You’ve seen the headlines on ransomware, developed by cybercriminals to encrypt and hold computers or data hostage. Now, join this webcast for an in-depth look.
Join an ESET business product technical lead to learn:
•How ransomware has evolved and spread
•Why mobile phones and Apple OS X are increasingly vulnerable
•Best practices for avoiding and dealing with ransomware
•Why to implement backup and recovery solutions now
In this live webinar, learn the five reasons why a private cloud storage system may be more cost effective and deliver a higher quality of service than public cloud storage providers.
In this webinar you will learn:
1. What Public Cloud Storage Architectures Look Like
2. Why Public Providers Chose These Architectures
3. The Problem With Traditional Data Center File Solutions
4. Bringing Cloud Lessons to Traditional IT
5. The Five Reasons IT can Do it Better
More than 20% of MNCs we surveyed currently have plans to expand into the SE Asia region, and are now considering their options to use third-party colocation/cloud exclusively, or in combination with on-premise IT deployments.
Much of the current market activity is being driven by MNCs needing to build out their DC presence to serve as gateways to and from mainland China, and other high-growth markets in the region. Over a third of MNCs plan to increase their usage of colocation providers for their future IT deployments and are actively considering data center locations in established preferred locations of Singapore, Hong Kong or Tokyo - driven by factors such as regulations, geographical location, and the skills of the local workforce.
So what are the key selection criteria, and how do certain locations compare?
Singapore continues to be poised for solid growth, with an active supply pipeline, demand from local and international companies, and high-quality facilities. But do other factors, such as power supply costs, choice of bandwidth or the availability of carrier neutral space make it as an attractive location for datacenter investment as Hong Kong or Tokyo? Should MNCs look at Malaysia or Indonesia as possible areas for expansion as well, which could potentially offer lower-cost options for firms, as well as a way to target the local market in each country?
This session will answer all the key questions such as:
•Do Multinationals prefer to Own or Rent Datacenters in South-East Asia?
•Why Do Organizations Need More Datacenter Space?
•When Will They Need More Datacenter Space?
•How Much Datacenter Space Will They Need?
•What is Driving Datacenter Location Selection?
•What Would Organizations Likely Do if They Needed More
Datacenter Space/Power Capacity in SE Asia?
There is a substantial cost associated with reaching and maintaining PCI DSS compliance requirements, but the cost of non-compliance is often much greater. While the initial cost of the technology, staff and other resources necessary to implement satisfactory controls has its price tag, it is vital that all organizations affected by the PCI standard consider both the short and long-term costs of non-compliance as well as the benefits to meeting the requirements.
This is especially important as PCI DSS evolves and increase in complexity as the standard moves towards becoming a federal regulation. The costs of non-compliance can far exceed the cost of systems to bring a company into compliance, as demonstrated by so many high profile data breaches. Join this executive panel as we discuss ways to prevent costly cases of non compliance with PCI DSS.
Are you concerned about securing your users and data in cloud based collaboration applications like Office 365? You’re not alone. Over 35% of Microsoft Exchange installed base is now on Office 365. Many of these enterprises are actively seeking to extend the same level of security and consistent policies they have in place for existing on-premise and cloud applications, to Office 365.
Join us for this webcast where we tackle the challenge of securing Office 365 head on and show you how your organization can take Office 365 security to a new level.
• Shield Email From Phishing, Sophisticated Malware and Spam
• Neutralize Advanced Threats and Targeted Attacks
• Safeguard Your Sensitive Data
•Control Access with Strong Authentication
See how it’s possible to give end-users fast, simple access to enterprise applications, data and resources – without compromising your security.
In this live webinar, you’ll hear from two Dell Security solution experts on how you can manage the proliferation of devices in your workplace.
During the interactive session, you’ll see how to:
• Ensure only authorized users and approved devices are granted access to your business network
• Quickly and easily provision secure mobile access and role-based privileges
• Keep company data secure in-flight and at rest on devices
For healthcare campuses and offices, the consequences of just a few minutes of downtime ripple across the entire organization’s operations. The proliferation of cloud applications also means suspended connectivity can cause catastrophic problems, and patients’ health and safety could be put at risk.
