Name: Ghosts in the Software Supply Chain: How To Stop Stealthy Cyberattacks
Start: 2022-09-01T17:00:00Z
End: 2022-09-01T17:00:56.000Z
Location: BrightTALK
Rating: 4.6

ISC2 hosts regular panel discussions on hot button infosecurity topics featuring thought leaders and visionaries from the industry who answer questions from the audience.

Join us for a dynamic, quarterly conversation exploring the evolving landscape of professional development in cybersecurity!

This interactive webinar series connects aspiring cybersecurity professionals with industry experts: academic leaders, hiring managers, and HR recruiters. Each session will delve into the top training priorities for those seeking to enter or advance within the cybersecurity field, with insights used to develop new training and educational products to further empower the cybersecurity workforce.

We'll discuss:
- In-demand skills and certifications employers are looking for
- Emerging trends shaping the cybersecurity landscape.
- Actionable insights to develop your competitive edge.

What's Top of Mind: Building Your Cybersecurity Career & Future of Training

Despite increased awareness, Business Email Compromise (BEC) attacks are on the rise and continue to make headlines. According to the latest FBI IC3 Report, BEC was the second-largest driver of cybersecurity losses in 2023, accounting for over $2.9 billion lost (up 7.5% from the previous year). But why does BEC remain so pervasive? And what can you do to stop it?  

On May 14, 2024 at 1:00 p.m. Eastern/10:00 a.m. Pacific, Proofpoint and ISC2 will discuss the latest tricks and traps attackers use to target your people, and proactive strategies to defend them against BEC. Whether you're new to email security or a seasoned practitioner, this is a unique opportunity to learn from experts, ask questions and get practical advice.

BEC Forecast: Trends and Techniques for BEC-Proofing your Organization

According to the ISC2 2023 Workforce Study, women represent only 26% of the cybersecurity workforce in the ’30 years old’ and under category, with even lower numbers within older groups. And yet, the workforce gap has reached a record high, with 4 million professionals needed to adequately safeguard the world’s digital assets. Despite these daunting numbers, many organizations have started to embrace DEI initiatives and incorporate skills-based hiring; providing opportunity to break through gender biases to begin – or advance – your journey. During this webcast, hear from a panel of successful women at various stages of their careers who will share their stories on:
How they entered the profession
Barriers they have encountered and lessons learned
How they have advanced their careers
Now, more so than in the past, there are a variety of pathways to enter the cybersecurity profession. Walk away from this discussion inspired to continue your cyber career journey – wherever that may lead you!

Building a Career Pathway in Cybersecurity: A Journey Map for Women, by Women

April is National Stress Awareness month, and let’s face it – cybersecurity can be a stressful career.  The 2023 Cybersecurity Workforce Study revealed a concerning reality of increasingly stressed workforce teams. Jobs are more challenging than ever, and workforce gaps only add to the burden. So, what is the key to conquering stress and avoiding wellness fallouts and burnout? Self-care. We’ve all heard it before, but it’s hard to keep the pressures of work from toppling the precarious work/life balance so many of us tread. 
Join us on April 30, 2024 at 1:00 p.m. Eastern, 10:00 a.m. Pacific to hear from experts on how they achieved success in managing their stress! Small steps that can be easily implemented and allow you the time and space needed to thrive in this fast-paced profession.

National Stress Awareness Month | Tips to Keep Your Stress at Bay

Join us as ISC2 CISO Jon France, CISSP, and our head of research, Marinda Hamann, share the perspectives of more than 1,000 ISC2 members on the impact AI will have on the cyber workforce. We will explore what your peers shared as their biggest concerns and anticipated benefits of AI, how confident they are in leading their organizations’ secure AI adoption, their thoughts on acceptable use policies and more. Then, Chad Kliewer, CISSP,, will discuss how the new ISC2 Workshops: Securing AI will explore these and similar AI trends our members should be following.

AI in Cyber: Are We Ready?

2023 looks to be another-breaking year for ransomware. In the first half of this year, publicized attacks represented a 49% increase over the first six months of 2022. It’s no wonder ransomware continues to be top of mind for many security professionals, and with the latest attacks on Las Vegas casinos, it continues to make the worldwide headlines.  

Join us November 16, 2023 at 1:00 p.m. Eastern/10:00 a.m. Pacific as Proofpoint hosts a webinar where we will discuss recent trends, tactics and techniques used by ransomware gangs, and how they operate.

