Seattle/Bellevue

For far too long, the role of the security analyst, charged with investigating, validating and responding to attacks amidst the noise of alerts from multiple tools, has been a frustratingly fragmented and inefficient one. The hours spent on manual triage, threat hunting and research across many tools and data sources, not only extends the time taken per incident, but also distracts valuable resources away from higher risk attacks. Data shows that despite deploying more great tools and getting more alerts, we are not getting much better at this, if at all, over the past several years. The industry needs to focus on the analyst experience. How can these tools and data sources be better connected? How can AI and machine learning best be employed to unburden teams of the error prone repetitive tasks while providing rapid and valuable insights into the specifics of an attack, and even provide focused recommended actions? This can and does, dramatically improve the overall analyst experience and efficacy, helping to prevent burn out while simultaneously sharpening response capabilities. Join us to discuss what we have learned and how we and other members of a growing, open community are building and delivering in this space.

We believe the enterprise will be hybrid forever and all modern attacks are hybrid attacks. We also believe legacy threat detection and response approaches have proven inefficient and ineffective against hybrid attacks and here’s why: over the last decade, digital transformation drove the need for threat detection coverage across an expanding hybrid attack surface. The need for coverage led to investments in siloed detection tech, driving tool sprawl for security architects and engineers. Detection tool sprawl has resulted in unmanageable alert volume for SOC leaders and their teams. Unmanageable alert volume creates excessive workload. No wonder, SOC analysts receive an average of 4,484 alerts per day and 67% of them are ignored. As a result, 71% admit their organization may be compromised and they don’t know about it, and a staggering 97% of analysts worry they will miss a relevant security event buried in alerts – 49% worry about this every day. We contend to effectively defend the hybrid enterprise from hybrid attacks, we need to shift from trying to maximize the value of tech and tools and start figuring out how to maximize the value of existing talent. In this session, we explore the definition of effective hybrid attack defense through the eyes of SOC analysts and the pose the question: what role does AI play in hybrid attack defense and unlocking the value of our existing SOC talent?

In this presentation, we will delve into the fascinating world of artificial intelligence (AI). Join me as we explore AI, examine its historical development, and current applications, and discuss the potential impact and ethical considerations of AI in the future.

Artificial intelligence has come a long way since its early beginnings. From the first AI programs in the 1950s to the development of expert systems in the 1980s, we will explore the breakthroughs that have shaped the field of AI. Discover how these advancements laid the foundation for the sophisticated AI technologies we use today. Hear how Check Point is, and has been, leveraging AI and the new tools we are developing to fight fire with fire.

AI technologies such as machine learning, natural language processing, and computer vision are constantly evolving. Learn about where to find the latest breakthroughs in AI research and development, including deep learning algorithms, neural networks, and robotics. These cutting-edge innovations in AI are changing the way we live and work.

The history of AI, the current state of the technology, and the potential future impact are all evidence of the incredible journey we are on.  Join me for this fun, informative presentation.

When looking at how to best protect your business, cybersecurity readiness should be top priority, but what is it?

Cybersecurity readiness is the ability to identify, prevent, and respond to cyber threats. Can proper data governance, risk management (including managing 3rd party risk and supply chain risk) and compliance provide a framework to always being ready?

Let’s discuss GRC & the best steps to take when quantifying cyber risk, developing your incident response plan, creating a data security policy & more.

In this informative session, we will step into the eye of the cybersecurity storm in a session that exposes the profound shift in the cyber battleground brought by Generative AI. Last year witnessed record losses to phishing and ransomware attacks, but as they say in show business, “you ain’t seen nothing yet!” Learn how the incredible power of Generative AI, that helps fortify cybersecurity defenses, is also arming cybercriminals with formidable new capabilities. This transformation will make them much more dangerous digital adversaries increasing the threat to every type and size of organization across every industry. Attendees will see the tools that cybercriminals use, and they will gain an understanding of the impact of generative AI on the most dangerous and destructive attack methods. The session will also present the next-generation defense strategies that will become necessary.

As we step into 2024, it’s clear that Software Bill of Materials (SBOMs) are finally evolving beyond a buzzword, becoming indispensable for security and legal compliance in software development. The U.S. government and regulatory bodies around the globe have incorporated SBOMs into new cybersecurity legislation and software supply chain protections – and with good reason. Without an SBOM, companies risk being blind to known-vulnerable open source components being shipped in their software applications, and much like Equifax did in 2017, will struggle to respond to new zero day vulnerability disclosures in open source components. Join Sonatype as we explore how SBOMs can enhance resilience in the face of evolving threats, discuss best practices for effective SBOM management, and provide guidance for easily integrating SBOMs into your workflow.

Getting past the hype of AI and ChatGPT, there are huge benefits to practical (and less sexy) applications of AI. And despite all the buzzwords and overpromises coming from our industry today, there actually are real and meaningful ways AI tools will help security professionals make better risk decisions, faster and more accurately. In this talk, we’ll show some examples of how AI can help predict risk, cut through complexity when making risk decisions and even help to retain senior staff while keeping them focused on the tasks that matter most.

What are the biggest threats to your business? What’s changing in the current threat landscape that you need to know about? Is ransomware still the biggest threat or is AI taking the spotlight?

On this panel our lineup of industry experts will discuss the most dangerous and emerging threats to your organization as well as the solutions that go beyond anti-malware/anti-virus to include endpoint security, vulnerability management, Active Directory monitoring, credential protection, DNS security tools, SIEM, DLP and encryption.

While threat actors constantly adapt and evolve their techniques, the tactics they employ remain limited and unchanging. A CISO with an understanding of modern attack trends can hone their focus on enduring tactics, rather than ever-changing techniques, to reverse the adversarial advantage and enable the business to better anticipate and defend against threat actors.

Join this session to examine:

• Modern attack trends and real-world individual attacks
• Understanding the motives of threat actors to craft effective security protocols and playbooks
• Increasing visibility to make better informed decisions.

Cloud computing solves many problems like flexibility, cost-efficiency & scalability, so it’s no surprise that use of the cloud is consistently growing. 

That said, it also means organizations step into unknown areas where gaps are easy to miss and hackers are quick to exploit. 

Today we will discuss all things cloud so you know what works best for your organization.

Our experts will look at hybrid and multi-cloud environments, adopting the concept of cybersecurity mesh & Zero Trust, the Secure Access Service Edge (SASE) framework, cloud-native tools & platforms, as well as why the future of network security is in the Cloud.