Name: NSX-T and container blind spots? Here’s what to do.
Start: 2023-08-16T17:00:00Z
End: 2023-08-16T17:00:43.000Z
Location: BrightTALK
Rating: 0

Gigamon® offers a deep observability pipeline that efficiently delivers network-derived intelligence to cloud, security, and observability tools. This helps eliminate security blind spots and reduce tool costs, enabling you to better secure and manage your hybrid cloud infrastructure. Gigamon has served more than 4,000 customers worldwide, including over 80 percent of Fortune 100 enterprises, 9 of the 10 largest mobile network providers, and hundreds of governments and educational organizations.

Imagine the possibilities when service providers can easily access valuable insight about their mobile subscriber base. Information such as what devices and OTT applications subscribers are using as well as when and where they use the mobile network. Marketing, advertising, infrastructure planning, customer service, and product development can all benefit from better subscriber insight, but traditional approaches to collect this data have been costly and complex. In this session, we will cover the latest Gigamon solution innovation that cost-effectively delivers enriched mobile subscriber metadata directly to data lakes and analytics engines, enabling service providers to realize the full potential of subscriber data.

Learn What’s Possible with Enriched Mobile Subscriber Analytics

GigaVUE-OS and GigaVUE-FM offer a rich set of features and capabilities - so many that users can be overwhelmed. In this session, we’ll highlight five high-value features that you may not know about but that could dramatically improve the return on your investment, optimize your workflows, make your tools more efficient, and help keep your networks healthy and secure.

Five Capabilities of GigaVUE-OS and GigaVUE-FM You May Not Know

It’s not a matter of “if” but “when” organizations are breached. That’s the premise that Federal agencies operate under and it’s one that would be prudent to follow. With an Assumption of Compromise, it’s assumed that threat actors are currently living off the land (LTOL) using applications and protocols already available in workloads. Why LTOL and similar attacks can go unnoticed is because of a critical gap in traditional logging that is often overlooked. Learn why relying on logs from a firewall or router as the single source of truth is not enough. In this session, we will take a broad look at logging from the perspective of government threat hunting, and how it can be greatly enhanced with network-derived intelligence to make it far more resilient and harder for bad actors to defeat.

The “Assumption of Compromise”: Government Agency Best Practices

The need to inspect encrypted traffic is critical given the prevalence of encrypted malware lurking in our midst. But with over 90 percent of enterprise data being encrypted, managing this traffic and determining when and where to decrypt it remains a significant challenge for many organizations. Gigamon provides a range of decryption solutions and in this session, we’ll explore the pros and cons of the most common deployment scenarios and help you to learn how to decide which model is most efficient and effective for your organization.

Decryption Lessons Learned: The Most Efficient Deployment Models

Not knowing whether a performance bottleneck is caused by the network or the application itself often leads to a “blame game” among application, network, and cloud teams. This finger pointing can delay resolution and also stifle collaboration. Join us to learn how Gigamon can help you to more quickly and precisely pinpoint the root cause of performance bottlenecks and finally end the “blame game”.

End the “Blame Games” with High-Precision App Troubleshooting

DevOps must deliver business agility and high application performance together with strong application security. How can security and infrastructure teams work with DevOps to ensure network intelligence-derived security is incorporated directly into the software development process – without compromising speed or quality? In this session we will walk you through a free-to-try, self-contained AWS-based Gigamon tool that demonstrates how network-derived intelligence can help application owners identify and prevent misconfigurations, compliance violations, and vulnerabilities.

“Wow” Your App Owners with Application Insights Derived from Deep Packet Inspection

Every security organization owns a suite of solutions composed of tools covering endpoints, applications, cloud, and network hardware.  While these tools deliver the functionality promised, threats are still getting through – so we know more work needs to be done. Folks, it’s 2024 and we still don’t know what’s running on our network!  Join us as we walk through: how you can identify critical gaps in your organization’s security posture, the components of a “modern” security posture and finally, how to use network-derived intelligence and telemetry to consolidate tool functions across multiple areas (cloud, observability, security, network) into a single cohesive and proactive security posture.

