to replace legacy password and single sign-on (SSO) authentication methods. It also strengthens your organization’s security posture while improving the user experience for accessing company applications and data. Join Steve Piper, Founder & CEO of CyberEdge (and proud CISSP), as he reviews modern passwordless authentication technologies and the benefits organizations have achieved by implementing them.

Passwordless Authentication: A New Reality or a Pipe Dream?

New to the security industry? Or thinking about transitioning into an information security role? If so, this webinar is for you. Join Steve Piper, Founder & CEO of CyberEdge (and proud CISSP), as he provides a one-hour ‘crash course’ on the entire security industry, including:

- Size and growth of the security industry
- Useful vocabulary terms and buzz words
- Five types of cyberthreat actors 
- Modern cyberthreats and tactics
- Categories of security defenses
- Common security job roles
- Security industry ecosystem

Security Industry 101: A ‘Crash Course’ For Security Newbies

Join us for a deep dive into Certified in Cybersecurity (CC), the new entry-level cybersecurity credential from ISC2, creator of the CISSP. 

Cyberthreats continue to escalate worldwide, and the need for cybersecurity experts is critical. But talent is scarce. Research shows the workforce needs an influx of 3.4 million cybersecurity professionals to meet global demand. 

ISC2 seeks to help close the skills gap with CC by opening opportunities in the industry to a new pool of professionals. With no experience required, it creates a clear pathway and breaks down traditional barriers to entry, enabling candidates to build confidence and enter their first cybersecurity role ready for what’s next.

In this 60-minute live virtual session, you’ll learn:
- If CC is right for you
- How Official ISC2 Training flexes with your learning style
- What to expect on exam day
- How to maintain your certification
- Plus, more!

Plus! Get answers to your CC questions during the Q&A section.

Register now and begin your CC certification journey today!

Certified in Cybersecurity (CC) Info Session

Artificial intelligence (AI) has bolstered cybersecurity solutions across the board. Security teams have more ways to detect advanced threats than ever before, and organizations are much better equipped to measure and reduce their attack surfaces. However, AI also benefits cyber adversaries with improved phishing and spear phishing techniques and new methods for tricking unsuspecting victims using deepfake content spawned by generative AI. Join Steve Piper, Founder & CEO of CyberEdge (and proud CISSP), as he provides a comprehensive analysis of AI's dual role in both fortifying and challenging modern cyber defenses. Discover who's winning the AI arms race in cybersecurity.

Impact of AI on the Cybersecurity Industry: Who's Got the Upper Hand?

Join us for a deep dive into Certified Secure Software Lifecycle Professional (CSSLP), the software security credential from ISC2, creator of the CISSP. 

As organizations continue to pursue digital transformation initiatives, the threat landscape is always expanding. Yet cybersecurity leadership talent is scarce. That’s where CSSLP from ISC2 comes in — to help fill the gap. Once certified, the opportunities for certified professionals are near limitless. 

The CSSLP is ideal for software development and security professionals responsible for applying best practices to each phase of the Software Development Lifecycle (SDLC). It shows your expertise and ability to incorporate security practices - authentication, authorization and auditing - into each phase of Software Development Lifecycle.

In this 60-minute live virtual session, you’ll learn:
- If CSSLP is right for you
- How Official ISC2 Training flexes with your learning style
- What to expect on exam day
- How to become endorsed and maintain your certification
- Plus, more!

Plus! Get answers to your CSSLP questions during the Q&A section.

Register now and begin your CSSLP certification journey today!

Certified Secure Software Lifecycle Professional (CSSLP) Info Session

Join us for this live webinar where we’ll tell you all about newly enhanced ISC2 Online Self-Paced Systems Security Certified Practitioner (SSCP) Training with AI-driven adaptive learning. Find out how this dynamic experience pinpoints areas that require focus and guides you through every stage of your personalized exam prep. You’ll study smarter, not harder and go into the SSCP exam with confidence.

You’ll learn:
• Why it makes training more efficient busy professionals 
• What makes it a more efficient route to exam readiness
• How artificial intelligence tailors learning to your needs
• And much more!

Wednesday, September 12 at 3pm ET

Save your spot now.

New! AI-Driven Adaptive Learning for Systems Security Certified Practitioner

Compromising end user computing devices through spear phishing attacks is frequently cited as the initial step of advanced persistent threats, often leading to data breaches. Year after year, IT security professionals cite “low security awareness among employees” as a top inhibitor to IT security’s success in CyberEdge’s annual Cyberthreat Defense Report. So, why aren’t more security teams adequately addressing this challenge? Join Steve Piper, Founder & CEO of CyberEdge (and proud CISSP), as he details five ways to invest in your company’s human firewalls.

