Name: Securing the DevOps CI/CD Pipeline
Start: 2023-03-07T16:04:00Z
End: 2023-03-07T16:04:27.000Z
Location: BrightTALK
Rating: 0

Keyfactor is the machine and IoT identity platform for modern enterprises. The company helps security teams manage cryptography as critical infrastructure by simplifying PKI, automating certificate lifecycle management, and enabling crypto-agility at scale. Companies trust Keyfactor to secure every digital key and certificate for multi-cloud enterprises, DevOps, and embedded IoT security. 

Is your organization prepared for the incoming NIS2 Directive? Join our live webinar to gain a clear understanding of the critical aspects of NIS 2 before it comes into force on October 17th.

In this interactive session, Keyfactor’s Ryan Sanders, Senior Director of Product Marketing, will be joined by Admir Abdurahmanovic, SVP of Strategy, to unveil the 5 things you need to know about NIS 2, including:
• Broader scope and tougher rules: Discover the expanding number of sectors categorized as essential and important entities. 
• Penalties that pack a punch: Understand the consequences of non-compliance that extend beyond fines.
• Clear expectations: Learn about the new risk management measures that set the minimum baseline for cyber hygiene and how to approach them strategically.
• Supply chain security in the spotlight: Explore the importance of establishing trust and transparency across the entire supply chain.
• Implications on IoT and OT Security: Uncover the need for security-by-design and device lifecycle management for connected products and OT. 

Why Attend:
• Stay ahead of the curve: Gain crucial knowledge before the October 2024 deadline.
• Minimize disruption: Ensure a smooth transition and avoid costly delays.
• Protect your business: Boost your cybersecurity posture and mitigate cyber risks.
• Q&A session: Get your questions answered by our live panel of experts.

Don't miss this opportunity to navigate the NIS 2 landscape with confidence. Register now!

Keyfactor is an approved (ISC)2 CPE Submitter partner. Earn .75 CPE credit by viewing this webinar.

Five Things You Should Know About the NIS 2 Directive

It’s time to prepare for Q Day? Join the ‘Quantumania’ mini workshop, where Chris Hickman, Keyfactor CSO, offers an in-depth primer on PQC fundamentals for practical application. Explore the latest NIST standards, learn about the new post-quantum algorithms, and understand their impact on your cryptographic infrastructure. 
Additionally, discover how current solutions can support your transition to a post-quantum environment and what your next steps might look like on a PQC roadmap and how to get leadership buy in to move forward. This workshop is crucial for practitioners and implementers aiming to mitigate the risks of the post-quantum era.

Keyfactor is an approved (ISC)2 CPE Submitter partner. Earn .75 CPE credit by viewing this webinar.

Note: This webinar is a recording from SecureWorld.

A Practical Approach to Post Quantum Cryptography

Join the 'Quantumania' mini workshop, where Ted Shorter will offer an in-depth primer on PQC fundamentals for practical application. 

Explore the latest NIST standards, learn about the new post-quantum algorithms, and understand their impact on your cryptographic infrastructure. Additionally, discover how current solutions can support your transition to a post-quantum environment and what your next steps might look like on a PQC roadmap.

This session is crucial for practitioners and implementers aiming to mitigate the risks of the post-quantum era.

Keyfactor is an approved (ISC)2 CPE Submitter partner. Earn .25 CPE credit by viewing this webinar.

Note: This webinar is a recording from Black Hat 2024.

The need for rapid and reliable production of customized products is paramount in today's dynamic manufacturing landscape. Achieving this requires smart production systems that communicate within highly agile environments, ensuring fast manufacturing processes and adherence to tight delivery schedules. However, integrating heterogeneous machinery and IT applications often complicates digital transformation efforts.

Standards such as OPC UA simplify this process by enabling quick and easy connections between various machines and existing IT environments. One of the significant benefits of OPC UA is its robust security standards, which ensure secure data transmission both locally and over the Internet.

But how do these advancements intersect with PKI services and certificate management systems? Join us for an in-depth webinar where we explore the current status of OPC UA standardization, the integration challenges, and the solutions from a PKI manufacturer’s perspective. Learn how PKI can enhance security and efficiency in OT networks.

Keyfactor is an approved (ISC)2 CPE Submitter partner. Earn .5 CPE credit by viewing this webinar.

The Role of PKI in OT Networks

Join us on July 2nd for an in-depth webinar focused on the implications of the Digital Operational Resilience Act (DORA) for certificate management and Public Key Infrastructure (PKI) strategies within the financial sector.  

With DORA in force and its full application starting January 17th, 2025, noncompliance can lead to significant fines. This interview with Admir Abdurahmanovic , SVP of Strategy at Keyfactor, will guide you through each DORA article related to PKI and certificate lifecycle management.  

