Training

►

Digital Transformation: Best Practices for Cryptographic Key Management and Protection

Prof. Yehuda Lindell - Unbound Tech  •  June 26, 2018 @ 3:30 PM (EDT) • 

Data encryption, advanced authentication, digital signing and other cryptography-based security functions have come to play a vital role in organizations' cybersecurity and regulatory compliance initiatives. To secure their digital assets effectively, organizations must protect their cryptographic keys, much like ...

►

Live Webinar - Office 365 & Gmail Security Measures: Avoid Targeted and Account Takeover Attacks

Swarup Selvaraman - Lastline  •  June 28, 2018 @ 1:30 PM (EDT) • 

As organization are moving to their email infrastructure to cloud solution like Office 365 and Gmail to reduce operational cost, additional capabilities etc., time is ripe for revisiting their existing legacy security measures and replacing them with a more modern and cloud specific security controls. Join this ...

►

Live Application Security Webinar: Managing Security & Speed Tradeoffs

Patrick Carey - Synopsys Software Integrity Group  •  July 10, 2018 @ 11:30 AM (EDT) • 

Security leaders understand that applications represent the largest and most commonly compromised threat vector for many organizations. For this reason, application security needs to be an integral part of your software development tools and processes. The most mature application security programs today are ...

►

Live Webinar: A Risk-Adaptive Approach to Data Protection in Canada

Neha Gupta - True Office Learning, Harry Perper - The MITRE Corporation and National Cybersecurity Center of Excellence at NIST  • 

Recent apparent hack attacks against Canadian banks, the sentencing of a Canadian for helping enable the Yahoo breach, and the Equifax breach's impact in Canada all point to the need to be more aggressive in ramping up cybersecurity efforts in light of emerging threats. Join us for this webinar as we discuss: A new, ...

►

Preventing an Inside Job: Detection, Technology and People

Neha Gupta - True Office Learning, Harry Perper - The MITRE Corporation and National Cybersecurity Center of Excellence at NIST  • 

Cybersecurity technology advances and NIST best practices along with automation and system controls go a long way to minimize errors, but it doesn't completely eliminate the potential for error by human actors. So how can you reduce the opportunity for and damage of a threat to your organization? Join Harry Perper, ...

►

Live Webinar: A Risk-Adaptive Approach to Data Protection

Charles Keane - Forcepoint  • 

Every IT security department's job, to protect data, has become more challenging as the security perimeter has dissolved with the adoption of cloud applications. The traditional threat-centric approach is to apply rigid policies to a dynamic environment and decide what is good or bad without context. This black and ...

►

Yes, You Can Get Burned When It's Cloudy

Katie O'Shea - Check Point  •  Available Exclusively for Premium Members • 

Public and hybrid cloud adoption is exploding, but so are cloud hacks and breaches. Cloud assets are at risk from the same types of threats targeting physical networks, but traditional security protecting premises-based networks doesn't work in dynamic and elastic cloud environments. What's more, cybercriminals are ...

►

Panel: Build or Buy? The CISO's Guide to How to Develop Advanced Defense

Brian A. Engle, CISSP, CISA - Riskceptional Strategies, Parrish Gunnels - Kibo Commerce, Brian Wrozek - Optiv  •  Available Exclusively for Premium Members • 

DDoS, enterprise IoT, cyber fraud, industrial controls. Summit attendees over the course of the past two days have been educated on many of the bleeding-edge threats and threat actors, and they have gained insight on the latest tools to detect and respond to attacks. But how do they act upon this information? How do ...

►

Panel: Know Your Attacker: Lessons Learned from Cybercrime Investigations

Matthew Maglieri - Ruby, parent company of Ashley Madison, Richard Murray - FBI Dallas Cyber Task Force, Ronald Raether - Troutman Sanders  •  Available Exclusively for Premium Members • 

"Know your customer" is a familiar refrain in business circles. But as threat actors grow in number, sophistication and cross-channel schemes, it is increasingly important for organizations to also have a clear picture of their potential attackers - whether they are nation states, cybercrime gangs or lone actors. Join ...

►

The Legal Case for Cyber Risk Management Programs and What They Should Include

Jay Johnson - Jones Day, Shawn Tuma - Scheef & Stone, LLP  •  Available Exclusively for Premium Members • 

"Cyber" has been treated as "just an IT issue" for far too long. It is not "just an IT issue"-cyber is an overall business risk issue that must be properly managed to comply with many laws and regulations, meaning it is also a legal issue. In this session we will examine: The most impactful recent legal and ...

►

Fear vs. Reality: Forward Thinking for Security

Mark Loveless - Duo  •  Available Exclusively for Premium Members • 

Many models of security still have their roots in older infrastructure. But with the death of the network perimeter and the rapidly approaching end to passwords, there has to be a new view of the security landscape to prepare for this future - especially with new devices coming in ever-changing forms. This ...

►

Cybercrime Exposed: Insights from a Former U.S. Most Wanted Cybercriminal

Brett Johnson - "The Original Internet Godfather"  •  Available Exclusively for Premium Members • 

Brett Johnson, referred to by the United States Secret Service as "The Original Internet Godfather" has been a central figure in the cybercrime world for almost 20 years. He founded and was the leader of Counterfeitlibrary.com and Shadowcrew.com. Working alongside the top cyber criminals of our time, he helped design, ...

►

Industrial Control Systems: How to Mitigate Espionage, Breach and Other Risks

Asif Effendi - GE Oil & Gas - Digital  •  Available Exclusively for Premium Members • 

Businesses that use industrial control systems, such as the oil & gas industry, have the same cybersecurity exposures that are found in non-industrial businesses: theft of intellectual property, exposure of customer and employee information, exposure of financial information, etc. However, these businesses have the ...

►

Climbing the Attacker Pyramid of Pain

Dan Mathews - Lastline  •  Available Exclusively for Premium Members • 

During this session, we walk through applied use of indicators of compromise for several recent malware campaigns. The presentation starts with weak/tactical indicators, which are low cost for attackers to change and build, to strong/strategic indicators, which significantly increase costs to attackers. This ...

►

Post-EMV: The Present and Future of Retail Fraud

Jon Phillips - Neiman Marcus Group, Dr. Shamoun Siddiqui - Neiman Marcus  •  Available Exclusively for Premium Members • 

With the adoption of the EMV standard for payment cards, the associated card fraud has increasingly gone down. This has resulted in cyber criminals shifting focus to other forms of fraud such as gift card fraud and fraud related to online retail purchases which are processed as Card Not Present (CNP) transactions. ...