SC Media webcasts | IT Security

Webcasts

UPCOMING WEBCASTS

Turn on JavaScript to use filtering.

This form filters webcasts that are directly below it based on the options given. Filtering will occur immediately when a option is selected or when the form is reset.

Show:




Vendor Webcast

Slaying the beast! Getting your arms around your vulnerability management program

Take a closer look at why most security teams need vulnerability management, who to work with to get it done, and strategies to reduce the workload.



Register for Slaying the beast! Getting your arms around your vulnerability management program

Sponsored by: Rapid7

Slaying the beast! Getting your arms around your vulnerability management program

Security isn’t just about boundaries and defenses. Maintenance, especially in the form of patching, mitigation and threat reduction, are often just as important as a solid set of firewall rules for reducing an attacker’s ability to compromise your systems or networks.

For most security departments, this maintenance comes in the form of a vulnerability management program. Typically, these include patching, scanning, testing, mitigation- when they’re done properly, they can prevent incidents before they happen. Vulnerability management is the key to a strong security program in any enterprise, but it’s also a lot of work.

In this webcast, we’ll talk about why most security teams need vulnerability management, who to work with to get it done, and strategies to reduce the workload.


Vendor Webcast

Accelerated security through cloud adoption

Learn from industry experts about common cloud adoption challenges and best practices for securing organic growth without hampering the gains that users are realizing.



Register for Accelerated security through cloud adoption

Sponsored by: Dropbox

Accelerated security through cloud adoption

Today’s cloud adoption is not only driven by the transformations happening across the IT landscape, but also the organic adoption by users where they are driving workflows that make them most productive.  Dropbox has been at the forefront of these converging trends, helping millions stay in sync and protecting important data on behalf of users and their associated organizations.

Come learn from industry experts about common cloud adoption challenges and best practices for securing organic growth without hampering the gains that users are realizing. We’ll talk about getting over the “cloud trust hump”, implementing identity and monitoring solutions that will give you the control and visibility needed for compliance, and flips IT/security from the voice of “No” to hero status.


20/20 webcast

Locking down vulnerabilities

This 20/20 webcast will look at how companies can determine what and where each device is located — be it in the cloud or on prem — where and how in those devices or platform the security vulnerabilities present themselves, and most important, how to determine the priority for what needs to be addressed now and what can wait until later.



Register for Locking down vulnerabilities

Sponsored by: Skybox

Locking down vulnerabilities

Managing vulnerabilities is sometimes considered the secret sauce of keeping companies secure.

First, of course, companies need to know what they have and where they have it. That’s a bigger challenge than you think, considering your “resources” might not actually be something you can access, such as a cloud infrastructure.

Next is distinguishing what is and is not a vulnerability. Once you identify a vulnerability, then comes the magic part: knowing which vulnerabilities need to be addressed immediately and which can be set aside for later.

This 20/20 webcast will look at how companies can determine what and where each device is located — be it in the cloud or on prem — where and how in those devices or platform the security vulnerabilities present themselves, and most important, how to determine the priority for what needs to be addressed now and what can wait until later.


Vendor Webcast

Using a next gen WAF to effectively protect APIs & microservices

Expose the common challenges faced by application security teams to protect APIs and microservices, and how they differ from standard, legacy applications.  



Register for Using a next gen WAF to effectively protect APIs & microservices

Sponsored by: Threat X

Using a next gen WAF to effectively protect APIs & microservices

APIs have become a strategic necessity for conducting business due to the agility, innovation, and automation they enable. While 90% of the business reaps the benefits of this technology, the security teams are often exposed to a slew of new challenges that can’t be solved by long-standing security tools and strategies.

Unfortunately, the bulk of application security solutions are stuck in the dark ages, using bloated appliance or virtual appliance-based approaches that can’t automatically scale up and down with the application and don’t support automated deployments that are already built into the DevOps toolbox. It’s often like fitting a round peg into a square hole…it’s not going to work without some level of adaptation.  

For infinite scale, you want to tightly couple the deployment of security with your app. This demands a lot from your security strategy and your WAF. So, what are the characteristics of a WAF that matches this type of design? In this webcast, we will address 8 key elements of an API and microservices friendly web application firewall solution, including:  

  •    The ability to be centrally managed  
  •    Lightweight to allow linear scale 
  •    Support a robust API 

The experts will also expose the common challenges faced by application security teams to protect APIs and microservices, and how they differ from standard, legacy applications.  


Vendor Webcast

Adaptive defenses: The immunology of cyber resilience

Uncover why tactics – not tools – are key to cyber resilience.



Register for Adaptive defenses: The immunology of cyber resilience

Sponsored by: SecureWorks

Adaptive defenses: The immunology of cyber resilience

The exponential growth of the data economy demonstrates the increased value organizations place on digital information and reinforces the critical need for security to keep pace with the digital transformation.

Imagine a world where your cybersecurity system interacts with a software-driven ecosystem, and where learning models power software-driven detections and actions to deliver an ongoing defense. Then peer further into the future of a software derived ecosystem that provides ongoing resiliency and improves immunity to unknown cyber threats.

In our January 22 webcast, Secureworks CTO Jon Ramsey will walk through the biological equivalent of a future-proof security system that evolves at the speed and scale of digital transformation.

What You Will Learn:

  • How Secureworks’ network effect provides broad and diversified visibility into the global threat landscape
  • Why tactics – not tools – are key to cyber resilience
  • How the security space and Secureworks are moving toward adaptive defense

ON-DEMAND WEBCASTS

Turn on JavaScript to use filtering.

This form filters webcasts that are directly below it based on the options given. Filtering will occur immediately when a option is selected or when the form is reset.

Show:




Editorial webcast

Wake up and smell the cyber attack

This webcast looks at some of the most popular retail targets and provides insights on how to defend against the ever-present web-based cyberattacker.



Register for Wake up and smell the cyber attack

Sponsored by: Cisco

Wake up and smell the cyber attack

For many retails, the holiday season is like printing money. According to the National Retail Federation, some retailers earn 30 percent of their annual revenue during the season. While the FBI’s IC3 database doesn’t break out crimes by month, its 2017 report shows increases in business email compromises (CEO Fraud), ransomware, and tech support fraud. The FBI reports it received more than 800 complaints on average per day.

Among the sites consumers will face during the holidays are fake retail web sites that actually are malware watering holes, spear phishing emails that drive targets to fake banking or financial services, and ransomware attacks that focus on the servers of web-based retail businesses that get the bulk of their revenue. Add on top of that the political turmoil gripping the nation and sites that purports to raise money for popular causes and now you have all the ingredients for a fraud-filled holiday bonanza.

This webcast looks at some of the most popular retail targets and provides insights on how to defend against the ever-present web-based cyberattacker.


20/20 webcast

A look back at attacks – The worst vulnerabilities and breaches in 2018 and what lies ahead

This webcast will discuss some of the worst breaches and attacks in 2018, some continuing breaches from years past that have yet to be stamped out, and what’s on the horizon in 2019.



Register for A look back at attacks – The worst vulnerabilities and breaches in 2018 and what lies ahead

Sponsored by: Capsule8

A look back at attacks – The worst vulnerabilities and breaches in 2018 and what lies ahead

The year kicked off with a full-on security meltdown when Meltdown and Spectre hit the scene. It was all downhill from there, from Saks to Panera to now Facebook (again), this webcast will discuss some of the worst breaches and attacks in 2018, some continuing breaches from years past that have yet to be stamped out, and what’s on the horizon in 2019.

We also will look at types of attacks and potential targets, how to prepare yourself, and potential legal ramifications for failing to protect customers’ privacy.


Vendor Webcast

Getting more from less: 4 ways replacing AV with a security platform can help you

Take a look at the current state of security and why adding more point solutions isn’t always better



Register for Getting more from less: 4 ways replacing AV with a security platform can help you

Sponsored by: Carbon Black

Getting more from less: 4 ways replacing AV with a security platform can help you

The threat landscape is growing increasingly sophisticated and is bypassing traditional antivirus. To combat this, IT and security professionals are adding products to their security stack.

48% of organizations are using more than 25 different discrete or point security tools to manage, investigate, and respond to security threats. Each has its own endpoint agent, dataset, console, and back end. The result is a lot of complexity to manage and not enough efficacy.

It doesn’t have to be this way. You can get more from less. What if it was possible to have a single platform that simplified your security stack and improved your protection?

Join us as we discuss:

  • The current state of security and why adding more point solutions isn’t always better
  • How replacing traditional antivirus with consolidated endpoint security in the cloud can improve your protection and simplify your operations
  • How to make it easier for you to prevent, investigate, remediate and hunt for threats


20/20 webcast

The risky business of risk management

This 20/20 webcast looks at the changing face of risk management and how companies address both the vertical and horizontal risk challenges they deal with on a daily basis.



Register for The risky business of risk management

Sponsored by: RSA

The risky business of risk management

When it comes to governance, risk and compliance, getting all the key players and their requisite technologies to play together nicely can be a challenge.

The CIO wants the trains to run on time while the CISO is more concerned with security than with operations. Add the risk and compliance responsibilities into the mix and now you have a lot of cooks stirring a big cauldron called managing risk.

This 20/20 webcast looks at the changing face of risk management and how companies address both the vertical and horizontal risk challenges they deal with on a daily basis.


Vendor Webcast

Destructive cyberattacks are on the rise

Gain visibility into the collective experience and insight from nearly 40 leading IR organizations.



Register for Destructive cyberattacks are on the rise

Sponsored by: Carbon Black

Destructive cyberattacks are on the rise

According to the world’s top incident response (IR) professionals, politically motivated cyberattacks from nation-state actors have contributed to an ominous increase in destructive attacks: attacks that are tailored to specific targets, cause system outages, and destroy data in ways designed to paralyze an organization’s operations.

At stake is not only significant financial loss, but also the trustworthiness of the country’s political institutions.

Join Carbon Black’s Chief Cybersecurity Officer, Tom Kellermann, and Security Strategist, Rick McElroy, as they review and discuss the latest findings from Carbon Black’s Quarterly Incident Response Threat Report(QIRTR), including:

  • How nefarious cyber criminals use the dark web to access voter databases and purchase hackers for hire
  • How these attackers use counter incident response, lateral movement and island hopping to remain undetected
  • How enterprise IoT devices are being exploited

In this webcast, you’ll gain visibility into the collective experience and insight from nearly 40 leading IR organizations who participated in Carbon Black’s quarterly report.


Vendor Webcast

The DLP dilemma: Why most data loss prevention deployments aren’t working

Uncover best practices and modern capabilities around encrypting your most important data



Register for The DLP dilemma: Why most data loss prevention deployments aren’t working

Sponsored by: Proofpoint

The DLP dilemma: Why most data loss prevention deployments aren’t working

For most information security professionals, the central link in the security chain is also the weakest: your people. With data as the lifeblood of organizations big and small, how can you keep your data secure, while also allowing your people the access they need to be productive?

Join us as we discuss:

  • Taking a threat aware analysis to provide modern DLP for email, cloud and data at rest
  • Best practices and modern capabilities around encrypting your most important data


Vendor Webcast

Skill sharpening @ the CyberRange: Developing the next generation blue team

This webcast will introduce you to a modern range, survey best of breed tools and capabilities and highlight how a range can support skill development for the blue team operator.



Register for Skill sharpening @ the CyberRange: Developing the next generation blue team

Sponsored by: Regent University

Skill sharpening @ the CyberRange: Developing the next generation blue team

How do you gain defender skills? Do you know exactly how offense should inform defense? Are you learning on the job in the heat of the moment? How do you measure outcomes and ensure success?

Blue team cyber operations skill development depends on reusable, repeatable and measurable scenarios that reflect complex networks to pit the blue team against a modern attacker. It isn’t enough to take a class and run through a lab. Attackers and red teams have dozens of options (including your network), and so does the blue team. Only a cyber range can get you there, but it’s much more than a few virtual machines. It’s about achieving a real outcome: a trained operator, armed with tools, techniques and practices so that they can get in the hunt. 

This webcast will introduce you to a modern range, survey best of breed tools and capabilities and highlight how a range can support skill development for the blue team operator.


Vendor Webcast

Containing insider threats through user-centric machine learning and AI

Explore the role of user-centric AI and machine learning to enable secure data sharing and collaboration across complex enterprise organizations while proactively detecting and preventing unintentional and malicious insider threats.



Register for Containing insider threats through user-centric machine learning and AI

Sponsored by: egress

Containing insider threats through user-centric machine learning and AI

Despite increasing investment in cybersecurity tools, there’s been a significant increase in data breaches, compliance violations and their related costs, specifically those relating to inside threats: accidental loss, misdirected content, and the malicious insider. These types of incidents contribute up to 80% of all breached records and are often the result of human error when handling sensitive data — mistakes that traditional tools are unable to identify and address.

This webcast will explore the role of user-centric AI and machine learning to enable secure data sharing and collaboration across complex enterprise organizations, such as financial organizations and local government, while proactively detecting and preventing unintentional and malicious insider threats.

We will cover:

  • How machine learning and AI can proactively detect user behavior anomalies
  • How enterprises and government organizations are using these technologies and techniques to proactively prevent insider threats and maintain compliance
  • How to develop an automated, self-learning process that analyzes your organization’s risk and compliance posture to drive a policy-based workflow process for data protection and data privacy


20/20 webcast

Zero day and counting

This webcast will take a look at the how companies are still fighting the battle of zero days disclosed months or even years ago, the fallacy of the patch, and why continued detection is important. 



Register for Zero day and counting

Sponsored by: Capsule8

Zero day and counting

When a zero-day vulnerability hits the headlines, alarms sound throughout the industry to figure out how to protect themselves against it. How do we detect it? How will this impact our customers?

But long after the frenzy dies down and attention has moved on to the next vulnerability or breach, the true impact of that zero day can take hold.

Take Heartbleed for example – the vulnerability was introduced in April 2014 but companies are not only still vulnerable, but facing serious security implications. Patching has proven to be both resource and cost intensive, and often is not effective.

This webcast will take a look at the how companies are still fighting the battle of zero days disclosed months or even years ago, the fallacy of the patch, and why continued detection is important. 


Vendor Webcast

Hello direct internet access; hello risk

Learn how to gain better performance and more security effectiveness for your branch offices.



Register for Hello direct internet access; hello risk

Sponsored by: Cisco

Hello direct internet access; hello risk

Business today happens at the branch. But where does IT work? Typically, not at the branch. So enterprises struggle to manage nontraditional users and even more connected devices across disparate branch locations.

As direct internet access increases, the risk of exposure to critical business resources rises. At the same time, application usage via multiple clouds (Office 365, G-suite, etc.) challenges the existing network architecture.

What does this add up to? Pressure for IT staff as they struggle to reduce costs, improve security measures, and application performance.

Join us to learn how to gain better performance and more security effectiveness for your branch offices.


Vendor Webcast

Shift left then shift up: Strengthening your security posture

Learn why Shifting Up provides improved security and cost efficiency in cloud-native environments



Register for Shift left then shift up: Strengthening your security posture

Sponsored by: Aqua Security

Shift left then shift up: Strengthening your security posture

The concept of “shift left” engages security earlier in the development cycle of cloud-native applications, accelerating development while reducing risk.

However, migrating to cloud-native environments also necessitates the security team to “shift up”, focusing on the application layer to account for the shared-service model and “thin OS” environments that are prevalent in these environments.

Join us for this webcast to learn why Shifting Up provides improved security and cost efficiency in cloud-native environments, including: 
•       Container environments
•       Containers as a Service (CaaS)
•       Serverless implementations


Vendor Webcast

Assessing risk in an IT System

Learn the importance of sensitive data discovery, and how having the right security configuration, patching, user management, and access controls in place can reduce your risk and improve your ability to comply with data privacy laws and regulations.



Register for Assessing risk in an IT System

Sponsored by: Oracle

Assessing risk in an IT System

Many organizations don’t really know how much and what type of sensitive data they have.  They may not know how all their systems are configured – and more importantly, where those configurations introduce unnecessary risk.

Francis Bacon once said “Knowledge is power” —  this webcast will show you how to gain the power of knowledge about your environment.  You’ll learn the importance of sensitive data discovery, and how having the right security configuration, patching, user management, and access controls in place can reduce your risk and improve your ability to comply with data privacy laws and regulations.


20/20 webcast

Phishing: Sinister or simply good business (for the cyberattacker)

This 20/20 webcast focuses on the realities of phishing and recommends defenses you can use to reduce your risk and make it a less profitable business for the attackers.



Register for Phishing: Sinister or simply good business (for the cyberattacker)

Sponsored by: Cofense

Phishing: Sinister or simply good business (for the cyberattacker)

We hear horror stories about users clicking on some malware-enabled payload and all of a sudden all of the codes for their hardware security fobs are stolen or a business email compromise (CEO fraud) attack has been launched. Unfortunately, these stories are true.

Phishing and its cousins, spear phishing, vishing, smishing, pharming, and whaling are all serious security concerns, but are they cyber-Armageddon?

This 20/20 webcast focuses on the realities of phishing and recommends defenses you can use to reduce your risk and make it a less profitable business for the attackers.


Vendor Webcast

Using the ATT&CK™ framework to mature your threat hunting program

Learn how to use ATT&CK to increase the efficacy of your threat hunting program



Register for Using the ATT&CK™ framework to mature your threat hunting program

Sponsored by: Carbon Black

Using the ATT&CK™ framework to mature your threat hunting program

Every threat hunt starts with intelligence. As one of the industry’s most comprehensive knowledge bases for adversary behavior, ATT&CK provides a structure for hunters to build their hypotheses and search for threats.

Join Carbon Black, Red Canary and MITRE for “Using the ATT&CK framework to mature your threat hunting program” to learn how to use ATT&CK to:

  • Increase the efficacy of your threat hunting program
  • Hunt for adversary tactics and techniques across the ATT&CK matrix
  • Develop a hypothesis and test it against known techniques
  • Obtain a broader set of evidence by hunting for adversarial techniques rather than specific signatures


20/20 webcast

First responders

This 20/20 webcast looks at the steps you need to take, along with steps you must avoid at all costs, in order to eradicate the breach.