Ransomware Threats Are on The Rise: How to Protect Your Organization

Materiality is a focus point of the SEC’s new cybersecurity incident reporting rule.  There are clear definitions of what material looks like in finance terms - to your CFO and CEO.  What does material mean in cybersecurity?   

Our panel of experts will discuss steps you can take to define what is material to the cybersecurity of your organization in terms the board of directors and C-suite will understand – and comply with the new rules. 

Join us November 7, 2023 at 1:00 p.m. Eastern/10:00 a.m. Pacific as our panel of experts discusses this hot topic.

Living In an SEC Material World

The past year has witnessed a profound transformation in the job market for CISOs and other security leaders, triggered by increased risks, economic uncertainties and shifting market dynamics.  

Join IANS and ISC2 on October 17th at 1:00 p.m. Eastern/10:00 am. Pacific to hear a discussion where our panelists draw from market-based data, including insights from IANS and Artico Search's 2023 CISO Compensation and Security Budget Benchmark Survey to garner actionable data to better inform your programs and professional development budgets.

Strategies for CISOs in a Transforming Job Market & Budget Environment

La tecnología está constantemente evolucionando, así como también el panorama de las amenazas, los roles, tareas, y las habilidades que se esperan de un profesional en ciberseguridad.
 
Esta sesión reune a un grupo de líderes de seguridad con amplia experiencia para compartir sus visiones sobre las últimas amenazas y desarrollos tecnológicos, y considerar como estos desarrollos van a influenciar los futuros requerimientos para profesionales principiantes en ciberseguridad.
 
Infórmese cómo mantenerse actualizado y preparado para desarrollar las habilidades para adoptar nuevas tecnologías y aumentar su conocimiento para ser un profesional exitoso de ciberseguridad.
 
- Revisión del panorama actual de amenazas
- Capacitación para el futuro: los desarrollos tecnológicos (como la IA) que impactan los requisitos de habilidades futuras.
- Cuáles son estas habilidades para el nivel de principiantes
- Cómo pueden planear los individuos para esta transición
- Es mucho más que solo tecnología
- Recomendaciones para asegurar que sus habilidades permanezcan relevantes

Desarrollando una Carrera en Ciberseguridad

We’re excited to have three of our esteemed ISC2 2023 Security Congress speakers provide highlights of their upcoming emerging technology-focused conference breakout sessions. Get a sneak peek into the Power & Pitfalls of AI in Cybersecurity; Protecting the ML Pipeline: Practical Guidance for Securing Machine Learning Systems; and Incorporating User Experience into Enterprise DevSecOps.  Join us live to be among the first to gain valuable insights into these sessions, plus ask your questions. You won’t want to miss this enlightening webinar.

Your Window into Emerging Technologies at ISC2 Security Congress 2023

A cybersecurity metrics program is a fundamental component of an organization’s cybersecurity strategy. It enables organizations to measure their cybersecurity performance, manage risks, demonstrate compliance, and continuously improve their security posture in an ever-evolving threat landscape. Join us as we explore how cybersecurity metrics serve as the compass guiding our cybersecurity efforts. They measure performance, communicate program status, and illuminate risks, enabling us to make informed decisions on resource allocation and risk mitigation. We'll discover how metrics are not just numbers but catalysts for continuous improvement in our security practices.

Board Level Reporting Metrics -  Using the Data Right

We’re excited to have three of our esteemed ISC2 2023 Security Congress speakers provide highlights of their upcoming GRC-focused conference breakout sessions. Get a sneak peek into Cyber Insurance, Benefits, Limitations and Risks; Establishing Personal Data as an Economic Asset; and What ChatGPT Means for Your InfoSec Program. Join us live to be among the first to gain valuable insights into these sessions, plus ask your questions. You won’t want to miss this enlightening webinar.

Your Window into Governance, Risk & Compliance at ISC2 Security Congress 2023

The metrics you use to communicate with the Board of Directors is critical to articulating risk to business objectives. Are you telling the full story, or leaving some up for interpretation? If your Board is asking for metrics you feel don’t fully paint the right picture, join us for this webinar on August 22, 2023 at 1:00 p.m. Eastern / 10:00 a.m. Pacific to learn how to shift the conversation and develop a set of repeatable metrics to clarify your organization’s risk profile in clear and meaningful terms.

