Name: How to Build a Blueprint for Secure Software
Start: 2022-08-18T18:00:00Z
End: 2022-08-18T18:00:19.000Z
Location: BrightTALK

Finally, the intelligence, agility, and security you need to create innovative digital experiences customers trust.

AI coding tools are helping developers write code faster. Delivery platforms are making planning and releasing teams more efficient. But all that code still must be secured, and all features still must be tested. Security and testing teams need help keeping up with customer demand and coder efficiency. What’s even worse is that apps hardened against reverse engineering are impossible to test at all.  Do you know what to do? Join us as we explore: 

-The source of bottlenecks in App Delivery in 2024 
-How to effectively harden apps without slowing down app delivery 
-How to perform fully automated performance, functionality, and accessibility testing on hardened apps

The Secret to Unbreakable Apps: Balancing Speed, Quality, and Security

Organizations are under constant pressure to maintain a competitive edge by innovating and delivering secure applications more rapidly. According to a recent study by IDC, they predict that by 2027, AI will dramatically increase developer velocity by automatically generating code to meet functional business requirements for 80% of new digital solutions.  

Join Digital.ai experts Tina Sturgis, Ankur Trivedi and guest speaker, Katie Norton, Research Manager at IDC for an insightful discussion on how AI is transforming the software development lifecycle (SDLC) by boosting developer productivity and addressing key challenges.  

During this webinar you’ll learn how to: 
- Boost Developer Productivity: Discover how AI coding assistants are automating routine tasks, allowing developers to focus on creative problem-solving and innovation. 
- Address Key Challenges: Explore strategies for ensuring the security and quality of AI-generated code, managing increased code volume, and optimizing testing and deployment processes. 
- Adjust Across the SDLC: Learn about essential adjustments needed for increased code volume and velocity, including enhanced automation, visibility, governance, and standardization.

Are YOU Prepared For AI- Assisted Software Development? Understanding Impacts and Defining Solutions Across the SDLC

Efficient Agile and DevOps Practices have made mobile, web, and desktop apps from Financial Services companies more ubiquitous than ever. While these efficiencies greatly enhance the customer experience, they also present an enticing attack surface to threat actors.

Join us for an ethical hacking seminar where you’ll learn:

-Why threat actors specifically target financial services applications
-The top tactics, techniques, and practices threat actors will use in 2023 and beyond
-How DevSecOps defense-in-depth protects your apps and organization from attacks
-The benefits of obfuscation, anti-tamper, and RASP (Runtime App Self-Protection)

Ethical Hacking: The Future of Attacks on Financial Services

In the past year, AI’s usage has grown massively to where an estimated 92% of developers are using AI coding tools. While the benefits of being able to increase productivity and release velocity are too great to ignore, there are also some challenges that must be addressed.

In this webinar, you’ll be joined by Adam Kentosh, Sr. Director, Sales Engineering, and Jonny Steiner, Product Marketing Manager, of Digital.ai as they explain how to make AI code secure, private, and compliant. They will share a variety of best practices, including:

• Avoiding security vulnerabilities by applying policies specified as code enforcement
• Mitigating risks of copyright infringement with automated checkpoints on AI-assisted code
• Ensuring compliance with automated audit reports with full traceability
• And more

Tune in now to find out how you can overcome the vulnerabilities of AI generated code and keep your data private.

AI-generated code: Best practices to stay secure, private, and compliant

Last year, Digital.ai reported that the FinServ and gaming sectors were the most likely to be attacked among all industry verticals. Now, in 2024, the vulnerability of the gaming industry has dramatically escalated, with 67% of monitored apps falling victim to attacks. This outpaces even the FinServ sector. These findings highlight the urgent need for robust application security across all industries.

The new 2024 Application Threat Report sheds light on these critical issues and the confluence of several factors, such as the role of AI in malware creation, the monetization of attacks, and the nationalization of attacks.

In this webinar, you’ll gain expert insights into the most impactful highlights of the report. Discover:

• The specific risks facing your apps and your industry
• The surprising link between app popularity and attacks
• Proactive strategies to safeguard your apps in the wild
• And more

2024 Application Threat Report: Highlighting key takeaways

With compounding pressures to deliver software as quickly as possible, hear how Eric Haynes, Principal Engineer, GE Vernova has been able to successfully transform some key DevOps processes over the last 15 years. Partnering with Digital.ai, GE Vernova has been able to accomplish improved, repeatable software delivery, faster time to market, and reduced defects in production.