Register for First responders

Sponsored by: IBM

First responders

A data breach has many traits in common with cancer. Discovered early, you might be able to minimize its impact.

Using the right therapies you can minimize its ability to spread, giving you a fighting chance to eradicate the disease. It’s all about how quickly the disease is correctly identified and what you do immediately.

With a data breach, it’s called incident response. What do you do first? What do you never do? How can you contain the breach so that your systems are permanently infected?

This 20/20 webcast looks at the steps you need to take, along with steps you must avoid at all costs, in order to eradicate the breach.


20/20 webcast

Configuring risk

This 20/20 webcast explores configuration risk challenges in-depth and discusses how organizations can leverage existing GRC security strategies to address and reduce configuration risk.



Register for Configuring risk

Sponsored by: Lockpath

Configuring risk

We talk a lot about risk management as part of an overall GRC security strategy, but for this webcast, we’ll focus on one specific area: configuration risk.

Of all the types of security risks companies face, configuration risk is one of the most prevalent; it touches all company assets and affects all parts of the business, however, managing these risks is often deprioritized or overlooked.

There are three main challenges organizations face when evaluating and managing misconfigurations: how to obtain a holistic and accurate view of company assets, how much risk does each misconfiguration pose to the company, and how to communicate these risks to other parts of the business for remediation escalation.

This 20/20 webcast explores these challenges in-depth and discusses how organizations can leverage existing GRC security strategies to address and reduce configuration risk.


Vendor Webcast

The SecOps imperative: How to bridge the security and operations gap

A discussion about the increasing need for security & IT operations teams to modernize existing endpoint security programs by including real-time query and remediation capabilities in their primary security stack



Register for The SecOps imperative: How to bridge the security and operations gap

Sponsored by: Carbon Black

The SecOps imperative: How to bridge the security and operations gap

According to ESG research, 72% of organizations believe that security operations were more difficult in July 2017 than they were two years earlier.

These difficulties stem from security & IT operations teams lacking a reliable way to assess the current state of endpoints across their enterprise. This lack of real-time visibility leads to increased risk of breach, inability to make informed remediation decisions, and unnecessary spending on infrastructure maintenance.

Join the discussion with Jon Oltsik, Sr. Principal Analyst and Fellow at Enterprise Strategy Group, about the increasing need for security & IT operations teams to modernize existing endpoint security programs by including real-time query and remediation capabilities in their primary security stack.

We will discuss:

  • The need to bridge the gap between security and IT operations with shared toolsets, share goals, and shared priorities
  • Why IT hygiene and proactive vulnerability assessment are now vital aspects of any successful endpoint security program
  • How you can leverage real-time query and remediation tools to get a better understanding of the current state of your endpoints


DemoCast webcast

Making threat hunting a reality with metadata and automation

A discussion and demonstration of how to hunt for threats using metadata and automation.



Register for Making threat hunting a reality with metadata and automation

Sponsored by: Fidelis

Making threat hunting a reality with metadata and automation

Traditional security has focused on preventive defenses, but data breaches continue to occur despite the many security tools deployed. With cybercriminals and nation states continuing to innovate and find ways to bypass defenses, organizations continue to be in a reactive mode. Threat hunting flips this model on its head and searches for unknown threats. However threat hunting is hard to do, requiring the right data, tools and expertise.

Join cybersecurity experts for a discussion and demonstration of how to hunt for threats using metadata and automation. We will debunk some of the myths associated with threat hunting and provide strategies to effectively build an effective practice.
Attendees can expect to learn:

• The difference between threat detection and threat hunting, and what expertise is required
• The importance of having the right data for real-time and retrospective analysis
• How to carry out an effective hunt starting with the unknown
• Automating data collection, investigation steps, and response
• The best option for your organization – whether it be product or service

In addition, attendees will see a short demonstration of the Fidelis Elevate™ platform that walks through a threat hunting scenario using metadata and automation


DemoCast webcast

Continuous security for the hybrid enterprise

Unlock the path to more effective cloud security in hybrid enterprises by combining vulnerability management, continuous compliance, and automation and orchestration.



Register for Continuous security for the hybrid enterprise

Sponsored by: FireMon

Continuous security for the hybrid enterprise

The cloud is a notable business advantage, but it does bring numerous security concerns including: a lack of visibility across cloud or between on-premises and cloud environments, monitoring security controls and changes within cloud and multi-cloud environments, and maintaining compliance by monitoring cloud traffic for suspicious and non-compliant behavior. It becomes increasingly complex in hybrid environments because now you’re managing security for on-premise, cloud, virtual, container environments, and more. The time commitment can feel staggering.

It doesn’t have to, however.

Register for this webcast where we will show you the path to more effective cloud security in hybrid enterprises through a mix of:

  • Vulnerability management: See how an attacker could exploit and prioritize your patches;
  • Continuous compliance: Define your own cloud security controls and reduce the time spent on audit prep by making your cloud continuously audit-ready and adherent to the intentions and goals of the enterprise;
  • Automation and orchestration: Ingest behavior details from your cloud, then command security controls to cloud systems from a single console. The idea is instant, worry-reducing cloud control.


Vendor Webcast

Why companies are replacing AV with advanced endpoint protection

Discover how switching from legacy AV to advanced endpoint protection can improve protection and simplify operations for your team.



Register for Why companies are replacing AV with advanced endpoint protection

Sponsored by: Carbon Black

Why companies are replacing AV with advanced endpoint protection

Is legacy antivirus failing to keep your endpoints secure? Perhaps you’re struggling to prevent advanced attacks, your security team is burdened by maintaining overly complex policies, or you’re facing performance issues.
If you’re experiencing any or all of these issues, you aren’t alone.

Today, 70% of successful breaches begin at the endpoint, and you deserve a security provider who can keep your endpoints safe.

Join us for a live webcast with Fulcanelli Chavez, Sr. Security Operations Analyst at D.A. Davidson, who will share how switching from legacy AV to Cb Defense has improved protection and simplified operations for his team.

  • Learn how next-gen AV in the cloud solves a variety of common problems legacy AV users face
  • Get your questions answered about replacing AV with a cloud-based security platform
  • Discover how Cb Defense can help you prevent malware and non-malware attacks and simplify your stack


Vendor Webcast

To SIEM or not to SIEM? Find out your options

Can such a stand-alone platform like security information and event management (SIEM) address your IT security challenges and compliance reporting needs?



Register for To SIEM or not to SIEM? Find out your options

Sponsored by: Arctic Wolf Networks

To SIEM or not to SIEM? Find out your options

A security information and event management (SIEM) platform has been touted as the cornerstone of cybersecurity. But, can such a stand-alone platform address your IT security challenges and compliance reporting needs?  With the growing complexity of SIEM solutions and a shortage of people with cybersecurity skills to manage them, many organizations are looking for alternatives to building their own in-house SIEM and staffing a security operations center (SOC).

In this webcast, Narayan Makaram, Sr. Director of Product Marketing, will examine the following:

  • Business drivers for a SIEM
  • What is/is-not included in a SIEM
  • SIEM deployment options
  • Outsourcing considerations – MSSP vs MDR


Vendor Webcast

Rethinking cybersecurity in the age of attacks

Explore the most promising strategies for 2019 in combating Internet based threats.



Register for Rethinking cybersecurity in the age of attacks

Sponsored by: Cisco

Rethinking cybersecurity in the age of attacks

2019 is around the corner. Our existing cybersecurity environment demands a new way to think about our cybersecurity strategy, one that aligns our security investments with our business risks, and is less centered on ideal prevention and more focused on reality.

Organizations are struggling to gain visibility into traffic involving their own cloud infrastructure in order to identify risky, suspicious and malicious activity. During this webinar we’ll challenge existing misconceptions and the changing motivations of cyber attackers.

Join cloud security experts as we explore the most promising strategies for 2019 in combating Internet based threats.


Vendor Webcast

Levers of human deception: The science and methodology behind social engineering

Explore the different levers that social engineers and scam artists pull to make us more likely to do their bidding.



Register for Levers of human deception: The science and methodology behind social engineering

Sponsored by: KnowBe4

Levers of human deception: The science and methodology behind social engineering

No matter how much security technology we purchase, we still face a fundamental security problem: people. This webcast will explore the different levers that social engineers and scam artists pull to make us more likely to do their bidding.

Join us as we share fun and engaging examples of mental manipulation in everyday life: from the tactics used by oily car dealers, to sophisticated social engineering and online scams. Additionally, we’ll look at how to ethically use the very same levers when educating our users.

Key Takeaways:

  • The Perception Vs. Reality Dilemma
  • Understanding the OODA (Observe, Orient, Decide, Act) Loop
  • How social engineers and scam artists achieve their goals by subverting OODA Loop’s different components
  • How we can defend ourselves and our organizations


Vendor Webcast

Beyond signatures and anomalies: Attacker-centric web security

Take a deep dive into the attacker-centric phenomenon and the importance of prioritizing high-risk, high-impact threats and proactively blocking malicious threats.



Register for Beyond signatures and anomalies: Attacker-centric web security

Sponsored by: Threat X

Beyond signatures and anomalies: Attacker-centric web security

All too often, security teams spend the majority of their time tuning their WAF rules to keep up with changing threats and application environments, and fail to stop the more advanced and high-impact techniques.

Just as attack types are becoming more sophisticated, so are the malicious actors behind them. It’s time to shift the focus away from trying to detect the ever-changing and near-infinite list of individual attacks, and instead, hone in on fundamental attacker behaviors and build attacker profiles.

Join us as we discuss this attacker-centric phenomenon and the importance of:

  • Prioritizing the high-risk, high-impact threats
  • Tracking behaviors and proactively blocking malicious attackers
  • Focusing on the most malicious behaviors instead of chasing down countless anomalies


Editorial webcast

Cryptomining: The next malware attack

Explore how cryptomining works and how to determine if your computing resources are being used without your knowledge for cryptomining.



Register for Cryptomining: The next malware attack

Sponsored by: Cisco

Cryptomining: The next malware attack

Mining for cryptocurrencies is no small task; it takes a lot of CPU and GPU cycles to process the data necessary to generate the currencies.

Not everyone has the technical wherewithal, financial resources and a massive amount of hardware to build their own cyrptomine, so what options do they have? The answer is simple and as old as time: If you don’t have the resources, you “borrow” from someone who does.

Join us as we look at how cryptomining works and how to determine if your computing resources are being used without your knowledge for cryptomining.


DemoCast webcast

Identify and neutralize active phishing attacks in minutes

Learn how to automatically analyze messages against multiple intelligence and reputation systems, reducing an organization’s typical threat triage time from days to minutes without requiring additional work from human analysts.



Register for Identify and neutralize active phishing attacks in minutes

Sponsored by: Wombat Security

Identify and neutralize active phishing attacks in minutes

Proofpoint CLEAR is the first joint solution using Wombat Security’s powerful end-user solutions post-acquiring them earlier this year.

Attend this DemoCast – a new SC webcast program that features both industry expertise and a solutions demonstration – to see easy ways to stop potentially malicious emails that pass through perimeter defenses.

Join this program to learn how to automatically analyze messages against multiple intelligence and reputation systems, reducing an organization’s typical threat triage time from days to minutes without requiring additional work from human analysts.


Vendor Webcast

Supercharging Security with Behavioral Analytics: The fastest path to finding insider threats, fileless malware and data breaches

A discussion on how to practically and effectively boost the IQ of your security arsenal with behavioral analytics so you can find threats faster than ever.



Register for Supercharging Security with Behavioral Analytics: The fastest path to finding insider threats, fileless malware and data breaches

Sponsored by: Interset

Supercharging Security with Behavioral Analytics: The fastest path to finding insider threats, fileless malware and data breaches

Join special guest Joseph Blankenship, principal analyst at Forrester, along with Interset CTO Stephan Jou and Security Strategist Paul Reid for a discussion on how to practically and effectively boost the IQ of your security arsenal with behavioral analytics so you can find threats faster than ever.

This webinar will:

  • Explore how security analytics can extract intelligence from other security tools
  • Demonstrate how analytics surfaces different types of insider threats
  • Show the impact of security analytics on SOC operations and threat hunting


Vendor Webcast

Cybersecurity That Actually Works: Creating Human-Centered Policies

Learn how to make proactive cybersecurity policies that are a catalyst for business innovation, rather than playing catch-up to business realities.



Register for Cybersecurity That Actually Works: Creating Human-Centered Policies

Sponsored by: SafeGuard Cyber

Cybersecurity That Actually Works: Creating Human-Centered Policies

As a security professional, you know the importance of understanding your risks before deciding how to allocate resources to mitigate specific threats. But are you certain that you’re considering all of the communication and collaboration tools that your employees might be using to get their job done?

More than likely, you have teams using third-party tools like Slack for group communication or a sales rep using WhatsApp to reach customers.

In this webinar you’ll learn how to make proactive cybersecurity policies that are a catalyst for business innovation, rather than playing catch-up to business realities.


Vendor Webcast

Managing Shadow IT to Reduce Risk While Increasing Productivity

Discover how you can gain visibility into what applications users are accessing from your network and managed devices, and how to easily block risky apps that aren’t approved.



Register for Managing Shadow IT to Reduce Risk While Increasing Productivity

Sponsored by: Cisco

Managing Shadow IT to Reduce Risk While Increasing Productivity

Unauthorized IT applications create risk in multiple ways, potentially leading to compromised user identities, data loss through unknown channels, and the introduction of malware into customer environments.Are you worried? According to Gartner, more than 40% of IT spend is in fact shadow IT. Wow.

Join cloud security experts as we explain how to stop worrying and start taking action. It’s time to take control of Shadow IT in your organization. Learn how you can gain visibility into what applications users are accessing from your network and managed devices, and how to easily block risky apps that aren’t approved.


20/20 webcast

Threat Intelligence Primer: Understanding Where to Start

Threat intelligence is a lot more than just getting lists of threats that are attacking companies like yours around the world.



Register for Threat Intelligence Primer: Understanding Where to Start

Sponsored by: SecureWorks

Threat Intelligence Primer: Understanding Where to Start

Threat intelligence is a lot more than just getting lists of threats that are attacking companies like yours around the world. Sure, getting feeds of new attacks is certainly useful and a key component, but threat intelligence is a lot more than just feeds and speeds.

It includes everything from understanding where your flexible and sometimes-disappearing perimeter resides to identifying shadow IT, defending against advanced threats, identifying and stopping insider attacks as well as external breaches, and understanding the ever-changing fundamentals of detecting threats. That’s right — threat intelligence is part of everything the security team does every day. So where do you start? Right here.


Vendor Webcast

10 SMB Endpoint Security Problems Solved by the Cloud

Learn how next-generation endpoint security in the cloud solves the most common challenges that SMBs are facing.



Register for 10 SMB Endpoint Security Problems Solved by the Cloud

Sponsored by: Carbon Black

10 SMB Endpoint Security Problems Solved by the Cloud

Are you struggling to keep your endpoint security up to date? You’re not alone. Small to mid-sized companies have less resources — yet have the same risk of attack as larger companies. And that risk is only increasing. In 2017, the number of ransomware attacks increased by 30x and the number of breaches increased by 40%.

Good news! Smaller companies can protect themselves just as well as large enterprises thanks to cloud-based endpoint security.
Join us for a live webinar to discuss how next-generation endpoint security in the cloud solved the most common challenges SMBs are facing.

You will learn:

  •  The 10 most common security problems facing small to mid-sized companies
  •  How cloud-based endpoint security addresses those problems
  •  The benefits of replacing traditional antivirus with a cloud-based security platform


Vendor Webcast

Big threats, small teams: Protecting your company from 2018's most active threats

It’s never been more important to re-evaluate your endpoint security strategy.



Register for Big threats, small teams: Protecting your company from 2018's most active threats

Sponsored by: Barkly

Big threats, small teams: Protecting your company from 2018's most active threats

54% of small and midsize organizations were compromised by a cybersecurity attack last year. With the rise of new fileless infection and exploitation techniques that successfully bypass existing endpoint security tools, it’s never been more important to re-evaluate your endpoint security strategy.

Join this webinar featuring Jack Danahy, CTO and security industry veteran from Barkly to learn:

  • How new attack techniques are bypassing legacy antivirus and detection-based endpoint security tools
  • Practical strategies for blocking ransomware and zero-day campaigns with enterprise-class security designed for IT teams
  • Tips for catalyzing management to justify your investments in protection, detection, and response


Vendor Webcast

Secure your Journey to the Cloud and your Public Cloud

Let’s examine how you respond to your critics and see how you can secure your journey to the cloud, and more importantly the public cloud itself.



Register for Secure your Journey to the Cloud and your Public Cloud

Sponsored by: Oracle

Secure your Journey to the Cloud and your Public Cloud

After many reviews and going back and forth, you have finally decided to lift and shift your workloads/ apps to the cloud.

You have people fighting on whether security is an enabler or a blocker to move to the cloud.

Let’s examine how you respond to your critics and see how you can secure your journey to the cloud, and more importantly the public cloud itself.


Vendor Webcast

Stop Unknown Threats: Deep Learning for Deeper Cybersecurity

Join this webinar to learn how the predictive deep learning technology detects new and unseen malware, protecting you from never-seen-before attacks.



Register for Stop Unknown Threats: Deep Learning for Deeper Cybersecurity

Sponsored by: Sophos

Stop Unknown Threats: Deep Learning for Deeper Cybersecurity

With 75% of malware threats unique to a single organization, reactive endpoint security alone is not enough.
 
Join this webinar to learn how the predictive deep learning technology in Sophos Intercept X detects new and unseen malware, protecting you from never-seen-before attacks. 
 
