Advanced Persistent Threats - The Hacker's Latest Weapon or Just Marketing Spin?

With sensitive data residing everywhere, organizations becoming more mobile, and the breach epidemic growing, the need for advanced data privacy and security solutions has become even more critical. French regulators cited GDPR in fining Google $57 million and the U.K.'s Information Commissioner's Office is seeking a $230 million fine against British Airways and seeking $124 million from Marriott. Facebook is setting aside $3 billion to cover the costs of a privacy investigation launched by US regulators.

This session will take a practical approach to address guidance and standards from the Federal Financial Institutions Examination Council (FFIEC), EU GDPR, California CCPA, NIST Risk Management Framework, COBIT and the ISO 31000 Risk management Principles and Guidelines.

Learn how new data privacy and security techniques can help with compliance and data breaches, on-premises, and in public and private clouds.

The PCI Dream Team is back for another interactive Q&A session.

Join us with your toughest questions and learn more about the various Payment Card Industry (PCI) standards and requirements, with a focus on PCI DSS v4.0.

Our panelists are some of the top PCI QSA’s in the country, with decades of combined PCI and card processing experiences. They’ve seen it all: the good, bad and ugly; and lived to tell the tale.

Join Ben Rothke, David Mundhenk, Arthur Cooper, and Jeff Hall for an interactive Q&A session, and get answers to your most vexing PCI questions. No PCI question is out of bounds.

Speakers:
- Ben Rothke, Senior Information Security Specialist at Tapad
- David Mundhenk, Senior Security Consultant at Herjavec Group
- Jeff Hall, Senior Consultant with Online Business Systems
- Arthur Cooper "Coop", Senior Security Consultant at NuArx

Every year the top security companies, industry thought-leaders and tech media publications come out with their predictions for the coming year. And every year Dan Lohrmann publishes his roundup of these security industry reports, forecasts and trends.

This BrightTalk webinar will dig into the 2020 report in detail. (Note: This year’s report to be released in mid-December).

There is huge career value for technology and security professionals who understand where the cybersecurity industry predictions, and you can read about those benefits in this CSO Magazine article: https://www.csoonline.com/article/3021951/why-more-security-predictions-and-how-can-you-benefit.html

In addition to counting down (and referencing) the top 20 security prediction reports from the leading vendors, this webinar will examine:
- Where is there agreement on what’s coming next?
- Where is there major disagreement?
- Where will cyberattacks come from next?
- Which vendors have the best reports (and why)?
- Who are the award-winners for most creative, most likely, most scary and other security industry predictions?

We will discuss security and tech predictions on AI, autonomous vehicles, cloud solutions, cyberthreats, ransomware, IoT, malware, multi-factor authentication, business priorities, data breaches, spending, new vulnerabilities to watch for, mobile threats, 5G, new announcements, major security incidents, government contracts, election security, attacks on global events (like the 2020 Olympics), cyber incident response and much, much more.

At the end, we will take your questions on all of this, and may even ask you to vote for your favorite predictions (or offer one of your own to share.)

Join us.

This Session will be the first in a series on Threat Hunting. This kick-off session will introduce the concept of Threat Hunting as there is a lot of confusion about this important activity. Specifically, we will cover what it is, how it is performed, its’ role and some of the best Tools to use as a Threat Hunter.

The California Consumer Privacy Act of 2018 (CCPA) is arguably the most expansive privacy law in U.S. history and will become enforceable in just a matter of months. The CCPA introduces new privacy rights for consumers and will force companies that conduct business in the State of California to implement structural changes to their privacy programs.

The new rights given to California consumers are similar to the rights provided in the European Union’s General Data Protection Regulation (GDPR). The CCPA also subjects non-compliant businesses to expensive fines, class-action lawsuits, and injunctions.

On this webinar, we will examine the impact of the CCPA, answer your burning questions, uncover the CCPA’s nuances, and address its ambiguities and challenges. We will also include strategies for creating compliance programs in the midst of the unknowns, and a strategic action plan for businesses to become compliant.

The 2019 Infosecurity ISACA North America Expo and Conference was held in New York City’s Javits Convention Center on November 20-21. With more than 50 sessions spanning 5 tracks, this conference offered the best-in-class educational content ISACA members and certification holders depend on, plus unprecedented access to leaders in the security industry.

Join Ulf Mattsson, Head of Innovation at TokenX for a conference recap webinar on the biggest takeaways from this year's event.

Remember WannaCry - the ransomware attack that two years ago infected Windows devices across 150 countries and resulted in an estimated damage of $4B?. We now know that WannaCry was completely preventable. Microsoft had issued a patch two months prior to the attack. If you think WannaCry was bad, brace yourself: We have discovered a technique that attackers may use to deliver ransomware that most organizations have no way to detect or prevent.

