Name: Understanding and Defending Against the Ransomware Threat
Start: 2023-04-11T09:00:00Z
End: 2023-04-11T09:30:14.000Z
Location: BrightTALK
Rating: 0

We help protect organisations from today’s most pervasive cybersecurity threats. With us on your team, you’ll rest easy knowing your mission-critical assets are safe from threat actors.

As cyberattacks grow in frequency and severity, cyber insurance has never been more important. But rising risks can also mean rising premiums. How do you improve your security and minimize your premiums, while maximizing the value cyber insurance offers? In this episode, we talk to Florence Levy, Executive Vice President at INSUREtrust, a specialist cyber insurance broker. Florence offers fascinating insights on the interplay between cyber insurance and cybersecurity best practices — and the increasing role brokers are playing in helping clients improve their security posture and resilience. Find out what underwriters look for when evaluating your risk profile and the importance of threat prevention, detection, and response in assessing your cybersecurity strategy.

What We'll Cover

 - What is cyber insurance and what does it cover?
 - The role of cyber insurance in your overall security strategy
 - What brokers look for when assessing your risk profile
 - How to improve your security posture and reduce insurance costs
 - The role of managed services in mitigating cyber risk

Let’s Talk SOC: Ep 8 - Cybersecurity or Cyber Insurance?

Join Stefan Oancea, Principal Security Engineer at Secureworks, to find out how Secureworks is extending the value of Microsoft security solutions to deliver customers greater value. He’ll offer insights on the latest Microsoft security offerings, including ways to determine if Sentinel is the right choice to run your threat prevention, detection, and response operations. Plus, learn how Secureworks integrates with your IT environment to maximize your existing investments and fill any cybersecurity talent gaps, all while reducing risk. 

What We'll Cover 

 - Latest Microsoft security offerings 
 - Microsoft Sentinel – is it right for you? 
 - How Secureworks™ and Microsoft E5 work together 
 - How a dual approach elevates your defenses

Let’s Talk SOC: Ep 7 – Doubling Down on Defense with Secureworks & Microsoft

Expanding security threats require an expansive response, but how do you move beyond the endpoint without increasing complexity and risk? All too often, extended detection and response (XDR) is a complex hash of disjointed systems that struggle to plug the growing gaps in your attack surface. In this episode, Senior Product Marketing Manager George Anderson will tell you more about the “X” in XDR. He’ll explain what XDR is, including the distinction between XDR, EDR and MDR – and why you need to know the difference. We’ll discuss what to look out for in a vendor and how to know if a solution measures up. And we’ll explain why open, extensible security platforms hold the key to the future of XDR. 

What We'll Cover 

 - EDR, MDR, and XDR: What’s the difference? 
 - Why make the move to extended detection and response (XDR)? 
 - How much more protection does XDR offer? 
 - What to look for in an XDR vendor 
 - The unique Secureworks approach

Let’s Talk SOC:Ep 6- Understanding Your Attack Surface & Extending Your Response

What We'll Cover 

 - The current state of cybersecurity in manufacturing
 - Risks and impact of cyberattacks 
 - How manufacturers can justify security spend 
 - How Managed Detection & Response (MDR) can help 

When it comes to cyberattacks, today’s manufacturers are in the front line defending their IT and OT landscape. Rapid digital transformation has exposed cracks in the defenses of many in the industry. Join Stacy Leidwinger, Vice President of Portfolio Marketing, to hear her take on rising threat levels in the industry. Discover the true cost of potential breaches and the best lines of defense – taking a comprehensive and proactive approach to prevention, detection, and response.

Let’s Talk SOC: Ep 5 - Manufacturing Under Attack: Defending Against Ransomware

What We'll Cover 

- EDR and XDR: a comparison 
- Combining XDR and MDR in the future
- EDR vendors: The secret to success 
- How to find the right cybersecurity partner 
- Secureworks transformation and emphasis 

The era of solely relying on endpoint detection and response (EDR) is rapidly coming to an end. Even EDR vendors offering MDR or a cobbled-together extended detection and response (XDR) solution can’t solve growing attack surface gaps. In this Let’s Talk SoC podcast, Kyle Falkenhagen, Vice President of Product at Secureworks, discusses how organizations can move beyond their reliance on EDR to a solution that provides holistic security coverage that covers cloud, network, endpoint, and more using a purpose-built XDR security operations platform.

