Silicon Valley 2021

Prior to defending an organization against a determined attacker, their techniques must be understood. This presentation provides an adversarial viewpoint to inform network defense leaders how the attackers see their organizations and are able to be successful with their objectives, even when well defended. The presenter will draw upon over 17 years of personal experience as a Red Team operator and leader to illustrate how your organizations are viewed, through the eyes of an adversary.

Our digital environments and workforces are more dynamic than ever. To navigate the risks and challenges that digital innovation brings, organizations must rethink their approach to security.  Static, legacy approaches have become redundant against sophisticated, fast-moving threats, and attackers that continue to evolve their techniques. Organizations are increasingly turning to new technologies like AI to achieve much-needed adaptability and resilience; protecting workforces and data from attack by detecting, investigating and responding to cyber-threats in real time — wherever they strike.

Hardware security presents an enigma for IT…its mysterious configurations and protections are often enabled by OEMs or OSVs, it is also presents an obscure attack surface that is hard to fix in the field, yet according to Gartner, new hardware security innovations have reached early mainstream adoption. A PC that is entirely based on software security will be an easy target for an attacker, while those that integrate hardware security will be significantly stronger. Chip-level security capabilities form a strong foundation and transitive trust chain from which all security capabilities are improved and hardened into an enterprise class PC, ready to protect valuable digital corporate assets and personal data. However, not all PC hardware security capabilities are on an equal playing field which can limit key security models of importance to CISOs and IT. To help prepare IT to take advantage of HW security, we present the essential foundation and advanced capabilities that are available today along with an applicability mapping to the typical PC build for security applications.  Attendees will receive a free copy of an IDC report on silicon enabled threat detection and an IOActive third party PC security comparison report.

For more than a decade, security practitioners and business leaders worldwide have anticipated the annual release of Verizon’s Data Breach Investigations Report (DBIR), and the 2021 DBIR is here at last! Join Verizon’s Chief Security Evangelist, Dave Grady,  as he walks through some of the surprising findings of this year’s DBIR, and explains how you can use this report to improve your organization’s security posture.

The SolarWinds SUNBURST attack was a rude awakening for many security teams, and it won’t be the last time Security leaders face tough questions about how an adversary evaded defenses and stayed hidden. With threats persisting inside the network for months, security teams need a new plan. In this session, CISO Jeff Costlow discusses strategies, including revising existing mental models and incident response processes, to build resilience in the fight against advanced threats.

In 2020, there was an unprecedented growth in ransomware attacks and this trend shows no signs of slowing down. Rather, these attacks are evolving and becoming more harmful as cyber criminals become more organized and effective. It is predicted that in 2021, businesses will fall victim to a ransomware attack every 11 seconds with an estimated cost of over $20 billion – 57 times more than in 2015, making ransomware the fastest growing type of cybercrime.

As a result, companies are transitioning from the traditional “trust but verify” method and implementing a Zero Trust model, requiring all users to be authenticated and continually authorized in order to be granted access and maintain access to company data and applications. By leveraging various technologies & techniques such as multifactor authentication, IAM, least privilege access, and microsegmentation, the Zero Trust model reduces the risk of a ransomware attack and minimizes the potential damage from a breach.

This panel will highlight where enterprises are most vulnerable to becoming a victim of ransomware and how utilizing a Zero Trust model minimizes this risk. Industry experts will discuss best practices to avoid a ransomware attack including adapting the Zero Trust model, what to do if your company is being held for ransom, ways to mitigate the damage caused by an attack, and how to recover afterwards.

Many of today’s organizations have as many staff resources integrating security tools and data sources as they do actually running their security programs. This is a tragic duplication of effort and not the most productive use of precious talent that often fails to create the expected value and ROI. Join us to hear how IBM, and some key alliance partners are pushing the industry towards open, standards-based interoperability, and see some tangible examples of what those gains in efficiency and efficacy look like today.

With the Passwordless Decade well underway, more and more organizations are asking the question: Why is now the right time to move beyond passwords?

George Avetisov, CEO of HYPR, will discuss the rise of organizations moving to the cloud, how the perimeter fades and the attack surface gets larger. Modern tools such as SNIPR and Modlishka make it easier for hackers to launch large-scale automated attacks, bringing credential re-use and two-factor-authentication attacks to record highs. 

How did we get here, and will mainstream adoption of passwordless security have an impact? We will explore how the rise of virtual desktop infrastructure and a remote workforce has affected workstation login and review how the evolution of authentication has impacted organizations’ identity and access management systems.

In this session, you’ll learn:

The unprecedented level of cybersecurity risk today extends far beyond the four walls of the enterprise. There is no longer any difference between personal and corporate protection when it comes to members of the executive team and board. High-level individuals now have a single, unified digital life, and senior leadership working from home has become the soft underbelly of corporate cybersecurity.