This webinar will cover a Windows evasion technique called “RIPlace” that, when used to maliciously alter files, bypasses most existing ransomware protection technologies. In fact, even Endpoint Detection and Response (EDR) products are blind to this technique, which means these operations will not be visible for future incident response and investigation purposes.

The technique leverages an issue at the boundary between a Windows design flaw and improper error handling of an edge-case scenario by filter drivers of security products. While not a vulnerability per say, the technique is extremely easy for malicious actors to take advantage of with barely two lines of code. RIPlace abuses the way file rename operations are (mis)handled using a legacy Windows function.

We will review existing ransomware detection methods, the workflow of a typical ransomware and provide a live demo of RIPlace bypassing a number of anti-ransomware technologies.

Presenter: Nir Gaist, Founder and CTO of Nyotron.
Nir Gaist is a recognized information security expert and ethical hacker. He has worked with some of Israel’s largest public and private sector organizations, such as the Israeli Police, the Israeli parliament and Microsoft’s Israeli headquarters. He also wrote cybersecurity curriculum for the Israel Ministry of Education. Nir holds patents for the creation of a programming language called Behavior Pattern Mapping (BPM) that enables monitoring of the integrity of the operating system behavior to deliver threat-agnostic protection.

In today's world of IT, a robust safeguard service is required for identifying and managing applications from a single point to spot trends and see patterns that are out of the ordinary. SIEM (System Information and Event Management) is a managed security service used to gather information from end-user and even specialized security equipment like firewalls and antivirus systems. Security information and event management (SIEM) software gives security professionals both insight into and a track record of the activities within their IT environment.

While SIEM technology has been around for more than a decade, it’s become a critical component of a comprehensive security strategy in today’s threat environment.

Topics for discussion include:
- Evolution of SIEM.
- Best practices from expertise.
- Next generation SIEM – UEBA and SOAR
- SIEM solutions for some common SOC pains.
- Integrating AI and ML.

Speakers:
Geethanjali Natarajan, Security Solutions Lead at Sennovate Inc
Saumya Saxena, Software Engineer at Sennovate Inc

Technical detection is now just the starting point for a series of exercises which will see the entire business work together to identify what happened and to mitigate the results.

In this session, you will learn:

- How EDR and MDR are morphing into BDR
- Why BDR is a challenge for the whole business
- How technology can help, and how it doesn’t

In this 30 minute webinar Ade will discuss how the world of cyber-security detection and response is changing, fast. From IT and technical analysts to the CEO via HR, this is a problem for the whole business to solve together.

As organizations mature on their DevOps adoption journey, adopting Continuous Integration and Continuous Delivery (CI/CD) automation, and breaking down organizational silos, application delivery and infrastructure provisioning speed is being accelerated. The next challenge now being exposed is the lack of agility in delivering Data into non-production environments.

Development and Testing require the availability of relevant data in the production-like Dev and Test environments on demand, to ensure rapid testing and validation of each Build. Data is however difficult to provision and deliver on demand. This results in Data Friction being the impediment to true ‘flow’ through application delivery pipelines. Other than the inherent cost and time it takes to provision and store data instances, there is also the risk that exponentially increases as more and more instances of Data are provisioned in multiple non-production environments.

As Dev-Test teams deliver faster and leverage more environments across parallel development streams, the number of non-production Data instances is typically several orders of magnitude higher than Production instances, increasing the exposed surface area. The ask hence is to be able to provision and deliver production-like Data instances, on-demand, as, when and where Dev-test practitioners need them in non-prod environments, while securing the Data at the same time.

In this session Sanjeev Sharma, VP and Global Practice Director for Data Modernization will discuss practices large enterprises need to adopt, across Process, Technology and People in order to be able to Provision, Deploy, Manage, Govern, and Secure Data in Application Delivery Pipelines, addressing Data Friction and Data Security challenges that may be impeding DevSecOps adoption.

Carbon Black recently found that 84% of UK organisations had suffered one or more data breaches in the past year. Effectively cybersecurity is critical for ensuring the success of your business in the digital age.

In this webinar, ThreatAware CEO Jon Abbott explores the problems that cybersecurity professionals have faced over the past year and how these are likely to evolve in 2020. He draws on his twenty years of experience, including as founder of MSP Priority One, to examine how cyber threats develop and how business cybersecurity needs to grow to meet new challenges.

From comprehensive asset management to compliance with international standards, proficient cybersecurity requires you to juggle a vast number of tools and processes. Jon’s presentation will look at the way in which innovative technology can increase visibility and reduce complexity when it comes to cybersecurity management, to allow your business to embrace positive risk in 2020.

Key takeaways
- The biggest risks cybersecurity professionals faced in 2019
- How these risks are likely to evolve moving forward into 2020
- What tools allow businesses to embrace new technologies securely

Current schemes are insufficient in addressing the growing security risks and cybersecurity concerns that disrupt companies from all walks of life.