What Today’s Security Stack Can... and Can’t Do

From an operational perspective, using an agentless solution such as mirroring for virtual traffic access seems ideal. Nothing to install, easier to manage, less expensive etc. In fact, the opposite is true. Agent-based traffic access solutions are easier to configure, yield higher performance, and usually cost less than their agentless counterparts.  In this session, we’ll expose the myths and misconceptions about using an agent for traffic access. We’ll also discuss why agents for traffic access are different than traditional tool agents and explain why they might be the best option for your network.

To Tap or Not to Tap and When is an Agent Not an Agent

Cloud platforms like AWS, Azure, and GCP are modern marvels with immense scalability and flexibility. These benefits can also come with sticker shock when your cloud environment is not optimized.  For example, complex tapping and mirroring architectures often lead to unnecessarily high billing costs, especially for packet-based security tools like Cloud Network Detection & Response. In this session, we’ll examine alternative designs and solutions to the default monitoring options from public cloud platforms that can save you a bundle in infrastructure costs.

How to Slash Cloud Monitoring Costs

According to recent findings by Enterprise Strategy Group, 83 percent of organizations say scanning encrypted traffic for threats is a significant or notable concern. Meanwhile, only 34 percent of organizations say they have visibility into all the encrypted traffic in their organization, leaving them vulnerable to threats. It’s no wonder that 69 percent of organizations say they have fallen victim to an attack that used encryption to avoid detection.

However, many of the perceived challenges that organizations face regarding decryption - like complexity, performance, and cost - can be addressed through centralized decryption. In this webcast, you’ll learn how you can enable end-to-end visibility for hybrid cloud by decrypting traffic centrally and distributing those packets to all the security tools in the environment that require them for inspection.

Join us to discover how you can ensure visibility across encrypted traffic and mitigate security risks.

How to Ensure Visibility Across Encrypted Traffic

According to the 2024 Gigamon Hybrid Cloud Security Report, fewer than half of over 1,000 global IT and security leaders surveyed claim to have lateral East-West visibility across their hybrid cloud infrastructure, which includes container-to-container communications. Threat actors know this and are actively exploiting this oversight, as evidenced by recent high-profile attacks which employed lateral movement to evade detection. In this session, we will cover how you can gain simple and scalable deep observability into container environments, at both packet and metadata levels.  You’ll also learn best practices based on recent customer deployment use cases on how to acquire traffic from any container along with accessing and aggregating container traffic from multiple cloud platforms.

Deep Observability for Kubernetes Lateral Traffic

Meeting compliance standards for data privacy and security is mission critical. Whether you’re in healthcare, retail, financial services, or in the public sector, data privacy regulations require that all data-in-motion and data-at-rest for cloud applications adhere to strict security standards. However, ensuring compliance for applications running on public clouds has proven extremely challenging... until now.  In this session, we will discuss and demonstrate how organizations apply Gigamon Application Metadata Intelligence to meet and maintain regulatory compliance.

Closing the Data-in-Motion Compliance Gap

Even with encryption, ransomware and other threats can find their way into your environment. While encryption is foundational for security and privacy, adversaries can take advantage of encrypted channels to hide activities within virtual workloads and to traverse laterally across the hybrid cloud infrastructure. Gigamon Precryption™ technology is the gamechanger that gives SecOps teams plaintext visibility into encrypted traffic and lateral movements – without the complexity or overhead of traditional decryption.  This session will go through how Precryption technology reveals hidden threats plus the latest enhancements to this innovative technology.

Applying Precryption™ Technology to See What's Lurking in Encrypted Cloud Traffic

Explore the synergy between Cribl and Gigamon in enhancing data observability, network performance and security.  In today’s data driven landscape, organizations face the challenge of managing vast amounts of data while ensuring performance, security and compliance. This session will show how Cribl’s innovative data routing and transformation capabilities, combined with network intelligence from the Gigamon Deep Observability Pipeline, enable organizations to gain deeper insights that streamline operations, and power informed decisions.

Optimizing Data Observability: Harnessing the Power of Cribl and Gigamon

In hybrid environments, securing complex networks is a significant challenge due to blind spots. Blind spots in lateral traffic visibility – for both encrypted and unencrypted traffic – are a significant challenge in complex networks. Hybrid environments with multiple segments and varied infrastructure further compound this issue. To increase the challenge, the dynamic nature of containerized environments creates blind spots that hinder NAV tools like NDR from achieving comprehensive traffic visibility—an essential element of effective security incident management.  

