Name: Insider Insights: PCI Europe Community Meeting Preview
Start: 2016-10-05T13:00:00Z
End: 2016-10-05T14:00:05.000Z
Location: BrightTALK

Trustwave helps businesses fight cybercrime, protect data and reduce security risk. With cloud and managed security services, integrated technologies and a team of security experts, ethical hackers and researchers, Trustwave enables businesses to transform the way they manage their information security and compliance programs. More than 2.7 million businesses are enrolled in the Trustwave TrustKeeper® cloud platform, through which Trustwave delivers automated, efficient and cost-effective data protection, risk management and threat intelligence. Trustwave is a privately held company, headquartered in Chicago, with customers in 96 countries. For more information about Trustwave, visit www.trustwave.com.

Today, “slow” is the new broken. Slow, outdated systems and tools can significantly inhibit business continuity and security, impeding your organization’s productivity and it’s cloud migration. With modern paradigms, solutions, and integrations, “slow” is not only inefficient, but also, no longer an acceptable standard. 

In this session, we’ll discuss the necessity of re-evaluating productivity, integration, and visibility to ensure your security is not hindered by sluggish or outdated solutions. Bad actors are increasingly sophisticated and bold and now is a crucial time to tighten your perimeters and strengthen protocols to mitigate your cloud and cyber risks. 

Together with Microsoft, join Trustwave on June 17th at 1pm PDT for more information on:
• Achieving visibility 
• Evaluating integration standards
• Identifying inefficient or slow security processes

Slow is the New Broken: Accelerating your Cloud Security

Trustwave subject matter experts discuss the increasing ransomware threat, how you can improve your security governance and or compliance? What strategies you can employ operationally? Which are the best technologies for you to implement to protect yourself? What do you need to test and assure yourself of effective controls and how do you proactively or re-actively mitigate the impact of an incident?

Attend this webinar if you would like to explore solutions to the risks posed and want to be informed on some of the latest responses. We will provide you with advice and guidance on how you can improve your Security Governance and or Compliance, alongside operational changes, or technology you can implement to protect yourself. We will answer questions such as what you need to do to test and assure yourself of effective controls and share ideas on how you can proactively or re-actively mitigate the impact of a ransomware incident.

Hosts:
Ed Williams, Director, SpiderLabs - EMEA 
Matt Hmoud,  Principal Security Consultant, Trustwave
Shawn Kanady, Director Spiderlabs Threat Hunt, Trustwave
David Bacon - Director Digital Forensics and Incident Response - EMEA, Spiderlabs

Mitigating increasingly serious and sophisticated Ransomware threats

With a 67% increase in security breaches over the last five years, and an average cost of a data breach clocking in at $3.86 million, you can never be too careful in your approach to security. - Per Accenture 

A strong security posture is a careful blend of the right people, processes, and technology aligning to ensure you remain one step ahead of the ever-evolving threat landscape, increasing attack surfaces and potential vulnerabilities resulting from digitization initiatives.  

From remote employees connecting to an unsecured Wi-Fi network or unintentional violations of security policies to unpatched software or a previously undetected malware file, seemingly innocuous risks can maneuver their way around your existing tools--no matter how robust.  

Amplifying your current security tech stack with human-led testing and simulated attacks provides heightened visibility into your environment, identifying these gaps before a bad actor can exploit them.  

In this session, we'll be discussing: 

Using red teaming engagements to confirm security efficacy  

Employing blue and purple team exercises to amplify existing security protocols 

How human-led testing differs from penetration testing and automated tools 

 

Join the Trustwave SpiderLabs team to better understand the vital role human-led testing and adversarial-simulation (red, blue and purple teaming) plays in maintaining a mature, layered security posture.

Red Team Rules: The Importance of Human-Led Testing

It seems every 3-5 years, the industry has new terms to discuss the state of security and guide security investments. The "Assume Breach" strategy caused us to think “Well, if I can’t stop attackers coming in, I have to assume they are already inside my network.” This led the market to change security focus on more detection and response, but the hackers already know what to do to hide. The "Assume Breach" strategy alone is a losing one. It must be combined with a Proactive Data Breach Prevention strategy.
 
In this webinar, we will discuss the balance needed between the two strategies and focus on the strengths of a proactive one.  