We’ll cover:
•  The latest malware trends and attack techniques
•  Why traditional endpoint protection alone is not enough
•  How Intercept X uses predictive deep learning to detect unseen malware
•  What the experts are saying about Intercept X
 
We’ll also explore additional advanced protection capabilities in Intercept X, including anti-ransomware and anti-exploit technology, and why it’s the world’s most comprehensive endpoint protection.


Vendor Webcast

12 Ways to Hack Two-Factor Authentication

This webinar where will explore 12 ways hackers can and do get around your favorite 2FA solution.



Register for 12 Ways to Hack Two-Factor Authentication

Sponsored by: KnowBe4

12 Ways to Hack Two-Factor Authentication

Everyone knows that two-factor authentication (2FA) is more secure than a simple login name and password, but too many people think that 2FA is a perfect, unhackable solution. It isn’t!
 
Join Roger A. Grimes, KnowBe4’s Data-Driven Defense Evangelist, and security expert with over 30-years experience, for this webinar where he will explore 12 ways hackers can and do get around your favorite 2FA solution. 
 
The webinar includes a (pre-filmed) hacking demo by KnowBe4’s Chief Hacking Officer Kevin Mitnick, and real-life successful examples of every attack type. It will end by telling you how to better defend your 2FA solution so that you get maximum benefit and security.
 
You’ll learn about the good and bad of 2FA, and become a better computer security defender in the process, including:
· 12 ways hackers get around two-factor authentication
· How to defend your two-factor authentication solution
· The role humans play in a blended-defense strategy


Editorial webcast

The Big Bang Endpoint

Today’s “endpoints” can be anywhere and almost anything.



Register for The Big Bang Endpoint
The Big Bang Endpoint

Let’s face facts: Today’s “endpoints” can be anywhere and almost anything. The internet of things (IoT) means that endpoints might be embedded sensors, components of critical and not-so-critical infrastructure, mobile computers and phones, games and just about anything you can think of.

It’s no longer a moat or fence that defends the perimeter — it’s an array of technologies that often are not even accessible physically to the company’s infosec team as endpoints expand out and away from the corporate network. It is an on-going challenge as companies attempt to find the right mix of technologies, expertise, and training to address the expansion.

Today’s editorial webcast looks at how CISOs are addressing the expansion, what techniques work and what doesn’t, and how the security team’s responsibility is evolving to meet the battle between financial and human resources, compliance and legal requirements, and simply put, the capabilities of the staff.


Vendor Webcast

How to Select and Evaluate Endpoint Security Products

It’s time for a new approach to endpoint security.



Register for How to Select and Evaluate Endpoint Security Products

Sponsored by: Carbon Black

How to Select and Evaluate Endpoint Security Products

93% of organizations are targets of non-malware attacks. At the same time, cyberattackers are innovating faster than traditional defenses can keep up. No wonder 80% of security and IT professionals do not feel adequately prepared to defend their organizations.
It’s time for a new approach to endpoint security. But with so many offerings what should you buy? Join us for a live webinar with Mike Rothman, Analyst & President at Securosis, who will help you navigate the selection process.
During this session you will learn:
How to determine the capabilities you need to address the problems you face
The top questions you should ask an endpoint security vendor to understand the nuances of their approach


Vendor Webcast

Real Time Behavioral AI

Join Jeremiah Grossman, SentinelOne Advisor, and Gary Mello, SentinalOne Evangelist for a webcast about Real Time Behavioral AI and the SentinelOne Platform.



Register for Real Time Behavioral AI

Sponsored by: Sentinel One

Real Time Behavioral AI

Join Jeremiah Grossman, SentinelOne Advisor, and Gary Mello, SentinalOne Evangelist for a webcast about Real Time Behavioral AI and the SentinelOne Platform.  Behavioral AI is one of the most effective defenses to stop today’s most advanced attacks, such as fileless, script based & live attack.  In this session we will cover:

 

  1. Behavioral AI Overview
  2. Why not all Behavioral AI technologies are the same
  3. Live attack demonstrations  


Vendor Webcast

Exposed and At Risk! Why Your Approach to Web App Security is Insufficient

Proven web application security approaches and modern WAF technologies to address the rapidly evolving security needs of hybrid cloud environments.



Register for Exposed and At Risk! Why Your Approach to Web App Security is Insufficient

Sponsored by: Threat X

Exposed and At Risk! Why Your Approach to Web App Security is Insufficient

While web and legacy apps, APIs, and microservices are now common and essential components of any digital business, their ever-increasing complexity also creates vast attack surfaces and prime targets for malicious threats. In fact, according to a recent survey conducted by Ponemon, 80% of organizations stated their web apps were compromised ‘sometimes’ or ‘frequently.’ This figure is shockingly high, considering 73% of those organizations were utilizing a web application firewall (WAF). So where is the disconnect?

Join Michael Suby, Vice President of Research at Stratecast | Frost & Sullivan, and Bret Settle, CEO and Founder of Threat X, as they discuss the power of combining proven web application security approaches and modern WAF technologies to address the rapidly evolving security needs of hybrid cloud environments. 

You will learn:

  • Why both the drivers and types of web application attacks are rapidly evolving.
  • What threats you ARE missing with your current approach to web application security.
  • Why it’s critically important that your WAF solution protects ALL your Web applications.
  • Why security technology and human expertise/intervention are powerful partners.


Vendor Webcast

Tracing Threat Actors by Their Footprints and Web Assets

Learn how the threat intelligence space is transforming



Register for Tracing Threat Actors by Their Footprints and Web Assets

Sponsored by: DomainTools

Tracing Threat Actors by Their Footprints and Web Assets

Organizations are experiencing new and evolving cyberthreats that are increasing in both sophistication and frequency. In response to the new challenges, threat hunting is gaining momentum as a security practice that helps organizations take a more proactive stance on security. Many SOCs are going through a posture shift as they pivot from traditional reactive security stance to a hybrid approach that includes proactive hunting of threats that is oftentimes powered by a host of indicators and web assets.

 

Join DomainTools Data Systems Engineer, Mike Thompson to learn how the threat intelligence space is transforming and what techniques security professionals can apply to stay a step ahead of threat actors by mapping their infrastructure.


Vendor Webcast

Solving The Cybersecurity Skills Shortage in Law Firms

What are optimal approaches for law firms to manage staffing needed to monitor and defend their valuable data and infrastructure?



Register for Solving The Cybersecurity Skills Shortage in Law Firms

Sponsored by: Arctic Wolf

Solving The Cybersecurity Skills Shortage in Law Firms

The evidence is clear: law firms of all sizes need to securely handle sensitive information associated with their clients, investigators, and witnesses. According to the American Bar Association’s 2017 Legal Technology Survey Report, 22 percent of respondents suffered a security breach at their law firms.*

Compromised client information can destroy reputations and lead to decreased billables and lost business. While the need for improved security is evident, IT and security teams struggle to locate, retain and train talent needed to maintain and improve their security posture.  What are optimal approaches for law firms to manage staffing needed to monitor and defend their valuable data and infrastructure? 

In this Arctic Wolf webinar, we dive into:

  • Why cybersecurity is top of mind in the legal community
  • The IT and Cybersecurity skills shortage and its impact on security
  • How SOC-as-a-Service approaches enable law firms to rapidly improve their security posture and provide evidence to satisfy technology audits


Vendor Webcast

Under Pressure: Prepping for a Post-Quantum World

Join renowned Public Key Infrastructure (PKI) expert and Certified Security Solutions (CSS) CTO, Ted Shorter, as he outlines the defense against quantum computing, crypto-agility



Register for Under Pressure: Prepping for a Post-Quantum World

Sponsored by: CSS

Under Pressure: Prepping for a Post-Quantum World

On the eve of quantum computing, the definitive need for crypto-agility is greater than ever. The ability to locate, manage, and securely update digital certificates on a network or on a device seems like a simple task, yet with the advent of new Enterprise use cases and flourishing IoT device introductions, management at massive scale becomes a challenge. Facing mounting pressures, IT security personnel and product managers are tasked with implementing solutions fit for today’s environment plus tomorrow’s post-quantum world. Join renowned Public Key Infrastructure (PKI) expert and Certified Security Solutions (CSS) CTO, Ted Shorter, as he outlines the defense against quantum computing, crypto-agility:
 

  • Demystifying quantum computing: cryptographic kryptonite
  • Challenges with digital certificate/device management at scale
  • Futureproof, quantum-safe digital identity solutions for today’s Enterprise & IoT


Vendor Webcast

Still Falling Foul to Phishing?

Learn how organizations can prevent, detect and respond to all email threats, including phishing and social engineering and how you can use this framework to better protect your organization.



Register for Still Falling Foul to Phishing?

Sponsored by: Proofpoint

Still Falling Foul to Phishing?

It has been around for many years, but phishing is not a problem that’s going away any time soon. In fact, given that attackers have shifted from targeting systems to targeting people, phishing is a tool of growing importance for threat actors, and something that potential victims need to be aware of. Learn how organizations can prevent, detect and respond to all email threats, including phishing and social engineering and how you can use this framework to better protect your organization. 

Join us as we discuss: 

  • Effective security training to help prevent falling for an attack 
  • The right tools and methods for detecting phishing 
  • How to respond when to email threats


Vendor Webcast

How to Make Endpoint Security Easy

What if you could prevent attacks before they occur and spend less time managing multiple agents?



Register for How to Make Endpoint Security Easy

Sponsored by: Carbon Black

How to Make Endpoint Security Easy

Traditional anti-virus solutions can’t keep up with the pace of emerging threats. What if you could prevent attacks before they occur and spend less time managing multiple agents?

Join us for a live webinar with Ryan Manni, Security Operations Manager at Hologic, as we discuss their evaluation of cloud-based endpoint security and why they chose Cb Defense.  Hologic is an innovative medical technology company focused on improving women’s health.  Their security challenges included preventing non-malware attacks, gaining visibility into remote employees, and managing complex infrastructure with a small IT staff. 

  • Learn why Hologic replaced their traditional AV solution with Cb Defense
  • Discover how Cb Defense can help you prevent emerging attacks and simplify your security stack
  • Get practical advice on replacing traditional AV with a cloud-based security platform


Vendor Webcast

How to Accelerate GDPR Compliance with Druva inSync

Join us for a live, technical webinar and learn what the GDPR requires and how to accelerate compliance within your business.



Register for How to Accelerate GDPR Compliance with Druva inSync

Sponsored by: Druva

How to Accelerate GDPR Compliance with Druva inSync

The deadline for General Data Protection Regulation (GDPR) compliance has passed. As organizations scramble to meet the strict requirements put in place by the European Union, many of us still don’t understand what it is – or how to achieve compliance.

Join us for a live, technical webinar and learn what the GDPR requires and how to accelerate compliance within your business. Our special guest, Michael Osterman, President of Osterman Research and Druva’s Sarah Beaudoin, Product Marketing Manager will review the results of the new report, “The GDPR Deadline has passed. What should you do?”

You’ll learn:
• Essential requirements of GDPR
• How prepared your organization is for GDPR compliance
• Critical implications to backup, storage, recovery and archiving of data
• How Druva can help accelerate your GDPR compliance readiness

Register Now

 


Vendor Webcast

What Most Computer Security Defenses Are Doing Wrong and How to Fix It

You’ll leave this webinar with a fresh perspective and an action plan to improve the efficiency and effectiveness of your current computer security defenses.



Register for What Most Computer Security Defenses Are Doing Wrong and How to Fix It

Sponsored by: KnowBe4

What Most Computer Security Defenses Are Doing Wrong and How to Fix It

Most companies have huge gaps in their computer security defenses and can be compromised at will by a determined hacker. The industry even has a term for it: “Assume Breach”.  But it doesn’t have to be that way!

Join Roger A. Grimes, a 30-year computer security consultant and author of 10 books, for this on-demand webinar where he explores the latest research on what’s wrong with current network defenses and how they got this way. Roger will teach you what most organizations are doing wrong, why, and how to fix it. You’ll leave this webinar with a fresh perspective and an action plan to improve the efficiency and effectiveness of your current computer security defenses.

Roger will teach you:

  • What most companies are doing wrong, why, and how to fix it
  • An action plan to improve the effectiveness of your computer security defenses
  • How to create your “human firewall”


Editorial webcast

Morphing Threat Intelligence

Consider threat intelligence not only from its traditional place in the overall security function, but ways to use it to expand your security functions and capabilities.



Register for Morphing Threat Intelligence

Sponsored by: Recorded Future

Morphing Threat Intelligence

Generally when we think of threat intelligence, we think of using threat feeds to defend against malware and other pre-breach defenses. This is often included in the vulnerability management component of network security, but threat intelligence is much more than that. Today we’ll explore how using threat intelligence for incident response or perhaps more transactional functions such as security operations or security leadership can help expand a company’s security footprint and consider threat intelligence not only from its traditional place in the overall security function, but ways to use it to expand your security functions and capabilities.


20/20 webcast

Vulnerability Management: The Final Frontier

This 20/20 webcast addresses how to recognize and manage these vulnerabilities, and ultimately how to reduce your risk.



Register for Vulnerability Management: The Final Frontier

Sponsored by: Rapid7

Vulnerability Management: The Final Frontier

We’ve said it before and we’ll say it again: It’s all about managing risk, which means managing vulnerabilities. The decisions companies make about what security products they employ generally comes back to risk. It could be financial risk in terms of sales lost, money stolen or potential fines and lawsuits due to vulnerabilities in processing personal information, credit card data, or simply identity and access management. It could be reputational risk from network vulnerabilities – certainly a very visible and tangible issue faced by companies such as Target, Home Depot and social media sites following massive breaches.  It could be legal risk – the vulnerabilities here are too numerous to list. Today’s 20/20 webcast addresses how to recognize and manage these vulnerabilities, and ultimately how to reduce your risk.


Vendor Webcast

GDPR: The New World of Data Privacy is here. Now What?

Join us for a recap of GDPR’s history, a brief overview of some of the regulation's key elements, and a quick checklist of basic steps you can take in preparation for GDPR.



Register for GDPR: The New World of Data Privacy is here. Now What?

Sponsored by: Oracle

GDPR: The New World of Data Privacy is here. Now What?

After over two years of preparation, the European Union’s General Data Protection Regulation has finally arrived. The General Data Protection Regulation (GDPR) is all about protecting your data and a significant amount of sensitive personal data resides in databases. Have you assessed all your data sources to locate personal data? Do you have critical controls to protect that data? Do you have a coordinated strategy to ensure overall compliance? Join us for a recap of GDPR’s history, a brief overview of some of the regulation’s key elements, and a quick checklist of basic steps you can take in preparation for GDPR. We will also discuss some of the best practices we’ve seen Oracle Database customers take in order to accelerate GDPR compliance.


Vendor Webcast

The Future of Vulnerability Management In A Changing Threat Landscape

Join Jeremiah Grossman, SentinelOne Advisor, and Eran Ashkenazi, VP Services and Field Operations, SentinelOne, for a webcast discussing a new approach to Vulnerability Management.



Register for The Future of Vulnerability Management In A Changing Threat Landscape

Sponsored by: Sentinel One

The Future of Vulnerability Management In A Changing Threat Landscape

Adobe recently published a security bulletin highlighting a vulnerability in their flash player product. This report also disclosed that the issue had impacted all Adobe flash player versions prior to 28.0.0.137. Once weaponized, in this case reportedly by North Korea, the attack manipulated embedded flash code in Office Documents to gain full access of the target machine.  This is just one more example, out of hundreds, that stresses the critical nature of real-time vulnerability management and virtual patching in a world where scanning is just too slow.

Join Jeremiah Grossman, SentinelOne Advisor, and Eran Ashkenazi, VP Services and Field Operations, SentinelOne, for a webcast discussing a new approach to Vulnerability Management. Directly on an endpoint, it’s possible to quickly monitor overall risk by comparing the software inventory on the device against all known vulnerabilities. This scanless approach to Vulnerability Management is able to systematically deliver remediation guidance, understand and minimize attack surfaces, and do so at unprecedented speed. 

You will learn: 
a. About the future of Endpoint Protection: Autonomous EPP + EDR + Vulnerability Management 
b. Real-time endpoint driven data versus slow and resource intensive network scanning 
c. SentinelOne’s all-in-one solution: No additional agent

 


20/20 webcast

Cloudy With a Chance of SIEMs

This 20/20 webcast will address the challenges CISOs face from the ever-improving attackers.



Register for Cloudy With a Chance of SIEMs

Sponsored by: Rapid7

Cloudy With a Chance of SIEMs

Being predictable is the death knell for network security. Defenses are becoming more sophisticated so attackers using standard attacks are a sure way of getting caught. That means that attackers are forced to become more sophisticated and cleverer with their attacks. It also means the corporate defense, and mainly the tools that interpret the attacks, need to be better. Today’s 20/20 webcast will address the challenges CISOs face from the ever-improving attackers.


Vendor Webcast

Mobile Phishing 2018: A look at mobile threats now facing every enterprise

Mobile phishing is the biggest unsolved cybersecurity problem facing enterprises today



Register for Mobile Phishing 2018: A look at mobile threats now facing every enterprise

Sponsored by: Lookout

Mobile Phishing 2018: A look at mobile threats now facing every enterprise

Mobile phishing is the biggest unsolved cybersecurity problem facing enterprises today. The rate at which users are receiving and tapping Phishing URLs on their mobile device has grown by an average of 85% Year-over-Year since 2011. Lookout-exclusive research into mobile phishing has uncovered a number of malicious actors globally, including the state-sponsored group behind Dark Caracal that focused on mobile phishing to compromise over 600 phones in over 21 countries. Even Pegasus, the one-tap remote jailbreak exploit sold by cyber-arms dealer NSO group required the victim to tap a phishing message in an SMS. FrozenCell, xRAT, ViperRAT, SocialPath, and Xsser/mRAT are all mobile threats that start with phishing.


Vendor Webcast

Capturing the Flag with Active Deception Defenses

Join security experts to learn what happens when active deception defenses are put into a CTF exercise against human attackers and malware.



