Name: Assessing and Managing Cyber Risk : An Approach for Chief Risk Officers (CROs)
Start: 2021-04-13T02:00:00Z
End: 2021-04-13T02:59:09.000Z
Location: BrightTALK
Rating: 5

Mandiant is a recognized leader in dynamic cyber defense, threat intelligence and incident response services. By scaling decades of frontline experience, Mandiant helps organizations to be confident in their readiness to defend against and respond to cyber threats. Mandiant is now part of Google Cloud.

The M-Trends 2023 report is packed with timely data from Mandiant’s frontline incident response investigations and unparalleled threat intelligence, offering an inside look into trending response metrics and attacker operations from some of the most impactful breaches around the world.

Join Alirezah Arasteh, VP of Mandiant Consulting, Canada, on June 21st, 2023 at 2.00 pm EST as he walks you through what these findings mean and how they can significantly affect your security approach.

Topics for discussion will include:
- Global and Regional Dwell Times
- Detection by Source Trends
- Industry Targeting Metrics
- New and Notable Threat Groups
- Top Infection Vectors and Malware Families
- Most Prevalent Attacker Techniques
- And more!

Cyber Threat Brief - Insights into today’s top cyber security trends and attacks

To proactively mitigate risks from cyber exposures, you need to know who's targeting you and what you need to protect. Yet, many don’t know where to start.

Join David Sutton and Megan DeBlois for a live discussion on Mandiant’s approach to scoping the cyber threat landscape and how it can help you make more intelligence-led decisions. David and Megan will cover:
 - How to scope the threat landscape 
 - The types of intelligence sources needed 
 - How to successfully operationalize intelligence across the security stack
 - The positive impacts of making intelligence-led decisions

Threats! Exposures! Oh, my!

Join Ryan Roobian and Alexa Rzasa for a live discussion on how to better understand your unique threat landscape and attack surface to proactively identify and mitigate your organization's cyber exposure. Ryan and Alexa will discuss the essentials to building a proactive strategy; including how to achieve:
 - Expanded and centralized visibility
 - Intelligence-led prioritization
 - Validated preparedness
 - Faster remediation and optimization 
 - Incident response readiness

Building a Proactive Strategy to Exposure Management

The most intensive kinetic military conflict in modern history erupted when Russia invaded Ukraine in early 2022. That war developed in a myriad of unexpected ways that impacted nearly every aspect of the cyber threat landscape. Attackers were forced to find new, creative and uncommon techniques to evade detection and bypass security defenses, while also solving for rapidly shifting real-world priorities. 

The past year of adversary evolution has created a landscape filled with malicious actors who are conducting new attacks, in new ways, against new targets, for entirely new reasons. 

Now, organizations have to grapple with attacker techniques they never considered a major risk before – and defending against them requires new ways of approaching cyber defense. 

Join Andrew Kopcienski to discuss what’s changed, what hasn’t, and why it matters significantly to the protection of your organization moving forward.

Cyber Attacks During War and Peace: How the Threat Landscape Was Altered in 2022

The M-Trends 2023 report is packed with timely data from Mandiant’s frontline incident response investigations and unparalleled threat intelligence, offering an inside look into trending response metrics and attacker operations from some of the most impactful breaches around the world. 

Join two of Mandiant’s top threat analysts on May 23, 2023 at 11:00am EST as they walk you through what these findings mean and how they can significantly affect your security approach.

Topics for discussion will include:
 - Global and Regional Dwell Times
 - Detection by Source Trends
 - Industry Targeting Metrics
 - New and Notable Threat Groups
 - Top Infection Vectors and Malware Families
 - Most Prevalent Attacker Techniques
 - And more!

By the Numbers of Today's Top Cyber Developments and Attacks: M-Trends 2023

Tracked since 2018, Mandiant assesses with high confidence that APT43 is a moderately-sophisticated cyber operator that supports the interests of the North Korean regime. The group’s focus on foreign policy and nuclear security issues supports North Korea’s strategic and nuclear ambitions. 

Join this webinar to find out more about:
 - APT43's toolkit and technique that characterize their operations
 - Unique targeting activities that differentiate APT43's operations
 - How APT43 fits into North Korea's cyber capability and their relationship to other groups.

APT43: Prolific Cyber Operator Linked to the North Korean Regime

This session is the third in our multipart virtual series that will provide helpful insights and best practices surrounding  the six critical functions of cyber defense that make up The Defender’s Advantage.  

In this webinar, join Mandiant experts for a discussion on how to effectively contextualize, categorize, and prioritize cyber security incidents to rapidly Detect malicious activity and identify significant business risks. Also learn how to Validate your security control ecosystem to ensure the optimization and success of the detection process to ultimately protect your critical assets.

Detect Risks & Validate Security Controls - Webinar Series Part 3

Organizations are struggling to keep up with the constantly changing threat landscape. With more complex and sophisticated attacks, planning for incidents and validating preparedness is critical to ensuring the success of your incident response efforts.

Incorporating the latest intelligence and automation can increase the efficiency and effectiveness of your Security Operations Center (SOC) while reducing Total Cost of Ownership (TCO).

