#IMOS18 - Here Come the Robots: What and When to Automate Your Security

The last few months have highlighted the need for organizations to implement security safeguards to secure remote access to critical assets for all employees and suppliers. However, when it comes to remote access, we tend to picture an office worker trying to access a business application or an administrator accessing a server. This leaves out a huge segment of critical infrastructure: industrial equipment.

In fact, each machine and the related controllers are a wealth of information critical to increase flexibility and adapting the industrial process and supply chain to the challenges of an ever-changing environment. While cybersecurity is often pictured as an obstruction to productivity, in this case, it can be a vector of efficiency by allowing secure access to this wealth of data in order to align and optimize production, maintenance and supply processes.

In this webinar, we will shift the focus to the critical needs of securing remote access to factory floors and factory data, exploring how to apply the principle of Zero Trust and Zero Standing Privileges to secure the access to data and facilitate the digital transformation of industry sectors and critical infrastructures.

Key takeaways :

• Understand the cybersecurity challenges and opportunities in the industrial sector

• Understand the role of privileged access and credential management solutions

• Learn about industrial case studies

Despite the maturity of the managed security services provider (MSSP) market, security professionals and vendors often fail to sync up as true, successful partners. Whilst the role of the MSSP has been called into use in recent months as a result of managed services being required for a largely remote workforce, the MSSP is also needed when a company has weaknesses in its defense.

In this webinar, we will consider how MSSP relationships work, explore MSSPs are being effectively used and assess what services they are (or should be) offering in the new decade.

Key takeaways:
•Where an MSSP can aid your team’s strengths and weaknesses
•How to choose an MSSP that works for you and your security program’s capabilities and limitations
•How to manage an MSSP relationship, and what you should expect from MSSPs
•Where an MSSP can aid you in a time of business continuity

Which cybersecurity measures should today’s CISOs be taking that are actually helpful in stopping hackers? Which strategic areas are worth focusing on and spending money on? Also, what is not working? Which programs have CISOs implemented that aren’t returning a good value?

In this webinar, we’ll discuss the building blocks of great security programs from governance, automation, implementation models, and more. We won’t be talking about products and technology solutions you should buy, we’ll be offering practical advice about what you need to focus on to protect your systems.

Key Takeaways

•Building blocks of a great security program
•What’s working to identify and counter hacking
•What are leading organizations doing within programmatic testing
•How to build a strong team and governance within your team
•Core areas that every security organization should be focusing on

Artificial intelligence (AI) has become one of the major trends in digitization. AI applications including machine learning and pattern recognition are affecting the economy, politics and society at large.

In the field of information security, AI can be used to identify potential risks and increase the level of IT protection by automatically detecting weak points or malware. On the other hand, cyber-criminals can use it to carry out targeted attacks that cause serious damage. Thus, AI is neither entirely ‘good’ nor ‘bad’ – it can benefit a company, or it can harm it. It all depends on who’s running it.

In this webinar, a panel of experts will discuss the rise of AI and machine learning and it’s impact on the security of data from both a defensive and risk exposure perspective.

Key takeaways:
•How companies can take advantage of AI
•How and why cyber-criminals use and abuse AI technology
•How companies can protect themselves against AI-enhanced cyber-threats

The ISO 27701 certification for a Privacy Information Management System - the privacy extension of ISO 27001 - establishes privacy controls for the processing of personal data, and may become the foundation for future GDPR certifications. This new privacy standard leaves many wondering, what does it take to get ISO 27701 certified, and why does it matter?

While ISO 27001 focuses on the assessment of risks and protection of the organization, ISO 27701 focuses on Privacy Information Management Systems

In this webinar, learn about the ISO 27701 certification to get a straight-forward guide to achieving ISO 27701 compliance


Takeaways

Understand the ISO 27701 privacy standard and its application within regulatory compliance

Learn the steps to becoming ISO 27701 certified and how to leverage an existing ISO 27001 certification throughout the audit process

How to develop a roadmap and action plan for bridging privacy and security in your organization

Following the introduction of the EU GDPR in 2018, the state of California introduced its own data security act this year, offering privacy standards for its consumers. Officially launched in January, the CCPA has been broadly welcomed across the industry as a refreshing take on data privacy legislation.

However, after seven months of working under this new legislation, enforcement is set to begin no later than July 1, and we could see a lot of action and enforcement taken as CCPA enforcement begins.

In this webinar, we take a detailed look at what the CCPA is and assess what we can expect from it.

Key takeaways:
•What the CCPA is all about, and how it applies to your business
•What the dates mean in terms of compliance and monetary enforcement
•How you can achieve compliance with CCPA and other data privacy and protection standards
•What we can expect to happen under CCPA enforcement in the next six-12 months

IT and security specialists have had to adapt to the demand for remote working at speed and at scale. Technology has kept the UK PLC in business, and home has become the new Enterprise. It is clear that many organizations are unlikely to return to normal office life until much later in the year – and for some businesses, this may be the tipping point to change the way they work forever.