Register for Capturing the Flag with Active Deception Defenses

Sponsored by: Fidelis

Capturing the Flag with Active Deception Defenses

Capture the flag (CTF) exercises and events continue to increase in popularity providing essential training and skills development for defenders on blue teams and attackers on red teams.  Jeopardy style or attack-defense CTF cyber exercises enable experienced participants and novices to work side by side on teams developing communication, time management and problem solving skills in a safe environment with ground rules and prizes for winners.  Defending blue teams often dread the embarrassment of being attacked and compromised until modern deception defenses arrived.  Deception defenses mimic a real environment with decoys and breadcrumbs creating an unknown mine field for attackers to detect their activity and movements giving defending blue teams a new advantage.   

Join security experts to learn what happens when active deception defenses are put into a CTF exercise against human attackers and malware? 

 

  • Learn the types of capture the flag exercises and benefits for participants
  • Assessment of blue team and read team CTF exercises for your organization
  • Comparing honeypot research versus post-breach deception detection
  • Understand the most popular breadcrumbs and decoys for deception and why
  • Lessons learned from active deception defenses within a CTF exercise

 


Vendor Webcast

Securing the Virtual Data Center

Establish a Least Privilege Environment around applications to lock them down and dramatically shrink the attack surface



Register for Securing the Virtual Data Center

Sponsored by: Carbon Black

Securing the Virtual Data Center

As applications in the data center become more distributed and more dynamic, they have become increasingly difficult to secure. Traditional security solutions are not flexible enough to keep up with applications as they change over time, leading to breakdowns in security.

Additionally, traditional endpoint security solutions are focused on preventing the infiltration step of the kill chain, but threats inside the data center are well past this step — busy propagating or extracting information from the environment.

Join Carbon Black and VMware to learn how to:
• Establish a Least Privilege Environment around applications to lock them down and dramatically shrink the attack surface
• Understand the value of behavioral threat detection and how, by leveraging application context and scope to perform advanced analysis, you can catch threats that evade least privilege
• Learn how to benefit from an automated, orchestrated response that remediates threats with precision and minimizes business impact while eradicating the threat

 


Vendor Webcast

Cybersecurity Heroes Aren’t Born … They’re Made

Join our experts as we dive into the report and share best practices and pitfalls as we try to create a culture of security within our organizations and community.



Register for Cybersecurity Heroes Aren’t Born … They’re Made

Sponsored by: Wombat Security

Cybersecurity Heroes Aren’t Born … They’re Made

Phishing has long been a headline threat for infosec teams — but email is just one entry point for cybercriminals. Webinar attendees will learn why it’s important to assess and train their end users about cybersecurity threats beyond email-based social engineering.

During this session, we will share results from the Wombat Security 2018 Beyond the Phish® Report, which analyzes data from nearly 85 million responses to cybersecurity knowledge assessments and training challenges presented to global end users across multiple industries during 2017. We will discuss end users’ strengths and weaknesses across 12 cybersecurity topics — from identifying social engineering scams to protecting confidential information to working safely outside the office. We’ll also highlight variations in end-user knowledge levels across industries, giving you a benchmark against which to compare your organization’s readiness.

Attendees will also see how data insights from knowledge assessments and training activities differ from those related to simulated phishing attacks, and how using these tools together can give a more complete view of susceptibility. Finally, we’ll provide guidance about how to use this information to strengthen your end users and reduce the risk of successful cyberattacks within your organization.

Join our experts as we dive into the report and share best practices and pitfalls as we try to create a culture of security within our organizations and community.

 


20/20 webcast

Breaking Bad – or Good Habits

In Part 2 of our series on social engineering, we’ll take a deeper dive on some approaches attackers take, why they work and what we can do to defend against them.



Register for Breaking Bad – or Good Habits

Sponsored by: KnowBe4

Breaking Bad – or Good Habits

We recently looked at how to identify a social engineering attack and how they work in My Friend My Enemy. In Part 2 of our series on social engineering, we’ll take a deeper dive on some approaches attackers take, why they work and what we can do to defend against them. As much as human nature tells you that it’s polite to hold open a door or to answer a door if someone knocks, sometimes that’s just the wrong thing to do. Here’s why.


Vendor Webcast

Getting Started With Threat Intelligence

Maintaining situational awareness can be a full time job, and you need to know how the latest high profile attack affects your organization… like 15 minutes ago.



Register for Getting Started With Threat Intelligence

Sponsored by: ThreatConnect

Getting Started With Threat Intelligence

Security professionals need to quickly identify real threats to their organization, even if they don’t have the budget to build out a dedicated threat intelligence team. Maintaining situational awareness can be a full time job, and you need to know how the latest high profile attack affects your organization… like 15 minutes ago. 

The good news is that small security teams can use threat intelligence to increase detection while minimizing the number of false positives being sent to defensive devices.
 
Join us for this interactive webcast where you’ll learn how to:
• Select and optimize the threat data you’d like to ingest in your SIEM or EDR device
• Minimize the time it takes to determine whether or not something is a threat
• Keep up with new threat actors, attack patterns, and CVEs


Vendor Webcast

Reduce Cyber Risk with Tenable and ServiceNow

Learn how a small security team from Carfax went from using email for vulnerability management to automating the process down to a click of a button.



Register for Reduce Cyber Risk with Tenable and ServiceNow

Sponsored by: ServiceNow

Reduce Cyber Risk with Tenable and ServiceNow

Vulnerabilities and the risks they pose to security continue to be big news. Keeping up with an overwhelming number of vulnerabilities in continually expanding IT environments is challenging, but it’s one of the best ways to reduce your cyber risk. To successfully manage vulnerabilities, you need to detect, prioritize, and remediate efficiently. Combining Tenable Security Center® and ServiceNow® Security Operations allows you to automate vulnerability remediation so you can work faster and keep your business safe.
Join us for this hour-long webinar on Tuesday, May 1, at 8am PDT/11am EDT, and learn how a small security team from Carfax went from using email for vulnerability management to automating the process down to a click of a button. Hear from Carfax Security Analyst Jered Bare about how they integrated Tenable and ServiceNow, along with benefits and lessons learned in the process. 
Nick Keuning, Solution Architect at Tenable and David Barkovic, Director, Product Management at ServiceNow will also demonstrate how best to use these products together to get efficient vulnerability response. Don’t miss this informative webinar!


Vendor Webcast

Improving Incident Response Outcomes

Join us for a one hour webcast featuring the key findings of Secureworks newly-released Incident Response Insights Report 2018: Risks, Remedies, and Best Practices for Defending Against Cyber Threats.



Register for Improving Incident Response Outcomes

Sponsored by: SecureWorks

Improving Incident Response Outcomes

How to Defend Faster and Reduce Risk More Effectively in the Face of a Cyberattack

All too often companies are learning the hard way — during an incident — how they could have been better prepared to stop the threat or reduce the damage. Join us for a one hour webcast featuring the key findings of Secureworks newly-released Incident Response Insights Report 2018: Risks, Remedies, and Best Practices for Defending Against Cyber Threats. Webcast takeaways will include:
• Threat and attack trends identified by responders in 2017
• Lessons learned by organizations in a wide variety of incident response (IR) scenarios
• Key recommendations for IR planning, practices and capabilities that improve security defenses and mitigate business risk.
• Live Q&A with experts from our Counter Threat Unit™ (CTU) and Incident Response team

In 2017, Secureworks’ team of incident responders helped hundreds of organizations navigate through complex and high-risk security incidents. Now the top insights from those collective engagements will be shared by a panel of speakers from the Secureworks Counter Threat Unit and Incident Response practice.

This program offers the support you need to prepare better for emerging threats, understand how you might be vulnerable, and respond more effectively when an incident does occur. Program content is appropriate for cybersecurity leaders, incident responders, CIOs, CTOs, and executives with responsibility for enterprise risk management.

 


Vendor Webcast

Enabling Data-Driven Cybersecurity Decisions with Continuous Security Validation

Register for this informative webcast to learn more about how your organization can work toward eliminating the fear, uncertainty, and doubt associated with cybersecurity.



Register for Enabling Data-Driven Cybersecurity Decisions with Continuous Security Validation

Sponsored by: NSS Labs

Enabling Data-Driven Cybersecurity Decisions with Continuous Security Validation

Despite extensive effort and investment, achieving an effective cybersecurity strategy remains an elusive pursuit. Enterprises spent an estimated US$90 billion on cybersecurity products in 2017, and yet a recent NSS Labs survey of CISOs in North America reveals that 52% of enterprises see no “value-add” from their currently deployed security products. Security teams are under more pressure than ever to justify budget allocation for security controls, but most of the time, measuring security effectiveness is a guessing game.

Anil Nandigam, Senior Director of Product Marketing with NSS Labs, will conduct a live demonstration of the Continuous Security Validation Platform. This cloud-based customizable platform provides real-time empirical data regarding the effectiveness of enterprise security controls and also reveals the operating systems and applications most often targeted by today’s active threats. Anil will also discuss how an international bank and a top-five management consulting firm are using this platform to make data-driven cybersecurity decisions. 

Register for this informative webcast to learn more about how your organization can work toward eliminating the fear, uncertainty, and doubt associated with cybersecurity.

 


20/20 webcast

Putting Threat Intelligence to Work Part II

We’ll take a deeper dive into making threat intelligence work for you, including addressing issues of infrastructure, training, nation state attacks, and proactive threat management.



Register for Putting Threat Intelligence to Work Part II

Sponsored by: Arbor Networks

Putting Threat Intelligence to Work Part II

Last week we talked about the changing threat landscape — understanding the change, anticipating the next evolution of change, and having actionable defenses in place. This week we’ll take a deeper dive into making threat intelligence work for you, including addressing issues of infrastructure, training, nation state attacks, and proactive threat management.


Vendor Webcast

Making Awareness Stick: Secrets to a Successful Security Awareness Training Program

Join Erich Kron, Security Awareness Advocate at KnowBe4, as he shares results-focused strategies and practical insight on how to build a world-class program.



Register for Making Awareness Stick: Secrets to a Successful Security Awareness Training Program

Sponsored by: KnowBe4

Making Awareness Stick: Secrets to a Successful Security Awareness Training Program

With 91% of data breaches being the result of human error, security leaders, auditors, and regulators increasingly recognize that a more intentional focus on the human side of security is critical to the protection of organizations. However, organizations have been struggling with and debating the effectiveness of traditional security awareness and training. 
Join Erich Kron, Security Awareness Advocate at KnowBe4, for this webinar “Making Awareness Stick: Secrets to a Successful Security Awareness Training Program” as he shares results-focused strategies and practical insight on how to build a world-class program.
Key topics covered in this webinar:
  • Why awareness and training matters
  • Key data points to help make the case for awareness in your organization
  • Five secrets to making awareness work in 2018
  • How to create your “Human Firewall”
  • Make this the year that you refuse to settle for mediocrity. Are you ready to go all-in?


Editorial webcast

Bigger Risks, Bigger Challenges

This webcast looks at the challenges today's security team faces, the training necessary today to meet those challenges, and the pressures on the infosec team that might not have existed just a few years ago.



Register for Bigger Risks, Bigger Challenges

Sponsored by: Recorded Future

Bigger Risks, Bigger Challenges

New research shows that the job of cybersecurity staffers is getting far more difficult than it was five years ago. Gone are the days when updating A/V software and applying patches were considered “security.” Today’s security pros need to be concerned with threat intelligence, threat hunting, far more malicious zero-days and state-sponsored attacks. Today’s webcast looks at the challenges today’s security team faces, the training necessary today to meet those challenges, and the pressures on the infosec team that might not have existed just a few years ago.  


Vendor Webcast

Get GDPR-Ready – Because Data Protection Is About to Get Personal

Join us as Adam Nelson, Associate Partner and Global Privacy Leader for IBM Security and Cindy E. Compert, CIPT/M, CTO Data Security & Privacy for IBM Security as they take you through this critical security framework.



Register for Get GDPR-Ready – Because Data Protection Is About to Get Personal

Sponsored by: IBM

Get GDPR-Ready – Because Data Protection Is About to Get Personal

On May 25, 2018, the General Data Protection Regulation (GDPR) will take effect, impacting every organization conducting business with individuals in the EU- consumers, employees, and business contacts alike.  On that date, organizations will encounter new, uniform data protection regulations relating to the information of EU subjects—or potentially face hefty fines and other penalties. Yet many business, privacy and security leaders are not ready for it. To help address our clients’ concerns, IBM Security has developed a five-phased framework approach to GDPR readiness.

Join us as Adam Nelson, Associate Partner and Global Privacy Leader for IBM Security and Cindy E. Compert, CIPT/M, CTO Data Security & Privacy for IBM Security as they take you through this critical security framework.

This webinar will provide an overview of the IBM Security GDPR framework, and will also cover:
• An introduction to the EU GDPR, including its purpose, key aspects and provisions of the regulation, and new or enhanced requirements
• Steps organizations are taking on their path to GDPR readiness and what can be done to prepare 
• A deep-dive into the five phases of GDPR readiness, with a focus on security and privacy requirements and activities for you to consider in each phase
• Solutions that can help organizations address these requirements, no matter where they are in their readiness journey


Vendor Webcast

5 Keys to Understanding Vulnerability Disclosure

5 keys to understanding vulnerability disclosure



Register for 5 Keys to Understanding Vulnerability Disclosure

Sponsored by: Bugcrowd

5 Keys to Understanding Vulnerability Disclosure

2017 was undoubtedly another year of escalation in size, scope and scale of cyber attacks. It goes without saying that this past year everyone was impacted by at least one of these breaches. But it’s been a year of unprecedented change as well – change for the better. With policies and standards in place such as the NIST Cybersecurity Framework, it’s now incumbent on organizations to ensure they are setup to receive vulnerability data from external parties and is already becoming an adhered-to standard for major private organizations.
 
A vulnerability disclosure program (VDP) is the initial first step in helping protect your company from an attack or premature vulnerability release to the public.
 
Join our webinar as we discuss:
 
• 5 keys to understanding vulnerability disclosure
• The impact VDP is having on the industry
• Why implementing a VDP is no longer a nice-to-have, but a necessity


Vendor Webcast

Examining the State of Security Operations and How to Automate Threat Detection and Response

How to automate alert triaging and prioritization



Register for Examining the State of Security Operations and How to Automate Threat Detection and Response

Sponsored by: Fidelis

Examining the State of Security Operations and How to Automate Threat Detection and Response

Prevention is still important within the security approach, but with borderless enterprises and sophisticated attackers who have the motivation and financial means, they will find a way into your organization. And most Security Operations Centers (SOCs) are under siege. Security analysts oftentimes have more alerts than they can typically triage and investigate, giving attackers more time to evade detection and taking longer for SOCs to respond. The result is that once attackers break in, they often stay hidden inside for too long – moving laterally and stealing sensitive data.
 
Fidelis Cybersecurity commissioned 360Velocity to conduct an enterprise study on the State of the SOC, including current trends and practices of threat detection and response. Join this webinar to listen to security experts Dr. Chenxi Wang of 360Velocity and Tim Roddy, VP of Cybersecurity Product Strategy at Fidelis examine:
 
• How to automate alert triaging and prioritization
• The case for and how to integrate network sensors and endpoint enforcement
• How to standardize processes for threat detection and response
• Meaningful SOC metrics to use for understanding effectiveness/ineffectiveness
• Threat hunting – what it entails and how to confirm threats that resulted in an incident


Vendor Webcast

Drive Transformative Economic Results by Improving Security Response

Forrester Consulting interviewed current ServiceNow customers to quantify our solution’s benefits for a composite organization



Register for Drive Transformative Economic Results by Improving Security Response

Sponsored by: ServiceNow

Drive Transformative Economic Results by Improving Security Response

Forrester Consulting interviewed current ServiceNow customers to quantify our solution’s benefits for a composite organization[1], including: Increased efficiency of prioritizing and resolving security incidents, improved vulnerability management and response times, and better visibility into security posture. 

Attend our free webinar, featuring guest speaker Anish Shah of Forrester, to learn how the composite organization achieved these benefits while driving transformative economic results including: 

  • $5.6M total 3-year benefits
  • $355K Opex savings by eliminating legacy security tools
  • 230% ROI


Vendor Webcast

Stop Writing Rules. Start Commanding Intent.

In this webinar, we’ll show you how to implement intent-based security.



Register for Stop Writing Rules. Start Commanding Intent.

Sponsored by: FireMon

Stop Writing Rules. Start Commanding Intent.

Traditional security models are all about the current state – but in the current state of cyber-security, by the time new rules are written, they’re obsolete. Resources have changed, topologies have shifted, traffic has evolved, and applications grew new arms and legs. 
  
Because networks and the approach to them have changed, we need new methods of security. 
 
Intent-based network security (IBNS) isn’t the sexiest thing to ever emerge from the IT tech stack, no, but it’s one of the most functional. It removes the need to write rules.  Instead, you infuse your intent to every resource, device, asset, workload, and human on the network. Enterprises can leverage their security intent, even if their rules and infrastructure dates to the ‘90s. 
 
In this webinar, we’ll show you how to implement intent-based security.  It just takes a method and you’ll see desired-state security take the lead.
 
Specific topics we’ll address include:
 
• Establishing your global declarative policy
• Translating security intent to any infrastructure (on-prem, cloud, virtual, and containers)
• Automating controls based on security intent and network adjustments
• Monitoring security with network self-awareness
• Dynamically remediating when networks drift away from your desired state


Vendor Webcast

GDPR Takes A Village: Practical Advice to Help You Achieve Compliance

Show customers your commitment by changing how your organization uses and protects information.



Register for GDPR Takes A Village: Practical Advice to Help You Achieve Compliance

Sponsored by: TITUS

GDPR Takes A Village: Practical Advice to Help You Achieve Compliance

The GDPR compliance deadline signals a big shift for organizations handling data. But it shouldn’t be about doing the bare minimum to avoid big fines. Instead, show customers your commitment by changing how your organization uses and protects information.

