Name: Mastering Least Privilege Access: The Art of Rightsizing Policies [NA]
Start: 2023-11-14T19:00:00Z
End: 2023-11-14T19:00:35.000Z
Location: BrightTALK
Rating: 0

Rapid7 is creating a more secure digital future for all by helping organizations strengthen their security programs in the face of accelerating digital transformation. Our portfolio of best-in-class solutions empowers security professionals to manage risk and eliminate threats across the entire threat landscape from apps to the cloud to traditional infrastructure to the dark web. We foster open source communities and cutting-edge research–using these insights to optimize our products and arm the global security community with the latest in attackers methods. Trusted by more than 10,000 customers worldwide, our industry-leading solutions and services help businesses stay ahead of attackers, ahead of the competition, and future-ready for what’s next.

An essential session for leaders and practitioners, this 30-minute session provides a comprehensive overview of the current security landscape, examining macro influences on organizations and Security Operations Center (SOC) teams.

The session explores the dynamic forces at play, from emerging threat vectors to evolving regulations and geopolitical dynamics. Gain proactive guidance on navigating these challenges and empower your organization to respond confidently to emerging security risks.

Take advantage of this opportunity to stay ahead of the curve and strengthen your defenses against evolving threats. Register now to fortify your security posture and safeguard your organization's digital assets.

[NA] The State of Security

[EMEA] The State of Security

[APAC] The State of Security

Join Rapid7 Labs’ threat analytics and vulnerability intelligence leaders as they take a deep dive into the brand new 2024 Attack Intelligence Report. By examining recent notable vulnerabilities and high-impact attacks, the experts of Rapid7 Labs have identified trends every SecOps team should pay attention to, adding valuable context so you can command your attack surface.

Get the data and insights that your business can use to better understand and guard against some of the most significant attacks and TTPs occurring in today’s cyber threat landscape, directly from the researchers behind the report.

[NA] Know Your Adversary: Insights from the 2024 Attack Intelligence Report

[EMEA] Know Your Adversary: Insights from the 2024 Attack Intelligence Report

[APAC] Know Your Adversary: Insights from the 2024 Attack Intelligence Report

Creating a resilient cybersecurity culture within organizations is essential to effectively combat evolving cyber threats. In this 30-minute session, security experts and people and culture leaders explore strategies for cultivating a strong cybersecurity culture and fostering employee awareness, engagement, and proactive behaviours.

Learn how executives can enhance their cyber mission and vision statements to create a positive cybersecurity culture that permeates the business. Gain practical insights on embedding cybersecurity principles into the workforce's mindset and fostering personal accountability for cybersecurity practices.

Explore the crucial role of accountability, shared values, and clear cyber strategies in mitigating operational risk, enhancing team efficiency, and optimizing resources even in challenging financial landscapes.

[NA] Commander in Chief: Enhancing Cybersecurity Culture

[APAC] Commander in Chief: Enhancing Cybersecurity Culture

Do we really need a human to do that? Embrace automation and stay ahead of attackers

In today’s interconnected digital landscape, the threat of attacks looms larger than ever before. As cybercriminals continue to refine their tactics, the risk to businesses of all sizes escalates exponentially. It’s crucial now, more than ever, to strengthen our defenses with proactive automated cybersecurity strategies.

Join Ellis Fincham, Director D&R EMEA at Rapid7 and learn how to embrace automation to stay ahead of attackers, what you need to consider and what is ultimately necessary to be successful. 

Ellis has over 15 years experience split across technology platforms, SaaS providers and security tooling, assisting businesses and public service organisations to improve their cybersecurity posture.

Embrace automation and stay ahead of attackers

The European Union’s NIS2 Directive, aimed at strengthening cybersecurity in critical sectors, is set to come into force in October 2024. The directive will significantly expand its reach, affecting over 160,000 organisations in Europe.

The new requirements mandate that affected entities implement appropriate security measures to manage cyber risks effectively. As the deadline for NIS 2 implementation approaches, ensuring compliance has become a top priority for organisations across Europe. To assist you in navigating these complexities and fortifying your cybersecurity posture, we invite you to join our webinar to:
- Gain valuable insights into the NIS 2 directive and its impact on your organisation
- Learn how to build and maintain a resilient cybersecurity framework
- Discover practical strategies for achieving and maintaining compliance
- Understand how to leverage technology solutions to enhance your cybersecurity posture

Who should attend: Cybersecurity Professionals, IT Leaders, Compliance Officers, any stakeholders involved in cybersecurity and regulatory compliance.

Equip yourself with the knowledge to strengthen your cyber resilience and ensure compliance with NIS 2. 

Join us in this informative session and gain expert insights and practical advice from Rapid7 VP, Global Government Affairs and Public Policy, Sabeen Malik and InsightCloudSec Product Manager, Lara Sunday as they discuss with Rapid7 Cloud Security Specialist Patrick Sonou how to leverage the NIS2 Directive to drive resilience and reduce your organisation’s exposure to risk.