What You Will Learn: 

 - Understanding DORA Requirements: Walkthrough of DORA requirements for PKI and certificate management. 
 - Cryptographic Key Management: Best practices for implementing robust cryptographic key management policies. 
 - Compliance Strategies: Practical steps to align your organization's PKI and certificate management strategies with DORA regulations. 

This webinar will provide essential insights into aligning your organization's strategies with DORA's regulations, ensuring operational resilience and cybersecurity best practices. Don’t miss this opportunity to understand the key components of DORA compliance and how to effectively prepare your organization with Keyfactor's proven expertise. 


Keyfactor is an approved (ISC)2 CPE Submitter partner. Earn .5 CPE credit by viewing this webinar.

DORA Compliance Made Simple: PKI and Certificate Management Insights

Join Tony Chen, Solutions Engineer, for a look into the 2024 PKI & Digital Trust Report. This expansive global study of more than 1,200 IT professionals offers you an unfiltered look into the challenges in building a strong foundation of digital trust.

We will explore how to:
- Master the elements of PKI, certificate management, and code signing
- Enhance digital trust in your organization
- Begin testing and preparing for post-quantum cryptography

Keyfactor is an approved (ISC)2 CPE Submitter partner. Earn .25 CPE credit by viewing this webinar.

Key Takeaways from the 2024 PKI & Digital Trust Report

With Q-Day on the horizon, it’s time to think tactfully about your entire crypto stack. Cryptographic libraries, PKI, code signing, and certificate management will all be impacted by the shift to PQC. 

Join Keyfactor’s David Hook, VP of Software Engineering, and Ryan Sanders, Senior Director Product Marketing, as they discuss:
- Considerations and strategies for PQC deployment
- The applicability of different algorithms
- What lies beyond Q Day

Keyfactor is an approved (ISC)2 CPE Submitter partner. Earn .5 CPE credit by viewing this webinar.

Preparing your crypto stack for PQC

The upcoming paradigm shift to PQC has revealed an unforeseen problem for organizations: who manages cryptography at the business level? Often, cryptography management doesn’t have a clear place in an organization, meaning it doesn’t get the right level of attention.

Join Chris Hickman, Chief Security Officer at Keyfactor, and Itan Barmes, Global Quantum Cyber Readiness Capability Lead at Deloitte, as they discuss:

- How PQC necessitates a holistic view of cryptography management
- What organizations can do to better manage their cryptographic strategy
- Why PQC is more than just technology, it requires governance  
 
Keyfactor is an approved (ISC)2 CPE Submitter partner. Earn .5 CPE credit by viewing this webinar.

Quantum Cyber Readiness: A Fundamental Look at Cryptography Management

Cybercriminals have turned their sights on critical industries, targeting critical infrastructure and the broader manufacturing industry. Energy and manufacturing are increasingly susceptible to various forms of cyberattacks, due to aging infrastructure, complex operations, and a growing intersection between OT and IT.
 
As the threat landscape expands, organizations that rely on industrial automation and control systems (IACS) need guidance on how to protect themselves. The IEC 62443 series of standards was specifically designed for security leaders charged with protecting automated components in industrial environments.  

In this webinar, we will dive into the five things you need to know about IEC 62443, including:
- What is IEC 62443, and how it is positioned in the market today
- How 62443 correlates to other standards, like the ISO 2700 series and the Cyber Resilience Act (CRA)
- Where do public key infrastructure (PKI) and code signing fit in the context of 62443

IEC 62443 compliance can also be approached as a business-enabling framework in the context of IIOT and smart manufacturing. Join Jiannis Papadakis, Keyfactor Director of Solutions Engineering EMEA, to learn more! 

Keyfactor is an approved (ISC)2 CPE Submitter partner. Earn .75 CPE credit by viewing this webinar.

5 Things You Need To Know About IEC 62443

With the CRA now in effect in Europe, securing the life cycle of devices has become a critical focus. In this webinar, we will demonstrate how the Mender.io platform and Keyfactor products work together to create a secure and trustworthy over-the-air (OTA) update process. We will cover the use of digital signatures to ensure secure artifacts and provide a practical guide on configuring the Mender toolchain extension by integrating the Keyfactor Sign Server. 
Join us to learn about enhancing your device security with these powerful tools.
Keyfactor is an approved (ISC)2 CPE Submitter partner. Earn .5 CPE credit by viewing this webinar.

Securing OTA Updates for CRA Compliance with Mender and Keyfactor

La adopción de la nube, la inteligencia artificial y los dispositivos conectados ha cambiado la forma en que percibimos la confianza digital. El recién publicado informe de PKI y Confianza Digital 2024 revela que, al igual que las organizaciones adoptan la conectividad para impulsar la eficiencia y la innovación, los equipos de TI y seguridad luchan por mantenerse al día. 