In this session we will explain some machine learning (M/L) and data mining (DM) techniques in cybersecurity and vulnerability analysis and discovery. We will explore trends, perspectives, and prospects in the field of machine learning to cultivate an understanding of how ML/DM help to advance the cybersecurity footprint. Data is a coveted commodity for businesses, and everyone needs to understand what steps can be done to automate and innovate the hardening on their data and infrastructure. We will discuss key significant advancements that have been accomplished in machine learning in addition to challenges that exist and future areas for improvement and study. Lastly, we will discuss the three types of cyber analytics and how to combat false alarms and mitigate against cybersecurity intrusion detection problems. We will discuss some cybersecurity intrusion case studies, limitations and challenges that lie ahead.

Key Takeaways:

- Machine learning can help modernize and advance businesses to run more efficiently and promptly mitigate cybersecurity attacks; which, add-value for businesses on all fronts to protect their company propriety information and customer personal data.

- Gain insight to machine learning and how it applies to cybersecurity field.

- Understand how behavior analysis approach can help understand client behavior.

- Build a better understanding of ML/DM strategies including limitations and advancements.

- Challenges businesses face with current objectives and how machine learning can innovate previous strategies.

Join this panel of security experts as they discuss the newest security solutions and strategies utilizing Artificial Intelligence and Machine Learning:

-Best practices for improving security
-Why your organization needs to be using AI and ML
-How to take security to the next level

Moderator:
Michelle Ruyle, CEO & Founder, Optimized Channel
Panelists:
Jennifer Galvin, Field Alliances Enablement, Okta
Roselle Safran, President, Rosint Labs
Ian Hassard, Director of Product Management, Arctic Wolf Networks

Cybersecurity policies meant to protect sensitive information are often misunderstood, avoided, or circumvented by employees. Employees don’t like to be inconvenienced by the extra steps necessary for protection that to them seem unnecessary. This can be compounded by a complex cybersecurity environment with multiple competing standards that seem similar but have unique approaches, naming conventions, and acronyms.

This session will discuss how to solve these challenges by creating cooperative compliance. Cooperative compliance starts by understanding the entire risk environment based on the NIST SP 800-171 Framework, a foundational minimum for confidentiality and integrity. Using the NIST framework and straightforward messaging for employees, cooperative compliance communicates the reasons for cybersecurity inconveniences and protection.

Key takeaways:
•Define cooperative compliance
•Define and describe the cybersecurity foundational minimum
•Describe communication strategies
•Provide practical approaches based on the foundational minimum
•Comment on useful tools, techniques, and approaches

About the speaker:
NTT DATA Federal Services, Chief Technology Officer, Nat Bongiovanni is a US Navy veteran with over 35 years’ experience. Mr. Bongiovanni’s broad IT background allows him to view IT challenges through multiple lenses-- analyst, architect, manager, software developer and cybersecurity expert.

Nat has spoken extensively on cybersecurity, software and policy development. He recently spearheaded a team of cyber experts to develop a cybersecurity solution to protect network assets and data from internal vulnerabilities.

Nat’s experience comes from practical application and valuable lessons learned across a diverse set of clients including, the Office of the Secretary of Defense, Defense Intelligence Agency, the Department of the Interior CIO, the U.S. Securities and Exchange Commission, Blue Cross Blue Shield, and Enterprise Rent-A-Car.

Alliance is a strong word for a strong relationship. An alliance that sought to achieve collective security in the cyber domain would need to include states with closely aligned interests, would need to agree formal terms of alliance, and would need carefully-defined conditions governing mutual support. Whether or not the United States were formally a member of this alliance, American participation (or non-participation) would critically shape the alliance. Participants close to US security structures, senior figures (active and retired in the Five Eyes Community) and senior cyber security professionals would contribute both the political and technical realities that would determine the paper’s message.

Cyberspace, like the high seas of classical security strategy, is a space that is partly governable, but inherently chaotic. In order for states’ economies to function in cyberspace, states need to exercise optimal governance over this hard-to-govern space. To do so in an arrangement for collective defence could optimise trading advantages for all.

About the Speaker:
Dr. Lynette Nusbacher | Owner, Coach & Devil's Advocate, Nusbacher Associates

Lynette Nusbacher is an expert on horizon scanning and strategy. She was part of the team that created two of the UK’s National Security Strategies and set up Britain’s National Security Council. She has been Senior Lecturer in War Studies, Royal Military Academy Sandhurst, Head of the Strategic Horizons Unit in the UK Cabinet Office and the Devil’s Advocate in Britain’s Joint Intelligence Organisation. She has a background in red teaming, devil’s advocacy and structured methods of analysis.