• Discuss how shifting priorities in rapidly changing environments affect businesses, customers and employees
• Learn how agility today will prepare you for the next “pandemic”
• Hear about the importance of trust as the connective tissue that binds our relationships, actions and expectations
• Learn ways to reinforce trust during crisis and uncertainty

« show less

The biggest disruption to the security industry in many years is happening right now. Working from home is changing our business, as well as our threat landscape. Cybersecurity has a bigger role than ever in protecting data, no matter where it resides or whatever network it traverses. New compliance laws, emerging threats from using cloud based applications, as well as ransomware are just a few of the elements that IT professionals are dealing with on a daily basis.

Takeaways:

• Huge disruption in the way that we protect our business and our remote workers
• Three pillars for data protection – discover, protect and control
• Holistic platform approach reduces operational complexities and allows business to recover from the effects of the COVID-19 pandemic.

« show less

NOW is the time review your InfoSec and Privacy policies and standards to ensure your organization has solid data governance practices. Data Entitlement reviews, data minimization, least privilege access controls, and training your employees on data stewardship are essential steps to establish Trust and Transparency with your employees and customers as we re-mobile our workforce back into our corporate offices.

• The intersection of data protection, privacy, and supporting global health are forcing us to think differently
• The ability to analyze data quickly and offer services to people has never been so important to understand and reactive to the COVID pandemic
• At the same time, by law, we need to uphold the sanctity and the security of the data while maintaining the consumer (aka the Data subject) privacy rights – which can vary by jurisdiction
• While Zoom has transformed the word from a Verb to a Noun, with more employees working remotely, the ability to protect data and enforce InfoSec requirements has become more difficult to manage
• ServiceNow has also quickly pivoted and leveraged many of process flow automation to create back-to-work and health escalation apps to get employees back to work and bring assistance to people who needed medical help
• Transparency builds Trust
• Obtaining consent and/or a having a legitimate interest in collecting and maintaining data is paramount

« show less

Any and every one is a target for nation-state grade cyber attacks, especially during a global crisis. During times of crisis there is a shift in focus which allows cyber-attacks to grow and intensify, and a large portion of them are nation-state grade. The private sector, all verticals and industries, have always been a target for these, and the pandemic has only worsened it.

These highly advanced mechanisms of cyber assault are continuously evolving and readily available for sale on the darknet, enabling hackers and new players looking for alternative income due to COVID19 to become extremely powerful attackers. The question arises – How can organizations protect themselves in today’s crisis cyber reality? And what happens the day after? Fortunately, there are answers and solutions.

In his presentation, Ran Shahor, IDF Brigadier General (Ret.) will discuss the challenges financial organizations face during a time of crisis, the solutions, the holistic approach and the secret sauce needed in order to be protected and stay ahead of the curve.

« show less

Any and every one is a target for nation-state grade cyber attacks, especially during a global crisis. During times of crisis there is a shift in focus which allows cyber-attacks to grow and intensify, and a large portion of them are nation-state grade. The private sector, all verticals and industries, have always been a target for these, and the pandemic has only worsened it.

These highly advanced mechanisms of cyber assault are continuously evolving and readily available for sale on the darknet, enabling hackers and new players looking for alternative income due to COVID19 to become extremely powerful attackers. The question arises – How can organizations protect themselves in today’s crisis cyber reality? And what happens the day after? Fortunately, there are answers and solutions.

In his presentation, Ran Shahor, IDF Brigadier General (Ret.) will discuss the challenges financial organizations face during a time of crisis, the solutions, the holistic approach and the secret sauce needed in order to be protected and stay ahead of the curve.

« show less

We’re all trying to protect constantly changing network environments without enough people, and with too many tools – all while we face attackers who are persistent and automated. Dr. Mike Lloyd, RedSeal CTO, draws on his background in epidemiology and modern cybersecurity, as well as his study of history to provide a guide for understanding and evaluating what you need to do next to be most successful.

« show less

Open Source Software (OSS) makes it easy to consume and contribute to software projects. You can fork OSS projects or do whatever else you want with them. The most common use case for OSS to consume them as dependencies, so we don’t have to write our entire application from scratch, saving a huge amount of time. However, these benefits bring risks:

Open source projects can be hijacked by bad actors, compromising any applications that depend on those projects.
Vulnerable dependencies can create security holes in the applications that depend on them.
Dependencies hosted in public repositories can disappear, breaking your builds and causing people to substitute dependencies from more questionable sources.
Dependency hell can obscure the true surface area of your application, making it more difficult to spot or prevent security holes from appearing in your applications.
Aging dependencies can reveal new vulnerabilities that threaten your production applications, forcing interrupt-driven and expensive remediation work.

It’s best to mitigate these risks if possible. Here are the five things you’ll take away from this talk:
1) Understand the importance of picking a trusted source of OSS components.
2) Learn how to check publicly-available data to see if there are any issues in the components you want to use.
3) See how caching dependencies can improve the speed and reliability of your build pipeline.
4) Understand how bundling dependencies with your application can make it easier to audit them for issues in the future.
5) Learn how automation can help you find and fix security issues quickly without it taking a huge amount of your time.

« show less