While short outages are common, longer service disruptions can be catastrophic, paralyzing operations for hours. Grave as the immediate impacts of service outages are, your organization can continue to feel the consequences long after the connection has been repaired, due to damaged patient or partner loyalty, loss of trust, and diminished faith in the IT department as a whole.
No healthcare organization wants to face these scenarios. Join us for a live webinar on Tuesday, May 24th, at 9 am PDT/12 pm EDT, because the question isn’t if your wired connectivity will go down, but what to do, or have in place, when it does go down.
Attendees will learn about:
+ The consequences of network downtime for healthcare
+ The options for business continuity
+ How software-defined LTE connectivity is enabling the healthcare industry
+ Key considerations for choosing a wireless failover solution
Os dados não estruturados das empresas são cada vez mais um ativo imprescindível para os serviços e processos de negócio. No entanto, o seu crescimento exponencial faz com que as tecnologias tradicionais de proteção deste tipo de dados sejam não só ineficientes, como ainda incapazes de responder às necessidades de disponibilidade em ambientes empresariais.
Neste webinar, iremos ver três áreas de inovação da Commvault que permitem responder às necessidades de proteção de dados não estruturados:
-Na primeira parte, iremos mostrar as novidades da tecnologia IntelliSnap, que permite a integração com novos fabricantes de Storage e a gestão de réplicas de volumes; falaremos ainda da nova tecnologia de captura de blocos, que amplia o conceito de proteção contínua e consistente, a qualquer tipo de sistema de ficheiros e de base de dados, para dispor de um número ilimitado de pontos de recuperação de acesso nativo.
-Na segunda parte, veremos como a nova versão do software da Commvault expande as suas capacidades a ambientes de Big Data. De acordo com a Gartner, mais de três quartos das empresas têm iniciativas de Big Data, e portanto a necessidade de gerir a disponibilidade destes dados é um desafio que se deve resolver a curto prazo.
-Por último, iremos mostrar como as soluções NAS hiperescaláveis exigem tecnologias inovadoras para poder garantir a proteção e acesso aos dados que armazenam.
Junte-se a nós para ficar a saber como a Plataforma de Gestão de Dados da Commvault lhe permite cumprir os seus SLA de disponibilidade de dados não estruturados, independentemente da tecnologia que escolha para armazenar e gerir estes ativos do seu negócio.
We look at how ready EU businesses are for the impending data privacy revolution and how a holistic approach to Information Governance not only helps you prepare for the regulation, but brings agility and innovation back to your IT systems.
Most businesses have near zero tolerance for service outages and disruptions, regardless of the cause. How do Business Continuity professionals demonstrate a positive ROI for applications while meeting always-on expectations? In an operationally always-on world, business communications must be real-time with rapid response to outages to keep your business running. To achieve this level of Operational Resiliency, you must implement automated communications that eliminate breakdown during a crisis event or disruption. Join this webinar to learn about the latest technologies that you can use today to automate communications for real-time incident and crisis management, regardless of the channel. Are you ready to respond to your next disruption?
Carlos Krause, Modulo & Rich Licato, Airlines Reporting Corporation
Unless you have been hiding under a rock for over a year, you and your peers have realized that Third-Party Risk is a major component of overall risk management and security programs. In this webinar you will hear the top lessons learned from Modulo’s years of implementing IT vendor risk programs, as well as helpful examples from Rich Licato and Airlines Reporting Corporation (ARC). By sharing these experiences you can discover how to implement a world-class vendor management program and gain insights from professionals that have actually been there and done it!
At a time where most organizations are embracing digitalization, the associated risks and cyber threats have accordingly increased as new forms of data are created. This makes Governance, Risk & Compliance (GRC) a necessity for organizations who deal with sensitive information such as customer data.