Let’s Talk SOC: Ep 4 - Moving Beyond the Endpoint: Why EDR Isn’t Enough

What We'll Cover 

 - XDR vs. SIEM 
 - Investment level needed for a SIEM purchase 
 - SOAR platform: necessary or not? 

Security Information and Event Management (SIEM) has been the solution of choice for many organizations over the years, but is it keeping up with the current demands of security teams? If you’re considering SIEM as a cybersecurity solution, listen in on this conversation with Justin Davis, Senior Systems Engineer, for what you need to know about SIEM before making additional investments.

Let’s Talk SOC: Ep 3 - What to Know Before Reinvesting in SIEM

What We'll Cover 

 - Top tips for cyber incident preparedness
 - Most common mistakes organizations make in a cyberattack 
 - Planning ahead and best practices 
 - The importance of roles and responsibilities in your response
 - The value of threat intelligence during an incident
 - Automation vs. the human touch in Cybersecurity 

In this Let’s Talk SOC podcast, Lina Lau, Principal Incident Response Consultant at Secureworks, shares top tips to improve your incident preparedness. Learn the three most common mistakes Lau sees organizations make when they fall victim to a cyberattack while getting her most-recommended steps to improve the outcome of an incident. Finally, listen in as Lau discusses the limitations of EDR — and how organizations like yours can experience the value of responding to incidents with improved speed, expert insight, and security analytics.

Let’s Talk SOC: Ep 2 - The First 24 Hours after a Cyberattack

What We'll Cover 

 - Maximizing talent to address risks: Minimizing the spend footprint 
 - CISO: The evolution of the role 
 - Security tech: Artificial Intelligence (AI) and incorporating humanization 
 - Focusing on the basics: What will pay the biggest dividends 
- About Secureworks: Technology security solutions 
 - Looking ahead: Upcoming security threats and trends in 2023 

What do you learn being a CISO at a company that helps support other CISOs? Ken Deitz, Chief Security Officer & Chief Information Security Officer at Secureworks, joins the Let’s Talk SOC podcast to discuss the current and upcoming security challenges CISOs are facing today and how they can best address them.

Let’s Talk SOC: Ep1 - Defending the Defenders: Lessons Learned as a CISO

What you’ll learn:
Outlining the various solutions in the cybersecurity market
Today’s top security challenges
The differences between Product (XDR) and Service (MDR)
How to select the right solution for your organization
An overview of Secureworks ManagedXDR
Answers to questions that our speakers received during the live webinar

EDR. XDR. MDR. If you’re looking at the cybersecurity market today, there are a lot of acronyms floating around – leading to a lot of confusion.

How do you filter through the alphabet soup and find the solution that solves your unique security challenges? Please join Secureworks® and Frost & Sullivan for a discussion that will clear the confusion in the market and help CISOs understand what to consider in discovering the right solution based on their organization’s needs.

EDR, XDR, MDR: Filtering Out the Alphabet Soup of Cybersecurity

Readiness is essential. How will your organization weather the ransomware storm?

o What you’ll Learn:

o How to proactively defend against the ever-increasing threat of ransomware 
o Key principles of a mature ransomware strategy  
o What people, process, and technology investments are required for risk mitigation

Nearly half of organizations surveyed experience attempted ransomware attacks on a monthly, weekly or daily basis. These pervasive attacks are on the rise and impacting organizations every day. As the growing threat of ransomware looms over your business, it’s important to know how you’ll weather the ransomware storm. 

Join Dave Gruber, Principal Analyst at ESG, and Keith Jarvis, Sr. Security Researcher, CTU-TR at Secureworks, for a deep dive into recent research uncovering key focus areas common in the organizations defending effectively against ransomware threats. 

You’ll learn how those results translate to greater business resilience and how specific ransomware risk mitigation tactics can help you assess and strengthen your organization’s ransomware defense and mitigation strategy.

The Growing Threat of Ransomware: How to Mitigate your Risk

Choose the right SecOps platform to spend and defend effectively.

