Name: Fortify Series: Securing the Software Supply Chain
Start: 2022-09-07T08:10:00Z
End: 2022-09-07T08:10:58.000Z
Location: BrightTALK
Rating: 5

CyberRes is now OpenText™ Cybersecurity – Reduce risks, preserve trust, contain disruption, and make your business resilient to today's and tomorrow's cyber threats.
OpenText™ Cybersecurity helps organizations of all sizes protect their most valuable and sensitive information. Our portfolio of end-to-end security solutions offers businesses a resilient security foundation with 360-degree visibility across their organization, enabling them to enhance security and trust every step of the way. To find out more, visit: https://www.cyberres.com 

OpenText commissioned Dark Reading to conduct a survey about the use of ITDR-related technologies. This survey of 117 IT and security professionals reveals the state of identity threat detection and response at large. The results cover:

•  How security teams work together to implement ITDR 
•  Where they are in their journey 
•  What to expect in the next two years

The State of Identity Threat Detection & Response (ITDR)

This survey of 300 industry participants and decision makers reveals what secure information management looks like in 2024 and beyond.

State of Secure Information Management

IDC and OpenText Fortify will explore the peril and promise of generative AI in application security such as: GenAI’s ability to improve cybersecurity but introduce new security risks, Securing GenAI Applications, Distinct Security Vulnerabilities in AI, Open Source and Third-Party Models, Enhancing Application Security with GenAI, and Considering OpenText Fortify Application Security.

The Peril and Promise of Generative AI in Application Security

Addressing security vulnerabilities is a crucial yet burdensome task for developers. It typically requires considerable time, extensive research, and frequent context-switching. Understanding the unique context of each vulnerability is essential before devising and implementing an effective solution. Discover Fortify Aviator, your new AI-powered ally in the realm of Static Application Security Testing (SAST).

Unburden your Developer with AI-powered AppSec

Great AI requires great data. To realize its potential, you must curate high-quality data in a responsible way. View this session to explore strategies for maintaining data safety, tackling complex challenges, and ensuring ethical practices.

Establish trusted AI with DSPM best practices

We all know that identity maturity is an ongoing journey, not a one-time destination. Discover the best approach to building a robust identity strategy that empowers your users, protects your data, and fuels your business success.

Don’t fall behind on your IAM maturity journey

Join us for an insightful session together with open source security and compliance expert Ibrahim Haddad from the Linux Foundation. In this webinar, we will dive into the new world of open source security where GenAI is taking center stage. Interviewed by Tim Svensson, Ibrahim gives a preview of what’s ahead, and how to meet what’s coming. How can enterprises navigate this new world, where hundreds of lines code can be generated in seconds? What measures should be taken to avoid introducing risk?

Key takeaways:

• An overview of the compliance and security landscape
• Challenges ahead
• GenAI and its impact on compliance and security
• The importance of the right kind of tooling

Open Source License Compliance and Security: Challenges, Opportunities & Trends

The software industry continues to evolve, and organizations are recognizing the need to balance security risks with the speed of development. OpenText Cybersecurity has partnered with DarkReading for the second year in a row to interview hundreds of AppSec professionals and developers to discover the key challenges this ever-changing landscape has created. Join us in this webinar as we explore key findings, challenges, and solutions from the 2024 State of Application Security Report.
 
Key Takeaways
 
• AppSec risks and pain points prioritization
• Open Source and API security testing vulnerabilities
• Accuracy and depth of application security tests
• Most adequate developer enablement tools

Key Findings from the State of AppSec Report 2024

33% of companies like yours plan to invest in Generative AI (GenAI) to support application and software development this year, according to TechTarget and Enterprise Strategy Group’s latest GenAI Pulse Study, with another 28% focused on GenAI in cybersecurity.

Beyond mere code generation, GenAI has the potential to streamline security alert prioritization and attack mitigation. But GenAI is not without its complications, as its own training data is also subject to attacks.