As lockdowns are eased and people begin to return to their workplaces, what can we learn from this unplanned period to build greater cyber resilience and protect our colleagues, devices, processes and services? In the struggle to react, have we lost sight of the strategic goal of becoming secure by design?

In this webinar, we will look at tactics and strategies to ensure a secure by design approach to remote access capacity and scalability, identity management, secure access to cloud-based applications and workloads, and the value of threat intelligence to protect and future-proof your remote users.

Key takeaways:
1.Which challenges to a secure, compliant remote business should organizations prioritize and how can threat intelligence support intelligent security decision making?
2.How can you get the most out of your existing assets to build resilience into your remote access capacity and scalability, identity management and access to cloud-based applications?
3.Why does a secure by design approach help build resilience now and in the future?

Data breaches and cybersecurity attacks have not reduced in recent times, and whilst you can only do so much to protect against external attacks, you can attack yourself before they do. Using breach and attack simulation (BAS), you safely run the entire kill chain of attacks against your network to expose gaps, misconfigurations, and even lateral movement.

In this webinar, we will look at the evolution of breach and attack simulation, where it stands today, how it works, and what you should look at before you consider implementing a BAS solution.

Key takeaways:
•What breach attack and simulation is, and how it reduces security risk
•How to properly run a BAS program within your organization
•How to deal with the results of a simulation
•How this is different from a penetration test or red team exercise

Cloud applications and hosting services continue to grow in popularity with enterprises because of the benefits they can provide in scalability, flexibility and costs.

Users whose digital lives are increasingly mobile don’t want to be tied to their desks, and an effective security strategy must be flexible enough to protect access from boardrooms and bars, cubicles and coffee shops alike. However, the key is mastering said effective security strategy so that it allows for safe, seamless and remote working for all employees.

The principles of zero-trust security can address this challenge and help you maintain your security posture regardless of whether a user is working on your network or on-the-go.

In this webinar, we will discuss the fundamentals and application of zero-trust principles, and outline how you can implement them in your own environment.

Key takeaways:

•The security benefits of zero-trust security

•How to effectively implement and manage a zero-trust approach

•Key insights on making remote working secure and safe for your
organization.

The cyber-threat landscape continues to evolve. Each year, attackers add new techniques and tactics to their arsenal, increasing their ability to evade detection and attack your systems.

Zero day threats and advanced malware can easily evade anti-virus solutions that are simply too slow to respond to the constant stream of emerging threats.

The findings from WatchGuard’s Q4 2019 Internet Security report show that threat actors are always evolving their attack methods. With over two-thirds of malware in the wild obfuscated to sneak past signature-based defenses and innovations like Mac adware on the rise, businesses of all sizes need to consider implementing multiple layers of security.

In this webinar, we will investigate evolving zero day and malware threats and discuss the best practice options for protecting your business.

Key takeaways:

•Discover more about how zero day threats can evade traditional defenses
•Understand more about new and rapidly-evolving cyber-threats in 2020
•Learn the tools, techniques and technologies needed to defend against zero day threats
•Best practice advice to implement a multi-layered approach to protect your organization.

What is keeping CISOs up at night? What isn’t these days! Hairpin turns in direction amid a global pandemic and evolving cyber-threats have caused disruption in business continuity, supply chains and infrastructure throughout 2020.

This has given rise to diverse cybersecurity challenges and risks, whilst also provided unique opportunities for innovation and progress. Where do CISOs need to start in getting a grip on it all?

In this webinar, a panel of seasoned security leaders and experts discuss the state of the CISO in 2020, reflecting on lessons learned from a thus far turbulent year, discussing the struggles that need to be overcome and the outlining the long-term benefits yielded by new businesses dynamics.

Key takeaways:

•Why and how 2020 has been an unprecedented year of information security tests, risks and opportunity
•The key challenges impacting modern CISOs, and how to overcome them
•What the second half of 2020 will have in store for security leaders

According to Gartner: “Digital transformation, cloud adoption, edge computing, and mobile mean that appliance-based network security models (designed originally to protect on-premises architectures) are being replaced.”

In the current business landscape, there’s no doubt that the web is now the most important business tool. Critical systems such as ERP, CRM, collaboration and communication platforms, customer-facing apps and other business tools that were once on-premises are moving to the Cloud as a widely trusted alternative. Users can log in from anywhere and access all the information they need to conduct business on a daily basis.

Office 365, for example, is now used by one in five corporate employees worldwide, making it the most widely used cloud service by user count. Clearly, businesses are undergoing journeys of digital transformation and moving to the cloud in huge numbers, but successful cloud adoption and implementation is not without its security challenges.

This webinar will explore how organizations can cut through the noise and make a success of cloud transformation, leveraging the benefits of cloud technologies – including efficiency, agility and scalability – while avoiding the pitfalls.

Key takeaways:
· Why are existing security infrastructures inadequate for large-scale SaaS adoption?
· How to reduce MPLS backhaul costs and increase internet bandwidth for users
· How to maintain visibility and control over users’ traffic and protect against data exfiltration