Watch this webinar to learn how to:

Leverage cyberthreat profile development, landscape briefing, response readiness through Tabletop Exercises and Security Planning/Cybersecurity Assessment
Validate operations and technologies through automation
Navigate economic challenges and avoid overspending on redundant defenses

3 Steps to Improve SOC Efficiencies and Reduce TCO

Please join Behavior Research Team members, Ursula Cowan and Andrea Hatcher, as they give a brief overview of security validation using an intelligence-led approach. The team will then demonstrate how the Mandiant Advantage Security Validation Platform allows customers to augment their validation content with their own custom content that can be created specific to each unique environment. Specifically, the team will focus on creating endpoint actions that can then be used to validate the effectiveness of an organization's endpoint security solution(s).

This is the second webinar in the ‘Beyond IOCs’ series of Mandiant Advantage Security Validation intelligence-led content creation. You can watch the first webinar: Beyond IOCs: Validate Security Controls With Quality Threat Intelligence on this channel.

Beyond IOCs: Demonstrating an Intelligence-Led Approach to Security Validation

Most organizations have cyber-threat intelligence programs in one form or another, but the tough-to-face fact is that many only achieve tactical success at best. Today’s threat landscape, by contrast, demands threat intelligence best practices and a more formal program, which leaves a significant cyber intelligence gap in organizations. 

Tune into this custom BrightTALK session with experts from Mandiant and Enterprise Strategy Group to subvert this trend for your organization and discover how to develop and maintain a proactive and impactful cyber-threat intelligence program.

Additional agenda items include:
• Trends associated with open-source intelligence (OSINT), commercial threat feeds, threat intelligence platforms (TIPs), and SIEM 
• The state of cyber-threat intelligence programs today
• What’s needed to advance existing programs

Making cyber-threat intelligence programs effective and impactful

Detecting and responding to bots and fraud has become vital to organizations and ensuring security for their users. Attackers are carrying out more sophisticated bot attacks, and using novel ways to exploit compromised credentials to gain unprecedented access to the online presence of organizations. 

Join our upcoming webinar to see how reCAPTCHA Enterprise with its GA of Account Defender is driving security by preventing account takeovers, preventing fraudulent attempts and reducing friction for legitimate users.

We’ll explore how you can leverage the depth of Google’s intelligence and ML models by securing 6 million websites, how to secure your login and registration workflow, and moving beyond the visual challenge.

Prevent Account Takeover and Fraud with reCAPTCHA Enterprise

Recent studies show there is still a skills gap in cyber security. To help close this gap, John Doyle, Applied Intelligence Mentorship Program Lead at Mandiant, created a Cyber Threat Intelligence course to train security teams to think like a Mandiant threat intelligence analyst.  

In this webinar, John  shares a preview of this exclusive Mandiant Cyber Threat Intelligence course that delves into the mind of an APT. 

This new strategic course is designed for new security professionals or those transitioning into new security roles. It aims to teach how countries use cyber operations as a tool of statecraft to advance national-level priorities, and in response to geopolitical drivers. With this knowledge, students will gain an understanding of how, why, and against whom nation-states attack so you will know what to look for and how to proactively identify potential threats that could impact your organization.  

Register now for this webinar for insights into: 
 - Using APT attribution to inform defensive posture, allocate resources, and provide insight into likely threat vectors
 - Best practices in using and evaluating CTI reports 
 - Improving risk assessments and developing threat profiles by understanding threat actor mission, mandates, and motivations

Inside the Mind of an APT

Join a panel of Mandiant experts to explore findings from the new Global Perspectives on Threat Intelligence report and understand key actions to solidify your cyber readiness.

Learn the key challenges facing cyber security decision-makers at the world’s largest organizations and how you can operationalize threat intelligence to be better prepared in the rapidly evolving threat landscape.

In this live session, you will learn how to:
 - Improve visibility and understanding of unique threats targeting your organization
 - Help security teams prioritize and prepare
 - Apply threat intelligence effectively throughout your organization

Global Perspectives on Threat Intelligence: Best Practices for Cyber Defense

This session is the fourth in our multipart virtual series that will provide helpful insights and best practices surrounding the six critical functions of cyber defense that make up The Defender’s Advantage.  

In this webinar, join Mandiant experts for a discussion on how to properly Respond to resume normal business operations and effectively remove threats from the environment. Also learn how to proactively Hunt for evidence from a previous or existing compromise to enhance future response capabilities and realize new methods of threat detection.