Board Level Metrics - Getting the Conversation Right

Companies are generating data at an exponential rate, and the task of analyzing data to uncover cybersecurity threats can be overwhelming...but it doesn't have to be hard! The challenges of security log management are primarily related to the volume and complexity of the data that needs to be analyzed. You don't need to go to an Ivy League university to get security log management done the right way. 

On August 15, 2023 at 1:00 p.m. Eastern/10:00 a.m. Pacific, Sumo Logic and (ISC)2 discuss ways to improve threat detection and response times, reduce the risk of data breaches and other cyber threats, while gaining an enhanced visibility into security risks and vulnerabilities for emerging security teams in their cloud an beyond.

Security Log Management: What? Like It's Hard?

Join us for this live Q&A where our panel of experts will answer all of your questions about SSCP before you sit for the exam. We’ll go over certification requirements, the domains, self-study resources, training options and more to help you build confidence so you’re ready on exam day.

You’ll learn:
• How SSCP proves your knowledge, skills and experience as an ISO-accredited certification
• Why vendor-neutral certification is in demand
• What training tools are available
• And much more

SAVE YOUR SPOT NOW.

SSCP EXAM READY: Ask the Experts Before You Sit

Laura Foley, Executive Presentation Specialist, will walk you through how to make your presentation stand out visually, support the important information, and keep the audience engaged.

Women Cyber Leaders Speaker Series: Creating an Engaging Presentation

The benefits of public cloud come with complex challenges in managing identity risk. With over 35,000 granular permissions across hyperscale cloud providers, organizations struggle to limit unnecessary access. Most cloud users and instances are granted far more permissions than they actually need, leaving organizations highly exposed to cloud breach, account takeover, and data exfiltration.
 
On August 8, 2023 join Lacework and (ISC)2 at 1:00 p.m. Eastern/10:00 a.m. Pacific as we discuss the challenges and best practices for managing cloud identities and entitlements.

In this session, we’ll also explore:
- Security posture management for cloud-native apps
- The identities and entitlement challenges that come with cloud migration
- Forward-looking trends and future technologies to monitor and mitigate the risks inherent to cloud security

How to Reduce Risk for Cloud Infrastructure Entitlement Management (CIEM)

It is time to start making your plans to attend (ISC)² Security Congress this October in Nashville, TN or live online. Why? We are about to tell you. Join us to learn more about this year’s 13th annual event – and why you need to be there to connect with thousands of your cybersecurity professionals from around the globe for impactful learning, networking and career building. You have questions. Our panelists have answers. This live discussion will take place on Wednesday, August 2 at 11:00 a.m. Eastern Time. #Leadwithconfidence

Lead with Confidence | Sneak Peek into (ISC)² Security Congress 2023

The 2022 Verizon Data Breach Investigation Report showed that supply chain was responsible for 62% of System Intrusion incidents in the past year. For cyberattackers, using the software supply chain is increasingly successful and popular, since it reduces the likelihood of detection and delivers privileged access into many targets at once. Incident responders can see major improvements by focusing on network activity. 

On September 1, 2022 at 1:00 p.m. Eastern/10:00 a.m. Pacific, ExtraHop and (ISC)² host a panel that will discuss how to intercept software supply chain attacker strategies, using recent and historical examples as a foundation. Join us to hear this timely discussion.

Ghosts in the Software Supply Chain: How To Stop Stealthy Cyberattacks

(ISC)2

ISC2

CISSP

Information Security

Cyber Security

Supply Chain

Cyber Attacks

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The application development community features top thought leadership focusing on optimal practices in software development, SDLC methodology, mobile app development and application development platforms and tools. Join top software engineers and coders as they cover emerging trends in everything from enterprise app development to developing for mobile platforms such as Android and iOS.

Application Development

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

Welcome to the big data and data management community on BrightTALK. Join thousands of data quality engineers, data scientists, database administrators and other professionals to find more information about the hottest topics affecting your data. Subscribe now to learn about efficiently storing, optimizing a complex infrastructure, developing governing policies, ensuring data quality and analyzing data to make better informed decisions. Join the conversation by watching live and on-demand webinars and take the opportunity to interact with top experts and thought leaders in the field.

Big Data and Data Management

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Thousands of healthcare IT professionals compose the health IT community on BrightTALK. Learn alongside them with relevant webinars on healthcare IT compliance, big data in healthcare and IT solutions for healthcare organizations. Join the conversation by asking questions and engaging with other participants during live webinars and organized discussions.

Ghosts in the Software Supply Chain: How To Stop Stealthy Cyberattacks

Presented by

About this talk

More from this channel