We will look at:
  -Security Hygiene
  -Thinking like the Attacker
  -Securing Data Where It Lives

The Attackers Already Know Your "Assume Breach" Strategy

Join Palo Alto Networks and Trustwave SOAR SME’s in a roundtable discussion as they explore the current market for SOAR, the challenge facing businesses and how together, their collaboration to enable a unique XSOAR offering.
• Why SOAR?
• How can Trustwave help?
•	Solving the perpetual effort
•	Cyber vs. Operational Use Cases
•	XSOAR ROI

To SOAR or not to SOAR – Trustwave XSOAR is the Answer

It’s no longer enough to secure your own company’s infrastructure; you now must also evaluate the risk of third-party vendors, and plan as well as monitor for breaches there too.   Recent supply chain breaches like the Colonial Pipeline breach, have shown security risks must be taken seriously. You should assume cybercriminals can navigate across the systems of your vendors and into your own environment. it is critical that you have a clear understanding of the inherent risks within your supply chain and the know-how to prioritize actions to reduce the risks of a breach.  In this webinar we will explore: • The move to automation and outsourcing trends ‘It is estimated that there will be four times more supply chain attacks in 2021 than in 2020’ - European Union Agency for Cybersecurity (ENISA)– Jul 2021 • Trends and analysis from BitSight (James Warriner)  • Compliance and Regulation – President Bidens Executive Order and NIS-D – Its importance and impact on supply chain risk.

Looking beyond your perimeter - Supply Chain Risks

It’s no longer enough to secure your own company’s infrastructure; you now must also evaluate the risk of third-party vendors, and plan as well as monitor for breaches there too. Recent supply chain breaches like the Colonial Pipeline breach, have shown security risks must be taken seriously. You should assume cybercriminals can navigate across the systems of your vendors and into your own environment. it is critical that you have a clear understanding of the inherent risks within your supply chain and the know-how to prioritise actions to reduce the risks of a breach.

Cyber Security Supply Chain Risk Preparedness

Just as enterprise organizations are embracing cloud computing, so too are cyber attackers and everyone is justifiably concerned. For all the advantages of the cloud, the framework is not impervious to cyber threats and so security protocols must always be a priority. Yet the myth that cloud is less secure than owned, on-premise security is just that: a myth. A 2020 Gartner forecast stated IaaS workloads would experience 60% fewer security incidents than traditional data centers — at least.

In order to comprehensively deploy a cloud security network, companies must understand the realities of their infrastructures. Identifying the responsibility of the cloud and that of the customer is critical, as is learning what services can be reasonably expected from a leading cloud provider. Only with the right facts can you build a truly secure network.

Join this panel of experts as they discuss the most common myths of cloud security and what you should actually be building your strategy around:

- Cloud vs. On-Premise Security: Which is easier to target?
- Is a public cloud more vulnerable than a private one?
- How automated can — and should — the cloud’s security protocol be?
- Accessibility: How much is too much?

Moderated by: 
Michelle Drolet, CEO, Towerwall

Panelists to include: 
Jessica Charter, EMEA Security Principal, Trustwave
Taylor Smith, Senior Product Marketing Manager, Prisma Cloud, Palo Alto Networks
Rajesh Agnihotri, Senior Solutions Engineer, Middle East, SonicWall
Scott Fanning, Senior Director, Cloud Security, CrowdStrike

Dispelling the Myths and Misconceptions of Cloud Security

An introduction to 24/7 monitoring, proactive alert management, threat hunting, and incident response that spans network, endpoint, and cloud.

How to eradicate threats 24/7 with Cortex powered by Trustwave MDR

It is becoming ever more difficult to navigate the ever-changing cloud landscape. What are the key challenges? How can you understand what compliance is suitable for your organisation? How do you integrate security strategy across on-prem and cloud environments? Join us in a roundtable discussion with our top security SMEs from Trustwave.

Integrating security strategies across on-prem and cloud environments

The threatscape is fast-changing and keeping up with transformation in the cybersecurity space is key to staying ahead of the evolving threats that lie ahead. In fact, according to Cyber Crime Magazine, cyber attacks are now the fastest growing crimes globally. But what will these threats look like in 2022? How will the threatscape have evolved from 2021, and how can we prepare for this change? 

From a rise in web application breaches, to an increase in ransomware and phishing attacks, it is clear that 2022 could represent severe disruption for business globally if steps are not taken preemptively to secure your business. 

Join us in this session as we discuss: 

-  How the role of the CISO will evolve in 2022
-  The shifting threatscape 
-  The key trends we expect to see in the year ahead 
-  How to address these threats for a more secure enterprise

Moderated by: 
Stuart Wilson, BrightTALK

Panelists: 
Michael Yehoshua, VP of Marketing, SCADAfence
Stan Davidson, Principal Solutions Architect, EMEA, SonicWall
Kevin Eley, VP of Sales, UK and Europe, LogRhythm
Jessica Charter, EMEA Security Principal, Trustwave

Panel: Preparing for The 2022 Threatscape

In 2020 we saw a huge leap forward in digital transformation, with digital transformation comes risk, with risk comes opportunity for malicious users.  

Join us as we discuss the ever-evolving threat landscape from three different perspectives: Pen Testing, Digital Forensics (DFIR) and Threat Detection (TDRC).  

We discuss security trends, what to do and where to focus on during these fast paced and difficult times.

This will be a live panel discussion and Q&A.