EnterpriseManagement360º asks Modulo’s Stephen Gant how security officers can better navigate these complex issues.
Information Security Risk Management has never been more pressing in light of increasing cyber attacks across all industries, in particular healthcare. Medical-related identity theft accounted for 43 percent of all identify thefts reported in the United States in 2013, according to the Identity Theft Resource Center.
In light of the alarming trend of increasing risk surrounding data loss, patient and employee information protection, and potential fines, Yale New Haven Health System takes cyber security seriously. Steve Bartolotta, head of Yale New Haven Health System’s risk management expert, talks about the challenges of building good processes for enterprise-wide information security. He and securitycurrent’s Vic Wheatman discuss common problems facing organizations today and some possible measurable actions to take. In this podcast with Vic Wheatman, Bartolotta describes the tools he uses to support YNHHS’s risk management system and what he has gained.
Carlos Krause, CISSP, Head of Professional Services - Modulo
Many organizations still use spreadsheets and emails for business critical processes related to Governance, Risk, and Compliance (GRC) management. These more “manual” processes become burdensome as infrastructure scales out or new compliance and policy requirements emerge. Without a traceable and efficient way to perform, track, and report GRC assessment results, organizations face the possibility of failing audits, costly fines, and reputation damage.
Modulo’s solutions for GRC help automate processes, which improve the efficiency and traceability of GRC activities. Modulo’s Risk Manager™ software automates GRC tasks based on both proven processes aligned with international standards and on your own established methodologies.
In this session, learn how to:
• Align processes to the “plan, do, check, act” methodology
• Replicate and improve internal processes using an easily configurable workflow tools
• Build and send user-friendly, traceable surveys
• View assessment results in detailed and high-level dashboards and reports
• Leverage audit log to monitor the history of assessment participation and issue remediation
Carlos Krause, Modulo & Tony UcedaVelez, VerSprite
Good security risk management begins with a repeatable process within security governance, risk management, and compliance (GRC). GRC and many security risk management processes fail when organizations rely too much on point-solution technologies rather than repeatable processes.
Do you have an optimal security risk management program? Two experts discuss security risk management best practices and “quick-win” GRC automation opportunities. In this live webinar, learn how to:
Create governance for security risk management
Identify gaps in foundational processes
Build a GRC automation deployment timeline
Demo video of Modulo Risk Manager Version 9.1, featuring enhanced functionality for the following Modulo Risk Manager’s modules: GRC Intelligence; Policy; Organization, Risk, Compliance, Workflow; as well as improved system stability and performance, low-impact bug fixes and a new version of the installer, released initially for internal use, to help speed up the installation process.
Carlos Krause, Manager of Professional Services, CISSP, CISA, MCSO
Is your vulnerability management program vulnerable? If you are unsure or answered “yes," sign up to join Carlos Krause, Modulo’s lead technical consultant for Part 2 of this two-part webinar series.
In Part 1, Carlos identified key challenges and pitfalls most vulnerability management programs face. In Part 2, he will outline best practices and action items to improve your vulnerability management process, including how to:
*Integrate your vulnerability management program with the risk and compliance actions in the organization
*Harmonize vulnerability metrics with other programs and assessments
*Represent risks in a business language
*Plan and deploy a successful implementation
Carlos Krause presented this topic at ISACA ISRM 2014 at a record-setting Megatrend Session. Due to its popularity, we wanted to bring it to you in a webinar series. Don’t miss out!
Carlos Krause, Manager of Professional Services, CISSP, CISA, MCSO
In this webinar, Carlos Krause, Modulo’s lead technical consultant, will identify key challenges and pitfalls most vulnerability management programs face, including how to:
*Understand the main components and steps of an efficient vulnerability management program
*Define requirements and criteria for scoping, collecting, analyzing, evaluating, accepting, and treating vulnerabilities
*Identify the pitfalls of a typical vulnerability management implementation
To learn more about best practices and action items to improve your vulnerability management process and reduce enterprise risk, join us for Part II on Thursday December 18 at 11:30am ET.
