Name: Gigamon Part 2 - Threat Detection in TLS: The Good, Bad & Ugly
Start: 2018-05-31T17:00:00Z
End: 2018-05-31T17:00:58.000Z
Location: BrightTALK
Rating: 4.7

Gigamon offers a deep observability pipeline that harnesses actionable network-level intelligence to amplify the power of observability tools. This powerful combination enables IT organizations to assure security and compliance governance, speed root-cause analysis of performance bottlenecks, and lower operational overhead associated with managing hybrid and multi-cloud IT infrastructures.

Unlocking Speed, Precision, and Efficiency in NDR 

NDR is a critical component in most organizations’ cybersecurity tool stack, and ExtraHop is one of the leaders in the NDR market. The Gigamon Deep Observability Pipeline increases the speed and precision of ExtraHop’s threat detection by ensuring it has access to all network traffic regardless of whether this is data center or cloud traffic. Join WWT, ExtraHop and Gigamon experts as they discuss how ExtraHop and Gigamon combine to provide: 

- The fastest, most precise, and efficient network threat detection 
- Access to lateral, encrypted and container traffic to eliminate blind spots  
- Massively reduced cloud traffic access costs

Maximizing Network Threat Detection: Enhancing Security

As organizations migrate to the cloud, they face a new wave of cybersecurity challenges. Today’s security measures frequently fall short in detecting and responding to threats that move laterally across virtual infrastructure, often using encryption to hide. In this webinar, we will cover how a single cybersecurity program built on network visibility across hybrid cloud environments can lead to effective threat management against today’s attacks. 

 

Join us as we discuss: 

 

- Ransomware attack techniques, focusing on virtual lateral traversal 

- Deep packet inspection’s role in identifying and mitigating network threats 

- Illuminating blind spots in your hybrid cloud environments to reduce risk posed by lateral movement offensive techniques  

- Incident response strategies for rapid containment and remediation of network threats 

- Best practices for integrating threat management into your hybrid cloud security architecture 

 

Attendees will gain a deeper understanding of the latest threats using network traffic as an attack vector and walk away with actionable insights to improve their organization's hybrid cloud security posture from comprehensive network visibility.

Cybersecurity Fundamentals: Building Strong Defenses from Network Observability

GigaVUE-OS and GigaVUE-FM offer a rich set of features and capabilities - so many that users can be overwhelmed. In this session, we’ll highlight five high-value features that you may not know about but that could dramatically improve the return on your investment, optimize your workflows, make your tools more efficient, and help keep your networks healthy and secure.

Five Capabilities of GigaVUE-OS and GigaVUE-FM You May Not Know

The need to inspect encrypted traffic is critical given the prevalence of encrypted malware lurking in our midst. But with over 90 percent of enterprise data being encrypted, managing this traffic and determining when and where to decrypt it remains a significant challenge for many organizations. Gigamon provides a range of decryption solutions and in this session, we’ll explore the pros and cons of the most common deployment scenarios and help you to learn how to decide which model is most efficient and effective for your organization.

Decryption Lessons Learned: The Most Efficient Deployment Models

From an operational perspective, using an agentless solution such as mirroring for virtual traffic access seems ideal. Nothing to install, easier to manage, less expensive etc. In fact, the opposite is true. Agent-based traffic access solutions are easier to configure, yield higher performance, and usually cost less than their agentless counterparts.  In this session, we’ll expose the myths and misconceptions about using an agent for traffic access. We’ll also discuss why agents for traffic access are different than traditional tool agents and explain why they might be the best option for your network.

To Tap or Not to Tap and When is an Agent Not an Agent

Cloud platforms like AWS, Azure, and GCP are modern marvels with immense scalability and flexibility. These benefits can also come with sticker shock when your cloud environment is not optimized.  For example, complex tapping and mirroring architectures often lead to unnecessarily high billing costs, especially for packet-based security tools like Cloud Network Detection & Response. In this session, we’ll examine alternative designs and solutions to the default monitoring options from public cloud platforms that can save you a bundle in infrastructure costs.

