Name: 3 Actions IT Leaders Can Take to Improve Software Supply Chain Security
Start: 2023-04-18T19:00:00Z
End: 2023-04-18T19:00:24.000Z
Location: BrightTALK
Rating: 0

Transform your cybersecurity with frontline intelligence, modern security operations and AI-powered cloud innovation.

Red team exercises have long been used to test the effectiveness of cybersecurity defenses. Join this technical webinar to learn how advanced red team technology is now being incorporated into cloud security products, and how to smartly combine new virtual capabilities with sophisticated human-led red teaming to discover security gaps before attackers do.

In this webinar, you will learn:
> How virtual red team technology uses a digital twin model of your cloud environment to pinpoint the highest risk issues; giving security teams the critical insight to strengthen their cloud security posture
> Best practices in making red team exercises part of your cloud security strategy. Hear real-world examples from world-class Mandiant security experts.
> See how to create and use custom risk reports to make cloud security improvements across your organization. 

Register now to find cloud security risks you don’t know about and build a more resilient cloud environment.

Elevate Your Cloud Security Strategy with Security Command Center and Mandiant

Cyber threats are constantly evolving. Learn how to stay ahead of them in 2025 with security expert Andrew Kopcienski.

Join this deep-dive session based on the Cybersecurity Forecast 2025 report, where Andrew will cover key trends and insights to help strengthen your cyber defenses in the year ahead, including:

*Attacker use  of AI
*The evolving threat landscape from Russia, China, Iran, and North Korea
*Ransomware and multifaceted extortion as the most disruptive form of cyber crime
*The growing threat of infostealer malware

Google Cloud Cybersecurity Forecast 2025

Join Google's Office of the CISO for a vital webcast designed specifically for Boards of Directors. In today's interconnected world, supply chain attacks are a growing threat to organizations of all sizes. Cybersecurity is no longer just a concern for IT departments; it's a critical business issue that requires board-level attention. This session will provide Directors with the knowledge and strategies needed to strengthen your organization's resilience.

Here are some of the key topics we'll cover:

● Evolving Supply Chain Risks: Understand the latest tactics used in supply chain attacks and the critical role boards play in mitigating these evolving threats.
● Collective Defense Through Information Sharing: Discover how collaborating and sharing threat intelligence with industry peers creates a powerful "digital immune system," fortifying collective defenses and operational resilience.
● Cybersecurity & "Value at Risk": Gain a deeper understanding of how cyberattacks, particularly those targeting the supply chain, can significantly impact your organization's bottom line. This includes quantifying potential financial losses, reputational damage, and operational disruptions.

Google Cloud Webcast Event: Strengthening Resilience - A Critical Discussion for Boards of Directors

In today's interconnected world, sophisticated cyberattacks and data breaches are a constant threat, making robust network security essential for businesses of all sizes. While Google Cloud offers a secure foundation, understanding how to enable network security for your environment is crucial for protecting your valuable assets.

Building a strong security posture requires a proactive approach. This involves implementing a layered defense strategy that encompasses network segmentation, access control, threat detection, and continuous monitoring. Google Cloud provides a broad set of powerful, AI-powered native network security capabilities to help protect your cloud infrastructure from external and internal threats.

In this session, we will provide an overview of the Cloud Network Security product portfolio that addresses use cases including network threat protection, network security posture controls, DDoS and web application protection, and network privacy.

Join this webinar to:
> Explore tools and techniques for detecting and responding to network threats, including NGFW, IPS, and WAF.
> Gain insights into securing hybrid and multi-cloud environments connected to Google Cloud.

Register now and gain the knowledge to fortify your network defenses and safeguard your critical resources in Google Cloud.

Security Foundation: How to build layered network protection in Google Cloud?

Password leaks and data breaches are increasing, exposing user credentials to cybercriminals.

Protect your users and your business with proactive password leak detection.

Register now for this webinar to:
> Understand the scale of password leaks and how they're exploited.
> Discover how reCAPTCHA password leak detection provides insights into leaked credentials  before they're misused.
> Learn how to set up password reset and other mitigation steps empower users to protect their accounts immediately.

Register now to learn how to safeguard your users and business by implementing proactive password security measures that detect and respond to threats.

Beyond Bots: Protecting Your Users from Password Leaks with reCAPTCHA

Mandiant Managed Defense presents a quarterly webinar series, "Tales from the Trenches," to help you navigate the ever-evolving threat landscape. Our security experts will dive into the latest malware and attack trends they've encountered in the previous quarter. You'll gain valuable insights into how these threats were detected, along with actionable advice to strengthen your own defenses.
In the second installment of the series, Managed Defense Consultants will detail findings from July through September 2024.

Tales from the Trenches: Malware and attack trends from Managed Defense, Q3 2024

A critical zero-day vulnerability in FortiManager appliances has been exploited in the wild, leaving organizations vulnerable to data breaches and lateral movement. In this webinar, Mandiant experts dissect the exploitation tactics, techniques, and procedures (TTPs) of the threat actor we track as UNC5820.