Join us to hear how GE Vernova was able to:
- Provide standardization and governance across software packages through deployment management
- Shift manual tasks to automated workflows with release orchestration, reducing human error and shortening time to market
- Significantly reduce resolution time while maximizing uptime for their production environments
The conversation will be moderated by Ankur Trivedi, Global DevOps Practice Lead at Digital.ai.

GE Vernova’s DevOps Journey with Digital.ai

Agile practices have been evolving for 17 years, and the dynamic business environment is shifting faster all the time – we need Agile more than ever. Agile methodologies have proven they can transform the way businesses succeed, but Agilists are encountering more and greater challenges, so it's time to ask: Where does Agile go from here? 

Join this engaging webinar, sponsored by Digital.ai, as an expert panel discusses the key findings from the 17th State of Agile Report, addressing crucial questions such as: 

- What are the big changes for Agile in 2024? Where will we pivot next? 
- Why is Agile the best way to handle externally-driven changes as well as ongoing internal challenges? 
- How can we bridge the gap between team-level success and business leaders to overcome the time, money, and risk challenges in Agile adoption?

What is the Future of Agile in the Age of Continuous Pivots?

Did you know that 55% of apps were run in unsafe environments or with modified code? Don’t let your application become another statistic!

The DevSecOps model seeks to unite security and DevOps with the shared goal of rapid and secure software delivery. A powerful aspect of this approach is Application Hardening – the innovative practice of obfuscating code, monitoring apps in the wild, and giving apps the ability to react to attacks.

Watch our Digital.ai webinar with guest speaker Katie Norton, IDC Senior Research Analyst renowned for her expertise in DevSecOps, to discover the secrets of securing your applications in today’s ever-evolving threat landscape. Katie will also discuss how to:

-Improve security posture with build-time application hardening without burdening developers
-Gain visibility into potential attacks through tampering protections
-Empower applications to automatically react to attacks with Runtime Application Self-Protection (RASP)
-Integrate app hardening with DevOps processes

Application Hardening as Part of a Holistic DevSecOps Strategy

Large-scale software releases across hybrid environments present a unique challenge, especially for organizations in highly regulated industries. These organizations are tasked with a formidable endeavor: balancing the critical need for consistent, streamlined processes to ensure compliance and security against the mounting pressure to innovate and deliver at pace. This balancing act has seen many traditional entities struggle to keep pace with their more agile, modern counterparts. 

Join us as we share software release strategies that our customers in highly regulated industries are employing to efficiently manage their own software release processes. Learn how two enterprise financial institutions are deriving benefits and positive business outcomes by employing automation and standardization across their DevOps processes. 

Get insights into how standardization can lead to resource optimization, easier troubleshooting, economies of scale, and common metrics—all leading to increased velocity and faster delivery of compliant and secure software. Additionally, we'll offer a demo of our release governance templates that these customers are using today, showing you firsthand how these templates can be integrated into your organization's processes. 

Audience Takeaways:
-Real-life examples of how top Digital.ai customers in highly regulated industries of various levels of maturity are adopting a standardized approach to their release process. 
-Insight into how to use standardized approach for cloud migration and enhance developer experience through workflows. 
-Practical insights into the benefits these customers have gained, including resource optimization, simplified troubleshooting, and establishing common metrics. 
-The webinar will equip attendees with an actionable asset—a questionnaire that can be used within their businesses.

App Release Automation & Developer Efficiency in Hybrid Cloud Environments

Remember the time your release caused a major failure? That moment when you were trying to figure out what happened and fix it as soon as possible? It’s one of those situations you want to prevent! And it just gets more complex as you need to deploy to multiple environments like cloud, on-prem, VMs and containers.

The fact is that enterprises have yet to master the art of transparency throughout their DevOps pipeline to gain efficiency, reduce failure and recover faster.

Join our webinar, where Charitra Agrawal, Director of Product Management and John Kantirakis, Sr. Solution Engineer, will show you how to predict the unpredictable! We’ll help equip you with AI-powered predictive data that empowers you for timely deliveries and fast risk detection. It’s time to get smarter and reduce the headaches and make your DevOps “continuous.”