How to Slash Cloud Monitoring Costs

Explore the synergy between Cribl and Gigamon in enhancing data observability, network performance and security.  In today’s data driven landscape, organizations face the challenge of managing vast amounts of data while ensuring performance, security and compliance. This session will show how Cribl’s innovative data routing and transformation capabilities, combined with network intelligence from the Gigamon Deep Observability Pipeline, enable organizations to gain deeper insights that streamline operations, and power informed decisions.

Optimizing Data Observability: Harnessing the Power of Cribl and Gigamon

The public cloud has been a game-changer for many organizations. In contrast to traditional on-premises architectures, it enables applications to be deployed with flexibility and agility. The downside is that public cloud costs can be high and, in some cases, exorbitant when it comes to adding management capabilities like ensuring visibility. Join Gigamon CFO, Dave Arkley, and resident cost-expert Ryan Mahoney, as they detail how Gigamon helps you to gain the pervasive cloud visibility you need while lowering your total cost of ownership by up to 80 percent.

Gain Cloud Visibility and Lower TCO by up to 80 Percent

The DoD Cybersecurity Reference Architecture is emerging as one of the key Zero Trust Architecture models for both government agencies and commercial enterprises. It is a detailed – and practical – architecture that clearly outlines the steps toward implementing Zero Trust.     

Please join Executive and Zero Trust Thought Leaders, Live Action CEO and Co-Founder, John Smith, and Bassam Khan, Vice President of Product and Technical Marketing, as they discuss:  
- How to meet Network, Orchestration/Automation and Visibility/Analytics requirements  
- How to manage encrypted data   
- The importance of Lateral or East-West visibility in Zero Trust

Mapping to DoD Zero Trust Capabilities: A Practical Guide

Join us for an insightful panel discussion on Closing the Cybersecurity Preparedness Gap with Deep Observability, featuring Gigamon customers. This session will delve into the security challenges facing CISOs today, moderated by Gigamon Chief Security Officer Chaim Mazal. Customers will share real-world experiences, strategies, and solutions they have implemented to better secure and manage their hybrid cloud infrastructure. Gain valuable insights on strengthening your organization's hybrid cloud security posture.

Customer Panel Discussion: Closing the Cybersecurity Gap, Moderated by Gigamon CSO

Imagine the possibilities when service providers can easily access valuable insight about their mobile subscriber base. Information such as what devices and OTT applications subscribers are using as well as when and where they use the mobile network. Marketing, advertising, infrastructure planning, customer service, and product development can all benefit from better subscriber insight, but traditional approaches to collect this data have been costly and complex. In this session, we will cover the latest Gigamon solution innovation that cost-effectively delivers enriched mobile subscriber metadata directly to data lakes and analytics engines, enabling service providers to realize the full potential of subscriber data.

Learn What’s Possible with Enriched Mobile Subscriber Analytics

Gigamon Product Clinic #3: GigaVUE Cloud Suite Dependencies - AWS Ports & Protocols

Join us for another clinic in our GigaVUE Cloud Suite Dependencies series. We will cover the details of AWS ports and protocols that you need to be familiar with if you are installing, configuring, and operating our products.

GigaVUE Cloud Suite Dependencies - AWS Ports & Protocols

Not knowing whether a performance bottleneck is caused by the network or the application itself often leads to a “blame game” among application, network, and cloud teams. This finger pointing can delay resolution and also stifle collaboration. Join us to learn how Gigamon can help you to more quickly and precisely pinpoint the root cause of performance bottlenecks and finally end the “blame game”.

End the “Blame Games” with High-Precision App Troubleshooting

DevOps must deliver business agility and high application performance together with strong application security. How can security and infrastructure teams work with DevOps to ensure network intelligence-derived security is incorporated directly into the software development process – without compromising speed or quality? In this session we will walk you through a free-to-try, self-contained AWS-based Gigamon tool that demonstrates how network-derived intelligence can help application owners identify and prevent misconfigurations, compliance violations, and vulnerabilities.