What You’ll Learn:

• The differences between SIEM and XDR and how they both impact the effectiveness of 
        SecOps teams 
• The importance of choosing a security platform that maximizes current investments and 
        reduces long-term costs 
• How to optimize threat prevention, detection, and response to reduce risk  

Security threats are increasingly complex and overwhelming, and organizations face many challenges with their current security solutions. This may be why 60 percent of organizations plan to invest in Extended Detection and Response (XDR) over the next 12 months. Firms are seeking more effective security, faster workflows, and better incident response. 
 
Choosing the right solution means addressing tough questions. Join Ryan Alban, Senior Manager of Global Solutions Leads and George Anderson, Senior Manager of Product Marketing, for a deep dive into the differences between SIEM and XDR. They will discuss how to choose the right platform for your organization to lower your risk and drive better security outcomes.
Source: Forrester Opportunity Snapshot Report, June 2022

Are SIEM Solutions enough?

When ransomware-as-a-service (RaaS) was introduced to the cybercrime landscape in the mid-2010s, it significantly lowered the bar to entry for cybercriminals. As a result, the scale of ransomware operations expanded, allowing cybercrime groups and their affiliates to exploit more networks resulting in higher revenue. Expertise also improved as each element of the process became specialized, making ransomware the formidable threat it is today. 

 In this session, Senior Security Researcher and intel analysis lead for cybercrime Tim Mitchell will discuss why understanding and tracking the TTPs of everyone involved in ransomware operations is important, regardless of the variant. He’ll also outline why the attribution of precursor activity is important, and how accurately doing so can inform our customers and better protect them from ransomware.

The Ransomware Ecosystem: Operators, Affiliates & Access Brokers

French subtitled

An overreliance on endpoint detection and response (EDR) alone is bound to leave holes in your cyber defense. That’s because cybersecurity incidents now originate from almost anywhere in the IT stack. In the case of our 4,500+ customers, over 60% of essential threat event and detection data comes from beyond the endpoints. 

Join us to learn how evolving threats are outpacing common defense strategies, leading many security organizations to rethink how to strategically upgrade their security and which security partner is best positioned to support them. We’ll also discuss the shortfalls of EDR protection alone — and how many organizations are looking beyond the endpoint for a more effective and efficient approach to cybersecurity. 

What you’ll learn:  
Why cybersecurity needs to move beyond the endpoint to keep pace with evolving threats and a growing attack surface 
The pitfalls of relying too heavily on endpoint detection and response (EDR) in your cyber defenses 
How to strategically improve your cybersecurity and choose the right security partner

FR: Beyond the Endpoint – Tackling Your Biggest Cybersecurity Problems

There’s no doubt that security information and event management (SIEM) platforms provide powerful threat detection tools. But SIEM technology has its (long) list of challenges - cost, skills shortages and configuration hurdles among them. As a result, the security industry is experiencing a shift, with forward-thinking businesses embracing Extended Detection and Response (XDR) due to its ability to offer improved security visibility, operational investigations capabilities and response actions across the enterprise. 

But how can security leaders know that it’s the right time for them to be embracing this shift towards XDR, and what are the best ways to get started on re-solutioning their SIEM technology? 

In ‘3 Signs It Is Time to Re-Solution Your SIEM for XDR’, Secureworks and a guest expert are here to help. Host Nick Cavalancia is joined by Ryan Alban, Senior Manager - Systems Engineering at Secureworks and Carrie Goetz, CTO of StrategITcom, to discuss: 

- The 3 signs every CISO should be aware of that it may be time to embrace XDR over SIEM technology 
- How XDR is enabling security leaders and SecOps teams to prepare for and respond to the current and emerging threat landscape  
- Best practices for getting started on your XDR journey 
- The ROI and resource benefits that XDR can drive 
- And more

3 Signs It Is Time to Re-Solution Your SIEM for XDR

The last few years have seen 10 years of digital transformation compress into 3 years and as a result, the entire architecture behind IT has changed beyond recognition for many organizations.

At the same time, the methods bad actors use to compromise IT infrastructure have also changed and innovated, too. This has resulted in the fact that many organizations' approach to securing their IT infrastructure has fallen behind, and they drastically need to keep up in order to protect their data.

This BrightTALK panel discusses the shifts that have occurred and why so many organizations are now looking to partner and move away from an EDR cybersecurity approach and move to outside assistance in the form of MDR and Managed-XDR. And, how by expecting more, enterprises will be in position to better mitigate against both today’s and tomorrow’s compromises.

