Third Party Supplier Security: The supply chain challenge
As supply chains become increasingly complex, and efficiency savings motivate companies to outsource business processes, service providers continue to be a primary vector for information security risks. In part this is because of the lack of usable, consistent standards for suppliers. Many suppliers are small and do not have the resources to adequately implement widely-accepted information security standards, leading to data breaches such as that of US retailer Target in Dec 2013. We also continue to see the mistaken belief that information risk is something others need to think about. This webcast will offer solutions to some of these challenges and also discuss the issue of more widespread education and communication of threats and how they might be better managed throughout the global supply chain.
RecordedFeb 4 201548 mins
Your place is confirmed, we'll send you email reminders
Ransomware was the word on everybody’s mind in 2017 with Petya, WannaCry and more. Has the upward trend continued into 2018? And if so, how can you ensure your business is protected from the threat of ransomware?
About the presenter
Steve Durbin is Managing Director of the Information Security Forum (ISF). His main areas of specialism include strategy, information technology, cybersecurity and the emerging security threat landscape across both the corporate and personal environments.
While cyberspace continues to provide opportunities for organisations they risk becoming disorientated and losing their way in a maze of uncertainty, as they grapple with complex technology, proliferation of data and increased regulation.
In this webinar Steve Durbin, Managing Director, ISF, discusses the threats organisations will be facing in 2018 and offers insights into how to address them.
Technology will underpin all aspects of modern society by 2019, profoundly impacting the way people live and work. Business leaders face a stark dilemma; should they rush to adopt new technology and risk major fallout if things go wrong; or wait and potentially lose ground to competitors. Organisations that are well informed about emerging technologies and corresponding threats will be best placed to make winning decisions.
In this webinar, Steve Durbin, Managing Director, ISF, will examine the threats that organisations will be dealing with over the next two years and will provide advice on the best ways of handling them.
Mission critical assets can represent 80% of an organisation's total value. As critical assets are not always obvious, few organisations understand the extent to which these are exposed and need to be protected.
In this Webinar, Steve Durbin, Managing Director of the ISF, explains how to:
•identify an organisations mission critical information assets and the greatest threats to them
•determine how to counter adversarial threats
•determine the right protection to put in place and how to implement these protections.
Moderated by Mark Chaplin, ISF; with panelists: Carole Murphy, HPE; Les McMonagle, Blue Talon; Cheryl Tang, Imperva.
In today’s threat landscape, traditional approaches to securing data are falling short. Since 2015 we have seen some of the largest data breaches ever and it is clear that no industry or organization is immune from cyber attacks. The threat landscape is increasingly dangerous, while new technologies are distributing sensitive data farther across locations, devices and repositories. Starting in May 2018, enforcement will kick in on the European Union’s General Data Protection Regulation (GDPR), a move that could have a stronger privacy/security standardization effect than any technological effort has to date. Globalization efforts will make GDPR compliance essential for global companies wherever they are located.
The development of a comprehensive data-centric security program, including data discovery, classification, encryption, and file protection, can uniquely position your organization to protect what matters most, and make security move with your data to comply with global regulations such as GDPR. On this webinar our panel of experts will discuss the key points that you should consider when developing such a program for your organization.
People remain a wild card to the cyber security of an organisation. Many businesses recognise people as their biggest asset, yet still fail to recognise the need to secure the human element of information security.
In this webinar Steve Durbin, Managing Director of the ISF, tackles the question: How can organisations make people their strongest line of defence against cyber attack?
Many organisations are still unclear as to how they will meet the requirements of the EU GDPR legislation which will come into effect in May 2018. Fundamentally organisations need to start preparing for this now.
In this webinar Steve addresses some of the key questions organisations are asking such as: does the EU GDPR regulation apply to me? how should I prepare for this legislation? and what additional resources do I need?
As the scale and sophistication of cyber attacks increases, businesses need to manage risk in ways beyond those traditionally handled by the information security function.
In this webinar, Steve Durbin, Managing Director, ISF will offer insights into how security and business teams across the organisation can work together to minimise the impact of cyber attacks on shareholder value and business reputation.
The pace and scale of information security threats continues to accelerate, endangering the integrity of trusted organisations. Although cyberspace offers opportunities for leading organisations, this environment is uncertain and potentially dangerous. It is a place where hacktivists and cybercriminals are honing their skills and governments are introducing new regulation and legislation in response to major incidents and public concerns. Organisations are forced to continually adapt and rapidly respond.
In this webinar, Steve Durbin Managing Director at the ISF, will discuss the rapidly changing threat landscape, identify the key cyber challenges for 2017 and suggest ways of managing the associated risks.
In May 2018 the EU’s General Data Protection Regulation (GDPR) will take effect. The GDPR upholds the protection of personal data and increases the accountability of organisations processing any personal details belonging to EU citizens- with severe penalties for those who do not comply.
