Dallas

Fast-moving cyber-attacks can strike at any time, and security teams are often unable to react quickly enough. Join Darktrace Director of Analysis, Brianna Leddy, to learn how Autonomous Response takes targeted action to stop in-progress attacks, without disrupting your business. Includes real-world threat finds, case studies and attack scenarios. ​
· Topic for this session– Autonomous Response – ​
· Explore today’s threats and challenges​
· How advances in AI have been leveraged to allow for very surgical actions to be taken autonomously – where humans can no longer react fast enough. ​

GitGuardian is a global cybersecurity startup focusing on code security solutions for the DevOps generation. A leader in the market of secrets detection and remediation, its solutions are already used by hundred thousands developers in all industries. GitGuardian helps developers, cloud operation, security and compliance professionals secure software development, define and enforce policies consistently and globally across all their systems. GitGuardian solutions monitor public and private repositories in real-time, detect secrets and alert to allow investigation and quick remediation.

As we adapt to the new normal in wake of the COVID-19 pandemic, some businesses have returned to the office while many continue to work from home or are shifting to a hybrid workforce. Regardless of where your team is in today’s flexible work culture, it’s important to make sure your data is secure.

This panel will discuss the various factors that contribute to the increase in threats facing the remote and hybrid workforce and the solutions needed to stay secure. Our lineup of Industry Experts will offer their insight & explore best-practices on how businesses and their IT Security Teams should address risks such as ransomware, insider threat, phishing, unsecured devices and lack of training.

Join 17 year veteran CISO Pete Nicoletti, now Check Point Software Technologies Field CISO of the America’s for this fast paced, lots of lesson’s learned deep dive. We’ll review the various tactical approaches traditionally used to solve the dozens of security challenges you and your team is confronted with each year with “best-of-breed” solutions. We’ll analyze and discuss the challenges of integration, incident response, training, deployment staff morale and support costs and other related variables. From there, we’ll look at the advantages of an integrated stack approach and the benefits and achievable improvements. We’ll wrap up the session with a detailed review of a Global Outage incident and how a Suite could have improved response or even prevented it.

Take-Away: Attendees will be able to walk from the presentation with an understanding of:
1. Best-of-breed approaches can solve tactical issues but are not current best practices for a long-term strategy and may bite you
2. How the single stack is extremely advantageous for incident response – this talk will include a walk-through of a real-life global outage incident
3. Awareness of various operational efficiencies and cost savings of an integrated stack approach

The Shuttle Challenger tragedy was a major turning point in the NASA Space Program. What appeared at first to be a random accident quickly became a case study in how trivial amounts of risk acceptance can snowball into a disaster. What lessons can we as security professionals learn from this tragedy, and how do we apply them to our everyday lives?

While it’s clear that the endpoint is the key cybersecurity battleground, there’s plenty of debate on how best to approach the problem. Minimizing the number of endpoint agents is an obvious approach.  To that end, this talk will describe the broad list of risk management benefits of hardware-assisted isolation technology, as seen in actual deployments of the Bromium-developed hypervisor. 

Cloud innovations continue to drive the rapid adoption of cloud services, which offer numerous advantages such as increased flexibility, better scalability, cost savings, higher productivity, and resiliency. However, challenges in migrating to the cloud and protecting the cloud environment cause concern for many organizations. According to research done by Cybersecurity Insiders in partnership with (ISC)², 72% of organizations said they feel either not at all confident (8%), slightly confident (12%), or moderately confident (52%) in their cloud security posture, expressing concerns over data loss & leakage, data privacy, compliance, and unauthorized access. Lack of qualified staff / knowledge and visibility of security platforms continue to be the biggest threats facing cloud security, with misconfigurations accounting for the majority of cloud data breaches.

This panel will highlight the benefits of migrating to the cloud and examine the pros & cons of the various cloud models. Our lineup of Subject Matter Experts will discuss the risks facing security teams as they adopt cloud services, offer recommendations to minimize these risks, and provide insight on best practices to secure the cloud.

Compliance is a required part of risk management. But are your compliance initiatives helping you bridge compliance and risk?  Effective compliance is a catalyst for developing a proactive, risk management program by providing effective controls and tools that assess, manage, and monitor risk. Compliance isn’t about checking the box, it’s about proactively protecting your company and providing assurance so that others trust doing business with you. And, demonstrating trust will be the next market shaper. 

• Challenges in Compliance and Risk Programs
• Five Best Practices in starting a Risk Program
• Compliance Considerations that will Improve Your Risk Posture

 Security threats online are everywhere these days. These threats come in many forms – from phishing scams to ransomware attacks, drive-by downloads to dropper malware – all of which IT security staff need to be vigilant in attempting to prevent. Many of these security threats can be prevented by focusing on the “boring” basics. There is no silver bullet for securing IT networks but maintaining a mindset of continually practicing the basics of IT hygiene and security is key. In this session, I will answer these questions and more:

1. What is the “boring” stuff?
2. What should I do first?
3. What’s next?

While some things are difficult to predict, that is not the case with Ransomware, where attacks have been and continue to be accurately predicted to increase significantly in volume and severity. Last year we saw ransomware attacks on water treatment facilities, oil pipelines, and food distributors make national news. According to the FBI’s Internet Crime Complaint Center, from January to July of 2021 there was a 62% increase in ransomware complaints from year to year.

As new models of ransomware emerge and attacks become more frequent as they prove successful to bad actors, it’s imperative for business leaders to reexamine their approach to cyber security to more effectively combat threats and minimize damage in the event of a ransomware attack. For many companies today, that means foregoing the traditional “trust but verify” perimeter-based security and implementing Zero Trust framework built on the principle of “never trust, always verify”. Through its capability to isolate users and machines, Zero Trust can in the event of an attack limit it from spreading while still maintaining running operations, making it a popular security strategy. In fact, last year in his Executive Order on Improving the Nation’s Cybersecurity, the President of the U.S. recommended the Federal Government adopt Zero Trust architecture. The other vector worth considering is the trusted application vector. If the applications on your perimeter allow attackers in via trojan or remote code execution, then you will be compromised, trust or no trust.

This panel will look at how ransomware attacks and bad actors have evolved to become more successful. Should companies pay hackers to get their data back or will that backfire? Our lineup of Subject Matter Experts will contrast traditional perimeter-based security, Zero Trust and traditional AppSec and offer their insight on how adopting strategies and policies that can help companies stay resilient as ransomware threats continue to grow.