In this webinar you will learn how to:
* Prevent release delays by proactively understanding the release dependencies and their risks
* Predict the probability of change failure with the change credit score and give a fast pass to low-risk changes
* Remediate problems faster with data that correlates application releases with incidents and production events

Continuous Delivery on Multi-Cloud: Predicting the Unpredictable

“Complexity and Change Fatigue" – these are the new curveballs leaders need to catch. 

Dive into The State of DevOps 2023 Insight Report! We've got some eye-opening tidbits about burnout and its ripple effects on team performance and delivery.  

Join us for a candid panel conversation. The report's writers, together with experts in DevOps and AI, will dive into strategies to move a culture that enhances team environments, creates an innovative spirit, and improves developer experience. 

• How to deal with the effects of "complexity and change fatigue"  
• What does a “happy developer’s team” mean? 
• How to keep the team energy up and burnout down

Navigating Complexity and Change Fatigue: Strategies from the DevOps 2023 Report

Application Developers are increasing taking the “DevSecOps” ethos to heart. They are realizing that security is not just something that gets bolted onto apps or around networks. Instead, security needs to be built into the applications that they create. While many have turned to SAST solutions to identify vulnerabilities such as Log4Shell in Log4J, others rightfully wonder how to protect the code that they write themselves, code that – by definition – contains working examples of how to penetrate the security perimeter that their InfoSec colleagues have put in place.

This webinar shows:

* How threat actors reverse engineer applications
* How a “Protection Blueprint” secures applications
* What unobfuscated and disassembled machine code looks like to a threat actor
* How obfuscated machine code makes the threat actor’s job more difficult
* What anti-tamper measures do to prevent reverse engineering of applications

How to Build a Blueprint for Secure Software

Application Hardening: Behind the Secrets to a Successful DevSecOps Practice

Ransomware has plagued a wide range of organizations for several years and instead of getting better it’s getting worse. On the surface it appears the controls organizations are deploying aren’t working. But more correctly, organizations are failing to deploy the right controls. Attend this session to learn how to stop ransomware and all the *wares. You will leave this session with a manageable list of actionable steps to secure your environment and ensure your organization vaults above the cybersecurity poverty line!


About the speakers:

Jon Villanti is the Chief Information Security Officer for Allegiance Bank, a 600-employee, $7.1-billion community bank headquartered in Houston. Jon is responsible for the strategic direction and alignment of the bank’s Information Security Program. He is a former instructor for the SANS Technical Institute, teaching courses on information security, cyber warfare and hacker tactics. Lieutenant Colonel Villanti (Ret) honorably served the United States Air Force for 29 years as a member of the Intelligence Community, F-16 pilot and Cyberspace Operations Officer. Jon holds a B.S. in Business Administration from the University of Vermont and a number of cybersecurity certifications.

Andres Ruz is Chief Information Security Officer at 5 Factor Technology and has over 20 years of global experience in IT and information security. He has an MBA in MIS, a Bachelor’s in computer science and eight certificates in information technology management and information security. He is the founder of the Houston Banking Information Sharing and Analysis Organization (ISAO), where he collaborates with leaders in this sector, helping each other to better protect their companies. He is also the part of the Board of Directors and Sector Chief for the Telecommunications Cross Sector Council (CSC) of the InfraGard with the FBI.

Defeating Ransomware: Security Controls That May Surprise You

NOW AVAILABLE ON-DEMAND

The 2022 SonicWall Cyber Threat Report revealed more than 20,000 Common Vulnerabilities and Exposures (CVEs) were published in 2021, the first time in history that the number of CVEs has passed the 20,000 mark. The most serious of these vulnerabilities, those scored above nine on the 10-point scale, become entry points for cybercriminals, and attackers are increasingly utilizing this means of entry to deploy ransomware and steal data. 

Watch now to hear our expert cover:
- Exploited threat vectors and what to look out for
- Critical zero-days used to wreak havoc on businesses and governments
- Actionable insights for you and your organization

The Year of Zero Days – Defending Against the Million Dollar Threat

Application Security for Billions: Lessons Learned from Securing Web Apps and APIs at Internet Scale

Whenever you hear people talking about web and application security, you’ll often learn about the latest way to make sure you’re not ingesting user supplied input the wrong way, or how to write secure code to prevent cross site scripting, etc. 