“Wow” Your App Owners with Application Insights Derived from Deep Packet Inspection

Building defenses, protecting our walls and guarding the castle. They all sounded a lot easier when the castle walls were solid, clear and defined. These days, it can feel a bit more like you are jousting in fog to protect borders you can’t see or define. Not only are bad actors evolving, but the cloud environments you are asked to protect and secure are rapidly multiplying and becoming more complex. It is time to get out of the fog and stop jousting with air!

Protecting and Securing Cloud Environments

According to the 2024 Gigamon Hybrid Cloud Security Report, fewer than half of over 1,000 global IT and security leaders surveyed claim to have lateral East-West visibility across their hybrid cloud infrastructure, which includes container-to-container communications. Threat actors know this and are actively exploiting this oversight, as evidenced by recent high-profile attacks which employed lateral movement to evade detection. In this session, we will cover how you can gain simple and scalable deep observability into container environments, at both packet and metadata levels.  You’ll also learn best practices based on recent customer deployment use cases on how to acquire traffic from any container along with accessing and aggregating container traffic from multiple cloud platforms.

Deep Observability for Kubernetes Lateral Traffic

Discover how network-derived intelligence with enhanced metadata empowers you to lower security risk by proactively identifying threats, streamline PCI compliance, accelerate your Zero Trust objectives, and lower costs. In this session, you’ll learn how to unlock the full potential of your network data to gain unparalleled visibility into your hybrid cloud infrastructure and empower your InfoSec and SecOps teams to make informed decisions.

Harness the Power of Network Data with Splunk and Gigamon

Join Martyn Crew, Sr. Director, Product Marketing, and Jim Mandelbaum, Field CTO, Gigamon to explore the Secret Life of Your Network to gain visibility into applications, workloads, and traffic.

You will learn how the Gigamon Deep Observability Pipeline provides the visibility you need to monitor and manage the traffic generated by your applications.

Visibility into Applications, Workloads and Traffic: Secret Life of Your Network

While TLS (formerly known as SSL) has become the de facto way of encrypting data in motion on networks, it can also hide threats from your InfoSec team. As the volume of encrypted traffic continues to grow, organizations become even more vulnerable to encrypted attacks, hidden command and control threats and data exfiltration exploits that go undetected.  Making this situation even more complex, the TLS 1.3 draft 28 proposal, ratified at the IETF 101 conference in London and now moving toward official RFC status, has actually removed the visibility which was widely deployed for threat identification in TLS 1.2. On one hand, encryption is moving toward ubiquity but on the other, we need to detect when threat actors use it too.  Join Gigamon and (ISC)2 on May 31, 2018 at 1PM Eastern where we’ll discuss the necessity of deploying TLS decryption in the core of networks and will explore innovative architectures that deliver that capability while maintaining availability and reliability.

Gigamon Part 2 - Threat Detection in TLS: The Good, Bad & Ugly

ISC(2)

Threat Detection

Infosecurity

Cyber Security

Gigamon

Welcome to the virtualization community on BrightTALK! Whether it affects servers, storage, networks, desktops or other parts of the data center, virtualization provides real benefits by reducing the resources needed for your
infrastructure and creating software-defined data center components. However, it can also complicate your infrastructure. Join this active community to learn best
practices for avoiding virtual machine sprawl and other common virtualization pitfalls as well as how you can make the most of your virtualization environment.

Virtualization

Are you an IT service management professional interested in developing your knowledge and improving your job performance? Join the IT service management community to access the latest updates from industry experts. Learn and share insights related to IT service management (ITSM) including topics such as the service desk, service catalog, problem and incident management, ITIL v4 and more. Engage with industry experts on current best practices and participate in active discussions that address the needs and challenges of the ITSM community.

IT Service Management

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The data center management community focuses on the holistic management and optimization of the data center. From technologies such as virtualization and cloud computing to data center design, colocation, energy efficiency and monitoring, the BrightTALK data center management community provides the most up-to-date and engaging content from industry experts to better your infrastructure and operations. Engage with a community of your peers and industry experts by asking questions, rating presentations and participating in polls during webinars, all while you gain insight that will help you transform your infrastructure into a next generation data center.

Data Center Management

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Gigamon Part 2 - Threat Detection in TLS: The Good, Bad & Ugly

Presented by

About this talk

More from this channel