Respond to Resume Operations & Hunt to Prevent Compromise- Webinar Series Part 4

A cada ano, vemos que o panorama de ameaças evolui de modos diferentes. Apesar de os defensores terem o desafio crítico de navegar pela incerteza, o caminho adiante não precisa ser tão confuso. Ao estudar as tendências atuais, podemos visualizar de maneira mais clara as batalhas que venceremos no ano de 2023.
Para ajudar as organizações a estarem preparadas para 2023, melhorando sua defesa cibernética, o especialista em ameaças da Mandiant, Guilherme Volpini Cosentino, apresenta uma sessão na qual trata em detalhes muitos dos temas discutidos no último relatório Previsões de Cibersegurança da Mandiant para 2023.
Participe de nosso webinar, na quarta-feira, 01 de março de 2023, para entender em profundidade algumas destas tendências, tais como:

• Como os riscos cibernéticos russos podem impactar a cibersegurança
• Como será a escalada de espionagem chinesa
• Porque os atores maliciosos iranianos podem aumentar o volume de ataques
• É provável que as operações de informações continuem aumentando em ritmo, com um impacto pouco claro
• Possíveis mudanças nos seguros cibernéticos
• Tendências de aumento de espionagem cibernética e ransomware no mundo
• Como os grupos de extorsão usarão ransomware em 2023

Speaker – Guilherme Volpini Cosentino, Security Services Manager, Mandiant

Projeções sobre segurança cibernética em 2023

Nearly one year ago, Russia invaded Ukraine, and we continue to see cyber operations play a prominent role in the war. To provide more insights into the role of cyber, we released Fog of War: How the Ukraine Conflict Transformed the Cyber Threat Landscape Report based on analysis from Google’s Threat Analysis Group (TAG), Mandiant, now part of Google Cloud, and Google Trust & Safety.

Join our upcoming webinar to explore new findings, and retrospective insights, across government-backed attackers, information operations (IO), and cybercriminal ecosystem threat actors from the report. 

Highlights include:
- Shifts in Russia’s government-backed attackers tactics and efforts.
- How Moscow has shaped public perception of the war.
- The effects on the Eastern European cybercriminal ecosystem, and how it has changed.

Speakers:
Toni Gidwani, Security Engineering Manager - Google Threat Analysis Group
Tina Tong, Threat Intelligence Analyst - Google Threat Analysis Group
Ben Read, Senior Manager of Threat Analysis - Mandiant, now part of Google Cloud

Fog of War: How the Ukraine Conflict Transformed the Cyber Threat Landscape

2023 will see businesses prepare for and comply with new Canadian legal requirements   for cybersecurity, such as Bill C-26, C-27 and the Office of Superintendent of Financial Institution’s B13 Guidelines, which will respectively apply to critical infrastructures, customer data privacy and financial services. 

Compliance with these requirements is critical while the amount of time allowed to organizations to implement is relatively short. Organizations will have to demonstrate compliance. 

Mandiant (now part of Google Cloud) and Norton Rose Fulbright Canada LLP are pleased to invite you to join them for an online webinar on February 22nd at 2.00 pm ET. 

Cybersecurity practitioners, decision makers and legal counsels can learn and gather: 

• An overview of what exactly B13, C26 and C27 entail in terms of cybersecurity for their respective industries 
• Best practices to efficiently implement those new regulations 
• Best practices to navigate cyber readiness in an ever changing legal landscape 

Speakers -
Greg Davison - Moderator - Head of Mandiant Sales, Canada  
Ali Arasteh - Head of Mandiant Consulting, Canada 
Imran Ahmad - Partner, Head of Technology, Co-Head of Information Governance, Privacy and Cybersecurity

Cyber Readiness in the 2023 Canadian changing legal landscape

This session is the second in our multipart virtual series that will provide helpful insights and best practices surrounding the six critical functions of cyber defense that make up The Defender’s Advantage.  

In this webinar, join Mandiant experts for a discussion on how to understand and effectively implement your collective Threat Intelligence to make the right security decisions. We will also dive into the establishment of Command and Control to orchestrate the prioritization of activities performed by all six cyber defense functions to achieve security resilience and reduce the overall impact of cyber attacks.

Who should attend:
CISOs
Cyber defense directors
SOC managers
Seasoned and new cybersecurity practitioners

Utilize Threat Intelligence, Establish Command & Control - Webinar Series Part 2

Simply investing in cyber security controls isn’t enough, as countless victims of cyber-attacks have learned the hard way. This session will offer valuable insights and recommendations for Chief Risk Officers (CROs) and C-suite decision makers about how to move beyond simply ticking a box to ensuring their cyber security investments are effective and working as intended to provide risk assurance.  

In this lesson you will learn about:
●	The importance of moving from auditing security control existence to security control effectiveness
●	Determining the right level of risk for your organization
●	How to assess if security controls are working as they should

Be sure to check out all of the sessions in our FireEye Mandiant Virtual Summit 2021, Innovation Forward. A New Era of Resilience. - Live on April 13-15.  https://virtualsummit.fireeye.com/

Assessing and Managing Cyber Risk : An Approach for Chief Risk Officers (CROs)

Cyber Attacks

Cyber Crime

Risk Assessment

Compliance

Audit

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The data center management community focuses on the holistic management and optimization of the data center. From technologies such as virtualization and cloud computing to data center design, colocation, energy efficiency and monitoring, the BrightTALK data center management community provides the most up-to-date and engaging content from industry experts to better your infrastructure and operations. Engage with a community of your peers and industry experts by asking questions, rating presentations and participating in polls during webinars, all while you gain insight that will help you transform your infrastructure into a next generation data center.

Data Center Management

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Assessing and Managing Cyber Risk : An Approach for Chief Risk Officers (CROs)

Presented by

About this talk

More from this channel