In this webinar Steve Durbin, Managing Director at the ISF, discusses why it is important for the security and data privacy teams to work together to run risk assessments on their most critical information assets and to develop checklists, policies and procedures that can be implemented internally and with third party suppliers. Only by taking this approach will organisations be able to remain agile, maintain customer confidence and demonstrate that they are ‘GDPR ready.’
Last week Yahoo was hit with the biggest data breach of all time; with an estimated 500 million customer accounts compromised by hackers. The attack will have significant rippling effects on consumer trust, data protection standards and information security practices. The legal battle is now also only just beginning, with two key cases being heard in California, as Yahoo is sued for data-protection negligence.
But what will does all this mean to your business? Do you feel compromised professionally or personally? Were key mistakes made that you can avoid? How can you best prepare (in terms of incident response) to such a breach? Will the attack have lasting effects or will it disappear into the annuls of history alongside the Ashley Maddison, Target and Linkedin hacks. All these questions and more will be answered live, over webcam by Security expert and Managing Director of the ISF Steve Durbin.
Tune in, ask your burning questions and join the conversation on BrightTALK.
Dr Branden Williams; Robert Shields, Informatica; Steve Durbin, VP of the ISF; Farshad Ghazi, HPE Security - Data Security
Over recent years, several organizations have suffered damaging data breaches where sensitive data was stolen.Alarmingly, things seem to be getting worse, and the results can be devastating. With the expanding threat landscape and the rise of the data-centric enterprise, companies must have parallel development of their security architecture to protect their sensitive data. But in the time it’s taken for data security to catch up with the changing environment, organizations have found their compliance and data protection programs vulnerable.
CISOs must take steps to protect data that is expanding in volume, variety and velocity, and adopt security perimeters around identity attributes and data-centric security. Sensitive data must be continuously monitored for situational awareness and risk management, and CISOs should follow policies that encompass all data silos if they are to avoid security chaos. Enterprises must have an understanding of where sensitive data resides, who has access to it, and how it is impacted by new types of threats and vulnerabilities. Armed with these capabilities, CISOs can enhance sensitive data security to stay ahead of the threats, maintain regulatory compliance, and improve operational efficiency.
Attend this panel discussion as we discuss the key issues which CISOs should be addressing today.
Steve Durbin, MD, ISF & Josh Downs, Community Manager, BrightTALK
- BrightTALK at Infosecurity Europe 2016 -
BrightTALK got the chance for a quick chat with BrightTALK favourite and industry luminary Steve Durbin, Managing Director of the Information Security Forum.
Steve discussed key hot topics such as the Brexit debate and how it'll influence European cyber security along with how the secure and protect the IOT and critical infrastructure in the face of new technological developments.
Steve also covered compliance, with the new GDPR regulations and finally how to better protect the worlds's banks from persistent cyber threats from the world's cyber criminals.
Organisations are struggling to cope with the increasingly sophisticated capabilities of external cyber crime syndicates and pace of attacks. However they often fail to consider the impact that insider threats pose to the business as people become more mobile and hyper-connected.
Organisations that wish to keep pace with these developments and remain financially viable will need to take action now to develop a forward looking cyber-resilience plan.
In this webinar, Steve Durbin, Managing Director of ISF, will provide guidance and tips on how organisations can identify and protect their most valuable assets from internal and external threats.
As cyber security risks increase in sophistication and number, organisations need to switch from responding to incidents, to identifying them to prevent them before they occur.
Developing a robust risk based approach to security needs to focus on supporting organisations to prioritise threats, understand the techniques that may be employed as part of the attack and evaluate the capability of controls to prevent, detect and respond to an attack. Without this knowledge, an organisation would struggle to determine the level of exposure to particular threats and if their cyber incident response plans are structured and ready to address these threats when they arise.
During this webinar, Steve Durbin, Managing Director of ISF, will discuss the need for a risk based approach to security and why it is an essential component to today’s business.
With new technical vulnerabilities being discovered each day it has never been more important for businesses to assess and understand their critical infrastructure in an increasingly connected environment. Organisations need to be aware that cyber-criminal syndicates are ahead of the game, finding new sophisticated ways to gain access to an organisations "crown jewels", often through their networks.
During this webinar Steve Durbin, Managing Director of ISF, will provide guidance on how organisations can identify and protect the areas of their business that could be impacted by cybercrime activity and will discuss the importance of strengthening network security to improve resilience against hackers.
Live monthly webcasts for CISO’s and business leaders
Steve Durbin, Managing Director of ISF Ltd will present the 2017 ISF webinar series: "In pursuit of the secure organisation..."
Steve will be sharing thought leadership and guidance drawn from ISF Members (which include many of the world’s leading Fortune and Forbes listed organisations) on how to address the following issues facing businesses and their security teams.
1. Cyber attack trends
2. EU GDPR regulations
3. The role of the end user
4. Critical Asset Management
5. Protecting against the evolving threatscape
6. 2018: Threats on the horizon.