NIS 2 & Preparing your Organisation for Compliance [EU]

Comment connaître son adversaire ? Découvrez le nouveau rapport Attack Intelligence Report 2024 sur les renseignements sur les attaques lors de notre webinar.

Au cours des dernières années, notre rapport annuel sur les renseignements sur les vulnérabilités a été un document incontournable pour les professionnels de la sécurité afin de mieux comprendre le paysage des menaces. Cette année, nous passons à la vitesse supérieure en combinant les données et les analyses de notre équipe Labs avec les données de nos équipes de détection et de réponse gérées et de renseignement sur les menaces, qui sont sur le terrain jour après jour.

Rejoignez Julien Soukhavong, Head of Threat and XDR Southern Europe chez Rapid7 pour discuter des dernières informations et enseignements sur les attaques.

Dans le rapport, vous obtiendrez :
- 14 mois d’analyse des vulnérabilités et des attaquants par nos chercheurs experts, nos experts en 
  renseignement sur les menaces et nos praticiens de la détection et de la réponse 
- Les dernières nouvelles sur les ransomwares alors qu’ils atteignent des niveaux proches de la pandémie 
- L’état des lieux en ce qui concerne les auteurs de menaces parrainés par des États 
- Des conseils pratiques pour sécuriser vos réseaux

Connaître son adversaire : le nouveau "Attack Intelligence Report 2024"

In einer Zeit, in der Cybersicherheit von höchster Bedeutung ist, ist es zunehmend wichtig, die Entwicklung der Infrastrukturüberwachung zu untersuchen. Dabei liegt der Fokus des Interesses auf dem Übergang von Endgeräten zur Cloud. Traditionelle Überwachungssysteme passen nicht mehr in die sich verändernde Bedrohungslandschaft, denn der rasante Aufstieg von Cloud-Technologien hat die Verwaltung von Unternehmensinfrastrukturen grundlegend verändert. 

Tauchen Sie mit uns ein in eine Welt der Cloud, in der flüchtige Endpunkte, nicht-wiederverwendbare Endpunkte und Mikroservices die Infrastrukturverwaltung revolutionieren. 

Wir laden Sie ein, an unserem Webinar mit Miklós Csécsi, Senior Security Solutions Engineer bei Rapid7, teilzunehmen, um u.a. diese Fragestellung tiefergehend zu beantworten.

Weitere Punkte:
1. Die Skalierbarkeit: Warum moderne Lösungen, speziell für Skalierbarkeit konzipiert, besser geeignet sind, um mit der neuen Realität Schritt zu halten.
2. Die Kostenfrage: Lizenzkosten für traditionelle Systeme können erheblich sein und die finanziellen Ressourcen Ihrer Organisation belasten. Welche Vorteile bieten hier die neuen Systeme?
3. Bei der Entscheidung für oder gegen traditionelle Systeme sollten Anforderungen, Technologiestapel und IT-Strategie sorgfältig geprüft werden, um festzustellen, ob traditionelle Überwachungssysteme noch angemessen sind. Welche Überwachungslösung passt am besten zu Ihrer IT-Strategie?
4. Sicherheit und Effizienz: Wann ist eine moderne und agile Überwachungslösung besser dazu geeignet, die Sicherheit und Effizienz Ihrer Infrastruktur zu gewährleisten?

Security Journey vom Endpoint in die Cloud

A modern approach to exposure management is a combination of process and technology. New solutions designed to help organizations understand and manage their attack surface include External Attack Surface Management (EASM) and Cyber Asset Attack Surface Management (CAASM), these can give security practitioners a 360-degree view of their environment, with the relevant context and insights to prioritize exposure remediation effectively.

Join Rapid7’s panel of experts for part 3 in the “Command Your Attack Surface” series, as we will look at the critical use cases driving the adoption of attack surface and exposure management technologies:

  -Identifying security coverage gaps & non-compliant assets.
  -Detecting Shadow IT & ungoverned assets.
  -Prioritizing vulnerabilities based on risk and business context.
  -Improving Incident Response efficiency

Meeting the Exposure Management Challenge: Key use cases for success

A modern approach to exposure management is a combination of process and technology. New solutions designed to help organizations understand and manage their attack surface include External Attack Surface Management (EASM) and Cyber Asset Attack Surface Management (CAASM), these can give security practitioners a 360-degree view of their environment, with the relevant context and insights to prioritize exposure remediation effectively.

Join Rapid7’s panel of experts for part 3 in the “Command Your Attack Surface” series, as we will look at the critical use cases driving the adoption of attack surface and exposure management technologies:
  -Identifying security coverage gaps & non-compliant assets.
  -Detecting Shadow IT & ungoverned assets.
  -Prioritizing vulnerabilities based on risk and business context.
  -Improving Incident Response efficiency

As organizations grow increasingly-reliant on cloud environments to support and grow their businesses, safeguarding against cloud-specific threats has never played a more critical role in maintaining a strong security posture.

This 30-minute webinar delves into proven tactics for pinpointing and detecting threats across complex hybrid and multi cloud environments. During the session Rapid7 experts will explore the unique challenges cloud infrastructure presents and outline strategies for effectively adapting your security programs.

