[Video Interview] The Cyber Year in Review: Troels Oerting, CISO, Barclays

Whether traveling by car, plane or train, it is critical to get from here to there safely and securely. Just like you, your data must be safe and sound as it makes its journey across an internal network or to an external cloud storage device. It's well known that data is often considered less secure while in motion, and attackers are finding increasingly innovative ways to compromise data in flight. And the risks associated with data in transit are dependent on the security measures that are in place. So how do you adequately protect data in transit?

In this webcast, we'll cover what the threats are to your data as it's transmitted, how attackers can interfere with data along its journey, and methods of putting effective protection measures in place for data in transit. Included in this webinar will be:

•What you should expect to happen to secure data in transit; what are the trade-offs
•What transport layer security protocols (SSL, TLS, etc.) are best for protecting data in transit?
•Different encryption technologies and their role in protecting data in transit
•Which criteria should be used?
•How do you know which encryption to use?
•What’s applicable to different workloads?
•Best practices for data protection in transit

Join us on a journey to provide safe passage for your data by registering today!

Already a popular platform, WhatsApp, the Facebook-owned smartphone instant messaging service, posted the biggest gains due to COVID-19 according to Tech Crunch. Learn why this ubiquitous messaging app could be a security risk and what you need to know to secure WhatsApp.
In this session, you’ll discover:
+ How metadata and message data storage expose you to critical risk
+ Why the legal agreement should give you pause
+ Why WhatsApp is an effective platform for spreading disinformation
+ How the phones and humans using them increase your vulnerability
+ How to increase secure use of the app and mitigate your risk
+ Why WhatsApp leveraged by sophisticated threat actors

Speaker: Cosimo Mortola is a senior intelligence analyst at GroupSense. Cosimo previously tracked threat actors at MassMutual, and Russian disinformation and associated threat activity at FireEye. Cosimo is fluent in Russian, French, and Italian.

Theresa Payton, leading cybersecurity expert and first female Whitehouse CIO, discusses her book "Manipulated: Inside the Cyberwar to Hijack Elections and Distort the Truth."

Theresa Payton tells battlefront stories from the global war being conducted through clicks, swipes, internet access, technical backdoors and massive espionage schemes. She investigates the cyberwarriors who are planning tomorrow’s attacks, weaving a fascinating yet bone-chilling tale of Artificial Intelligent mutations carrying out attacks without human intervention, “deepfake” videos that look real to the naked eye, and chatbots that beget other chatbots.

In this session, Theresa is joined by Sushila Nair where they will take a look inside the Cyberwar to hijack elections & distort the truth.

Join this webinar and learn:
- About our new era of hacked elections and non-stop disinformation campaigns
- From battlefront stories the effect of cyber conflict and its risks
- Who are the cyberwarriors who are planning tomorrow’s attacks
- The attacks of tomorrow including Artificial Intelligent mutations, “deepfake” videos that look real to the naked eye, and chatbots that beget other chatbots
- To build a plan so that individual citizens, big tech corporations, governments and the international community can push back

This episode is part of Cyber Authors, a new series with Sushila Nair. We welcome viewer participation and questions during this interactive interview.

The pressure is on to maximize - possibly reduce - your IT spend, but you know that cybersecurity is critical. As many as 60% of hacked small and medium-sized businesses go out of business after six months. But, how much is right to spend? This 30-minute live discussion between Alex Nette, one of the leading cybersecurity experts for small-medium businesses, and Michael Cardman, a results-oriented financial expert will help you determine:
+ What are the must-haves for your 2021 cybersecurity budget? How do you calculate what to spend?
+ Given your business and your systems, applications and software, what’s the right approach for you?
+ How do you do more with less?

This webinar draws on years of experience in working with business and IT professionals to help them craft the right spend strategy. Both Alex and Michael will provide a number of best practices for you to consider, but also show you the behind the scenes tools they’ve used for years! See what happens when IT and cybersecurity gets real with a CFO.