The homes, personal accounts, and family devices of executives are all fair game in the cyber battleground for the corporation. CEOs and their CISOs need to extend the defense perimeter and protect the entire digital lives of senior leadership. It is the right thing and the smart thing to do in today’s threat environment.

We will discuss:

• Compelling metrics for the level of risk to the company from executives in their personal digital lives
• An understanding of how to extend the defense perimeter to encompass executives’ entire digital lives to reduce risk to the company
• How to digital extend protection without causing friction to the executive or invading their privacy

With the dramatic increase in distributed workforces and the growing adoption of cloud applications, companies face unprecedented levels of IP, data, and identity sprawl beyond the enterprise firewall. Every endpoint is an entry into your business, cybercriminals have more ways to break in than ever before, and human error on the inside is a constant risk. Historically, endpoint security has been a zero-sum game—with the odds inevitably stacked against IT. But rather than protect devices, what if you could just control the security of them?
In this presentation, see how Chrome OS and Chrome Browser are secure by design—embedding security into every workflow to provide proactive protection for users, devices, applications, and data, wherever work happens. This is cloud-first security control in the hands of the modern businesses that will thrive moving forward.

Over the past few years, the number of organizations that have adopted cloud-based systems has grown exponentially, largely due to the COVID-19 pandemic. In turn, cloud security has become a critical issue for IT security executives and their teams. McAffee reported an increase of 630% in attacks by external actors targeting cloud services between January and April of 2020. This uptick in cloud security breaches is projected to persist even after the pandemic as many companies continue to utilize the cloud and leverage its benefits.

While migrating to the cloud offers numerous advantages, it also poses certain threats and challenges. In a recent report by Oracle & KPMG, over 90% of IT Professionals felt their organization had a cloud security readiness gap. A significant concern for many who are adapting to a cloud-based workforce is misconfigurations and gaps in cloud security programs. Additionally, cloud-based infrastructure requires adopting new security policies and processes. Many companies believe their existing security teams lack the necessary skillsets and knowledge that the cloud environment requires, especially as organizations turn to multi-cloud, hybrid cloud, and distributed cloud models.

This panel will highlight the areas where cloud systems can leave enterprises vulnerable, ways to minimize common misconfiguration errors, and other best practices to mitigate threats when migrating to the cloud. Our lineup of Industry Experts will provide their expertise on developing a robust cloud security strategy that addresses these issues and insight on how to stay secure in the future of cloud security.

The move to cloud poses unique challenges as organizations adapt to securing infrastructure as code for all applications while being prepared to secure brave new features such as containers, microservices and automatic scaling. Deploying all your infrastructure as code with security built-in is a challenge. Teams must consistently conform to established standards operating in the cloud environment and enforce these standards through processes such as automated checking and automated compliance testing.

“As we’ve all learned throughout the years, good compliance doesn’t always equal good security, but good security usually means easy compliance.”

– Tom Holodnik, Intuit

Paradigm Shift in Cloud Security – AWS ProServe and ThreatModeler Joint Offering

To scale secure migrations to the cloud, AWS ProServe and ThreatModeler have designed a 30-day accelerated program. This joint offering (Automated Threat Modeling) enables a self-service model to scale secure Cloud Development Life Cycles (CDLCs) by automatically converting an architecture diagram into a threat model and recommend the controls required to secure the attack surface. Automated Threat Modeling analyzes the live AWS service environment to validate the security controls, ensuring all the threats have been mitigated. Even developers with little or no knowledge of security can build their AWS environment securely.

Secure access service edge has quickly emerged as a hot topic in cybersecurity, but what exactly does it mean and why should organizations care? As cloud migration, BYOD adoption, and remote work have skyrocketed in prevalence, it has become increasingly apparent that organizations need to think differently about security. While legacy tools like firewalls are no longer equipped to handle the modern IT ecosystem, SASE platforms like Bitglass are built for this exact moment. In this presentation, you will learn:

• The core components of a SASE platform like Bitglass.
• The functionality you need to secure cloud, web, and remote access use cases.
• Architectural considerations you should keep in mind when comparing SASE vendors. 

Insider Threat has become increasingly problematic to businesses as the frequency and cost of these threats have risen over the last several years. In a global study conducted by Ponemon Institute in September of 2019, there was a 31% increase in overall cost of Insider Threat and a 47% increase in the total number of Insider Incidents from 2018.

Today, Insider Threat poses an even greater risk to businesses in the wake of the COVID-19 pandemic. Forrester Research, Inc. reported that in 2020, a quarter of all security breaches were caused by an insider and estimates that in 2021, Insider Threats will account for 33% of security breaches.

This panel will discuss the various factors that contribute to this increase in Insider breaches, how remote work has impacted the malicious & non-malicious Insider Threats facing businesses, and the implications this has on enterprises today. Our lineup of Industry Experts will offer their insight & provide best-practices on how businesses and their IT Security Teams should address these risks and adapt in order to defend against Insider Threats.