Five Smart Ways to Invest in Your Human Firewalls

Want to know which IT security technologies are hot and which ones are not? Join Steve Piper, Founder & CEO of CyberEdge (and a proud CISSP), as he reviews key purchase insights from the 2024 Cyberthreat Defense Report. Specifically, Steve will examine which security technologies are most widely deployed and most planned for acquisition in 2024 so you can benchmark your company’s current and planned investments against your peers. Steve will review purchase intent across five key security technology categories, including:

- Network security
- Endpoint security
- Application and data security
- Security management and operations
- Emerging security technologies

The ‘Hottest’ IT Security Technologies in 2024

Join us for this live webinar where we’ll tell you all about newly enhanced ISC2 Online Self-Paced Certified in Governance, Risk and Compliance (CGRC) Training with AI-driven adaptive learning. Find out how this dynamic experience pinpoints areas that require focus and guides you through every stage of your personalized exam prep. You’ll study smarter, not harder and go into the CGRC exam with confidence. 

You’ll learn: 

- Why it makes training more efficient busy professionals  
- What makes it a more efficient route to exam readiness 
- How artificial intelligence tailors learning to your needs
- And much more

Wednesday July 10 at 1pm ET

Save your spot now!

New AI-Driven Adaptive Learning for Certified in Governance, Risk and Compliance

Colonial Pipeline, CNA Financial, JBS Foods, Garmin, and Travelex. All victimized by high-profile ransomware attacks. All paid ransoms. Did these companies do the right thing by paying ransoms to accelerate data and system recovery? Or are they merely funding the ransomware industry and prompting even more attacks? Join Steve Piper, Founder & CEO of CyberEdge (and proud CISSP), as he reviews key findings from CyberEdge’s 2024 Cyberthreat Defense Report. In this webinar, Steve will:

- Examine disturbing ransomware trends, by country and by industry
- Evaluate key factors that go into deciding whether to pay ransoms
- Outline ways to be prepared for a successful ransomware attack
- Review technologies to help give security teams the upper hand

Ransomware Deep Dive: To Pay or Not to Pay?

Join us for a deep dive into Certified in Governance, Risk and Compliance (CGRC), the governance, risk and compliance credential from ISC2, creator of the CISSP. 

The CGRC is an information security practitioner who champions system security commensurate with an organization’s mission and risk tolerance, while meeting legal and regulatory requirements. 

CGRC, a vendor-neutral cybersecurity credential, recognizes your knowledge, skills and abilities to authorize and maintain information systems within the RMF. It proves you know how to formalize processes to assess risk and establish security documentation. 

CGRC is particularly well-suited for IT, information security and cybersecurity practitioners who manage risk in information systems. It is also recommended for any practitioner involved in authorizing and maintaining information systems.

In this 60-minute live virtual session, you’ll learn:
- If CGRC is right for you
- How Official ISC2 Training flexes with your learning style
- What to expect on exam day
- How to become endorsed and maintain your certification
- Plus, more!

Plus! Get answers to your CGRC questions during the Q&A section.

Register now and begin your CGRC certification journey today!

Certified in Governance, Risk and Compliance (CGRC) Info Session

Anthony has many years of experience in cybersecurity and has written data destruction industry papers as well being involved /leading CPNI projects, digital forensics analysis/auditing, information security, network defence, ISOs/CIS/NIST/OWASP/UK-GOV/NCSC-CAF/IAS5, CPNI Data Destruction Processes, UKAS accreditation, data destruction, cyber security vulnerability analysis and risk mitigation, cyber security profession. In addition, he is an ISO 27001 Lead Auditor, Digital Forensics Auditor/Analyst (over 300 world-wide), CIS reviewer. He works as a Cyber Security Risk Assurance Manager for major critical systems for the UK government. 
 
Anthony is very passionate about developing tomorrow’s cyber security professionals. On this webinar Anthony will provide his thoughts on developing future cybersecurity leaders and giving key insights to successful leadership in cyber security roles. Anthony is currently working with ISC2 academic partnerships and advocacy to create a cyber security career pathway and will share some of his experiences.

Interview Spotlight:  Anthony Benham, Head of Cyber Security, UK Government

CyberEdge’s annual Cyberthreat Defense Report (CDR) has become a staple for assessing organizations’ security postures, for gauging perceptions of IT security professionals, and for ascertaining current and planned investments in IT security infrastructure. It incorporates dozens of insights from 1,200 security professionals from 17 countries and 19 industries. Join Steve Piper, Founder & CEO of CyberEdge (and proud CISSP), as he reviews key findings from CyberEdge’s tenth-annual 2024 CDR, including:

- The percentage of organizations victimized by cyber attacks 
- The percentage of organizations victimized by ransomware attacks
- How AI helps both cybersecurity teams and cyber adversaries
- Factors that improve overall job satisfaction among security professionals
- The health of IT security budgets
- The hottest security technologies planned for acquisition

Key Insights From the 2024 Cyberthreat Defense Report

Jorge Mario Ochoa has more than 18 years’ experience, leading several regional and global cyber projects. He has over 35 cybersecurity certifications including CISSP, CISA, CISM, Cobit 5, ITIL v2011, C|BP (Certified, Blockchain Professional), Lead Auditor ISO 27001:2013 , Lead Auditor ISO 22301:2012, to name a few.

Wanting to give back to the profession, Jorge is a Certified EC-Council Instructor, Adjunct Professor at Panamerican University, a moderator and conference speaker/panellist at EC Council, ISC2, ISACA, Internet Society and Infosecurity. He is also a writer and author of several articles published by Hacking9 and Pentestmag.