Every employee has an important role to play but many don’t even realize it.

You need each person who handles, has access to, or may inadvertently see personal data to learn the basics of data protection so they can take appropriate steps when they encounter data in their work.

Join guest Enza Iannopollo, Analyst at Forrester Research and Doug Snow, VP of Customer Success, TITUS on:

 

  • Why collaboration across the organization is essential
  • The role of data discovery and classification to mitigate risk
  • The importance and benefits of building a culture a security.

 


20/20 webcast

The Relative Threat Within

This 20/20 webcast looks at some of the techniques you can use to identify and defend against insider attacks.



Register for The Relative Threat Within

Sponsored by: HID Global

The Relative Threat Within

No one likes to admit it, but threats from trusted insiders is a serious issue. Sometimes the threat is due to benign actions of employees, but often the threat is as serious as anything you’d see in a nation-state or other criminal attack. Today’s 20/20 webcast looks at some of the techniques you can use to identify and defend against insider attacks.


Vendor Webcast

Tackling the risks of open source security: 5 things every CISO needs to know

In this webinar, we will present 5 approaches and best practices that security teams should implement in order to enable their developers to harness the power of open source without slowing them down or compromising on security.



Register for Tackling the risks of open source security: 5 things every CISO needs to know

Sponsored by: WhiteSource

Tackling the risks of open source security: 5 things every CISO needs to know

Open Source has become the key building block for application development in today’s market, where companies are under constant pressure to  accelerate time to market. The increasing adoption of open source components, however, has introduced new security challenges that most teams are not prepared to mitigate in their current posture.  In this webinar, we will present 5 approaches and best practices that security teams should implement in order to enable their developers to harness the power of open source without slowing them down or compromising on security.


Vendor Webcast

Your Organization Through the Eyes of an Attacker

In this webinar, we'll show you easy ways to stalk and attack your organization to improve security.



Register for Your Organization Through the Eyes of an Attacker

Sponsored by: KnowBe4

Your Organization Through the Eyes of an Attacker

Attackers follow a number of paths as they search for entry-points into your organization. In this webinar, we’ll show you easy ways to stalk and attack your organization to improve security.

Join Erich Kron CISSP, Security Awareness Advocate at KnowBe4, in this practical session providing a high-level overview of the theory/practices used, showing you how to simulate those same tactics using both free and subscription-based aspects of KnowBe4’s platform.

Key topics covered in this webinar:

  • Understanding the attacker’s workflow
  • Selecting targets and entry points
  • Promoting a culture of security awareness
  • Creating your own ‘Red Team’ activities using KnowBe4 as part of penetration testing initiatives


Vendor Webcast

2018 State of the Phish™

In this webinar, we will review the key findings and insights from our 2018 State of the Phish™ Report



Register for 2018 State of the Phish™

Sponsored by: Wombat Security

2018 State of the Phish™

Phishing continues to be one of the fastest growing and most malicious threats to security of industries of every kind—from financial organizations to government contractors to healthcare firms. Today’s savvy phisher manages to evade even the most sophisticated safeguards through carefully planned, socially-engineered email phishing attacks that are only getting more advanced.

In this webinar, we will review the key findings and insights from our 2018 State of the Phish™ Report:

 

· Aggregation and analysis of data from tens of millions of simulated phishing attacks sent through Wombat’s Security Education Platform over a 12-month period

· Analysis of more than 10,000 responses from quarterly surveys of infosec professionals from more than 16 industries, as well as data from an international survey of working adults who were queried about social engineering threats and their cybersecurity behaviors

· Insights into current vulnerabilities, industry-specific phishing metrics, and emerging threats


Vendor Webcast

How to effectively combat email fraud

Join us and learn how attackers use email fraud to attack their victims and about the framework that can prevent these attacks for impacting your business.



Register for How to effectively combat email fraud

Sponsored by: Proofpoint

How to effectively combat email fraud

 

While ransomware and other high profile, high volume attacks have made many headlines, email fraud has silently been attacking companies around the world. In 2017, over 80% of organizations experienced at least one email fraud attack. Email fraud attacks are low volume attacks that impersonate a person in authority to try and trick the victim into sending money or data out of the organization.

Join us and learn how attackers use email fraud to attack their victims and about the framework that can prevent these attacks for impacting your business.


20/20 webcast

Who Chaperons the Chaperone

What happens when the people who are designated to ensure compliance and privacy are maintained are the same ones who are responsible for the resulting vulnerabilities and potential breaches?



Register for Who Chaperons the Chaperone

Sponsored by: eSentire

Who Chaperons the Chaperone

Today’s risk and compliance regulations make it essential that companies build in policies and procedures to ensure that security and privacy is maintained throughout the supply chain. But what happens when the people who are designated to ensure compliance and privacy are maintained are the same ones who are responsible for the resulting vulnerabilities and potential breaches? This has become more common as the perimeter has given way to partner portals, shared data and multi-tenant cloud environments where the traditional moat and firewall no longer exist.


Vendor Webcast

PKI for the Future

Join speakers Tom Klein and Sami Van Vliet as they introduce the next generation in PKI and digital certificate management



Register for PKI for the Future

Sponsored by: CSS

PKI for the Future

What’s next for public key infrastructure (PKI)? Outdated and complicated PKI and digital certificate management processes are not only a security risk, but also introduce extreme inefficiencies and expenses.
With buzzes around blockchain and two factor authentication for secure identity, how does the age old PKI solution stack up when it comes to security, cost, scale and convenience?

Join speakers Tom Klein and Sami Van Vliet as they introduce the next generation in PKI and digital certificate management- a futureproof, all-inclusive digital certificate and PKI operations management solution designed to enable total control of your Enterprise PKI.

· Automation: Reduce outages, security gaps, cost and inefficiencies
· Scale: Enable rapid business growth and IoT readiness grounded by crypto agility
· Cost: Lower entry point plus no per certificate management fees


Vendor Webcast

Important First Steps for Complying with the GDPR

ServiceNow and Wrangu provide, through live demos, 5 important ways we can help you prepare for the GDPR while significantly reducing the time needed to manage compliance.



Register for Important First Steps for Complying with the GDPR

Sponsored by: ServiceNow

Important First Steps for Complying with the GDPR

Determining where to begin to comply with the GDPR can be daunting. ServiceNow and Wrangu demo 5 important ways we can help you prepare for the GDPR while significantly reducing the time needed to manage compliance.  We will wrap up with other ways ServiceNow can help ensure GDPR compliance now that you’ve begun your journey.


Vendor Webcast

Building an Identity-Aware Maturity Model for your Cloud Security

This ​webcast lays out what a CASB maturity model would look like and how this ties into the identity-enabled SOC.



Register for Building an Identity-Aware Maturity Model for your Cloud Security

Sponsored by: Oracle

Building an Identity-Aware Maturity Model for your Cloud Security

As organizations embrace the cloud for applications, platforms and infrastructure, security is of utmost importance, not only to avoid being a breach statistic, but also to ensure top line growth and maintain competitive advantage. A comprehensive identity enabled Security Operations Center (SOC) meets these needs better than an assembly of point solutions to address individual security needs. However, building such a SOC requires planning, execution and sustained commitment. A Cloud Access Security Broker (CASB) forms one of the most crucial building blocks to enable cloud visibility and control in the SOC. However, many organizations start their CASB journey for just obtaining visibility into SaaS applications and grapple with choices on where to go next. The true value that a CASB provides for the underlying security and intelligence of its cloud adoption journey is seldom realized.  This ​webcast lays out what a CASB maturity model would look like and how this ties into the identity-enabled SOC.


Vendor Webcast

Enterprise Digital Rights Management: Myth or Miracle?

In this one-hour webcast, you’ll learn how a new generation of solutions make EDRM significantly easier to deploy, manage, and adopt.



Register for Enterprise Digital Rights Management: Myth or Miracle?

Sponsored by: Seclore

Enterprise Digital Rights Management: Myth or Miracle?

Traditional methods for protecting information such as file encryption are simply not enough in today’s collaborative and highly regulated environment. What is needed is to persistently protect and audit the use of data, wherever it travels, without impacting productivity.
 
Optimized security starts with a data-centric security framework that uses Enterprise Digital Rights Management (EDRM) to control the use of data even while it is being used. So… whether a hacker breaks in, an employee leaves with sensitive information on a personal device, or a contractor decides to share information with unknown recipients, the data remains protected and under your control.
 
In this one-hour webcast, you’ll learn how a new generation of solutions make EDRM significantly easier to deploy, manage, and adopt.  You’ll discover:
 
•        How EDRM can seamlessly complement your other data-centric security solutions
•        Tips for layering EDRM into your other enterprise systems to automate protection
•        Use cases and customer stories for manufacturing, financial services, and legal entities
•        How to ensure EDRM is readily adopted by internal and external collaborators
 
Join us for this webinar by registering today!


20/20 webcast

Corralling the Shiny Object

This 20/20 looks at what you need to know in advance in order to do incident response effectively and efficiently.



Register for Corralling the Shiny Object

Sponsored by: Rapid7

Corralling the Shiny Object

Incident response is all about speed. How quickly can a potential breach be identified? How quickly can a compromised system be quarantined? How quickly can an investigation start? There are a lot of moving pieces in incident response, but knowing what to do when, who needs to do it, and having policies and procedures are just as important as finding the initial breach. Today’s 20/20 looks at what you need to know in advance in order to do incident response effectively and efficiently.


Vendor Webcast

IT Hell. Bullet-proof Strategies to Become an IT Hero

How to use compliance checking and network visibility to counter everyday malware threats



Register for IT Hell. Bullet-proof Strategies to Become an IT Hero

Sponsored by: Pulse Secure

IT Hell. Bullet-proof Strategies to Become an IT Hero

Your boss and users expect that workers have continuous access to the information and applications they need.  But what happens when the unexpected occurs? Natural calamities like hurricanes, snowstorms or earthquakes or man-made disasters such as ransomware and network outages can make your life hell. How will you and your network cope? Learn how to bulletproof user access to time-critical information and mission-critical applications with Secure Access strategies that blend security compliance, dynamic scaling and geographic redundancy for both the cloud and data center.  Specifically, this webinar will show you how to: 

  • Get ready for the unexpected with a proactive checklist
  • How to use compliance checking and network visibility to counter everyday malware threats
  • Scale user access dynamically during emergencies
  • Shift data center resources seamlessly during crisis
  • Learn by example with a real-world case study

Get ready, and be the hero when the unexpected strikes.


20/20 webcast

The Ransomware Pay-off

Ransomware continues to be a headline grabber but where do these attacks rate compared to other cyberattacks? We look at the history of ransomware, it’s not-so-obvious impacts, and how you can prepare for the next attack in today’s 20/20 webinar.



Register for The Ransomware Pay-off

Sponsored by: PhishMe

The Ransomware Pay-off

Ransomware continues to be a headline grabber but where do these attacks rate compared to other cyberattacks? We look at the history of ransomware, it’s not-so-obvious impacts, and how you can prepare for the next attack in today’s 20/20 webinar.


Vendor Webcast

It’s Time to Move Endpoint Security to the Cloud

Traditional endpoint security products are holding organizations back. It’s time to move your antivirus to the cloud.



Register for It’s Time to Move Endpoint Security to the Cloud

Sponsored by: Carbon Black

It’s Time to Move Endpoint Security to the Cloud

Traditional endpoint security products are holding organizations back. It’s time to move your antivirus to the cloud.

Please join our security experts at Carbon Black and Network Security Engineer, Christopher St. Amand at PeoplesBank for a live webinar as we discuss the benefits of cloud-based security platforms and how they apply to your specific needs.

  • Learn how cloud-based solutions make security easier and more effective.
  • Discover how cloud-solutions bring the advantages of big data analytics and real-time to endpoint security.
  • Get insight to the three types of cloud security platforms and how to choose the right one for your business.
  • Learn how to leverage a predictive cloud model to get ahead of emerging attacks, take action faster on security top priorities, and simplify your security stack.


Vendor Webcast

Extinguish Pesky Vulnerabilities for Good: Spectre, Meltdown and More

Identifying and remediating security vulnerabilities and incidents isn’t always easy. On average, over 80% of organizations are concerned with their ability to address known security vulnerabilities or incidents timely or accurately.



Register for Extinguish Pesky Vulnerabilities for Good: Spectre, Meltdown and More

Sponsored by: Tanium

Extinguish Pesky Vulnerabilities for Good: Spectre, Meltdown and More

Identifying and remediating security vulnerabilities and incidents isn’t always easy. On average, over 80% of organizations are concerned with their ability to address known security vulnerabilities or incidents timely or accurately. They struggle because they lack confidence in their endpoint data due to incomplete visibility and control. 64% of organizations believe that a successful attack on endpoints is likely to recur and succeed again. You think you remediated SMBv1 and EternalBlue. Several organizations have seen incidents pop up again, on top of needing to address the newest wave of vulnerabilities such as Spectre and Meltdown.

However, it’s possible to break out of the re-compromise cycle for good. As the endpoint security landscape evolves, how can you ensure you are able to fully extinguish pesky vulnerabilities?

 


Vendor Webcast

Securing Software that Runs the Digital World

Digitization is everywhere – changing every interaction and transaction, and our software-driven digital economy is poorly equipped to withstand cyber-attacks.



Register for Securing Software that Runs the Digital World

Sponsored by: Veracode

Securing Software that Runs the Digital World

Digitization is everywhere – changing every interaction and transaction, and our software-driven digital economy is poorly equipped to withstand cyber-attacks.  Are business leaders simply unable to keep up with the pace of the digital transformation, or are they unaware of the security implications of their digital initiatives? How are technology leaders prioritizing security within their overall initiatives and where does the training and empowerment of development teams come into play in securing software?


Vendor Webcast

Bye Bye Backhauling: better branch office protection

Register today to see how you can say bye bye to backhauling and hello to better branch security.



Register for Bye Bye Backhauling: better branch office protection

Sponsored by: Cisco

Bye Bye Backhauling: better branch office protection

Today, IT departments are under pressure to do more with less. With limited budgets and smaller teams, the race is on to deliver more effective security without any reduction in reliability or performance. The high cost of enterprise WAN connectivity and support, combined with the growth of cloud-based services and bandwidth-hungry streaming applications, is forcing many network admins and security professionals to search for alternative solutions.

With more branch offices connecting directly to the internet, how can you quickly and easily protect users on any device, anywhere they roam?

Find out how Cisco Umbrella is making it easier than ever to provide effective cloud security with centralized visibility and control.

Register today to see how you can say bye bye to backhauling and hello to better branch security.


Vendor Webcast

Counter the Careless Click, Tools to Help You Train Your Users

A practical session with tips and free tools you can implement now to help you create your “human firewall”.



Register for Counter the Careless Click, Tools to Help You Train Your Users

Sponsored by: KnowBe4

Counter the Careless Click, Tools to Help You Train Your Users

Cybercriminals are successfully and consistently exploiting human nature to accomplish their goals. Employee training is tied as the third-most-effective method (higher than antivirus) of decreasing the cost of a data breach.*

Many IT pros know users are the weakest link in network security but don’t exactly know where to start when it comes to creating a security awareness program that will work for their organization.

Join this 30-minute webinar “Counter the careless click, tools to help you train your users” where Erich Kron CISSP, Security Awareness Advocate of KnowBe4, will provide a practical session with tips and free tools you can implement now to help you create your “human firewall”.

Erich will cover:
• Current threat landscape
• Top 5 tips for security awareness
• How to easily create your security awareness program
• Outlining how and where tools are helpful

* Based on recent research by the Ponemon Institute


Vendor Webcast

Boosting Efficacy and Efficiency with SaaS Security

Learn how to SaaS security can improve your efficiency and overall security posture



Register for Boosting Efficacy and Efficiency with SaaS Security

Sponsored by: Cisco

Boosting Efficacy and Efficiency with SaaS Security

Security teams face significant challenges including budget constraints and a lack of trained personnel. Meanwhile numerous point products and noisy security solutions cause security teams to waste time managing their technology and chasing false alarms.

To address these challenges, you need to find a way to make your security team more efficient, your strategy more cost-effective, and your technology more actionable.

Software-as-a-Service (SaaS) security can help you achieve these goals. In this session, you will learn how SaaS and Cisco Stealthwatch Cloud can:
• Simplify technology deployment and maintenance
• Provide flexible pricing options
• Make your security team more efficient
• Lower security “noise” and false alerts

Join Bryan Doerr, a Cisco Product Manager with years of experience in cloud-based security, to learn how to SaaS security can improve your efficiency and overall security posture.

 


Vendor Webcast

SOC-as-a-Service, MDR, MSSP or SIEM. What’s right for Small to Mid-Size Enterprises?

In this webinar, gain key insights into the differences between cybersecurity solutions SOC-as-a-Service, MDR, MSSP, and SIEM



Register for SOC-as-a-Service, MDR, MSSP or SIEM. What’s right for Small to Mid-Size Enterprises?

Sponsored by: Arctic Wolf Networks

SOC-as-a-Service, MDR, MSSP or SIEM. What’s right for Small to Mid-Size Enterprises?

With small to mid-size enterprises (SMEs) being increasingly targeted by cyber security attacks, the demand for a solution that provides comprehensive visibility into cyber security threats has gone up. Amid these concerns, SMEs are also dealing with a shortage of cyber security skills in IT-staffs and the lack of budgets to detect and respond to advanced threats. So, what solutions are currently on the market and what are their pros and cons when it comes to managed detection and response? 

In this webinar, gain key insights into the differences between cybersecurity solutions SOC-as-a-Service, MDR, MSSP, and SIEM, and discover which solution is the best fit for your organization.
 
After watching, you will learn why:

• Cloud-based security-as-a-service is gaining momentum with SMEs
• SIEM is a great technology for those who can manage it on their own
• MSSP is great for outsourced security management, but not an answer for better cybersecurity
• SOC-as-a-Service are the turnkey service that SMEs are looking for

To determine what’s the best fit for your organization’s security, register now.