Discover how enhanced traffic visibility, network telemetry, and application metadata can enable your NDR to detect hidden threats faster, accelerate response times, and reduce noise in hybrid cloud environments. 

Key Takeaways: 
- Understand the limitations of encrypted traffic security and application visibility 
- Learn how to leverage NDR to gain comprehensive visibility into encrypted traffic and application metadata 
- Discover how layer 2 to layer 7 visibility from enriched metadata can improve threat detection and response 
- Gain insights into best practices for implementing NDR in hybrid cloud environments

Powering NDR Visibility with Network Intelligence

Do you want to master how to license Gigamon products? During this deep-dive session, we will review our product licensing models and demonstrate how to manage them in GigaVUE Fabric Manager and the License Portal.

Product Clinic:  Gigamon Product Licensing Models

Discover how network-derived intelligence with enhanced metadata empowers you to lower security risk by proactively identifying threats, streamline PCI compliance, accelerate your Zero Trust objectives, and lower costs. In this session, you’ll learn how to unlock the full potential of your network data to gain unparalleled visibility into your hybrid cloud infrastructure and empower your InfoSec and SecOps teams to make informed decisions.

Harness the Power of Network Data with Splunk and Gigamon

The Payment Card Industry Data Security Standard (PCI DSS) sets rigorous global benchmarks for safeguarding credit card and payment transaction data. Achieving compliance can often seem daunting due to its complexity and the lack of a straightforward path. In this webinar, we’ll delve into how Gigamon’s Deep Observability pipeline can simplify and enhance your journey to PCI compliance. 

We will cover: 
- Core PCI DSS Requirements: Understand the essential standards for protecting payment data. 
- Data Generation for Reporting: Learn how to efficiently produce necessary certificates and gain visibility into IoT and Point of Sale (PoS) environments. 
-  Performance Troubleshooting: Discover methods for addressing performance issues and managing SLAs/SLOs to avoid financial penalties. 
 
Additionally, we’ll share a real-world case study highlighting how one of our customers successfully utilized the Deep Observability pipeline to achieve PCI compliance and streamline their security operations. 
 
Join us to explore practical strategies and solutions for navigating PCI DSS compliance with confidence.

Navigating PCI Compliance Leveraging Deep Observability

Dev teams are running fast iteratively modernizing apps, often without involving operations teams. Unmonitored network blind spots continue to increase attack surface and make troubleshooting more difficult, often leading to finger-pointing at NetOps teams.   

At this webinar VMware and Gigamon Product teams will provide you with walk throughs, use cases and best practices, and even show you a demo of new, cutting-edge technologies. 
- 5 steps for successful cloud migration and app modernization 
- Recommendations for containerizing and re-securing apps  
- How to eliminate all east-west blind spots, including container communications, and 
- New technology demo: Feeding intelligence from cloud traffic to your SIEM and observability tools

NSX-T and container blind spots? Here’s what to do.

VMware

NSX-T

IT Security

Cloud

Cloud Architecture

Multi Cloud

Hybrid Cloud

Containerization

Deep Observability Pipeline

Cloud Security

Welcome to the virtualization community on BrightTALK! Whether it affects servers, storage, networks, desktops or other parts of the data center, virtualization provides real benefits by reducing the resources needed for your
infrastructure and creating software-defined data center components. However, it can also complicate your infrastructure. Join this active community to learn best
practices for avoiding virtual machine sprawl and other common virtualization pitfalls as well as how you can make the most of your virtualization environment.

Virtualization

Are you an IT service management professional interested in developing your knowledge and improving your job performance? Join the IT service management community to access the latest updates from industry experts. Learn and share insights related to IT service management (ITSM) including topics such as the service desk, service catalog, problem and incident management, ITIL v4 and more. Engage with industry experts on current best practices and participate in active discussions that address the needs and challenges of the ITSM community.

IT Service Management

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The data center management community focuses on the holistic management and optimization of the data center. From technologies such as virtualization and cloud computing to data center design, colocation, energy efficiency and monitoring, the BrightTALK data center management community provides the most up-to-date and engaging content from industry experts to better your infrastructure and operations. Engage with a community of your peers and industry experts by asking questions, rating presentations and participating in polls during webinars, all while you gain insight that will help you transform your infrastructure into a next generation data center.

Data Center Management

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

NSX-T and container blind spots? Here’s what to do.

Presented by

About this talk

More from this channel