No one ever expects it to happen to them. But with ransomware and cybercrime on the rise, it’s more likely than ever to discover that ransomware has locked down your system and cybercriminals are holding your data hostage. Kurtis Minder, an expert ransomware negotiator, advises executive teams when their worst cybersecurity nightmares come to life. Join us for an interview with Kurtis as we discuss:

+ What most people don’t realize about ransomware and the cybercriminals that run these exploits
+ Immediate do’s and don’t if your systems are being held captive
+ How to limit potential damage like data loss, overpaying threat actors, tarnished brand reputation, and compliance violations
+ Team Event: who to involve and when

It's well known that security is not just a technology problem, but a people problem too. In this session we'll examine the latest ways that bad actors can exploit information found online about your team, and use it to weaponize their email against the business. We'll also explore the ways that businesses can protect themselves and when necessary fight back.

In this webinar we will:
- Examine some of the latest uses of social engineering in phishing and spear phishing campaigns
- Explore some options to manage the risk
- Take a look at how we can protect the business when our defensive mechanisms fail

Daniel Clayton has been responsible for building and delivering global operations for the National Security Agency (NSA), the Government Communications Headquarters (GCHQ), Rackspace and Bitdefender over a 30-year career.

As VP of Global Support and Services, he is responsible for Bitdefender’s global operations in support of customers, including the strategy, service delivery and oversight of Services and Support Operations, including the Security Operations Center, Customer Success Operations and associated engineering functions.

Other than eliminating humans, what are the best practices for reducing business email compromise?

Join this session to learn how to:

- leverage the cloud
- take advantage of SaaS security features
- implement email security controls, monitor and respond to incidents, and
- empower your workforce to be the first line of defense

Presented by Sean Letona, Director of Professional Services at Abacode, Inc.

There are an estimated 1.5 billion people working remotely due to COVID-19 and email is one of the ways businesses are communicating and staying connected with customers, employers and vendors. Ransomware, phishing and email exploits are continuing to rise. According to Security Magazine, over 96% of all security attacks begin with an email.

Today’s panel will focus on:
- the current state of email security and tools,
- best practices for email safety, resilience planning, brand protection and thoughts on training

Aligning the need for Cyber defense technology has to be with business goals that define the problem statement today, the impacts to the business, and how the investments not only mitigate those risks but will include an ROI in the Security Roadmap Strategy.

In this webinar you will learn how to:
- identify and articulate those gaps convincingly
- make implementation quick to keep the C-suite audience interested
- do Defense in depth for threats presented via email
- maintain and continually monitor a defense in depth strategy
- demonstrate ROI to C-suite/stakeholders

Sawan Joshi – Information Security Executive | Speaker | Blogger
Qualifications held – CISM, TOGAF, CND, CYSA+ GDPR
Practitioner, ISO 27001 LI, MCSE x3 AWS Architect
www.linkedin.com/in/sawanjoshi
www.sawanjoshi.com

COVID-19 has slowed the economy down, but hackers are busy as usual—looking to take advantage of the pandemic to breach systems, steal data, and profit by holding both systems and data hostage.

More than 51% of the organizations have been impacted with Ransomware in the last 12 months.

What is your defense strategy? How do you fight against the most potent lateral threat propagation within your network during outbreak? In the virtual session, learn how Zero Trust isolation provides the best defense against Ransomware. It’s time to get to the root causes in your network and introduce the agentless Zero Trust Isolation platform that protects your
organization even if your endpoints are breached, even if you have vulnerable and unpatched applications, and even if you are operating legacy and insecure protocols.

Companies accelerate software development and release new features that delight their customers and help them gain market share in large part through leveraging open source code. Nearly all modern applications are built at least in part with open source code, yet recent research by Veracode revealed that 70% of applications have open source security flaws. With the third-party code introduced by developers directly as they build an application comes vulnerabilities introduced indirectly. Use of open source libraries helps developers and sparks innovation - the security threat comes with a lack of awareness into whether open source vulnerabilities are impacting applications.

Attendees will learn what open source software is, understand risks that open source software introduces, and how their organization can mitigate these risks with secure code and improve overall security.

Security teams can become overwhelmed with vulnerability reports. A myriad of tools exist that provide all kinds of reporting on suspected vulnerabilities in software. False positives (and negatives) are usually present in the data. For the security team, this can create a situation where more time is spent managing the data and reports than fixing things or helping other teams focus their patching efforts.

In order to triage and focus effort on the greatest risk to the business, a different approach may be
needed than the traditional compliance-based ones or systems based on CVSS scores.

In this webinar we’ll start out by defining what exactly the term vulnerability means, how to measure that, and then explore a more risk-based approach.