Name: Firewalls and VPNs: A Risky Business
Start: 2025-01-09T18:00:00Z
End: 2025-01-09T18:00:46.000Z
Location: BrightTALK
Rating: 0

Back in the day when your users were all on the network and your applications resided in your physical data center, it made sense to establish a secure perimeter around your network. But those days are over, the perimeter is gone, and network security is all but irrelevant.

Instead, you need to put your defenses and controls where the connections occur— the internet — so that every connection is fast and secure, no matter how or where users connect or where their applications reside.

By moving applications and infrastructure to the cloud and untethering employees from their desks, you can realize tremendous advantages in productivity, agility, and cost containment. With our 100% cloud built secure platform, Zscaler can help you make the move to the cloud, securely.

Zscaler Private Access (ZPA) has been at the forefront of securing remote and in-office users for the last few years, with several of our customers benefiting from fast deployment as well as quick, secure transitions to remote work. ZPA now boasts of several new features to add to our market-leading ZTNA to cover many more use cases and deliver robust, comprehensive security to private apps.

Join ZPA product leaders in this webinar as they unveil new features expanding the use cases covered by ZPA and see firsthand how they can support your zero trust journey.

Introducing secure access to legacy network-connected resources such as VoIP and server-to-client applications
Gain visual insights for a detailed understanding of app segment allocation and policy utilization
Ensure business continuity with uninterrupted zero trust access to private applications, even when the Zscaler cloud is unreachable
Extend the same reliable zero trust access to a partner organization’s network

5 game-changing ZTNA capabilities with ZPA

VPNs, whether on-premises or cloud-delivered, create unnecessary risk by exposing the attack surface and failing to prevent lateral threat movement if breached. Despite these vulnerabilities, organizations continue to use VPNs to connect remote users to applications. Recently, the Cybersecurity and Infrastructure Security Agency (CISA) released an emergency directive that mandated US federal agencies to immediately disconnect the VPN instances of a VPN vendor. In the face of the serious risks posed by VPNs, it is time for organizations across industries to transition from outdated VPNs to a zero trust architecture.

Join Deepen Desai, Chief Security Officer at Zscaler, and Joby Menon, VP, ZPA Product Management at Zscaler, as they discuss this topic. In this on demand webinar, you will learn about:

Recent VPN vulnerabilities and their impact on organizations, including insights from Zscaler Threatlabz
Risks associated with using VPNs to access your organization’s resources
How Zscaler’s zero trust private access solution enables secure application access for all users, from any location, without the attack surface and lateral threat movement vulnerabilities of VPNs

From Risk to Resilience: Transitioning from VPNs to Zero Trust Architecture

"It's no secret that organizations now store their crown jewels in the cloud. That's why we've seen a significant rise in cloud data breaches. However, cloud data breaches follow distinct patterns that can be analyzed.

Watch on demand session led by Zscaler security experts Srikanth Nellore, Sr. Director of Product Management and Arnab Roy, Principal Product Manager, where they dissect recent massive cloud data breaches and analyze how it happened, best practices to mitigate these risks, and lessons that can be learned. They use real-world examples and experiences from customers across different industries to explain:

The top three public cloud data security challenges
Modern techniques attackers are using to thwart or bypass traditional data security tools
The stages of a data breach — and modern solutions to combat each one
How DSPM can reduce the risk of data breaches"

Data Protection 101 Your First Five Steps

"Building a data program and strategy can be a daunting task. Cloud and mobility has distributed data far and wide, and most organizations are struggling to just FIND their data, let alone secure it from the multitude of risks

Join this webinar to learn how to deliver great data protection and where to begin your journey. You'll explore key concepts to secure distributed data everywhere and discover why a unified platform approach should top your list of data protection strategies.

This session will help you:

Understand top risks that impact your data
Learn the key channels you should be focusing on securing
See the value building a strategy around a unified platform
Get clarity on how to move forward with delivering data protection"

Dissecting Cloud Data Breaches with DSPM

"Le SD-WAN tradizionali non sono veramente Zero Trust - Quando si affidano ad architetture di rete e di sicurezza legacy per connettere una filiale a Internet o ad altre applicazioni in un ambiente cloud pubblico o nei data center, le organizzazioni si trovano davanti a non poche sfide, tra cui: una maggiore complessità, mancanza di visibilità, scarse prestazioni e scalabilità, costi elevati.

Scoprite in un breve video come ridurre al minimo l'aumento del rischio di movimenti laterali e quali sono i casi d'uso della Zero Trust SD-WAN."

Zero Trust SD-WAN in breve

"In an era where a vast majority of cyberattacks utilize encryption to evade detection, protecting your organization's data while maintaining visibility into website traffic is more challenging than ever. Encryption is essential for ensuring privacy and integrity, but it also introduces new risks by obscuring malicious activities. How can you effectively address this critical cybersecurity issue?

In this podcast-style conversation, Derek Brink, CISSP, VP and Research Fellow, at Aberdeen Strategy & Research joins Yaroslav Rosomakho, CTO at Zscaler to look deeper into the impact of encryption on website security.