But, have you ever wondered what it’s like to secure business critical websites, and the ever-evolving growth of API’s and bespoke applications that are developed every day across thousands of websites in dozens of countries around the world?

In this webinar, Tony Lauro, Akamai’s Security Technology and Strategy Director, will cover:
- What defenders are doing at scale to defend the evolving threats targeting websites 
- Methods for cutting out the noise of benign, but annoying vulnerability verification requests
- Best practices for managing large scale security configurations
- Some of the ways that defenders are winning against these unimaginable odds, as well as how attackers are targeting these very same applications hoping to bypass security by obscuring their attack techniques

Lessons Learned from Securing Web Apps and APIs at Internet Scale

Tune into this webinar to discover the basics of threat intelligence and how to acquire it. We will also dive into cyber maturity -- what it means and how to best measure it -- as well as the five best steps to improve cyber resiliency. Attendees will also learn the dire consequences that come with deprioritizing cybersecurity in the organization so they can ensure they don't fall victim to a breach.
 
Audience takeaways:
•         The value of threat intelligence for organizational security.
•         Measuring your cyber maturity.
•         Steps to improve your cyber resilience.
•         Turn threat intelligence into business intelligence.

Life's a Breach: Understand Threat Intelligence, Cyber Maturity and Resiliency

During this exclusive fireside chat, moderated by Jo Peterson, Sonali Shah, will look to address the following topics:

- Are unsecure applications just plain easy targets maybe even easier than email?
- What are the top 3 application security challenges organizations face today?
- Why web applications will continue to be a main vector for external attacks 
- With Open source continuing to grow, what can organizations do to put themselves in a better position in 2023.

Fireside Chat with Invicti and Clarify360 on Application Security

The pandemic rapidly accelerated digital transformation for organizations around the world. Now that the pandemic is behind us, new risks and new threats have emerged in the wake of such rapid and uncontrolled change. This talk will cover what threats to expect for the rest of this year and early next and what can organizations do today to start to get ahead of what’s coming at them.

About the speaker:

John Bambenek is the President and Chief Forensic Examiner for Bambenek Consulting. He began his career 20 years ago at Ernst & Young as a Project Manager and Senior Consultant providing IT architecture services to top Fortune 500 Firms. He has worked in both the public and private sector providing consulting to financial services providers. He is a published author and has contributed to IT security courses and certification exams covering subjects such as penetration testing, reverse engineering malware, forensics and network security. He has participated in many incident investigations spanning the globe including the DNC breach and election-related hacking during the 2016 US Presidential campaign. He has appeared in as an expert in the New York Times, Washington Post and was once on The Daily Show with Jon Stewart.

The Post-Pandemic Threat Landscape

Customers tell the best stories. This is an adventure story set in the world of AppSec told by
GuidePoint Security’s rockstar AppSec customers like The Motley Fool + Insight Global. Their live talk will cover trending AppSec topics + peeking into the future. A genuine discussion about their triumphs + challenges they encounter every day working as an industry leader in Application Security.

You’ll get to know our remarkable AppSec customers through their comments around the
following thought-provoking topics + more:

• Shifting Left: How far left do you shift and what does that truly mean?
• Quality code is secure code. Why AppSec isn’t so special.
• The future of API protection

Spend an hour with our customers. We bet you’ll find a lot in common.

True Tales from AppSec Customers

Unlike monolithic applications of the past, where coding was all in the same language, an average cloud-native application can have anything from 50-5,000 different components. The problem is, any one of those could be rife with vulnerabilities that present an expanding attack surface. Although organizations use an abundance of AST tools to test their code, they all lack results correlation, and that missing piece distorts their view of their overall security risks.

Checkmarx recognizes the inefficiency of trying to manually correlate results from the many siloed testing solutions, and the deficiency of alternate solutions that merely aggregate results. It led us to develop Checkmarx Fusion to provide advanced correlation in modern application development environments.

In this webinar, join Stephen Gates, senior solution specialist, and Miki Sharon, senior product manager, Checkmarx, for a deep dive on Checkmarx Fusion and Checkmarx One AST Platform.