La infraestructura de clave pública (PKI) es crucial para ayudar a las organizaciones a mantenerse un paso por delante, definiendo quién y qué se puede confiar. La PKI solía ser "el servidor en un rincón que emite certificados", pero los tiempos han cambiado. Ahora, solo el 2% de las organizaciones están satisfechas con su implementación actual de PKI. 

El informe de este año destaca que la PKI es una infraestructura crítica para que las organizaciones establezcan confianza digital en entornos cada vez más complejos e hiper conectados. Sin embargo, el 72% de las organizaciones informan de que la PKI y la gestión de identidades de dispositivos presentan problemas serios, lo que resulta en caídas en los sistemas, incidentes de seguridad e incumplimientos en las auditorías. 

Únete a Julio Prada, director de Iberia en Keyfactor, para comentar las ideas clave y conclusiones del informe, incluyendo: 

El papel de la PKI en las TI actuales 

Riesgos y desafíos claves en la gestión de la PKI 

Principales amenazas y tendencias 

Y el estado actual y preparación para el salto a la criptografía cuántica PQC 

Keyfactor es un socio remitente de CPE (Créditos de Educación Continua) aprobado por (ISC)2. Obtén 0.75 créditos CPE al ver este seminario web.

Conclusiones del informe sobre la PKI y la Confianza Digital de 2024

Join Ted Shorter, Chief Technology Officer at Keyfactor, and Toby Zimmerer, Senior Demand and Delivery Director at Optiv, as they break down the latest news and trends regarding PQC coming off the heels of America’s biggest cybersecurity expo: RSA Conference. 

From their conversations, talks, and meetings on the show floor, both Ted and Toby will share their insights on:
- What companies are doing to prepare for Q Day
- New products and announcements
- The value of partnerships and service providers in the great migration

Ted and Toby will also be answering all of your questions about all things PQC.

PQC Tales from RSA Conference

L'adoption du cloud, de l'IA et des appareils connectés a brouillé les frontières de la confiance. Le rapport PKI et Confiance Numérique 2024 récemment publié révèle que, alors que les organisations adoptent la connectivité pour stimuler l'efficacité et l'innovation, les équipes informatiques et de sécurité peinent à suivre le rythme. 

L'infrastructure à clé publique (PKI) est la clé pour les aider à rester en avance d'une étape, définissant qui et quoi est digne de confiance. La PKI était autrefois "le serveur dans le placard qui génère des certificats", mais les temps ont changé. Aujourd'hui, seulement 2 % des organisations sont satisfaites de leur déploiement PKI actuel. 

Le rapport de cette année indique que la PKI est une infrastructure critique pour les organisations afin d'établir la confiance numérique dans des environnements de plus en plus complexes et hyper-connectés. Pourtant, 72 % des organisations déclarent que la PKI et la gestion des identités de machine posent de sérieux problèmes, entraînant des pannes de système perturbatrices, des incidents de sécurité et des échecs d'audit. 

Rejoignez Pierre Codis, VP des ventes chez Keyfactor, pour une analyse des des principaux enseignements et conclusions du rapport, notamment : 

- Le rôle de la PKI et des identifiants machine dans l'informatique moderne 

- Les risques majeurs et les défis clés dans  la gestion de la PKI 

- Les principales menaces et tendances 

- Et l'état sur la préparation à l’ère post-quantique  

Keyfactor est un partenaire soumetteur de CPE (Crédits de Formation Continue) approuvé par (ISC)2. Gagnez .75 crédit CPE en regardant ce webinaire.

Conclusions du rapport 2024 sur la PKI et la Confiance Numérique

From websites and servers to IoT devices and cloud workloads, PKI and digital certificates play a crucial role in safeguarding an organization's infrastructure! Don't let your organization's security become compromised by ADCS vulnerabilities. Join Keyfactor to understand how to level up PKI and stay ahead of challenges in this ever-evolving tech landscape!
 
In this session, Ryan Sanders, Sr. Director Product Marketing, will explore: 
- How to decide if and when you need to consider replacing or migrating your PKI 
- Top 5 security risks and operational limitations of Microsoft ADCS 
- Finding the right technology fit for your unique requirements 


Keyfactor is an approved (ISC)2 CPE Submitter partner. Earn .25 CPE credit by viewing this webinar.

Why it's time to replace your Microsoft PKI

Critical National Infrastructure such as Gas, Water, and Electricity networks are the foundations of our everyday lives and economy. This webinar will examine the cyber security risks for operational technology and the best practices for addressing those risks.

Tune into this webinar, where we'll discuss the following:
- Insights into where risks lurk in organizations and what emerging threats organizations face. 
- How regulation develops and how to build a robust defense against threats based on best practices.
- The concepts of PKI and discover industry best practices for implementing these security measures effectively in your systems.
- Identify signs of system compromise and respond effectively in such situations to minimize the impact and protect your critical infrastructure.
- How testing, training, and exercising can improve the resilience and security of your processes and systems, allowing you to respond faster when attacked.