Vendor Webcast

Is your security stack ready for 2018?

Is your security stack ready for 2018?



Register for Is your security stack ready for 2018?

Sponsored by: Cisco

Is your security stack ready for 2018?

2017 brought forth an increase in breaches, attacks, and ransomware instances. Trends around mobility, the growing number of IoT devices, SaaS app usage and the amount of sensitive data stored in the cloud will continue to increase.

While increased mobility and flexibility in the workplace has led to reduced costs and booming productivity and independence, it comes at a price. Attackers are getting bolder and employees are no longer safely protected behind their firewall or secure web gateway.

Is your security stack ready for 2018?

Join us on December 7, 2017, 11am PT / 2pm ET to discuss the shift towards secure internet gateway and why a new approach to security is needed. Kevin Rollinson will explain why existing network security solutions need to adapt. We’ll look at the shifts in the market and the safe bets for protecting your data, users and apps in 2018.


Vendor Webcast

Building a Stronger Castle from the Inside Out

Identifying and Securing Business Critical and Regulated Information That Leaves Your Castle



Register for Building a Stronger Castle from the Inside Out

Sponsored by: Seclore

Building a Stronger Castle from the Inside Out

Identifying and Securing Business Critical and Regulated Information That Leaves Your Castle

You’ve heard it over and over again how securing the network, applications and devices is just not enough. Focusing only on stopping break-ins to your network leaves your data vulnerable when an intruder finds a back door way in. But what happens when your data leaves the front gate to conduct business with contractors, suppliers, partners, etc.? 

In this one hour webcast, you’ll learn how to build a strong Data-Centric Security strategy by classifying sensitive information and automatically applying security controls to the data whether it stays inside or outside your castle. Join Seclore and Boldon James to learn how to: 

  • Apply visual and metadata classification labels to clearly identify sensitive data
  • Automatically add persistent protection to sensitive data based on policy rules
  • Control access and usage to sensitive data wherever it travels
  • Stay compliant with real time audits of file access and usage

Who should attend? Anyone who manages or is concerned with data security, privacy, compliance or risk management.


Vendor Webcast

Mobile Application Security and Analytics

Learn best practices for enterprise mobile application security



Register for Mobile Application Security and Analytics

Sponsored by: Arxan

Mobile Application Security and Analytics

Securing high value, consumer facing mobile applications is quickly becoming a top priority for financial services, connected healthcare, and gaming companies, among many others. Large enterprises are finding out the hard way that unprotected mobile apps expose numerous vulnerabilities that can lead to lost revenue, brand damage, IP theft and potential loss of life.

Join Arxan Solution Architect Paul Dant and SC Media to learn best practices for enterprise mobile application security along with the risks most companies assume by not using mobile app security. We’ll cover:

Anatomy of a hack for high-value mobile apps
Key differences between application hardening and application wrapping
Definition of binary code protection and self-defending apps
The importance of usage and threat analytics insights
2018 predictions and trends for mobile app protection


Vendor Webcast

The Internet of Things: Changing the Future of PKI

We’ll explore how to secure your PKI, how to choose a deployment model, and why the IoT is the next game-changer for the future of PKI.



Register for The Internet of Things: Changing the Future of PKI

Sponsored by: Thales e-Security

The Internet of Things: Changing the Future of PKI

We’ve teamed up with Certified Security Solutions (CSS) to share the latest and greatest regarding public key infrastructure (PKI) and the Internet of Things (IoT). We’ll explore how to secure your PKI, how to choose a deployment model, and why the IoT is the next game-changer for the future of PKI.

Join the webcast to learn about:

• Trends in PKI usage
• Challenges your enterprise may face as you support more PKI-enabled applications
• Adaptations of traditional PKI to the IoT
• How IoT solutions such as Thales nShield HSMs and the CSS VerdeTTO Internet of Things Identity Platform address trust and authentication for IoT devices and data

Enterprises just like yours are investing in strengthening the security posture of their PKI. Sign up for this webcast to learn how your enterprise can do the same.


Vendor Webcast

Before you spend another penny on cyber-security – have you got your foundations right?

If you don't establish a solid base to build your cyber-security from, your efforts may not yield the positive results you anticipated.



Register for Before you spend another penny on cyber-security – have you got your foundations right?

Sponsored by: Tripwire

Before you spend another penny on cyber-security – have you got your foundations right?

You wouldn’t build your house on sand, but if your expensive new IT tools are installed on shaky security foundations your organisation could be swept away in the next wave of cyber-attacks. 

Prioritise common weaknesses, ensure reliable file integrity; enable efficient change monitoring and system hardening; engage in effective vulnerability management – and don’t neglect log management. 

This webinar will show you how. And with a solid foundation in place, you can then go out and spend on the latest AI toys, safe in the knowledge you aren’t doing so without having already covered the essentials.


Vendor Webcast

Phishing and Social Engineering in 2018: Is the Worst Yet to Come?

What you can do to make your organization a harder target for cybercrime



Register for Phishing and Social Engineering in 2018: Is the Worst Yet to Come?

Sponsored by: KnowBe4

Phishing and Social Engineering in 2018: Is the Worst Yet to Come?

Ransomware has tipped the 1 billion mark and damages are expected to be around 5 billion before the year is out. Use of ransomware has evolved throughout the year with a 600% rise in URL emails delivering malware in just Q3 2017. CEO fraud (aka BEC) has cost another 5 billion according to the FBI as of May 2017. What’s next and how can you protect your organization?

Join Security Awareness Advocate at KnowBe4, Erich Kron, for this 60-minute webinar “Phishing and Social Engineering in 2018: Is the Worst Yet to Come?”.  Erich will discuss some of the latest trends in cybercrime and give you an insider’s perspective on what to expect for 2018 and how to prepare for it.

Key topics covered in this webinar:

  • Understanding the current threat landscape
  • What scary new threats will be on the rise for 2018
  • Next innovations of ransomware, phishing and social engineering
  • What you can do to make your organization a harder target for cybercrime
  • How to create your “human firewall”


Vendor Webcast

Enhancing Threat Detection with Big Data and AI

Why cyber security analysis and threat detection are a challenge in the big data era



Register for Enhancing Threat Detection with Big Data and AI

Sponsored by: DataBricks

Enhancing Threat Detection with Big Data and AI

Enterprises today face a daily barrage of cyberattacks. Responding quickly to threats is crucial to avoiding a serious breach. To do this successfully, security teams need to monitor and analyze billions of data signals each day. 

Yet, existing security tools are struggling to keep up. Threats are going unnoticed and remediation timelines are being pushed out. Overcoming these challenges requires a new approach to threat detection rooted in data science.

Join this webinar to learn:

  • Why cyber security analysis and threat detection are a challenge in the big data era
  • How real-time, big data analytics and AI enhance threat detection and uncover anomalous behavior patterns
  • A live demo showcasing how Data Scientists can use the Databricks platform to improve an organization’s security posture with highly scalable, real-time analytics and AI while reducing ingress and retention costs


Vendor Webcast

The Path from DevOps to DevSecOps: It’s not as direct as it seems

Technology solutions needed for security to seamlessly integrate into DevOps – technologies that application development, operation, and security specialists don’t have to learn, see, or run.



Register for The Path from DevOps to DevSecOps: It’s not as direct as it seems

Sponsored by: Veracode

The Path from DevOps to DevSecOps: It’s not as direct as it seems

DevOps has not yet fully transitioned to DevSecOps – leaving the DevOps inherently insecure. What is preventing security from integrating into DevOps? This discussion will offer an answer. Specifically, it will define capabilities that application security should adopt, explain how existing technologies should change, forecast emerging technologies, and estimate the pace of application security transformation within this era of DevOps. 

Join Joseph Feiman, Chief Innovation Officer at Veracode, will discuss the technology solutions needed for security to seamlessly integrate into DevOps – technologies that application development, operation, and security specialists don’t have to learn, see, or run. He’ll share insights into these technologies, forecast the pace of their adoption, and evaluate benefits of adopting one technology versus another.  Attendees of this session will learn what will come to the market within the next few years, how to plan adoption, and what will or will not work when application security eventually transforms to enable DevSecOps.
This webinar is for CISOs and CIOs, security managers and security specialists, as well as development and operations managers and specialists.

 


Vendor Webcast

Addressing GDPR Compliance: Implementing a security framework

How to leverage Oracle experience and technologies to implement a security framework that can help address GDPR.



Register for Addressing GDPR Compliance: Implementing a security framework

Sponsored by: Oracle

Addressing GDPR Compliance: Implementing a security framework

Addressing GDPR compliance requires a coordinated strategy that involves different organizational divisions such as legal, human resources, marketing, security, IT and others.  The regulation requires these and various other entities like customers, employees as well as communications and technology, to protect personal data.  However, with all these components and a due date that is just around the corner, how can organizations create and implement a coordinated strategy that addresses GDPR security compliance?  Join us to hear expert advice and insight from members of the Oracle leadership team on how to leverage Oracle experience and technologies to implement a security framework that can help address GDPR.


Vendor Webcast

What’s Your Attack Model: Choosing the right endpoint solution for your enterprise security program

Join the Endgame team to learn how your organization must focus on the broadest coverage and scope



Register for What’s Your Attack Model: Choosing the right endpoint solution for your enterprise security program

Sponsored by: Endgame

What’s Your Attack Model: Choosing the right endpoint solution for your enterprise security program

 

Targeted cyber attacks have a profound effect on enterprises. To combat these attacks, security teams add protections reactively to stop new attacker techniques. Most endpoint security solutions focus on a single attack vector, such as malware execution, which isn’t enough. Organizations need defenses – against the full scope of techniques used by adversaries – to rapidly detect and remediate before damage and loss. This includes prioritizing the people, process, and technology to identify and eliminate gaps in enterprise security program.

Join Martin’s Point Health Care CISO, Matthew Witten and IT Security Architect, Brandon Bergman, along with Endgame Sr. Threat Researcher, Paul Ewing, to discuss how security leaders should chose a model with the broadest scope to stop targeted attacks. In this webinar, they will discuss: 

  • The highest resolution attack model – MITRE ATT&CK Matrix 
  • Criteria to evaluate endpoint security products
  • How Endgame’s endpoint protection platform stops targeted attacks

 


Vendor Webcast

Fact or Fiction: The state of GDPR compliance explained

Join guest speaker Enza Iannopollo, analyst from Forrester, to hear about the latest findings of their research and benchmark yourself against your peers.



Register for Fact or Fiction: The state of GDPR compliance explained

Sponsored by: RSA

Fact or Fiction: The state of GDPR compliance explained

The General Data Protection Regulation (GDPR) is approaching fast and organizations worldwide have a short time left to get ready to meet new compliance requirements. For many organizations, GDPR is a challenging undertaking that requires new processes, technology, skills, and oversight mechanisms. For all organizations, GDPR demands they find new ways to design privacy into what they do, encouraging collaboration across teams, and promoting a corporate culture that places the protection of EU citizen and resident data at its core.

A new study conducted by Forrester Consulting and commissioned by RSA unveils the state of GDPR compliance around the world. From breach notification to the right to be forgotten, to record keeping duties, the study — completed in October 2017 — provides an in-depth view of the level of maturity of organizations’ compliance strategies across GDPR requirements just a few months before enforcement begins. Join guest speaker Enza Iannopollo, analyst from Forrester, to hear about the latest findings of their research and benchmark yourself against your peers.


Vendor Webcast

Attackers enter here → endpoint devices

It’s time to prevent, detect and respond to attacks targeting endpoints, both on and off your network before damage occurs.



Register for Attackers enter here → endpoint devices

Sponsored by: Cisco

Attackers enter here → endpoint devices

70% of breaches start on endpoint devices.  Unfortunately, gaps in protection exist when users and endpoints are off-network, often leaving AV as the only form of protection.  
 
And reacting to malicious communications and code after attacks launch is simply too late.
 
It’s time to prevent, detect and respond to attacks targeting endpoints, both on and off your network before damage occurs.
 
Join Cisco security product experts, Meghan Diaz and Joe Malenfant to learn how you can not only stop attacks before they occur, but contain and remediate threats that evade front-line defenses, anywhere your users travel.
 
Register today and reduce your risk of breaches on the endpoint.


Vendor Webcast

4 Ways to Operationalize NIST CSF to Improve Your Security Posture

Join Vivek Shivananda, CEO and Co-Founder of Rsam, as he best practices for operationalizing NIST CSF.



Register for 4 Ways to Operationalize NIST CSF to Improve Your Security Posture

Sponsored by: Rsam

4 Ways to Operationalize NIST CSF to Improve Your Security Posture

Organizations everywhere struggle to stay on top of the expanding scope of risk. The NIST Cybersecurity Framework is becoming widely adopted as a means to reel in the many moving parts. But the fundamental question most security leaders struggle to answer is: How are we doing against NIST Cybersecurity?

Join Vivek Shivananda, CEO and Co-Founder of Rsam, as he best practices for operationalizing NIST CSF. He’ll identify common challenges and give prescriptive suggestions on a phased approach for successful implementation.


Vendor Webcast

The Business Risk Management Dirty Half Dozen: 6 Things You Need to Succeed

Join us for this live webcast where we will highlight six major concepts you need to consider when building out your risk management strategy.



Register for The Business Risk Management Dirty Half Dozen: 6 Things You Need to Succeed

Sponsored by: RSA

The Business Risk Management Dirty Half Dozen: 6 Things You Need to Succeed

In today’s hyper expansive and unpredictable market, it isn’t sufficient to be ‘just good enough’ when it comes to managing risk.  Every day, in organizations around the globe, risk, compliance, security and GRC champions are being asked questions they can’t answer. The pressure to provide your business with key insights into risk is building and, without a well thought out approach, you can unfortunately end up making insignificant progress and providing little value to the organization.  

Join us for this live webcast where we will highlight six major concepts you need to consider when building out your risk management strategy. This session will cover: 

• The journey many companies take when building their programs
• Key factors when evaluating technology strategies to support your risk management program
• Critical dimensions to measure your progress and obstacles to avoid


Vendor Webcast

Top 5 Strategies to Prevent Ransomware

Erich Kron, Security Awareness Advocate at KnowBe4 will look at scary features of new ransomware strains and give you 5 strategies you can implement now to help you prevent ransomware.



Register for Top 5 Strategies to Prevent Ransomware

Sponsored by: KnowBe4

Top 5 Strategies to Prevent Ransomware

It’s been a “Ransomware Horror Show”. If you’ve been in the IT trenches over the past year, you’ve probably noticed that announcements of new ransomware strains are accelerating and there is no end in sight.

Join us for this webinar “Top 5 Strategies to Prevent Ransomware”, on Friday, October 27th at 2:00 pm EDT. Erich Kron, Security Awareness Advocate at KnowBe4 will look at scary features of new ransomware strains and give you 5 strategies you can implement now to help you prevent ransomware.

Erich will cover:

  • The new scary Ransomware trends out in the wild
  • How to eliminate or reduce damage from ransomware
  • How to fortify your last line of defense—your end users


Vendor Webcast

2017 State of Cybercrime Report Webcast: Exposing the threats, techniques and markets that fuel the economy of cybercriminals

Recommended strategies for organizations to pursue to prevent, detect, respond to and predict the latest cybercriminal activity threats.



Register for 2017 State of Cybercrime Report Webcast: Exposing the threats, techniques and markets that fuel the economy of cybercriminals

Sponsored by: SecureWorks

2017 State of Cybercrime Report Webcast: Exposing the threats, techniques and markets that fuel the economy of cybercriminals

One way cybercriminals obtain the resources and connections they need to engage in their activities is through the Internet underground or “dark web.” Definitions of the Internet underground may vary, but to Secureworks, it means the collection of Internet forums, digital shop fronts and chat rooms that cybercriminals use to form alliances, trade tools and techniques, and sell compromised data that can include banking details, personally identifiable information and other content.
 
In our “2017 State of Cybercrime” report, we shared several key findings and intelligence which stems from the visibility gained from criminal forum monitoring, our thousands of clients, the machine learning and automation from our industry-leading Counter Threat Platform™, and the actionable insights from our team of elite Counter Threat Unit™ (CTU) researchers, analysts and consultants.
 
Secureworks Senior Security Researcher, Keith Jarvis, will analyze the key findings from our research and will cover recommended strategies for organizations to pursue to prevent, detect, respond to and predict the latest cybercriminal activity threats.
 
During this live webcast we will cover:
 

  • Key findings from our visibility into criminal forums and technical monitoring of global criminal activity
  • Cybercrime categories and the significant risk to individuals ad organizations
  • The complexity of the criminal landscape and diverse capabilities of threat actors
  • The continuation of online crime as a market economy


Vendor Webcast

Blazing the trail: Changes facing the cybersecurity industry

A roundtable discussion hosted by women leading in cybersecurity.



Register for Blazing the trail: Changes facing the cybersecurity industry

Sponsored by: Cisco Umbrella

Blazing the trail: Changes facing the cybersecurity industry

Join women leading in cybersecurity, Julie Tsai, Sr. Director, Security Operations at Box and Michelle Dennedy, Chief Privacy Officer at Cisco, on Thursday, October 19th for a lively roundtable discussion on security and data privacy. They will offer us their perspective on their success, lessons learned in their careers and how women are making their mark on the security industry, in addition to debating key changes and trends facing the cybersecurity industry and how we approach data privacy.
 
Register now to join the discussion.


Vendor Webcast

Managing the Challenges of GDPR: Osterman Research Survey Results

Join us to explore how the GDPR will impact your business and how you can comply with the key provisions of this landmark requirement before the May 25, 2018 deadline.



