Atlanta

For far too long, the role of the security analyst, charged with investigating, validating and responding to attacks amidst the noise of alerts from multiple tools, has been a frustratingly fragmented and inefficient one. The hours spent on manual triage, threat hunting and research across many tools and data sources, not only extends the time taken per incident, but also distracts valuable resources away from higher risk attacks. Data shows that despite deploying more great tools and getting more alerts, we are not getting much better at this, if at all, over the past several years. The industry needs to focus on the analyst experience. How can these tools and data sources be better connected? How can AI and machine learning best be employed to unburden teams of the error prone repetitive tasks while providing rapid and valuable insights into the specifics of an attack, and even provide focused recommended actions? This can and does, dramatically improve the overall analyst experience and efficacy, helping to prevent burn out while simultaneously sharpening response capabilities. Join us to discuss what we have learned and how we and other members of a growing, open community are building and delivering in this space.

When looking at how to best protect your business, cybersecurity readiness should be top priority, but what is it? Cybersecurity readiness is the ability to identify, prevent, and respond to cyber threats. Can proper data governance, risk management (including managing 3rd party risk and supply chain risk) and compliance provide a framework to always being ready? Let’s discuss GRC & the best steps to take when quantifying cyber risk, developing your incident response plan, creating a data security policy & more.

In this informative session, we will step into the eye of the cybersecurity storm in a session that exposes the profound shift in the cyber battleground brought by Generative AI. Last year witnessed record losses to phishing and ransomware attacks, but as they say in show business, “you ain’t seen nothing yet!” Learn how the incredible power of Generative AI, that helps fortify cybersecurity defenses, is also arming cybercriminals with formidable new capabilities. This transformation will make them much more dangerous digital adversaries increasing the threat to every type and size of organization across every industry. Attendees will see the tools that cybercriminals use, and they will gain an understanding of the impact of generative AI on the most dangerous and destructive attack methods. The session will also present the next-generation defense strategies that will become necessary.

There seems to be a new article every day covering the intersection of artificial intelligence (AI), machine learning (ML), and the security industry. Vendors are suggesting that AI has the potential to act as a team member, replace missing expertise, and reduce headcount for detecting, investigating, responding to, and predicting new cyberthreats. The concept of a fully computerized SOC may be a dream in a world lacking cybersecurity professionals, but can it be realized?
Increasing the autonomy of the SOC is a noble goal, especially for smaller organizations struggling to hire and retain the necessary cybersecurity skills. However, the need for self-learning and self-repairing capabilities in an autonomous SOC raises an important concern: If your IT and security system becomes self-referential and self-healing, how can you investigate to ensure it’s getting it right? Who watches the watchers?

This talk will explore:
• The history of AI, ML, and automation already in your security stack
• The dangers and challenges of unrestricted GPT and other chat bots as information sources
• Ways humans and AI can work together
• How Exabeam uses ML today and is exploring AI in the future

Getting past the hype of AI and ChatGPT, there are huge benefits to practical (and less sexy) applications of AI. And despite all the buzzwords and overpromises coming from our industry today, there actually are real and meaningful ways AI tools will help security professionals make better risk decisions, faster and more accurately. In this talk, we’ll show some examples of how AI can help predict risk, cut through complexity when making risk decisions and even help to retain senior staff while keeping them focused on the tasks that matter most.

What are the biggest threats to your business? What’s changing in the current threat landscape that you need to know about? Is ransomware still the biggest threat or is AI taking the spotlight?

On this panel our lineup of industry experts will discuss the most dangerous and emerging threats to your organization as well as the solutions that go beyond anti-malware/anti-virus to include endpoint security, vulnerability management, Active Directory monitoring, credential protection, DNS security tools, SIEM, DLP and encryption.

SIEMs have been a critical tool to organizations’ security programs for more than two decades, however, the requirements for SIEMs have changed drastically as organizations have shifted to the Cloud and expand their digital footprint. Today, pretty much every company is a tech company whether they like it or not. In this presentation, we will discuss how adversaries have shifted to targeting organizations’ code and cloud infrastructure and how organizations can leverage the power of modern cloud-native SIEM and detection-as-code to mitigate this evolving threat.

A quick overview of current breaches, their impacts and 3^rd party curveballs. Today more than ever zero-day threats continue to successfully gain entry into the enterprise.  Join us to speak about some of the new breaches we are seeing and how a layered security approach is the best protection.

Cloud computing solves many problems like flexibility, cost-efficiency & scalability, so it’s no surprise that use of the cloud is consistently growing. 

That said, it also means organizations step into unknown areas where gaps are easy to miss and hackers are quick to exploit. 

Today we will discuss all things cloud so you know what works best for your organization.

Our experts will look at hybrid and multi-cloud environments, adopting the concept of cybersecurity mesh & Zero Trust, the Secure Access Service Edge (SASE) framework, cloud-native tools & platforms, as well as why the future of network security is in the Cloud. 

For the past decade, cyber security defense for enterprise organizations centered on what is known. Threat detection and response methodologies across people, process and technology have relied heavily on signatures, anomalies, rules to see and stop cyber criminals from infiltrating the organization and exfiltrating data. The problem with this approach is that it’s broken. As organizations shifted to hybrid and multi-cloud environments, embracing digital identities, digital supply chains, and ecosystems, security, risk, and compliance leaders, architects and analysts are continuously faced with more.
· More attack surface for attackers to exploit and infiltrate.
· More methods for attackers to evade defenses and progress laterally
· More attack noise, complexity and hybrid cloud incidents
We call this the “spiral of more” and as organizations shift more applications and data to the cloud, the bigger the spiral becomes and the faster it accelerates, creating more challenges for SOC teams. Learn how AI can break this spiral, as Vectra, the pioneer in security AI is laser focused on supporting those on the front lines of cyber do just that.

As businesses continue to digitalize operations and service delivery, many are grappling with how to modernize their network security infrastructure under budget and resource constraints. Applications are moving to the cloud, data is distributed across hybrid environments, and employees are increasingly accessing IT resources from multiple locations. Legacy security infrastructure and approaches can only go so far in protecting today’s fast-changing digital business. However, simply adding more security tools is not the answer. What is the best approach to evolving network security architecture and processes toward a more modern stack that includes access management controls like SSE and SASE? And, how can you best leverage service providers to fast-track your objectives, identify risks, and ultimately strengthen your security posture? Derrick Johnson will share critical learnings from the field and insight into the pitfalls to avoid when advancing your network security program.