Featuring insights from:
Ed Williams – Director, Trustwave’s SpiderLabs, EMEA
David Bacon – Director, Director Digital Forensics and Incident Response, Trustwave’s SpiderLabs EMEA
Damian Hicklin - UK&I Practice Director, Consulting & Professional Services

3 Perspectives on the Evolving Threat Landscape

2020 was the worst year on record for breaches. E.g. there were 2,935 publicly reported breaches in the first three quarters of 2020. According to a recent report from Risk Based Security, the number of records exposed in 2020 was up to 36 billion. 

What can enterprises learn from this and do to better protect their data? Is breach prevention even possible? 

Hear from the experts on what the new normal for organizations looks like, the cybersecurity best practices to adopt and what's in store for the rest of 2021.

The topics up for discussion will include:
- Cybersecurity in the new normal
- How attackers have take advantage of the pandemic
- Critical steps to take on the path to preventing data breaches 
- Why data protection and cybersecurity should not be separate functions
- Best practices and solutions for breach detection and response
- Lessons from the field and recommendations for CISOs

Moderator: 
Ashton D'Cruz, Director, CAO, CGO, CISO & Head - CC&S Governance, NatWest Markets Plc, INDIA

Panelists:
Allen Ohanian, CISO, Department of Children & Family Services
Nir Shafrir, VP, Global Field Engineering and Customer success at Nyotron
Andrew Kempster, Principal Consultant Incident Response/Digital Forensics at Trustwave

Panel Discussion: Getting Ahead of the Breach

Watch our webinar, Your Patching Regimen: Leaving the Door Open to Threats, as Karl Sigler, Senior Security Researcher, Trustwave SpiderLabs, covers many key topics that are a part of our recently released 2021 Trustwave SpiderLabs Telemetry Report. Tune in to learn more about how your patching regimen could leave your network exposed.

Your Patching Regimen: Leaving the Door Open to Threats

In 2021, virtually all organizations (99%) use at least one public or private cloud. Half of all workloads and nearly half the data reside in public clouds, and almost 80% of organizations take a hybrid approach. Securing hybrid environments is no small task: teams are fatigued, resources limited, and the threat landscape is constantly evolving and becoming increasingly sophisticated. So, how do you protect your organization from tomorrow’s threats today? Listen in as Trustwave security expert, David Broggy, discusses tactics and techniques to help organizations effectively secure hybrid environments both now and in the future.

Securing Hybrid Environments

On May 12th, President Biden issued an Executive Order (EO) on Cybersecurity. While most of the EO focused on improvements needed for modernizing the federal government, there are direct call outs to securing the supply chain.  Additionally on June 2nd, a memo addressed to Corporate Executives and Business Leaders also stressed the critical responsibility for the private sector to protect against threats.

In this webinar, we discuss what the Executive Order calls out and what it means for the private sector. We also discuss government requirements on cybersecurity and how it extends to the private sector

Secure Your Organization Like the Nation Depends On It

Extended Detection and Response (XDR) collects information from disparate security platforms to enable quicker, easier threat detection and response. XDR is often marketed as a replacement for Security Information and Event Management (SIEM) solutions, but is SIEM truly heading for extinction?

In this session, Trustwave Vice President of Managed Security Solutions, Jesse Emerson, discusses:

The differences between XDR and SIEM
Achieving the best outcomes from XDR and SIEM investments
Amplifying the ROI of XDR and SIEM with your Managed Detection and Response (MDR) partner
Listen to this session, to learn more about the future of SIEM, optimizing your existing security solutions, and choosing the right MDR partner.

Is SIEM Heading for Extinction?

Extended Detection & Response (XDR) has been one of the most impactful technologies in the past year. The rapid acceleration of digital transformation initiatives requires the continued evolution and growth of security postures in organizations of all sizes and industries, regardless of resources. In this webinar, Microsoft and Trustwave tackle the evolution of EDR to XDR and how MDR is symbiotic.

Evolving to XDR from EDR: How to do it and why it matters

Join Alexander Norell, Director of Global Risk and Compliance Services at Trustwave, as he shares his insider view of what you can expect at the upcoming 2016 Payment Card Industry Security Standards Council (PCI SSC) Europe Community Meeting in October. 

Alexander’s findings will be based on what he learns from his attendance at the North America Community Meeting and his insight as a subject matter expert on PCI compliance.

During the webinar, Alexander will:

• Alert you to trending topics and their implications
• Share takeaways from participants as well as SSC leaders
• Analyse the impact to the European community

Insider Insights: PCI Europe Community Meeting Preview

PCI SSC

PCI Compliance

Compliance

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

Welcome to the big data and data management community on BrightTALK. Join thousands of data quality engineers, data scientists, database administrators and other professionals to find more information about the hottest topics affecting your data. Subscribe now to learn about efficiently storing, optimizing a complex infrastructure, developing governing policies, ensuring data quality and analyzing data to make better informed decisions. Join the conversation by watching live and on-demand webinars and take the opportunity to interact with top experts and thought leaders in the field.

Big Data and Data Management

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Insider Insights: PCI Europe Community Meeting Preview

Presented by

About this talk

More from this channel