Join them as they discuss:

1. The dual nature of encryption in making websites both more and less secure
2. Aberdeen Research Report on Impact of Encryption in 2024
3. Techniques to detect and mitigate threats in encrypted website traffic while adhering to complex regulatory compliance requirements.
4. Innovations from Zscaler and where the market is headed"

Understanding the Impact of Encryption on Website Security: A conversation with Aberdeen Strategy & Research

"Les entreprises accélèrent leur transformation numérique avec l’adoption de services dans le Cloud (SaaS, IaaS), le travail hybride avec la mobilité et l’adoption de nouvelles technologies comme l’IA Générative. Ces transformations nécessitent aussi une transformation de la sécurité des Entreprises et plus particulièrement de la sécurité de leurs données.

Cette donnée n’étant plus cantonnée au traditionnel périmètre du DataCenter, il devient nécessaire d’avoir une visibilité et un contrôle de données qui soit multi-canal : quelque-soit la localisation du collaborateur (sur site, en dehors du site ou partenaire), son terminal (Entreprise ou BYOD), ou la destination de cette donnée (Internet, SaaS, Privée), la donnée doit-être protégée de la même façon. Une stratégie de protection de donnée efficace doit être facile à mettre en œuvre et réduire les couts de mise en œuvre en consolidant plusieurs cas d’usages et outils disparates. Regardez ce webinaire à la demande pour comprendre comment faire passer votre protection des données au niveau supérieur !"

Protection des données : Il est temps de repenser votre stratégie. Voici pourquoi

"Generative KI-Lösungen wie ChatGPT, Midjourney oder Microsoft Copilot sind wertvolle Werkzeuge für Unternehmen. Sie erzeugen in Sekundenschnelle neue Texte und Bilder, entlasten Mitarbeiter von Routineaufgaben und tragen so zu mehr Effizienz und Produktivität bei.

Der Einsatz generativer KI will jedoch gut überlegt und geplant sein, wie Ihnen Andrea Polesel von Zscaler in diesem Webcast zeigt.

Er beantwortet darin unter anderem folgende Fragen:

1. Was kann passieren, wenn ich generative KI zu sorglos einsetze?
2. Welche Strategien gibt es, um das Risiko zu begrenzen?
3. Wie setze ich diese Strategien in die Praxis um?
4. Welche Rolle spielt Zero Trust beimsicheren Einsatz generativer KI-Lösungen?"

"Wie Zero Trust generative KI sicherer macht: Risiken erkennen, bewerten, minimieren"

"En una economía en red, donde las personas trabajan desde cualquier ubicación y en el que la nube tiene cada vez más peso en funciones de misión crítica, los actores de seguridad en cloud tienen cada vez más relevancia para las organizaciones.

En un nuevo webinar, expertos de Foundry y la compañía de soluciones de ciberseguridad Zscaler debaten en torno a cómo garantizar la seguridad y la continuidad del negocio en la nube con una respuesta ágil ante cualquier tipo de amenaza o riesgo."

"Resiliencia en las soluciones de seguridad en cloud: cómo asegurar el rendimiento y la continuidad del negocio"

Cybercriminals capitalized on generative AI breakthroughs in 2023, driving a 58% spike in phishing compared to 2022. From AI-driven deepfakes and vishing to QR CAPTCHA scams, attackers are innovating rapidly. Is your organization ready to defend against the next wave of sophisticated phishing attacks?

Watch our on-demand webinar to learn about the latest phishing attack discoveries, trends, and predictions from the Zscaler ThreatLabz 2024 Phishing Report, derived from the analysis of 2 billion phishing transactions captured in the world’s largest security cloud. ThreatLabz experts will unpack key findings and offer guidance on how to safeguard against phishing threats.

Watch now to learn about:

Trending phishing scams and emerging attack vectors
Top phishing targets by country, industry, and more
Phishing predictions for 2024–2025
Best practices and zero trust strategies for phishing defense

ThreatLabz 2024 Phishing Report: Trends and Tactics in the Age of AI

Watch this on-demand webinar for a deep dive into the recently released Zscaler ThreatLabz 2024 AI Security Report. Zscaler CISO Deepen Desai and ThreatLabz security researcher Deepak Shanker explore the dynamic AI landscape, shedding light on its evolving security challenges.

Key takeaways:

Comprehensive understanding of the AI security landscape, featuring real-world examples of AI-related incidents.
Practical insights and recommendations for organizations navigating the challenges of AI integration.
Guidelines for leaders developing AI use policies and security measures to protect against the evolving AI landscape.

Navigating the AI Security Horizon: Insights from the Zscaler ThreatLabz 2024 AI Security Report

Join our webinar to learn how the Zscaler acquisition of Airgap will simplify zero trust segmentation for organizations everywhere. Naresh Kumar, VP of Products at Zscaler and Ritesh Agrawal, CEO of Airgap Networks will discuss the key benefits for customers.

