Website Threats: It’s Not All About the Hacker Anymore
Website Security Series Part 3
The external threat landscape is evolving; web-based malware and legitimate website hacking is continuing to fluctuate as we learn and adapt our network defence strategies, or externalise our infrastructure to mitigate risk. However, do these initiatives around protection extend to our customers?
Every organisation has a web presence and increasingly this presence is not just for broadcasting corporate brands and products; it is used to collect and socialise personal information from customers and constituents and process regulated financial transactions.
In this session Symantec will discuss:
- Top threats that target customer identities
- How the Trust model of SSL has survived the last 18 months
- Why the Internet’s top brands are moving to Always-On SSL
- Why not all SSL certificate infrastructures are created equal and how this can influence business growth
- How to manage an expanding cryptography infrastructure effectively
Mike Smart is the Senior Manager of International Product and Solutions at Symantec.
In his role, Mike is responsible for driving Symantec’s Trust Services business across International and emerging markets. He joined Symantec in 2012 from SafeNet where he was Director of Products and Solutions in EMEA.
Mike has a strong history in the SMB and Enterprise IT Security arena and has been at the forefront of introducing new technologies and solutions to the market in areas such as Cloud Security Solutions, Information Leakage Detection and Prevention and Unified Threat Management. Mike is an active member of the UK’s Get Safe Online not-for-profit organisation which provides a leading source of unbiased, authoritative information on protection against fraud, identity theft, viruses and many other problems encountered online.
RecordedJun 21 201240 mins
Your place is confirmed, we'll send you email reminders
Jeremy Rowley, Chief Product Officer and Flavio Martins, Executive VP of Support & Validation, DigiCert.
With DigiCert’s acquisition of Symantec’s Website Security business, there is some misinformation in the market about how the browser timelines affect Symantec-issued certificates. Join us in this webinar as we explain the distrust deadlines, dispel common myths about how customers will be affected, and look ahead to what you can expect from DigiCert in the future.
After viewing this webinar, you’ll know:
•What the browser timelines mean for you and your business
•What (if any) action you need to take to maintain trust
•What the SSL/TLS certificate replacement process will look like
•What to expect from DigiCert moving forward
The webinar will be moderated by Paul Roberts, Editor in Chief, The Security Ledger.
Justin Carroz, Senior Product Marketing Manager at Symantec and Dave Roche, Customer Success Manager at Symantec
Short certificate validity as industry best practice will be here sooner than you might think. The emergence of devastating threats and vulnerabilities is driving the need to create smaller windows of opportunity for cyber criminals.
Several new measures have already been implemented to this end, such as Certificate Transparency (CT) and more recently Certificate Authority Authorisation (CAA). Now Certification Authorities and browser vendors are becoming increasingly vocal to urge the industry to move toward short-lived SSL/TLS certificates.
In this webinar, we will help you understand:
- what are short-lived SSL/TLS certificates
- why the industry is reducing SSL/TLS certificates validity time
- what the benefits and drawbacks this brings to your organisation
- how to start preparing for the introduction of short-lived SSL/TLS certificates to your portfolio.
Merritt Maxim, Principal Analyst at Forrester Research and Srini Padmanabha, Senior Product Manager at Symantec
In a recent survey, 43 percent of organizations are implementing or planning to implement the Internet of Things. Along with the benefits come challenges and risks. Every one of “thing” on the Internet may be an attack vector.
How do organizations set up a foundation for secure IoT implementation?
Attend this webcast to:
- Find out about trends and challenges in implementing IoT
- Discover best practice and solutions to mitigate security risks
- Learn about industry use cases on securing IoT
According to some analysts, 25 billion connected devices will be part of the Internet of Things (IoT) by the year 2020. Every one of these devices on the Internet of Things (IoT) ecosystem may be malicious or a threat vector. What are enterprises and manufacturers doing to make IoT a safe place?