Register for Managing the Challenges of GDPR: Osterman Research Survey Results

Sponsored by: RSA

Managing the Challenges of GDPR: Osterman Research Survey Results

The GDPR has important implications for every business, even for those that have no operations in Europe. However, Osterman Research has found that even with implementation of the GDPR just seven months away [at the time of the webinar], many businesses are not well prepared to meet the compliance obligations of this critical requirement. A failure to meet the obligations of the GDPR can have devastating financial consequences for an organization, yet compliance with it will have positive spillover effects on an organization’s information governance, archiving, security and other capabilities. Join us to explore how the GDPR will impact your business and how you can comply with the key provisions of this landmark requirement before the May 25, 2018 deadline.


Vendor Webcast

Security SIEMplified: Discover the ROI of a Managed SOC

What does it take to build and manage your own SIEM in-house?



Register for Security SIEMplified: Discover the ROI of a Managed SOC

Sponsored by: Arctic Wolf Networks

Security SIEMplified: Discover the ROI of a Managed SOC

Most security information and event management (SIEM) customers are struggling to achieve meaningful success a year or more after initial deployment. This is especially true with mid-market companies, where shrinking IT security budgets and shortage of skilled cyber security resources have forced them to reconsider investing in a SIEM, and seriously look at managed security services options.
 
Before CIOs/CISOs take a leap faith into any kind of managed security service, they want to be able to measure ROI with an outsourced managed solution, as opposed to managing their own SIEM. In this webinar, you will learn about.

  • What does it take to build and manage your own SIEM in-house?
  • What security SIEM blind spots can you avoid with a managed security service?
  • How do you determine ROI of a managed service as compared to a SIEM?


Vendor Webcast

Tackling Identity Risks in Today’s Modern IT Landscape

Overcome the challenges associated with managing access and identity risk



Register for Tackling Identity Risks in Today’s Modern IT Landscape

Sponsored by: RSA

Tackling Identity Risks in Today’s Modern IT Landscape

In today’s digital world, boundaries are blurring. Driven by “need it now” business demands, cloud applications are surfacing in business environments everywhere, often with little or no IT involvement. We’re opening up access to a growing and dynamic user population that includes not only employees but partners, customers, channels and contractors. And, while the always-on mobile and BYOD landscape offers much-needed convenience for users, it further blurs personal and corporate access boundaries. Ultimately, we need to find a way to embrace today’s boundaryless business world, while maintaining security confidence, ensuring that we meet increasing compliance demands, and doing so in a way that’s seamless and easy for our users.

Is this mission impossible? One might think so, especially as the business and IT landscapes continue to evolve, hosting a proliferation of access points, applications and islands of identity. IT has less and less centralized control and visibility and the bad guys have more opportunities to gain unauthorized access through those access blind spots of ours. Only by effectively getting a grasp on our identity risks can we gain a sense of identity and access assurance. But, what are those risks and how do we get ahead of them to mitigate the risks of any breaches, audit failures and business slowdowns? 

Join our upcoming webinar with Tim Norris, Product Marketing at RSA, where you will learn how to: 

  • Overcome the challenges associated with managing access and identity risk 
  • Effectively identify and quantify identity risks at your organization
  • Implement a strategy to address the critical risk factors
  • Enhance your visibility into adjacent risk factors

 

 


Vendor Webcast

Will 2018 be The Year of the Threat Actor?

Join subject matter experts from DomainTools in a lively discussion of what's next for information security.



Register for Will 2018 be The Year of the Threat Actor?

Sponsored by: DomainTools

Will 2018 be The Year of the Threat Actor?

2017 isn’t over and we have already seen a massive increase in the number and types of infosecurity threats from ransomware to phishing to data breaches.  So what will 2018 bring and what can be done to prevent the next wave of cyber attacks?
Join subject matter experts from DomainTools in a lively discussion of what’s next for information security. CTO Bruce Roberts, VP of R&D Michael Klatt, Senior Security Researcher Kyle Wilhoit, and Director of Product Management Tim Helming will conduct a round-table discussion on their infosecurity predictions . Highlights will include:
  • We’re All Living In Denial (of Service)
  • Armies of Things
  • We’re From The Government And We’re Here To Help…Except When We’re Not


Vendor Webcast

Simplify PKI Certificate Management or Best Practice Certificate Management

Join us to discover how best practice certificate management can help you simplify and streamline your PKI implementation



Register for Simplify PKI Certificate Management or Best Practice Certificate Management

Sponsored by: Entrust

Simplify PKI Certificate Management or Best Practice Certificate Management

You’re facing critical challenges in your digital business deployment. You must protect the enterprise by safeguarding your devices, networks and data. But you also need to move quickly and fearlessly in order to compete.

PKI is the critical underpinning to help organizations succeed as they roll out new digital business models.  But, as Gartner noted in its recent report, “PKI is Gearing Up for the Internet of Things” (August, 2016), certificate management is the issue for which clients seek the most guidance, and it is becoming increasingly important.

This webinar discusses :

·         Elements that make up good certificate management

·         Defining assurance levels

·         Manual vs automated certificate management

·         Certificate discovery & migration

Join us to discover how best practice certificate management can help you simplify and streamline your PKI implementation and build a better approach to manage trust and accelerate your digital business.


Vendor Webcast

Align your Application Security Strategy with Evolving PCI Security Standards for Payment Applications

Join this webinar to learn how major financial institutions are driving the latest in PCI standards



Register for Align your Application Security Strategy with Evolving PCI Security Standards for Payment Applications

Sponsored by: Veracode

Align your Application Security Strategy with Evolving PCI Security Standards for Payment Applications

As financial and retail organizations continue to build and scale payment applications, they need to consistently stay ahead of standards for secure software development. Join this webinar to learn how major financial institutions are driving the latest in PCI standards in order to establish a set of guidelines for developers and security professionals who deliver payment applications. This webinar will feature CA Veracode’s Chief Innovation Officer, Joseph Feiman who will share insights into these trends and discuss how to:

 

  • Establish processes related to securing applications within Cloud and DevOps paradigms
  • Evaluate application threats and outline decision frameworks and technology solutions to defend against attacks by outsiders and insiders
  • Work with security technology and payment application vendors to leverage and test systems and components that reside outside formal payment systems

 

 


Vendor Webcast

Machine Learning and A.I. in Cybersecurity: Separating Myth from Reality

How security teams can effectively deploy security analytics to enhance the efficient detection and prevention of advanced cyber threats.



Register for Machine Learning and A.I. in Cybersecurity: Separating Myth from Reality

Sponsored by: Interset

Machine Learning and A.I. in Cybersecurity: Separating Myth from Reality

Big-data security analytics, machine learning, artificial intelligence, and other technologies have emerged as new and powerful components in the information-security arsenal. When applied properly, machine learning and A.I. can certainly be essential components of an effective security strategy.
 
But you need to see through the hype. What do the terms “machine learning” and “A.I.” really mean? What do words like “unsupervised machine learning” really mean? And how do these techniques really apply to cybersecurity?
 
Join guest speaker Dr. Chase Cunningham, Principal Analyst at Forrester Research, and Stephan Jou, Interset’s CTO, as they define and explore the strengths (and limitations!) of machine learning and A.I. They’ll also discuss how security teams can effectively deploy security analytics to enhance the efficient detection and prevention of advanced cyber threats.
 
Register for this webinar to learn:
• What machine learning and A.I. are, what the various buzzwords you’ve heard really mean, and the strengths and limitations of each
• Which analytical techniques apply to which security use cases
• Best practices to help you understand and evaluate security-analytics solutions
• Actual real-life examples of successful deployments of machine learning and user behavioral analytics


Vendor Webcast

Security Automation and Orchestration Best Practices

Automation and orchestration do not need to be end-to-end to help your team be more effective.



Register for Security Automation and Orchestration Best Practices

Sponsored by: ServiceNow

Security Automation and Orchestration Best Practices

The volume and complexity of security threats combined with the difficulty of hiring and retaining security talent is pushing security organizations to look towards automation and orchestration for improved effectiveness.  Security teams have been skeptical of automation and orchestration as most think of it as being “end-to-end” and experienced security professionals know the work is harder than that.
 
Automation and orchestration do not need to be end-to-end to help your team be more effective.  There are portions of the security incident and vulnerability response process that can be easily automated in a risk-free manner, eliminating boring, mundane, manual work and allowing analysts to spend their time solving real problems.
 
Join guest speaker Joseph Blankenship, Forrester Senior Analyst and Piero DePaoli, Senior Director from ServiceNow’s Security Operations team as they discuss and demonstrate the following:

  • Creating a security automation and orchestration strategy
  • Ensuring automation and orchestration is part of a broader enterprise security response program
  • Sample use cases to get started


Vendor Webcast

A High Wire DDoS Act

Join this session for a discussion of the expectations around response strategies and approaches in the face of evolving threats.



Register for A High Wire DDoS Act

Sponsored by: Arbor Networks

A High Wire DDoS Act

The DDoS risk curve in 2017 looks very different than only five years ago. The Stakes Have Changed around the that threat capability continuum as attacks in size, frequency and complexity have evolved. Join this session for a discussion of the expectations around response strategies and approaches in the face of evolving threats.


Vendor Webcast

Best Practices and Future Direction of Security Awareness Training

Emerging industry trends and provides the actionable information you need to train your last line of defense, your employees.



Register for Best Practices and Future Direction of Security Awareness Training

Sponsored by: KnowBe4

Best Practices and Future Direction of Security Awareness Training

While reported numbers fluctuate from industry study to industry study, they all agree on one thing: cybercriminals are successfully and consistently exploiting human nature to accomplish their goals. Prudent security leaders know that security awareness and training is key to strengthening their ‘human firewall’ – but they often don’t know where to start.

In this webinar “Best Practices and Future Direction of Security Awareness Training”, Erich Kron CISSP, Security Awareness Advocate for KnowBe4, discusses emerging industry trends and provides the actionable information you need to train your last line of defense, your employees.

Erich will cover these topics:

  • Practical security awareness and behavior management tips
  • Outlining how and where tools are helpful
  • Emerging industry trends
  • How to create a “human firewall”


Vendor Webcast

Improve your Cyber Defenses through Penetration Testing: What you need to know to keep your enterprise secure

In this webcast, join cyber expert and penetration tester, Lee Nichol, for a penetration testing deep dive.



Register for Improve your Cyber Defenses through Penetration Testing: What you need to know to keep your enterprise secure

Sponsored by: Leidos

Improve your Cyber Defenses through Penetration Testing: What you need to know to keep your enterprise secure

In this webcast, join cyber expert and penetration tester, Lee Nichol, for a penetration testing deep dive. He will discuss the importance of leveraging penetration testing as part of your overall security strategy and the benefits of different types of penetration tests. Lee will review important considerations when evaluating your penetration testing needs in order to get the most out of your investments.  Attendees will learn: 

  • How to incorporate penetration testing into your overall security program based on external factors and internal requirements
  • Understanding Quality – Burgeoning standards and certifications for testing teams
  • Where penetration testing can fail to meet expectations
  • Purple team: The medium-term future of White Box high-value offensive testing
  • Designing a scope to fit your needs – how to get the most value for your organization to detect threats and prevent future incidents


Vendor Webcast

Securing Single Page Applications

Join this webcast to learn how to security test each of the following application layers of a SPA



Register for Securing Single Page Applications

Sponsored by: Rapid7

Securing Single Page Applications

In recent years, there have been a number of fundamental changes in web standards such as those in HTML5 and HTTP that have created powerful new concepts that have opened doors to new possibilities for web development. Single Page Application (SPA) frameworks have taken advantage of all these new technologies – all at once – to enable developers to build feature rich applications, but in doing so they have created tremendous challenges for application security experts.

Join this webcast to learn how to security test each of the following application layers of a SPA:

• Interface layer: Become familiar with SPA frameworks (AngularJS, ReactJS)
• Backend layer: Dig into different REST API’s and learn how they are used and where to find the weaknesses
• Network layer: Learn more about WebSockets and how they fundamentally change TCP/HTTP
• Interconnectivity layer: Get to know how SPA’s are often internconnected with 3rd party API’s or presentation elements


Vendor Webcast

User Authentication Trends 2017 Blurred Boundaries & New Methods

Get up-to-date on the 2017 user authentication trends and learn to address some of the most popular authentication questions



Register for User Authentication Trends 2017 Blurred Boundaries & New Methods

Sponsored by: RSA

User Authentication Trends 2017 Blurred Boundaries & New Methods

A vanishing perimeter and the continuing explosion of cloud-based applications and mobile devices are blurring old boundaries – creating more islands of identity and forcing organizations to reimagine its identity and access strategies.  

As cybersecurity incidents rise to record levels, consumers and businesses scramble to keep their most sensitive information private. 

Get up-to-date on the 2017 user authentication trends and learn to address some of the most popular authentication questions including: 
• What’s next for multi-factor authentication (MFA)?
• Can single sign-on (SSO) provide a balance of convenience and security?
• Will biometrics (finally) live up to the hype?
• How will risk change the authentication game?


Vendor Webcast

What’s on your Network? 4 Steps to Delivering a Practical, Resilient and Scalable Endpoint Security Strategy

In this webcast, enterprise security and network infrastructure leaders will learn about next-generation security innovations that deliver endpoint discovery, visibility and control.



Register for What’s on your Network? 4 Steps to Delivering a Practical, Resilient and Scalable Endpoint Security Strategy

Sponsored by: Great Bay

What’s on your Network? 4 Steps to Delivering a Practical, Resilient and Scalable Endpoint Security Strategy

With mounting cybersecurity threats, aging network security infrastructure, and an explosive growth in unmanaged endpoints and “IoT” (Internet of Things) devices, enterprise IT leaders are facing unprecedented security risk — and regulated industries, such as finance and healthcare, face an even steeper challenge.  Recent research indicates that up to 90 percent of devices on an enterprise network today are unknown or unmanaged, and a massive security breach is only a matter of time.  Is your company at risk?
 
In this webcast, enterprise security and network infrastructure leaders will learn about next-generation security innovations that deliver endpoint discovery, visibility and control – and how these capabilities are fundamental to a secure, scalable and resilient network.  Those who attend will come away with proven and practical knowledge on how to:

  • Remove network “blind spots” in minutes – and streamline compliance as a result
  • Mitigate future risk with device behavior monitoring – and reduce expensive, time-intensive manual processes
  • Enhance current security infrastructure, such as SIEM and CMDB – for improved protection and a higher ROI
  • Embrace internal IoT initiatives with confidence – take back network control, no matter where IoT innovations are initiated


Vendor Webcast

Are you ready for GDPR? 5 Tips to Accelerate Your GDPR Strategy

Join us for this interactive webcast where we will discuss tips for accelerating your GDPR readiness.



Register for Are you ready for GDPR? 5 Tips to Accelerate Your GDPR Strategy

Sponsored by: RSA

Are you ready for GDPR? 5 Tips to Accelerate Your GDPR Strategy

The General Data Protection Regulation (GDPR), taking effect in May of 2018, will be a game-changing regulation that will reset the best practice models for data privacy and protection globally. As a regulation, as opposed to a directive, it will directly impose a uniform data security law on all EU members and will also apply to non-EU companies if they process personal data of EU individuals. The GDPR will increase privacy for individuals and give regulatory authorities greater powers to take action against businesses that breach the new law.

 Preparing for GDPR is no small task – the regulation requires organizations to know exactly what, when, and where they are collecting information from covered persons, processing the information, storing the information (and how long), and sending information to others, including across borders. This, in addition to the fact that organizations could be liable for fines of up to 4% of annual global revenue (or €20 million whichever is greater), has propelled data protection directly into the boardroom.

 What does this mean for your organization? Join us for this interactive webcast where we will discuss tips for accelerating your GDPR readiness, including:

  • Understanding GDPR and why it presents the most significant change to data protection in the EU since 1995
  • Four key areas you need to focus on as you prepare for GDPR
  • A maturity based approach to building a sustainable GDPR strategy

 


Vendor Webcast

Results from 2017 Thycotic Black Hat Survey Report: Top takeaways from the attendees

Join Thycotic’s Chief Security Scientist as we cover the top takeaways from this years’ Black Hat conference and our just released Black Hat 2017 Attendee Survey Report.



Register for Results from 2017 Thycotic Black Hat Survey Report: Top takeaways from the attendees

Sponsored by: Thycotic

Results from 2017 Thycotic Black Hat Survey Report: Top takeaways from the attendees

Every year thousands of IT security professionals head to Black Hat in Las Vegas to attend the biggest event of the year in cybersecurity to stay ahead of the ever-changing security landscape.  The recent global cyber threats from the highly publicized WannaCry and NotPetya ransomware attacks have only increased the importance of these gatherings.

Join Thycotic’s Chief Security Scientist as we cover the top takeaways from this years’ Black Hat conference and our just released Black Hat 2017 Attendee Survey Report.  Get the expert opinions on:

  • What types of cybersecurity defences are easiest to hack
  • The worst (least effective) security controls for protecting endpoints
  • The biggest sources of cybersecurity fatigue among users
  • Who/what is most responsible for unauthorized access to critical information assets

 

Every webinar registrant will receive a free copy of the Thycotic 2017 Black Hat Survey Report.


Vendor Webcast

Test

Test Short Description



Register for Test

Sponsored by: Triage Cancer

Test

Test Description


Vendor Webcast

The Future of Authentication with FIDO

We invite you to learn about Microsoft’s efforts to meet the IT security challenge, the benefits of leveraging and creating open standards, and the high security of public key cryptography with FIDO 2.0.



Register for The Future of Authentication with FIDO

Sponsored by: Yubico

The Future of Authentication with FIDO

BYOD and cloud computing pose a longstanding challenge for the IT industry at large to secure multiple platforms, operating systems, and applications. The FIDO Alliance, a consortium of technology companies with members like Microsoft and Google, answers the growing need for account security with FIDO authentication.

Following the game-changing Microsoft demo of FIDO 2.0-based passwordless login at CIS, Yubico looks ahead to a brighter, more secure future for FIDO authentication. Yubico collaborates with industry leaders like Microsoft and the FIDO Alliance to create new open authentication standards, and provide a safer internet space for users across the globe.