    Learn which AppSec testing approaches don’t fit well in modern development environments
    See the new functionality Checkmarx Fusion brings to the software development industry
    Understand the main use cases of Checkmarx Fusion and Checkmarx One and what’s included
    View live demonstrations of both solutions in action, performed by our subject matter experts
    After this webinar, you’ll fully understand why your AppSec testing approach is flawed.

Without Correlation, Your AppSec Testing Approach Needs an Update

A lot is expected of software developers these days; they are expected to be experts in everything despite very little training. Throw in the IT security team (often with little-to-no knowledge of how to build software) telling developers what to do and how to do it, and the situation becomes strained. This silo-filled, tension-laced situation, coupled with short deadlines and pressure from management, often leads to stress, anxiety and less-than-ideal reactions from developers and security people alike. This session will explain how job insecurities can be brought out by IT leadership decisions, and how this can lead to real-life vulnerabilities in software. This is not a talk about “feelings;” this is a talk about creating programs, governance and policies that ensure security throughout the entire SDLC.

No more laying blame and pointing fingers, it’s time to put our egos aside and focus on building high-quality software that is secure. Application security expert Tanya Janca will explore the cause and effect of insecurities and other behavioral influencers and present several detailed and specific solutions that can be implemented at your own place of work, immediately.


About the speaker:

Tanya Janca, also known as SheHacksPurple, is the best-selling author of Alice and Bob Learn Application Security. She is the Director of Developer Relations and Community at Bright Security, as well as the founder of We Hack Purple, an online learning community that revolves around teaching everyone to create secure software. Tanya has been coding and working in IT for over 25 years, won countless awards, and has been everywhere from public service to tech giants, writing software, leading communities, founding companies and “securing all the things.” She is an award-winning public speaker, active blogger and streamer, and has delivered hundreds of talks on six continents. She values diversity, inclusion, and kindness, which shines through in her countless initiatives.

Why Can't We Make Secure Software?

Every 39 seconds, someone in the world gets hit with a cyberattack. When this happens, backup remains the last line of defense to protect most applications and data. How vulnerable is your backup environment? Join this presentation to learn about comprehensive security measures every company needs in place to secure a clean, current backup so you can recover when hackers breach your back door. We will also share one company’s recent ransomware attack experience, including the impact of security measures and the lessons learned.

Talking points:

The three common threat pillars
Key areas for implementing comprehensive backup security
Back from the brink: case study of a customer cyberattack

Eliminate Ransomware Risks With the Right Backup Strategy

Once considered an afterthought in software design, in today's cloud-native, app-centric world, application security must be top of mind. Widespread applications usage over distributed and public networks invites a variety of potential threats. Frequent testing and adherence to application security best practices can limit the possibility of unauthorized code being used to steal, share or modify sensitive user information.

This panel of experts will discuss the importance of a comprehensive application security program that incorporates best practices, threat identification and security testing.

Join us to learn about:

--Potential application threats
--Program requirements for app security
--Implementing app security standards
--Using DevSecOps initiatives to improve security
--Application security testing methods

Moderator:
Jo Peterson VP, Cloud & Security Services at Clarify360 

Panelists:
Stan Lowe, CISO of Synchronoss Technologies
Matt Decapua, Application Security Architect for Travel + Leisure
Daniel Shugrue, Lead Product Marketer at Digital.ai

Update Your Application Security Strategy

Malicious actors exploit human nature to get what they want.  Technology can help, but it is not going to stop everything. Once a malicious actor is in direct communication with someone in your organization, there is little that your technology can do. This talk covers the fundamental reasons for the necessity of a security awareness program in every organization and provides a model of what it should look like. 

Key takeaways include:

--The properties of a good security awareness program

--Security-aware policy

--The limits and value of technical solutions as they pertain to social engineering attacks


About the speaker:
Joseph Carrigan is a Software Engineer with over 17 years of software development experience in a broad range of fields including computer and software security, microcontroller development, data migration, data integration, data warehousing and network communication. He has a B.S. (’99) in Computer and Information Science from The University of Maryland, University College and an M.S. (’08) in Computer Science from Capitol College.

Social Engineering and Security Awareness

Attack surfaces are expanding, spurred on by the continuous release of new digital services and business transformation. In this session, you will learn why it’s time to implement an attack resistance management strategy to find unknown risks missed by automated tools, then unlock the security expertise of ethical hackers to identify critical gaps and prioritize fixes for your exploitable assets.