Attend this webcast to:
-Find out about the latest trends and challenges in securing IoT devices
-Discover best practice and solutions to mitigate security risks
-Learn about industry use cases on securing IoT
Our presenters for this session:
-Robert Westervelt, Research Manager, IoT Security, Data Security
-Srinivasa Padmanabha, Senior Product Manager, Symantec Website Security
Jason Sabin, Chief Security Officer, DigiCert & Davi Ottenheimer, Faculty, Institute of Applied Network Security (IANS)
Continuous DevOps environments have revolutionized software development, allowing development teams to work both more quickly and efficiently. Going faster introduces security risks. But addressing security will slow development—or will it? Join Security Ledger and DigiCert for a valuable conversation with leading practitioners on how organizations can improve development agility without sacrificing security.
We'll review examples of organizations that have managed to infuse security best practices into their DevOps program, while also talking about some pitfalls and danger areas companies should be aware of as they embrace DevOps and secure DevOps methodologies.
Jason Sabin, Chief Security Officer, DigiCert
Davi Ottenheimer, Faculty, Institute of Applied Network Security (IANS)
Paul Roberts, Editor in Chief, The Security Ledger
Leon Brown, Geoffrey Noakes and Jeff Barto from Symantec
With more and more transactions happening online, and a dramatic increase in incidents involving brands and fraudsters on the Web, the concept of online trust has never been so vital for businesses. In this webinar you will learn how to help prevent these incidents by leveraging the Web PKI to display your business identity online: we will explain the principles of trust through business authentication and how to show your identity to your visitors thanks to various types of digital certificates.
We will run through the benefits of business authentication, what the current best practices and policies are for both e-commerce and Enterprise businesses when it comes to trust, what is mandatory and what is coming. We will help you clarify priorities for your business and provide some action plans.
Mike Nelson, VP, Critical Infrastructure at DigiCert, Mike Ahmadi, Global Director of Critical Systems Security at Synopsys
As self-driving vehicles are coming off the production line, automakers are deploying technology to improve the driving experience, from the infotainment system to enhancing brake and fuel efficiency. Yet, adequate cyber security measures still need to catch up. Whether it’s the hacked Jeep or the Nissan Leaf app vulnerability, connected vehicles often fail to implement basic authentication and encryption measures to protect users.
Mike Nelson and Mike Ahmadi will cover the following topics:
- Insight into the state of connected vehicle security and the need for interoperable standards-based solutions.
- How connected device manufacturers are using public key infrastructure (PKI) to provide scalable authentication, encryption and data integrity for the vehicle and its thousands of connected parts.
- Specific steps security teams can take beginning today.
Karl West, CISO and Assistant VP of Information Systems for Intermountain Healthcare; Mike Nelson, VP of Healthcare Solutions
As the Internet of Things (IoT) and device connectivity within healthcare settings increases, the need for strong security rises, even as the potential exists to improve patient care through data sharing and real-time analysis. Threats to patient health and private healthcare data continue to grow in sophistication and volume, prompting the FDA to recently issue guidance for Post-Market Management of Cybersecurity in Medical Devices. Evolving risks include direct threats to patient safety that could occur because of manipulation of data in transit or device compromise. Similarly, healthcare organizations are at risk of connected devices providing backdoor access to their networks, potentially losing patient and other proprietary data that could undermine their long-term stability. A third risk to manufacturers is the loss of IP protections during manufacturing. The healthcare industry is responding by acknowledging the need for better security, but a major obstacle arises in how to effectively assess risk, prioritize and deploy security solutions at scale.
This webinar provides an overview from both a healthcare provider organization and medical device manufacturer perspective.
During this webinar, learn about:
•The state of medical device cybersecurity - including an assessment of where progress is being made and areas in need of improvement
•How to conduct a proper medical device risk assessment for large healthcare networks
•The importance of manufacturers issuing timely medical device software patches and updates & FDA clarification of policies
•Technologies being used to manage device identity, data encryption and user/device authentication at scale for connected medical devices
•Why creating, classifying and managing medical device inventories are difficult, but necessary, steps for many healthcare organizations
Leading provider of scalable PKI & IoT solutions for a connected world
DigiCert is a leading provider of scalable PKI and IoT solutions for a connected world. The addition of Symantec’s Website Security solutions to DigiCert’s offerings in November 2017 brings together the industry’s top talent and provides customers with an enhanced technology platform, unparalleled customer support and market-leading innovations. Find out more about the acquisition of Symantec Website Security by DigiCert at https://www.websecurity.symantec.com/digicert-and-symantec-faq.