In this session at BrightTALK’s “Advancing Application Security Practices” Summit, Frans van Buul, Senior Product Manager at OpenText, will shed further light on GenAI’s impact on software development and app security, with particular attention to:

• Usage of GenAI within app security tooling
• Tactics to secure decentralized apps (DApps) in the web 3.0 landscape
• Next-generation threats that static app security testing (SAST) can secure
 
Join the discussion to fortify your app security and prepare for threats on the rise.

The Latest in Application Security: Next-Gen Threats & GenAI’s Impact

Join this webinar to learn how to secure your APIs against today's threat actors. Stan Wisseman, Head of North America Security GTM, will discuss how modern applications are different, the basics of APIs, and how to control API risks.

Fortify Your APIs to Make Sure They're Battle Ready

One of the biggest software challenges companies face today is open-source compliance. This means finding good open source that lives up to internal policies, both when it comes to licenses but also the security of a component. How can one make better decisions when bringing in components, so there’s no need to fix non-compliant or abandoned dependencies down the line?

We would like to welcome you to our webinar, “Benefits of Automated Open-Source Intake Management - Featuring Forrester”, where we will go through the most common challenges organizations face when using open-source components. All of this is backed up by data from a 2024 commissioned Forrester Consulting study conducted on behalf of OpenText.

Key Topics Covered:

1. Tackling the challenges of open-source compliance at intake.
2. What is something most companies struggle with and how you can get ahead of the curve.
3. Q&A Session: Get your questions answered by our expert panel during the live Q&A session.

By viewing this on-demand webinar, you will gain the knowledge and insights needed to initiate and strengthen your open-source compliance. Sign up today to secure your spot and stay ahead of the competition.

Benefits of Automating Open Source Intake Management - Featuring Forrester

What happens when sensitive data collides with the power of artificial intelligence (AI)? How can your business protect itself against potential data breaches and ensure the security of sensitive information? In this webinar we explore the critical intersection of AI and sensitive data, exploring how to identify and measure the financial risk.

In today’s dynamic business landscape, risk is an ever-present companion. Organizations grapple with the stringent demands of regulatory compliance, including CPRA and GDPR. But what happens when sensitive data collides with the power of artificial intelligence (AI)? How can your business protect itself against potential data breaches and ensure the security of sensitive information? Voltage by OpenText helps you address these challenges by improving compliance and ensuring sensitive data remains protected throughout its lifecycle – all from a single data security platform. 

Join us for an enlightening session where we’ll demonstrate how Voltage can help you: 
• Quantify Monetary Risk: Understand the financial implications of managing personal information. 
• Drive Data and Customer Trust: Strengthen relationships with stakeholders by safeguarding data throughout its lifecycle and ensuring data is secure before entering AI. 
• Facilitate Secure Data Sharing: Promote ethical data exchange within your organization and with third parties.   

Secure your data for AI, build trust, and ensure compliance to propel your business forward—all from a single, comprehensive platform.

AI + Unsecured Data = Financial Risk

Weak passwords are notoriously vulnerable to phishing, brute force attacks, and social engineering. Increasingly, enterprises are removing them altogether, to eliminate these attack vectors and make it significantly harder for unauthorized users to gain access.

This webinar (March 12, 2024) explore a new survey from Dark Reading and OpenText on the use of traditional credentials among industry professionals and their urgency to move beyond them. 

We’ll also cover the benefits IT and Security teams can expect by adopting a passwordless paradigm.

About OpenText IAM:
NetIQ Identity and Access Management Platform provides comprehensive workforce and customer identity solutions to enterprise scale organizations – leveraging Identity to provide secure access, effective governance, scalable automation, actionable analysis and insight across their Cloud, Mobile, & Data platforms. 

NetIQ is part of OpenText Cybersecurity. OpenText has completed the purchase of Micro Focus, including CyberRes. Our combined expertise expands our security offerings to help customers protect, detect, and evolve their security posture. They can confidently be their best—and more secure—across their entire organization.

LEARN MORE at the NetIQ homepage: https://www.microfocus.com/en-us/cyberres/identity-access-management

State of Passwordless: Latest insights from OpenText

In this demo video, discover how you can cull data at the point of collection—for efficient investigation, legal, compliance, regulatory, or other business needs.