About the Speaker:
Sean Ryan is a Sr. Principal, Product Marketing Manager at HackerOne, where he helps organizations to identify the gaps in their security posture and improve their attack resistance. Prior to joining HackerOne, Sean worked for a prominent industry analyst firm covering identity security, and before that he led the market & competitive intelligence practice for a Fortune 500 IT infrastructure and security software provider.

Build Resistance to Attacks by Unlocking the Value of Ethical Hackers

Let’s take a moment to consider your Enterprise Security Program.  Is it healthy and functional?  Do you have the right people and processes?  How are you layering security controls to be most successful?  In this session we will discuss the components and management framework that result in a successful Enterprise Security Program.  You can expect to learn:

How do the most successful organizations structure their security controls?
What are the enterprise strongholds that attackers are actively exploiting?
What are some quick wins you can perform to get C-level buy in for furthering your Security Program?

Building a Robust Enterprise Security Program

Measuring the impact of security operations in reducing risk can be incredibly difficult. This challenge is compounded when poor metrics, that do not meaningfully reflect the work done by security teams, mask systemic problems. This is something we must get right to justify ever-growing investments in defensive teams, tools, and process. 

In this webinar, discover some commonly accepted security metrics that rarely tell a complete or compelling story and why they fall short. With that, attendees will learn better ways to identify high-quality metrics that tell a better (and more honest) story.
 
Attendees will leave the session with an understanding of:
• What makes a metric useful in defense operations;
• Commonly used security metrics and how they hide the truth; 
• An approach to picking compelling, comprehensive security metrics.

Your Security Metrics Are Lying (And What To Do About It)

Covid has seen the SME adopt technology at a fast and furious pace -- but at what cost? With this adoption comes an increase in cybersecurity risks. Cybercriminals have acquired newer and better techniques, but their SME targets have yet to recognize the need for an Enterprise Security Management framework to establish and sustain security for critical infrastructure.

Join BCyber’s Co-Founder & CEO Karen Stephens as she unlocks the mysteries of Enterprise Security Management in 2022 for the SME. Today, through the lens of an SME, you will gain an introductory understanding of:
• What Enterprise Security Management is;
• Why it is important; 
• Practical steps on how you can start your journey.

A Road Less Traveled: Learning the Value of SME Enterprise Security Management

Cyberattackers are not showing any signs of slowing down -- in fact, cyberattacks are worsening. Several factors are responsible for that with some being directly linked to the global pandemic – thanks, COVID! Infosec teams must change their security practices to address the challenges of today and the future. In this conversation among experts, you will gain insights to help you keep your organization secure in an evolving threat landscape. 

Learn how can you limit the impact of future ransomware and supply chain attacks, how you can differentiate cloud security solutions, and more.

Moderated by:
Melinda Marks, Senior Analyst, ESG

Featuring:
Matt Hathaway, Chief Strategy & Marketing Officer, TrueFort

Limiting the Impact of Future Ransomware Threats

Securing your network against bad actors requires visibility to detect and respond to the inevitable attacks on your organization. You can’t stop what you can’t see! The good news is you have the data you need in your network data. The bad news is that you may not be using that data to identify and mitigate cyberattacks. 

Join us in this webinar to learn the innovative ways that Advanced Network Detection and Response, based on scalable deep packet inspection from your network, will help your organization achieve comprehensive security protection with:

• Always on, real-time detection of network activity to halt attackers in their tracks

• Visibility into your dynamic attack surface and its traffic

• Lateral movement tracking of attack to respond and mitigate quickly

• Unlimited historical perspective of attack

Leverage Network Data To Minimize Your Cybersecurity Risk

Timely remediation: It’s critical to responding to active threats in an environment. Knowing when (and when not) to apply automation is equally important. Given the speed at which threat actors can progress through the attack lifecycle, configuring automated remediation steps can go a long way. Hear how Expel approaches incident response and puts auto-remediation into practice.

The steps to sensible auto-remediation

Threats like malware and denial-of-service attacks have been around since the earliest days of the internet, and the cybersecurity industry has created generations of threat detection and response tools to identify and remediate them. As security threats continue to evolve and advance, the tools to identify and stop them need to evolve as well.