Keyfactor is an approved (ISC)2 CPE Submitter partner. Earn .50 CPE credit by viewing this webinar.

Cyber security for Utilities

The adoption of cloud, AI, and connected devices has blurred the boundaries of trust. The just-released 2024  PKI and Digital Trust report reveals that, as organizations embrace connectivity to drive efficiency and innovation, IT and security teams are struggling to keep pace. 

Public key infrastructure (PKI) is the key to helping them stay one step ahead, defining who and what is trusted. PKI was once "the server in the closet that spits out certificates,” but times have changed. Now, only 2% of organizations are satisfied with their current PKI deployment.

This year’s report signals that PKI is critical infrastructure for organizations to establish digital trust across increasingly complex and hyper-connected environments. Yet, 72% of organizations say that PKI and machine identity management present serious problems, resulting in disruptive system outages, security incidents, and audit failures.

Join Chris Hickman, Chief Security Officer, as he discusses key insights and takeaways from the report, including: 

- The role of PKI and machine IDs in modern IT

- Key risks and challenges in managing PKI

- Top threats and trends

- And the state of quantum-readiness 

Keyfactor is an approved (ISC)2 CPE Submitter partner. Earn .75 CPE credit by viewing this webinar.

Key Takeaways from the 2024 PKI & Digital Trust  Report

Embark on a thrilling exploration with industry visionaries as they shatter the conventional presentation mold on quantum-proofing your organization. Join Camille Morhardt from Intel in a discussion of quantum computing's impact on businesses today and tomorrow. Brace yourself for a deep dive into why it matters now! The expert panel will discuss the latest state of quantum research, the sense of urgency you should give post-quantum cryptography and strategies for future-proofing your organization.

Steal now, decrypt later: prepare for a Post-Quantum World

Join Duncan Jones, Head of Cybersecurity, Quantinuum and Ted Shorter, CTO, Keyfactor as they discuss how a partnership is strengthening public key infrastructure by combining EJBCA with quantum-enhanced entropy from Quantum Origin to provide the strongest foundation for digital infrastructures. 

They will discuss what and how you can start testing PQC today, even before the final standards are released, because once they are, boards and C-level executives will be asking you for your plan.

Keyfactor is an approved (ISC)2 CPE Submitter partner. Earn .5 CPE credit by viewing this webinar.

It Takes a Village:  PQC Requires Partnership

The Power of PKI

20 Years of Digital Trust: PKI from the Internet to IoT

Building a Modern PKI for Enterprise & 5G Applications

Supply Chain Security

Standardization in Support of the European Union Legislation

Software Signing in the Quantum Age

How to Reign in PKI and Certificate Sprawl: A Network Engineers Perspective

Public Trust, CA/Browser Forum, and PKI Industry Update

Public Key and Signature Infrastructure for Industrial Security

Planning for Post-Quantum Cryptography: Evolution of Internet Standards

Industrial Automation and Certificates Management

Hardcore PKI

Hardcore Crypto

Electronic Deeds Archive with Decentralized Key Management

The eIDAS-Wallet in 2024: A "Blue Wonder" for eID and Trust Service Providers?

The Dutch Ministry of Justice and Security PKI Use Cases

Becoming a 5G PKI

Tech Days - On-Demand

Development teams often use Continuous Integration (CI) tools (e.g., Jenkins, Bamboo, Team City, CircleCI, Concourse, etc.) and Continuous Deployment (CD) tools (e.g., Harness, etc.) in their SDLC cycles. Karthik Lalithraj, Keyfactor's Director of Solutions Engineering, East, will address some of the more complex questions facing enterprises today. Attendees will come away with answers to questions such as:   

How can teams integrate Continuous Security (CS) within the CI/CD process using digital signing?  

How can teams secure the private key while simultaneously providing code-signing access to various groups? How does this process work across globally disparate teams and individuals?  

How can you stop lousy development practices?  

Can we audit this?  

And finally, how do teams consume and validate these artifacts?  

This talk will cover how these challenges are quickly addressed in the enterprise. 

Earn 0.25 CPE  credits on this session. Keyfactor is an approved (ISC)² CPE Submitter, partner.

Securing the DevOps CI/CD Pipeline

CICD

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Thousands of healthcare IT professionals compose the health IT community on BrightTALK. Learn alongside them with relevant webinars on healthcare IT compliance, big data in healthcare and IT solutions for healthcare organizations. Join the conversation by asking questions and engaging with other participants during live webinars and organized discussions.

Securing the DevOps CI/CD Pipeline

Presented by

About this talk

More from this channel