Columbus 2020

Today, 94% of cyber-threats still originate in the inbox. ‘Impersonation attacks’ are on the rise, as artificial intelligence is increasingly being used to automatically generate spear-phishing emails, or ‘digital fakes’, that expertly mimic the writing style of trusted contacts and colleagues. Humans can no longer distinguish real from fake on their own – businesses are increasingly turning to AI to distinguish friend from foe and fight back with autonomous response. In an era when thousands of documents can be encrypted in minutes, ‘immune system’ technology takes action in seconds – stopping cyber-threats before damage is done. Find out how in this session.

Identity and Access Management (IAM) advancements are heavily influenced by technology trends in the broader IT market. In 2020, there are 5 major trends poised to change the face of identity. Join this conversation as Lori Robinson, SailPoint, and Gray Mitchell, IDMWORKS, discuss what is shaping the IAM space, how these trends are impacting IAM teams today, and break down what you need to know to prepare your team for success in this rapidly evolving landscape.

Security teams today are being overwhelmed by the massive amounts of data collected by their various protection tools and in most cases, these security teams do not have the budget to hire external Security Operations Center (SOC) analysts. As such, companies are looking to implement an automated response system by using SOAR (Security Orchestration, Automation and Response) tools in an effort to relieve some of the burden on their already understaffed security teams and increase efficiency.

In a recent survey of more than 1,400 IT security professionals, 79% reported that their organization has existing automation tools and platforms in place (29%) or are planning to implement them within the next six months to three years (50%). However, this is not a simple solution for many companies as the successful implementation of automation requires a well-trained and educated team. In fact, 56% of organizations from this same survey indicated that they don’t currently have the in-house expertise required to effectively use these tools. This presents a problem as the shortage of gap between workforce demands and skilled cyber security professionals in the field is larger than ever and steadily increasing. According to another report, it is projected that by 2021, 3.5 million cyber security jobs will be unfilled; that’s a 350% increase in open positions from 2013 to 2021.

This panel will provide an understanding on SOAR tools, the importance on training your security team to understand and leverage these tools to more rapidly detect and respond to threats, and ways to attract and retain talent.

We’re all trying to protect constantly changing network environments without enough people, and with too many tools – all while we face attackers who are persistent and automated. Dr. Mike Lloyd, RedSeal CTO, draws on his background in epidemiology and modern cybersecurity, as well as his study of history to provide a guide for understanding and evaluating what you need to do next to be most successful.

Today’s CEO needs a weekly cyber briefing, but not about technology, about risk. Moreover, the CEO, a high value target for Threat Actors, needs to collaborate with the department of the CISO, highlighting business risks often overlooked by technologists; for example, an IR Plan including a public statement to shareholders if the company is hacked. “$1 spent on readiness, saves $7 on disaster recovery” according to the UN. Typically, CEOs have strong financial backgrounds. Many are CAs & have MBAs, providing them a firm understanding of financial vernacular. Technologists share a love of numbers with accountants, but when it comes to preventing attacks by humans, albeit through computers, it’s necessary to apply strategic thinking to our reports vs. presenting the numbers.
In this session, delegates will understand the strategic convergence of business & technology collaboration, specific to a case study of a hack, through cellular, into an IoT device, then East/West into the Corporate network & how this could have been avoided with executive focus on assets & business-related threat vectors unnoticed by I.T., resulting a relevant weekly report that mutually benefits both the CISO & CEO.

It is important to recognize that, overall, the industry has an effectiveness problem. The escalation in threat activity and the talents shortage in the industry has created a situation where, despite lots of products and cybersecurity spend, we aren’t getting better protection. To put a finer point on it, there are over 3,000 vendors selling products in the industry. The total spend last year was $120B+ and even with all of that there we almost 4,000 breaches — a 96% increase over the previous year.​ The key takeaway from these breaches is that they are NOT product failures.​ They are operational failures. ​To prevent these kinds of breaches from happening again in the future, we believe, the industry needs to adopt a new approach – an operational approach – to cybersecurity. ​

According to a recent survey, last year 69% of organizations suffered a data breach caused by an Insider Threat, even with a data loss prevention (DLP) solution in place. While malicious users are a legitimate threat to an organization’s security, another study found that 64% of incidents were a result of human error made by an employee. In fact, 78% of Chief Security Officers confessed that even they have clicked on suspicious links.

These statistics demonstrate that having a DLP solution in place with a centralized IT Security team is not sufficient in protecting company assets. Organizations must also address the human element and provide effective ongoing training and education to all employees within the organization.

This panel will discuss the importance of understanding and detecting the various types of Insider Threats that put your organization at risk, as well as provide insight on how to prepare a prevention and defense strategy against an insider breach.

When threat actors exploit weaknesses in an organization’s IT infrastructure, the consequences can be devastating to productivity, reputation, and financially. Without treating cybersecurity as an ongoing process, hackers can find, weaponize, deploy, and attack your infrastructure faster than your team can patch the vulnerability leaving your infrastructure unprotected. Your systems may be secure today, but next week, a cybersecurity criminal may discover and exploit a critical vulnerability in your environment. Join us as we discuss how continuous vulnerability management can be executed effectively.

As transformations continue at breakneck speeds, how are these changes impacting security? Specifically, applications are being written in new ways and deployed across clouds. How do you maintain consistent app security in a way that enables agility and speed of deployment? 

Join Imperva for a discussion on applications and how their addition to the computing infrastructure is impacting organizations both small and large.

• Maintain consistent app security across clouds
• Allow your business the agility and speed of deployment while never sacrificing your security posture
• Monitor your entire organization’s application security stack from a single platform

Micro-segmentation is a powerful tool in reducing risk in application environments, defending against ransomware, maintaining business continuity and preventing lateral movement. Implementing micro-segmentation comes with significant practical challenges such as pre-requisite infrastructure changes, a lack of knowledge around existing application behavior, an explosion of policies that need lifecycle management, and inconsistent controls across clouds and workload types. There is also the human element that requires collaboration across multiple teams. This session will discuss proven methodologies to address these roadblocks to accelerate micro-segmentation projects and improve application security posture drastically.