Compromises Have Moved Beyond the Endpoint - You Need to Too!

An overreliance on endpoint detection and response (EDR) alone is bound to leave holes in your cyber defense. That’s because cybersecurity incidents now originate from almost anywhere in the IT stack. In the case of our 4,500+ customers, over 60% of essential threat event and detection data comes from beyond the endpoints. 

Join us to learn how evolving threats are outpacing common defense strategies, leading many security organizations to rethink how to strategically upgrade their security and which security partner is best positioned to support them. We’ll also discuss the shortfalls of EDR protection alone — and how many organizations are looking beyond the endpoint for a more effective and efficient approach to cybersecurity. 

What you’ll learn:  
Why cybersecurity needs to move beyond the endpoint to keep pace with evolving threats and a growing attack surface 
The pitfalls of relying too heavily on endpoint detection and response (EDR) in your cyber defenses 
How to strategically improve your cybersecurity and choose the right security partner

Beyond the Endpoint – Tackling Your Biggest Cybersecurity Problems

The rise of AI has made its way to threat detection. With AI-enabled threat detection systems predicting new attacks and notifying admins of data breaches instantly, it’s safe to say that artificial intelligence is making its mark on the security landscape. 
 
But is AI worthy of all the plaudits it's receiving, and is it a silver bullet for threat detection? Or is it ‘just’ the next building block on the road to a robust as possible security set-up? In this Secureworks panel, George Anderson, Senior Product Marketing Manager at Secureworks is joined by experts Nash Borges - VP of Software Engineering at Secureworks, Dr Rebecca Wynn - Global Chief Security Strategist & CISO, Click Solutions Group and Simon Ratcliffe - Principal Consultant, Ensono to answer the question: ‘Is AI the panacea to doing threat detection right?’
 
Learn from their experience and insights and join this panel to hear:
- What AI-enabled threat detection looks like in the real-world, away from the hype
- The most common use cases that AI-enabled threat detection makes easier to detect
- Instances where AI could potentially cause CISOs and security leaders more headaches than it removes
- The types of additional contextual prioritization AI can give, and what this means for brand, customer and employee protection 
- And more

Is AI the Panacea to Doing Threat Detection Right?

Network defenders often look at "dwell time" – the time between an adversary gaining access and achieving their objectives – as a key metric in understanding threat and risk. Based on Secureworks direct observations through incident response engagements, the average dwell time for post-intrusion ransomware attacks has remained fairly constant this year compared to last, at four and a half days in 2022 compared to five in 2021.  

What that means is that on average an organization has almost a whole working week to detect and contain an intrusion before the lights go out. Understanding how ransomware operators act once inside a network is the key to exploiting this "detection window." 

In this session, Director of Threat Research Chris Yule will lead a roundtable discussion looking at how best we can prepare for and defend against the pervasive threat of ransomware.

Understanding and Defending Against the Ransomware Threat

Cyber Security

Threat Detection

Cyber Threats

Threat response

Cyber Attacks

SecOps

Threat Defence

Incident Response

Ransomware

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The unexpected nature of natural disasters and other disruptive events means that preparation is key to managing disaster recovery and business continuity planning. Join the business continuity and disaster recovery community for live and recorded presentations discussing best practices for business continuity planning, disaster recovery programs and business continuity management. Learn from BCDR experts to develop your critical infrastructure and gain insight into tactical solutions to your BCDR issues.

Business Continuity / Disaster Recovery

Practicing business intelligence allows your company to transform raw data into sets of insights for targeted business growth. The business intelligence and analytics community on BrightTALK is made up of thousands of data scientists, database administrators, business analysts and other data professionals. Find relevant webinars and videos on business analytics, business intelligence, data analysis and more presented by recognized thought leaders. Join the conversation by participating in live webinars and round table discussions.

Business Intelligence and Analytics

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Get powerful insights to run your business. CEOs, CFOs, CMOs, COOs, CTOs and CIOs are among the leaders in this community who connect with peers and experts to grow their businesses.

CxO Strategy

In the business management community, commercial experts will be sharing webinars and videos on an array of subjects. From sales and marketing, to finance, productivity and growth, this content will help you stay up-to-date with the current economic environment and provide timely management insight to drive business growth.

Understanding and Defending Against the Ransomware Threat

Presented by

About this talk

More from this channel