Cadence Bank recently established the Technology & Operations Governance and Risk Management under the Enterprise Risk Management function reporting to the Board of Directors of the bank. On a recent regulatory audit, the ERM team was recognized for achieving a workable governance framework and integrating the Technology Governance and Risk Management, using Modulo’s GRC automation software as the technology to help execute all our risk and compliance assessments. GRC automation software facilitated Cadence Bank’s objective of achieving the implementation of the new regulatory requirement of the “Three Levels of Defense” being enforced by the regulatory agencies.
Learn how in this case study, as Cadence Bank’s CISO Lillibett Machado discusses ways to develop a technology GRC framework and use automation to facilitate the new functions required for the CISO’s responsibilities within GRC.
This webinar features Modulo Risk Manager customer Rich Licato, Managing Director, Corporate Security for Airlines Reporting Corporation (ARC). Rich explores the breadth of GRC use cases ARC has deployed, including:
- Audit Remediation
- Vulnerability Management / Pen Testing
- PCI and ISO Compliance
- SANS Top 20 Critical Security Controls
- Vendor Management
- Employee Policy Attestation
- Operational Incidents
- Enterprise Risk Management
- Business Continuity
Rich will discuss some of his strategies around deploying the different applications of GRC automation and share the highlights of his successes.
Doug Powell of BC Hydro and Steve Hunt of Hunt Business Intelligence
As we move toward interconnected, "smart" systems, security professionals must play a focused role in enterprise risk management. Doug Powell, critical infrastructure protection professional and security industry thought leader, and Steve Hunt, security industry luminary and analyst, team up to debate the continually increasing complexity of the environment in which security professionals operate, in light the Snowden breach, the Internet of Things, cyberhackers, and looming national threats. During this webinar, Powell and Hunt will debate the possibility of achieving true security and give some practical, actionable recommendations for modern age security risk management. Questions addressed include:
• Does physical security have any impact on information protection?
• Is it possible for IT, Operational Technology, and physical security to work together?
• Can an integrated process and program ensure security meets business objectives?
When an automated third party risk management program is in place, risk assessments are performed more efficiently and effectively, allowing for additional analyses on third party criticality and faster, smoother expansion of third party networks. The right third party risk solution will also increase visibility and report security and compliance based on the activities and departments third parties support.
Watch this end-user case study and learn how to…
- Understand the basics of risk and risk management
- Understand the importance of utilizing a risk management process
- Be able to identify, analyze, evaluate, and manage your enterprise third party risks
- Consider GRC to automate and synchronize efforts in your third party risk management
With ever increasing security threats and other widespread supply chain disruptions, Supply Chain Security (SCS) is now officially a reality of both day-to-day business and trade compliance. View this webinar to learn how Supply Chain Security (SCS) Risk Management addresses heightened threats to the supply chain including cyber-terrorism, organized crime, theft and tampering, and country-of-origin risks.
Doug Powell, Manager of SMI Security, Privacy & Safety at BC Hydro, and Steve Hunt, CEO of Hunt Business Intelligence, continue the discussion on ESRM for Critical Infrastructure protection. Key topics include integrating operational, technological, and physical security; the criticality of people, process, and technology in CI protection; and the need for a unified GRC model to make business run better.
Doug Powell, Manager of SMI Security, Privacy & Safety at BC Hydro, and Steve Hunt, CEO of Hunt Business Intelligence, present ESRM for Critical Infrastructure protection. Key topics include integrating operational, technological, and physical security; the criticality of people, process, and technology in CI protection; and the need for a unified GRC model to make business run better.
Flexible, scalable, affordable :: Solutions for GRC
Modulo provides flexible, scalable and affordable GRC solutions for the leaders in information and risk management. Modulo's software solutions for governance, risk, and compliance allow users to better manage technology risk, compliance, and policy requirements, monitor critical assets, and ensure good governance and business continuity.