In this session, we will discuss:

How the Zero Trust Exchange will now protect east-west traffic in branch offices, campuses, factories and plants with critical OT infrastructure.
How this next step in our SASE leadership will simplify segmentation and eliminate the need for east-west firewalls, NACs and microsegmentation.
How Airgap fits into our Zero Trust Segmentation offerings that already secure connections for users, apps, locations, and clouds.

Extending SASE Leadership: Why Zscaler is Acquiring Airgap

As organizations embrace zero trust for cybersecurity, network architectures need to evolve. Traditional network architectures grant trust by default, which facilitates the lateral movement of threats such as ransomware. Networking needs a new approach built on zero trust principles.

Join Zscaler for an insightful session featuring Gartner VP Analyst Jonathan Forest and Naresh Kumar, VP of Product at Zscaler, as they discuss why zero trust networking is a critical step in any successful SASE implementation and offer a pragmatic path forward.

This on-demand webinar will cover:

Key SASE, SSE, and SD-WAN trends
A practical path to zero trust networking
How Zscaler Zero Trust SD-WAN enables a single vendor SASE framework
Don't miss this opportunity to learn how you can revolutionize your network security.

Unlocking the Future of SASE with Zero Trust Networking

According to the Cybersecurity Insiders 2024 VPN Risk Report, 56% of enterprises have experienced a cyberattack in the past year that targeted unpatched VPN vulnerabilities. While VPNs remain a commonly used approach for remote connectivity, recent security incidents have exposed their glaring security loopholes.

In this on-demand webinar, we’ll explore key survey findings and security trends from the latest VPN Risk Report with Holger Schulze, CEO and Founder at Cybersecurity Insiders, and Kevin Schwarz, Zscaler Head of CTOs for EMEA & APAC.

Zscaler and Cybersecurity Insiders, surveyed over 600 security, IT, and networking professionals to better understand VPN-related issues, including management complexity, user experience, security challenges, cyberattack risks, and enterprise zero trust adoption.

In this session, we will discuss:

The top VPN security risks and management challenges
Cyberattack trends exploiting VPN vulnerabilities and lateral movement risk
The strategic importance of zero trust and transitioning from a VPN to a more secure framework
Best practices for implementing zero trust to secure remote access followed by an interactive Q&A with the experts

Is Your VPN Secure? Key Findings from 2024 Risk Report Revealed

With more than 175 ZB of data moving to the cloud by 2025, it’s a no-brainer that cloud data should become a security team’s top priority. However, the cloud has proven to be complex and vulnerable, leaving cloud data at risk. That’s why we’ve seen the rise of data security posture management (DSPM) which enables organizations to effectively discover, classify, and secure data in the cloud. With any emerging technology, how do you separate what’s actually needed from the glitz and glamor?

Join our panel of security experts, including Robert Bolton, Sr. Product Manager, and Kalie Radsmikham, Sr. Director, Product Marketing as they guide you through the essentials of DSPM and why it needs to be part of your data protection strategy.

 This session will cover:

Top data security challenges and trends
5 must-haves when looking for a DSPM solution
How to kick-start your DSPM journey
Whether you're new to DSPM or looking to enhance your knowledge, this session provides valuable insights, best practices, and things to avoid when choosing a DSPM solution and the right implementation approach.

Why Does DSPM Belong In Your Data Protection Strategy?

No data protection program is complete without CASB and DLP. While these technologies can help to restore control, there are still challenges that need solving.

Join this discussion to hear game-changing concepts around data protection, such as:

The best architecture for delivering CASB, DLP, and data protection
New browser isolation innovations that can enable easy, risk-free BYOD access
How to better secure apps like Salesforce and Microsoft 365 from data loss
Why you need to think holistically about Cloud Security Posture Management
Guidance and best practices from real-life deployments

Innovations That Will Revolutionize CASB and Data Protection

Learn about innovations that deliver unified posture management across IaaS and SaaS, empower safer usage of GenAI, and expand protections across data detection and response (DDR) and data lineage.

The AI Data Protection Platform Launch

Firewalls and VPNs, whether on-premises or cloud-delivered, put organizations at risk by exposing their attack surface and failing to prevent lateral threat movement if breached. In a year in which we have already witnessed back-to-back disclosures of zero-day vulnerabilities from several leading vendors of Firewalls and VPNs, the latest one - CVE-2024-3400, with a CVSS score of 10, is a stark reminder that if you are reachable, you are breachable. The time is now to move away from these legacy architectures to Zero Trust.

Watch this webinar as we will discuss this critical topic, including:

Recent zero-day vulnerabilities and their impact on organizations, including insights from Zscaler Threatlabz
Risks associated with using legacy Firewalls and VPNs to access your organization’s resources
How Zscaler’s zero trust architecture enables secure application access for all users, from any location, without the attack surface and lateral threat movement vulnerabilities of VPNs and Firewalls

Firewalls and VPNs: A Risky Business

Firewalls

Cloud

Zero Trust

ThreatLabz

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Firewalls and VPNs: A Risky Business

Presented by

About this talk

More from this channel