Jorge will be speaking about his experiences of working in cybersecurity, explaining the different job roles across a range of sectors. He will explain how to manage cyber security risks and detect and respond to incidents. Students will value some of the real business insights Jorge will share and for some will be eye opening as he connects the theory to practice.

Getting on the Cybersecurity Career Ladder: What Does Each Job Role Entail

Join us for a deep dive into Systems Security Certified Practitioner (SSCP), the security operations and network security credential from ISC2, creator of the CISSP. 

As organizations continue to pursue digital transformation initiatives, the threat
landscape is always expanding. Yet cybersecurity leadership talent is scarce. That’s
where SSCP from ISC2 comes in — to help fill the gap. Once certified, the opportunities
for certified professionals are near limitless.

The SSCP is ideal for IT administrators, managers, directors and network security
professionals responsible for the hands-on operational security of their organization’s
critical assets. It shows you have the advanced technical skills and knowledge to
implement, monitor and administer IT infrastructure using security best practices,
policies and procedures.

In this 60-minute live virtual session, you’ll learn:
- If SSCP is right for you
- How Official ISC2 Training flexes with your learning style
- What to expect on exam day
- How to become endorsed and maintain your certification
- Plus, more!

Plus! Get answers to your SSCP questions during the Q&A section.

Register now and begin your SSCP certification journey today!

Systems Security Certified Practitioner (SSCP) Info Session

Join us for our live webinar where we’ll tell you all about refreshed training for the Certified Information Systems Security Professional (CISSP) exam update that launched on April 15, 2024. 

We’ll start with a look at what was updated in the exam and why. Then we’ll go into the details about AI-driven adaptive online training and how it helps you study smarter with a personalized experience.

Agenda
• CISSP Exam Update
• Refreshed ISC2 Online Instructor-Led CISSP Training
• Refreshed ISC2 Online Self-Paced CISSP Training
• Benefits of AI-Driven Platform
• Response: What the Data Shows
• Q&A

Save your spot now.

Refreshed! ISC2 Online Self-Paced CISSP Training for Updated Exam

In the world of cybersecurity defenses, the only constant is change. More than 3,500 cybersecurity vendors are continuously innovating, finding new ways to mitigate risks and secure modern computing environments. Join Steve Piper, Founder & CEO of CyberEdge (and proud CISSP), as he reviews five emerging cybersecurity defenses, including:

- SaaS security posture management (SSPM)
- Cloud-native application protection platform (CNAPP)
- Cloud infrastructure entitlement management (CIEM)
- Identity threat detection and response (ITDR)
- Passwordless authentication

Exploring Five Emerging Cybersecurity Defenses

Vulnerability management has been a staple of security teams for decades. But if you haven’t noticed, this space has evolved considerably in recent years. Long gone are the days of lengthy, hard-to-digest vulnerability scanning reports often created to check the PCI compliance checkbox. These days, smart IT security teams are investing in exposure management platforms and embracing best practices to help prioritize which vulnerabilities to remediate first based on a variety of internal and external factors. Join Steve Piper, Founder & CEO of CyberEdge (and proud CISSP), as he:

- Recaps the evolution from VA, to VM, to RBVM, to exposure management
- Defines key elements of modern-day exposure management platforms
- Reviews internal and external factors to help prioritize vulnerability remediation
- Summarizes the extraordinary benefits derived from exposure management deployments
- Describes what to look for when evaluating best-of-breed exposure management offerings

From Vulnerability Management to Exposure Management: Evolution or Revolution?

Recruitment

Cyber Defense

Are you an IT service management professional interested in developing your knowledge and improving your job performance? Join the IT service management community to access the latest updates from industry experts. Learn and share insights related to IT service management (ITSM) including topics such as the service desk, service catalog, problem and incident management, ITIL v4 and more. Engage with industry experts on current best practices and participate in active discussions that address the needs and challenges of the ITSM community.

IT Service Management

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The application development community features top thought leadership focusing on optimal practices in software development, SDLC methodology, mobile app development and application development platforms and tools. Join top software engineers and coders as they cover emerging trends in everything from enterprise app development to developing for mobile platforms such as Android and iOS.

Application Development

The unexpected nature of natural disasters and other disruptive events means that preparation is key to managing disaster recovery and business continuity planning. Join the business continuity and disaster recovery community for live and recorded presentations discussing best practices for business continuity planning, disaster recovery programs and business continuity management. Learn from BCDR experts to develop your critical infrastructure and gain insight into tactical solutions to your BCDR issues.

Business Continuity / Disaster Recovery

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

Welcome to the big data and data management community on BrightTALK. Join thousands of data quality engineers, data scientists, database administrators and other professionals to find more information about the hottest topics affecting your data. Subscribe now to learn about efficiently storing, optimizing a complex infrastructure, developing governing policies, ensuring data quality and analyzing data to make better informed decisions. Join the conversation by watching live and on-demand webinars and take the opportunity to interact with top experts and thought leaders in the field.

Big Data and Data Management

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

From Vulnerability Management to Exposure Management: Evolution or Revolution?

Presented by

About this talk

More from this channel