This panel of security experts will explore how security teams can shift form using reactive to proactive measures, utilizing a host of emerging tools and technologies. Join us to learn about:

--Endpoint-focused technologies such as XDR
--AI's role in reshaping threat detection
--Threat detection and intelligence services
--Security observability tools that improve breach detection
--Using tools within a zero-trust framework to limit vulnerabilities

Panelists:
Steve Cobb, CISO at One Source Communications
Dave Stufflebeam, Principal Sales Engineer at Digital.ai

It's Time to Modernize Threat Detection

Threat detection has become an important consideration for entities of all sizes and verticals. What originally began as logging and security-centric alerting by point products has morphed into a multi-million dollar industry of threat detection and response solutions and services. Offerings are comprised of vendor-agnostic log collection, analytics and correlation capabilities, threat intelligence feeds, and other tools geared towards reducing mean time to detect and respond. 

In this session, we’ll review the evolution of log collection and discuss the major components of today’s detection services and solutions. Viewers who are debating whether to outsource their detection and investigation needs or build their own SOC teams and manage their own solution will come away with much food for thought.

Understand Threat Detection and Response Solutions and Services

Organisations have never been more connected or vulnerable. Threats evolve at rapid pace and cybersecurity has failed to keep up. 
Proactive and preventive cybersecurity measures have previously been little more than an aspiration. No more! Machine learning and artificial intelligence allows us to stop cyberthreats in their tracks.

Join Jonathan Jackson – Director Sales Engineering, from the BlackBerry Cybersecurity team in APAC to learn:
- The current cybersecurity trends 
- What’s changed?
- How you can apply prevention-first security to your own organisation to combat cyber threats.

It’s time to outsmart and outlast modern cyber threats.

The Evolution of Prevention-First Cybersecurity

Organizations face a constant barrage of cyber threats that could lead to business disruption, intellectual property theft, and reputation damage. But preventing such attacks has become increasingly challenging due to business factors like supporting the remote worker population, connecting IT to third-party partners, and developing new types of applications for digital transformation. 

How can CISOs balance the need for aggressive IT initiatives for business enablement while managing and mitigating cyber risk? ESG Senior Principal Analyst and Fellow, Jon Oltsik, will discuss best practices for cyber-threat and breach prevention that can protect and support the business.

Outwit Attackers with a Proactive Cybersecurity Plan

Combating Cyber Threats & Breach Prevention 2022

Application Security

Cyber Attacks

Cyber Security

IT Security

infomation security

devsecops

Application Development

Welcome to the mobile computing community on BrightTALK! With the consumerization of IT and the widespread adoption of mobile devices across the globe, mobile computing has become an important part of many people's lives in a culture of bring your own device (BYOD). With mobile devices doubling as work phones and more employees working from home, businesses need to provide secure access to data and work applications from anywhere at any time. Join this growing community and hear from industry thought leaders in webinars and videos as they share their insight on mobile computing research and trends.

Mobile Computing

Are you an IT service management professional interested in developing your knowledge and improving your job performance? Join the IT service management community to access the latest updates from industry experts. Learn and share insights related to IT service management (ITSM) including topics such as the service desk, service catalog, problem and incident management, ITIL v4 and more. Engage with industry experts on current best practices and participate in active discussions that address the needs and challenges of the ITSM community.

IT Service Management

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The application development community features top thought leadership focusing on optimal practices in software development, SDLC methodology, mobile app development and application development platforms and tools. Join top software engineers and coders as they cover emerging trends in everything from enterprise app development to developing for mobile platforms such as Android and iOS.

Unified communications improve collaboration and increase productivity among employees through technologies such as VoIP, instant messaging and social media. Join this community to learn how to benefit from the full value of unified communications and collaboration technologies.

Collaboration and UC

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

Practicing business intelligence allows your company to transform raw data into sets of insights for targeted business growth. The business intelligence and analytics community on BrightTALK is made up of thousands of data scientists, database administrators, business analysts and other data professionals. Find relevant webinars and videos on business analytics, business intelligence, data analysis and more presented by recognized thought leaders. Join the conversation by participating in live webinars and round table discussions.

Business Intelligence and Analytics

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

Get powerful help desk and support insights from influential experts. Connect with thought leaders and colleagues to get the most up-to-date knowledge on the help desk and support strategies that effect business value and growth.

Help Desk and Support

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

How to Build a Blueprint for Secure Software

Presented by

About this talk

Digital.ai