Whether you’re looking to proactively mitigate vulnerabilities or detect malicious activity the moment it happens, you’ll gain practical insights to strengthen your security posture and take command of your cloud attack surface.

[NA] Command Your Cloud: Anticipate, Pinpoint, and Act On Cloud Threats

[EMEA] Command Your Cloud: Anticipate, Pinpoint, and Act On Cloud Threats

An approach to Digital Operational Resilience Act

Join us for an insightful webinar, "Rapid7 Perspective on Cloud and DORA," where we delve into the intricacies of the Digital Operational Resilience Act (DORA) and its implications for cloud security. 

Featuring Sabeen Malik, VP Global Government Affairs and Public Policy, Patrick Sonou, Enterprise Cloud Security Specialist and Lara Sunday, Product Manager at Rapid7, this webinar promises to equip you with essential knowledge and practical strategies to navigate the evolving regulatory landscape.

Agenda
What Is DORA: Understand the core principles and objectives of the Digital Operational Resilience Act (DORA) and its significance in the context of cloud security.

Relationship between NIS2 and DORA: Explore the interplay between the Network and Information Security Directive (NIS2) and DORA regulations, and how they collectively shape compliance requirements.

How Can a CNAPP Help with DORA Compliance? Gain insights into how Cloud Native Application Platforms (CNAPPs) can streamline DORA compliance efforts, enhancing your organization's resilience in the face of cyber threats.

How Can Rapid7 Cloud Risk Complete Platform Help You Ensure Compliance? Discover how the Rapid7 Cloud Risk Complete Platform provides comprehensive solutions to address DORA compliance challenges, empowering you to safeguard your cloud infrastructure effectively.

Join us as we unpack the complexities of DORA and offer practical strategies to bolster your organization's cloud security posture. Don't miss this opportunity to stay ahead in the compliance landscape and fortify your digital resilience.

Rapid7 perspective on cloud and DORA

[APAC] Command Your Cloud: Anticipate, Pinpoint, and Act On Cloud Threats

The massive scale of cloud environments leads to teams potentially managing millions of distinct identities at any given time across their organization. As a result, security teams often struggle to implement and manage access policies that balance the integrity and security of their organization’s network, users and data with the efficiency and effectiveness of their counterparts in the development and DevOps teams. Ideally, teams work to enforce least privilege access (LPA) strategies that focus on limiting access and privileges to only those that a given user, resource or service needs to do their respective work - and nothing more than that - but this can often be easier said than done. 

Join Rapid7's Cathal O’Neill and Tyler Terenzoni, where they’ll discuss the challenges that lead to excessive permissions and showcase how Rapid7 InsightCloudSec can help: 

- Identify key identity-related risk signals in real time across all your cloud environments. 
- Uncover toxic combinations that increase risk associated with a given identity. 
- Narrow the scope of investigation to prioritize remediation efforts based on likelihood of exploitation and potential impact. 
- Continuously review permission usage and intelligently recommend remediation policies to enforce LPA based insight into unused permissions and/or anomalous activity.

Mastering Least Privilege Access: The Art of Rightsizing Policies [NA]

Access Management

Cloud

Cloud Architecture

Network Access Control

Network Architecture

Identity Management

Identity Services

Cloud Adoption

Risk Management

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The unexpected nature of natural disasters and other disruptive events means that preparation is key to managing disaster recovery and business continuity planning. Join the business continuity and disaster recovery community for live and recorded presentations discussing best practices for business continuity planning, disaster recovery programs and business continuity management. Learn from BCDR experts to develop your critical infrastructure and gain insight into tactical solutions to your BCDR issues.

Business Continuity / Disaster Recovery

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Thousands of healthcare IT professionals compose the health IT community on BrightTALK. Learn alongside them with relevant webinars on healthcare IT compliance, big data in healthcare and IT solutions for healthcare organizations. Join the conversation by asking questions and engaging with other participants during live webinars and organized discussions.

Health IT

Healthcare

Join this new, vibrant community to learn and connect with top thought leaders, startups and banks who are disrupting the financial services industry. Keep up with the latest news and trends in Fintech and take part in lively debates on topical issues and challenges.

Fintech

The accounting and finance community on BrightTALK features presentations from leading accountants and finance professionals. The accounting community includes tax planning strategies, QuickBooks webinars and other accounting webinars, while the finance community features presentations on financial capital regulations and forensic data analytics. Join the conversation by attending live financial and accounting presentations and connecting with industry thought leaders.

Finance

Get powerful insights to run your business. CEOs, CFOs, CMOs, COOs, CTOs and CIOs are among the leaders in this community who connect with peers and experts to grow their businesses.

CxO Strategy

In the business management community, commercial experts will be sharing webinars and videos on an array of subjects. From sales and marketing, to finance, productivity and growth, this content will help you stay up-to-date with the current economic environment and provide timely management insight to drive business growth.

Mastering Least Privilege Access: The Art of Rightsizing Policies [NA]

Presented by

About this talk

More from this channel