As Microsoft moves towards Modern Authentication with passwordless logins (#1BillionBy2018), we invite you to learn about Microsoft’s efforts to meet the IT security challenge, the benefits of leveraging and creating open standards, and the high security of public key cryptography with FIDO 2.0.

 


Vendor Webcast

The Next Evolution of Malware

Register for this webinar with BluVector’s Chief Technology and Strategy Officer to learn how damaging destructive malware can be.



Register for The Next Evolution of Malware

Sponsored by: BluVector

The Next Evolution of Malware

Malware has become the new weapon of choice for cybercriminals. It enables even non-technical criminals to produce highly effective and profitable cyberattacks with little effort. If you’re not already working to protect your network, you’re already at risk.

 Register for this webinar with BluVector’s Chief Technology and Strategy Officer to learn:

  • How damaging destructive malware can be
  • How this new malware operates
  • Why your current malware detection will likely miss destructive malware
  • How newly developed techniques with supervised machine learning can help detect destructive malware


Vendor Webcast

Planning for Failure: Building Processes for Security Success and Response

Tune into this webcast as we discuss what has been successful in the past, areas of improvement, and share tactics for program growth.



Register for Planning for Failure: Building Processes for Security Success and Response

Sponsored by: Rapid7

Planning for Failure: Building Processes for Security Success and Response

As attackers get smarter and security is continuously on the front page, IT teams are faced with 2 key question: Is my program successful? and Am I covered if it fails?

Tune into this webcast as we discuss what has been successful in the past, areas of improvement, and share tactics for program growth.

This webcast will also review:

  • How to build and measure the success of a proactive security program
  • War stories from when events inevitably happen
  • How to address, respond, and mitigate incidents in the future.


Vendor Webcast

3 Key Principles for Managing Cloud Security Risk

Join Hadi Hosn, Head of Security Strategy & GRC Consulting in EMEA, as he explains why cloud security is so important, and provides guidance on key considerations when building out a cloud security program.



Register for 3 Key Principles for Managing Cloud Security Risk

Sponsored by: SecureWorks

3 Key Principles for Managing Cloud Security Risk

Whether you’re pro cloud or not, the security industry is being cloudified.

As IT moves into the cloud, security must follow, and with IT losing its grip on the endpoint, cloud is the only security option.

In addition, the Internet of Things continues to scale upwards, and cloud computing will be its data repository, application engine, provisioning system, and security platform.

Join Hadi Hosn, Head of Security Strategy & GRC Consulting in EMEA, as he explains why cloud security is so important, and provides guidance on key considerations when building out a cloud security program.

In this webcast you will learn:

  • 3 key principles for managing cloud security risk
  • 5 common misconceptions and how to avoid them
  • The 5 fundamental cloud security controls you should implement


Vendor Webcast

7 Steps to Build a GRC Framework for Business Risk Management

Join Marshall Toburen, GRC Strategist for RSA Archer®, as he shares a seven-step methodology for a GRC-based business risk management framework.



Register for 7 Steps to Build a GRC Framework for Business Risk Management

Sponsored by: RSA

7 Steps to Build a GRC Framework for Business Risk Management

Look at information security through the lens of business risk, and you’ll begin to make decisions about security in light of their impact on the business. With security threats emerging faster than ever, what information is most important to protect? What happens if it’s not protected? What strategic business advantage do you gain if it is protected?

 

To find the answers, you need a GRC framework for business risk management within which you can identify key business priorities and align them with security information and decisions.

 

Join Marshall Toburen, GRC Strategist for RSA Archer®, as he shares a seven-step methodology for a GRC-based business risk management framework, including tips for:

  • Defining what information needs to be protected and identifying the location and amount of important information
  • Establishing a “risk tolerance” and understanding your organization’s cyber risk appetite
  • Conducting information risk assessments to help determine levels of inherent and residual risk


Vendor Webcast

Expert Panel: Bug Bounty Trends and What They Mean

Join our expert panel as we discuss the key findings from The 2017 State of Bug Bounty Report.



Register for Expert Panel: Bug Bounty Trends and What They Mean

Sponsored by: Bugcrowd

Expert Panel: Bug Bounty Trends and What They Mean

Traditional methods for vulnerability discovery are failing us. With rapidly expanding attack surfaces, motivated adversaries, and the growing shortage of full-time infosec professionals, organizations are fighting a losing battle. One thing is clear: We need a new approach.
 
Enter the Bug Bounty model. Bug bounties have quickly evolved from a “nice to have” to a “must have” for most application security teams.
 
What’s behind this trend? Why are bug bounties growing, and why now?
 
Join our expert panel as we discuss the key findings from The 2017 State of Bug Bounty Report. 


Vendor Webcast

Protecting Unified Communications Networks: What Network Security Teams Need to Know

This webinar describes the differences between real-time UC applications and traditional data applications that make it imperative to take a collaborative security approach.



Register for Protecting Unified Communications Networks: What Network Security Teams Need to Know

Sponsored by: Oracle

Protecting Unified Communications Networks: What Network Security Teams Need to Know

Thrust together by a common IP network, UC and network teams must collaborate to ensure mission critical voice, video and unified communications (UC) systems are protected from increasingly potent threats. Many organizations are putting themselves at risk of attack, without adequate tools to protect themselves on all levels. Targeted at network security professionals, this webinar describes the differences between real-time UC applications and traditional data applications that make it imperative to take a collaborative security approach. You will learn:

  • What’s at risk for organizations that deploy real-time communications applications over the corporate LAN/WAN
  • Why traditional security architectures are not effective – and even harmful – for communications applications
  • Architectural strategies to close network security gaps


Vendor Webcast

Slaying the Paper Dragon: Risk on Paper vs. Real Risk

How mitigation of vulnerabilities can harden attack surface and reduce risk.



Register for Slaying the Paper Dragon: Risk on Paper vs. Real Risk

Sponsored by: RiskSense

Slaying the Paper Dragon: Risk on Paper vs. Real Risk

Many organizations’ vulnerability management efforts are designed to slay the paper dragon – focusing on vulnerabilities that pose a high risk in theory. Yet analysis of real world threat actors and their tactics, techniques, and procedures, as well as the vulnerabilities associated with these, demonstrate that this approach only reduces risk on paper. Vulnerability management is not a game of solitaire – there is an adversary dictating the rules of engagement – and the only aspect you control is the battlefield itself, your environment.  In this webinar renown cyber security expert, Dr. Danny Quist, discusses how measuring risk posture and vulnerability criticality change once threat intelligence and risk modelling are taken into account, and how the strategic mitigation of these vulnerabilities can effectively harden your attack surface and reduce your true risk.


Vendor Webcast

It’s Not All Gloom and Doom: Security and Development Are More Aligned Then Ever

Despite the popular belief that security and dev teams have conflicting priorities, initiatives such as creating DevOps environments and focusing on product innovation have the two teams aligned toward a common goal of creating secure software.



Register for It’s Not All Gloom and Doom: Security and Development Are More Aligned Then Ever

Sponsored by: Veracode

It’s Not All Gloom and Doom: Security and Development Are More Aligned Then Ever

Despite the popular belief that security and development teams have conflicting priorities, initiatives such as creating DevOps environments and focusing on product innovation have the two teams aligned toward a common goal of creating secure software. As software continues to be the major driver of innovation and economic growth, eliminating the perception of friction between security and development is a priority for IT professionals. In a recent study conducted between Enterprise Strategy Group (ESG) and Veracode, it was reported that 58 percent of respondents stated their organization is taking a collaborative approach to securing applications.

Join Doug Cahill, ESG Senior Analyst and Pete Chestna, Veracode’s Director of Developer Engagement as they take a deeper dive into the results of this survey.

During this webinar you will learn:
Why the need to establish accountability and empathy between security and development teams is critical to creating successful DevOps environments

  • How the evolving relationship between Security and Development is pushing the need for operationalizing AppSec with DevOps, creating “DevSecOps”
  • How the ability to integrate security practices into the software development lifecycle and report across organizational boundaries can increase the rate of product deliver, strengthen competitive advantage, and ensure compliance


Vendor Webcast

Managed Detection & Response (MDR) Drives Incident Prevention

The cybersecurity market is shifting. Today’s ever-evolving threat landscape is driving organizations to change how they address incident prevention.



Register for Managed Detection & Response (MDR) Drives Incident Prevention

Sponsored by: Leidos

Managed Detection & Response (MDR) Drives Incident Prevention

According to Gartner in the Global MSSP Magic Quadrant report, “65% of MSSP’s by 2020 will offer Managed Detection & Response (MDR).” The cybersecurity market is shifting. Today’s ever-evolving threat landscape is driving organizations to change how they address incident prevention.

Managed Detection & Response (MDR) goes beyond traditional Managed Security Service Providers (MSSP) or Incident Response (IR) services to provide a continuous end-to-end approach that detects malicious threats earlier, provides comprehensive analysis of the intrusion, and delivers actionable guidance for future prevention based on intelligence actionable guidance for future prevention based on intelligence gained.  It is imperative that organizations evolve beyond employing traditional managed security and incident response services. In this webcast, you will learn:

  • Why an MDR service is a crucial component to detecting malicious threats earlier and preventing future incidents
  • How MDR can improve situational awareness by maximizing visibility into threats
  • How organizations can use MDR to enhance their cybersecurity maturity and keep ahead of a rapidly evolving threat landscape


Vendor Webcast

Exploiting the Adversary: How to Be Proactive with Threat Intelligence

Gain insight into the latest threats and their attack patterns



Register for Exploiting the Adversary: How to Be Proactive with Threat Intelligence

Sponsored by: ThreatConnect

Exploiting the Adversary: How to Be Proactive with Threat Intelligence

Understanding your adversary is essential to effective cybersecurity. In order to block threat actors, now and in the future, you must know where they have been before, what their techniques, tactics, and procedures are, and if they are targeting your specific organization.

Many organizations are ingesting threat intelligence, but aren’t aware of how to use that information to perform additional analysis.

 In the webinar, you will learn how to:

  • Gain insight into the latest threats and their attack patterns
  • Leverage threat intelligence and perform additional analysis
  • Exploit the attack patterns of Fancy Bear and Carbanak against themselves

 

 

 


Vendor Webcast

Countdown to Regulatory Compliance: Is Your Organization Ready for GDPR & NIST?

Join us for one hour to hear from three experts on what you need to know to get ready for GDPR and NIST before the deadline.



Register for Countdown to Regulatory Compliance: Is Your Organization Ready for GDPR & NIST?

Sponsored by: Seclore

Countdown to Regulatory Compliance: Is Your Organization Ready for GDPR & NIST?

Whether your business resides in the US or Europe, or just does business in these regions, regulations such as General Data Protection Regulation” (GDPR) and National Institute of Standards and Technology (NIST) will impact how you do business and with whom you will do business. But what if you could freely cross borders with your regulated data and still be compliant and in control of your data?
 
Join us for one hour to hear from three experts on what you need to know to get ready for GDPR and NIST before the deadline, and how you can utilize a data-centric security strategy to quickly overcome challenges to being compliant.
 
In the Webinar you’ll learn: 
 
• Key questions to consider when starting your compliance journey
• How to efficiently address common cross-regulation compliance issues
• How to collaborate and share information outside your company’s borders and still be compliant and secure 
 
Who Should Attend? 
If your role is in information security, data loss protection, governance, risk and compliance, or IT, don’t miss this webcast.


Vendor Webcast

The Hybrid Cloud Reality: Managing Security in Private, Public & On-Premises Environments

In a recent study, 90% of IT security practitioners reported that their organization has adopted or plans to adopt a cloud solution. Cloud is now.



Register for The Hybrid Cloud Reality: Managing Security in Private, Public & On-Premises Environments

Sponsored by: FireMon

The Hybrid Cloud Reality: Managing Security in Private, Public & On-Premises Environments

In a recent study, 90% of IT security practitioners reported that their organization has adopted or plans to adopt a cloud solution. Cloud is now. And it’s making already complex security infrastructures even more so. In the process of deploying public and private cloud services, businesses are discovering new challenges  in visibility, scalability and control of their cloud and on-premises environments. This impacts their ability to mitigate risk and keep up with business agility and demands.

Managing security in a hybrid environment raises a number of questions:

• How do I get the same level of visibility into cloud security infrastructure as on-premises?

• Who should be responsible for managing cloud security?

• How do I ensure consistent security across/between all of my different cloud environments?

It’s a series of questions FireMon Co-Founder and Chief Product Strategist, Jody Brazil, will answer in this upcoming webinar The Hybrid Reality: Managing Security in Cloud & On-Premises Environments on Thursday, June 29.


Vendor Webcast

Respond to threats efficiently with combined threat intelligence and orchestration

Join our webinar and learn how you can respond to incidents, including ransomware, faster and more intelligently by leveraging threat intelligence and dynamic playbooks.



Register for Respond to threats efficiently with combined threat intelligence and orchestration

Sponsored by: Anomali

Respond to threats efficiently with combined threat intelligence and orchestration

Threat intelligence coupled with an orchestration platform for incident response are a potent combination for efficiently responding to, and staying resilient, against modern cyber attacks. Anomali’s ThreatStream combined with the Resilient Incident Response Platform ensure analysts are not only armed with the right information but can quickly and efficiently make operational use of it. Join our webinar and learn how you can respond to incidents, including ransomware, faster and more intelligently by leveraging threat intelligence and dynamic playbooks.


Vendor Webcast

Orchestrate Your Security Defenses with Threat Intelligence

How the IBM Security Operations and Response architecture can help you identify and response to threats faster



Register for Orchestrate Your Security Defenses with Threat Intelligence

Sponsored by: IBM

Orchestrate Your Security Defenses with Threat Intelligence

Although the majority of organizations subscribe to threat intelligence feeds to enhance their security decision making, it’s difficult to take full advantage of true insights due to the overwhelming amounts of information available. Even with an integrated security operations portfolio to identify and respond to threats, many companies don’t take full advantage of the benefits of external context that threat intelligence brings to identify true indicators of compromise. By taking advantage of both machine- and human-generated indicators within a collaborative threat intelligence platform, security analysts can streamline investigations and speed the time to action.

Join this webinar to hear the Chief Technology Officer perspective on:
• How the IBM Security Operations and Response architecture can help you identify and response to threats faster
• Why threat intelligence is a fundamental component of security investigations
• How to seamlessly integrate threat intelligence into existing security solutions for immediate action


Vendor Webcast

Ransomware Hostage Rescue Guide

In this webinar, we will look at scary features of new ransomware strains.



Register for Ransomware Hostage Rescue Guide

Sponsored by: KnowBe4

Ransomware Hostage Rescue Guide

It’s a “Ransomware Horror Show”. If you’ve been in the IT trenches over the past year, you’ve probably noticed that announcements of new ransomware strains are accelerating and with the latest new ransomware worm WanaCry affecting hundreds of thousands of machines, there is no end in sight for 2017.
In this webinar, we will look at scary features of new ransomware strains, give actionable info that you need today to prevent infections (and future variants), and what to do when you are hit with ransomware.

Erich will cover these topics:
• Latest scary ransomware strains, including WanaCry and its variants
• I’m infected, now what?
• Proven methods of protecting your organization  
• How to create a “human firewall”

 


Vendor Webcast

4 Ways Identity Can Improve Your Security Posture

Join this webinar to learn why identity must not simply be a "first step" but the foundation for the future of security.



Register for 4 Ways Identity Can Improve Your Security Posture

Sponsored by: Okta

4 Ways Identity Can Improve Your Security Posture

Most organizations understand strong authentication is a necessary part of a good security practice. But because organizations have much less control over the devices, services, and people in their environment today, identity not only becomes the critical control point, but the information stemmed from it can be leveraged to strengthen existing processes as well as integrate with other security investments. Join this webinar to learn why identity must not simply be a “first step” but the foundation for the future of security as well as 4 ways to leverage identity to enhance your security posture.


Vendor Webcast

Why Endpoint Visibility Is SIEM'S Gaping Blind Spot

What makes endpoint visibility mandatory for your SIEM strategy.



Register for Why Endpoint Visibility Is SIEM'S Gaping Blind Spot

Sponsored by: Rapid7

Why Endpoint Visibility Is SIEM'S Gaping Blind Spot

Why has SIEM become a four-letter word for so many organizations? A major reason: despite its obvious exclusion from the term Security Information and Event Management – marketers and sales team have promised the “detection” panacea for nearly two decades.
But while there are certainly IOCs and rules providing detection in SIEMs, most malicious activity is seen on endpoints, triaged using vague alerts, and painfully investigated in the SIEM’s centralized logs.
 
In this webcast you’ll learn:
•         What makes endpoint visibility mandatory for your SIEM strategy
•         The kinds of endpoint integrations that are likely to frustrate
•         How to rethink SIEM data collection and analysis for better detection


Vendor Webcast

Passwordless is Possible: How to remove passwords and improve security

A recent survey conducted by SC Magazine and SecureAuth shows that while 36% of IT Decision makers think will no longer rely on passwords 5 years from now, concerns remain around security



Register for Passwordless is Possible: How to remove passwords and improve security

Sponsored by: SecureAuth

Passwordless is Possible: How to remove passwords and improve security

According to the latest Verizon Data Breach Report, breaches caused by stolen or weak credentials are on the rise – up from 63% in 2015 to 81% in 2016.  While there is no denying that we need to remove our dependency on the password as a primary method of authentication, the question remains how do we get there? A recent survey conducted by SC Magazine and SecureAuth shows that while 36% of IT Decision makers think will no longer rely on passwords 5 years from now, concerns remain around security, how to roll out across the enterprise, ensure user adoption and still meet compliance requirements.

 

Join SecureAuth CTO Keith Graham for a live webinar where we will review the results of this survey and discuss how passwordless authentication is possible today, the considerations needed when moving to a password–free world and how removing passwords as your weakest link can increase security while providing a great user experience.