Demo: Reducing cost and complexity with streamlined data collection

This session discusses the impact big data is having on the collection of ESI and how to address the associated time, resource and financial challenges eDiscovery professionals face.

The Importance of Information Assurance in Today’s Big Data World

This session discusses the steps you can take to reduce your collection costs by as much as 90% while also eliminating the risks associated with over-collection.

Streamline and Save: Smart ESI Collection Strategies for eDiscovery

In today's digital landscape, the need for robust application security has never been more critical. With cyber threats constantly evolving, organizations must ensure that their software is resilient against potential vulnerabilities. But where do you start when it comes to establishing an effective application security program?
Join us for an insightful webinar, "Jumpstarting your AppSec Program with Fortify on Demand," as we explore how you can fortify your applications and defend against security breaches with confidence. Hosted by industry experts, this session will provide a comprehensive overview of leveraging Fortify on Demand, a cutting-edge managed application security solution, to kickstart your AppSec journey.
 
Key Topics Covered:
1. The Evolving Threat Landscape: Understand the current cybersecurity landscape and the pressing need for application security.
2. The Basics of Application Security: Gain a foundational understanding of application security principles and best practices.
3. Introduction to Fortify on Demand: Learn about Fortify on Demand, its features, and how it can empower your organization's security efforts.
4. Getting Started with Fortify: Practical steps for implementing Fortify on Demand and integrating it into your software development lifecycle.

Jumpstart Your AppSec Program With Fortify on Demand

In this session, we will discuss the security and business limitations of static authentication implementations. Discover the value of dynamic access control and find out how your organization can achieve it.

Raising access security without driving users crazy

The application security market continues to evolve as organizations recognize that security risk needs to balance with business imperatives. Fortify partnered with DarkReading to interview hundreds of AppSec professionals and developers to discover the key challenges this ever changing landscape has created.

Based off the survey and research data, it's evident that regardless of the pace of change in technology transformation (the explosion of APIs, microservices, IaC innovation and cloud technology) there’s still a lot of room for maturity and growth in most organizations.

Did you know, that while the majority (57%) of organizations are implementing DevSecOps, almost 3 in 10 (29%) haven’t yet but plan to in the next year. Crazy as it sounds, a full 14% are not doing so and have no plans to.

Static application security testing (SAST) is becoming the norm. (56% use SAST and perform appsec assessments). But dynamic analysis (DAST) is still lagging at only 45% implementation.

There is still over 30% of organizations looking to implement MAST and almost half (46%) of organizations we surveyed are planning implementation of SCA.

Join us as we explore the key findings, implementation challenges, factors influencing tool adoption, and key take-aways.

Special note: Martin Hell (from Debricked) will be joining us to share their research on the State of Open Source Security.

Key Takeaways from the 2023 State of Code Security Report

APIs are the most rapidly growing attack surface, but they still aren’t widely understood and can be overlooked by developers and application security managers. In this webinar, we will discuss cautions, best practices and approaches to ensuring the security and discovery of your organizations APIs.

Fortify Series: API Security Needs Grow Ever Larger

Fortify: Code Security Webinar Series

Modern software applications and products are assembled from dozens if not hundreds of components, many of which nowadays are open-source projects.  Vulnerabilities like Log4J and Spring4Shell that came to light this year reinforce the need for organizations to rapidly mature the security of their software supply chains. The software industry is still early in our collective adoption of mature software supply chain controls. In this webinar, experts and customers will share some of the best practices that organizations can take to mitigate their software supply chain exposure.

Join our esteemed panelists for this discussion: 

• Stan Wisseman
Micro Focus
CTO

• John Keane
CyberRes
Software Angel of Death, Former DoD

• Emil Wåreus
Debricked
Head of Data Science

• Kevin Greene
CyberRes
Chief Technologist, Federal

Fortify Series: Securing the Software Supply Chain

Software Supply Chain

Supply Chain

Software Supply Chain Security

Supply Chain Security

Cyber Security

Cyber Attacks

Cloud Security

Log4J

Spring4Shell

CyberRes

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Fortify Series: Securing the Software Supply Chain

Presented by

About this talk

OpenText Cybersecurity Enterprise