Gain critical insights into:
*Exploitation Details: Understand how UNC5820 leveraged CVE-2024-47575 to compromise FortiManager appliances and exfiltrate sensitive configuration data.
*Threat Actor Profile: Uncover the characteristics and potential motivations of UNC5820 based on our ongoing investigation.
*Mitigation Strategies: Learn practical steps to protect your organization from this vulnerability and similar attacks.
*Detection and Response: Discover how to leverage threat intelligence and hunting techniques to identify and respond to this threat.

Don't miss this opportunity to gain expert insights and strengthen your defenses against this emerging threat. 

Register today!

FortiManager Zero-Day: Intel for Actionable Mitigation Strategies

As your organization expands its footprint in the cloud, managing user access and permissions becomes increasingly complex. Misconfigurations, unauthorized access, and privilege escalation can lead to devastating security breaches and data leaks.

Identity and Access Management (IAM) provides the essential framework for controlling who can access what resources in your cloud environment. By establishing granular access controls and enforcing the principle of least privilege, you can significantly reduce your risk surface and protect your critical assets.

Join this webinar to:
> Understand the fundamental concepts of IAM and its role in cloud security.
> Gain practical insights into implementing IAM in Google Cloud, including creating and managing users, groups, and roles.
> Learn how to leverage IAM to enforce security best practices and achieve compliance with industry regulations.
> Discover strategies for monitoring and auditing user activity to detect and respond to potential security threats.

Register now to establish a strong foundation for cloud security and protect your sensitive data.

Security Foundation: How to get started using IAM in Google Cloud?

When developing tools, AI has proven to be a performance booster. If language models employed for simplifying programmers’ jobs are tainted with malicious code, the results will poison all stages of the production chain. In this webinar, we will:

- Share key security challenges in AI development and the software supply chain and how to mitigate 
- Discuss strategies for vulnerability management and code security
- Provide an overview of Google Cloud tools and capabilities that secure the AI development lifecycle

Securing the AI software supply chain

Social engineering attacks are a constant and evolving threat to global organizations. Attackers use sophisticated techniques such as phishing, vishing, smishing, and social media tactics to manipulate individuals into revealing sensitive information or compromising security. 

This webinar will discuss the latest trends in social engineering attacks and provide practical strategies to defend against them. We'll cover topics such as:

- Recognizing the signs of a social engineering attack  
- Educating employees about social engineering risks  
- Implementing security measures to help prevent social engineering attacks  
- Responding effectively to a social engineering attack  

We'll also examine real-world examples and discuss how artificial intelligence (AI) is being used to both perpetrate and defend against these attacks.  

Why you should attend:

- Stay ahead of the curve: Learn about the latest social engineering tactics and how to identify them before they impact your organization.  
- Enhance your security posture: Gain practical strategies and actionable insights to strengthen your organization's defenses against social engineering attacks.  
- Protect your organization: Learn how to educate employees and develop a culture of vigilance to mitigate the risk of falling victim to these malicious tactics.

Social Engineering: New Tricks, New Threats, New Defenses

AI applications and models are fueled by data and data context. Understanding and protecting this sensitive data is critical to ensuring successful deployments and proper use. In this webinar, we will:

- Discuss important data protection laws organizations need to consider when deploying AI systems 
- Provide methods for preparing data for model training and how to protect against prompt injection
- Share best practices for demonstrating transparency, preventing biases, and building public trust

Protecting sensitive data & building trust in AI systems

In today's dynamic threat landscape, reactive security measures are no longer enough. Gain a critical advantage by understanding your cloud vulnerabilities before attackers do.

This webinar explores the power of virtual red teaming, a cutting-edge approach that simulates millions of attack scenarios against a digital twin of your cloud environment.

Join this webinar to:

> See Through the Eyes of an Attacker: Discover how virtual red teaming proactively identifies potential attack paths and prioritizes critical risks.
> Quantify Your Blast Radius: Visualize the potential impact of a successful attack and understand the cascading consequences across your cloud infrastructure.
> Build a Proactive Defense: Learn how to fortify your cloud defenses and mitigate vulnerabilities before they are exploited.

Join us to explore the future of cloud security and learn how to shift from reactive to proactive defense.

Proactive Cloud Security with Virtual Red Teaming

Account takeover attacks are escalating, leading to financial losses, damaged reputations, and eroded user trust.  

Learn how reCAPTCHA can strengthen your defenses against account takeovers, protecting your users and your platform's integrity.  

Register now for this webinar to:
> Uncover the latest tactics used by fraudsters to hijack user accounts.
> Explore how reCAPTCHA’s multi-layered defense identifies and blocks suspicious login attempts.
> Understand how real-time threat detection and response helps you stay ahead of emerging fraud trends.

Register now to learn how to safeguard your users and business from account takeovers by proactively detecting and stopping attacks.

Beyond Bots: Protect your business from account takeovers with reCAPTCHA

Explore best practices for effectively integrating AI into your existing business processes. In this webinar, we will:

- Explain the key components of a AI governance framework, enabling you to drive ethical and responsible AI practices throughout your organization
- Demonstrate how Google Cloud solutions can streamline AI deployment and management within your enterprise

Best practices for implementing AI securely

AI presents unique security challenges for today's organizations. In this webinar, we will:
- Explore the evolving threat landscape of AI, examining vulnerabilities such as prompt injection and adversarial attacks
- Discuss our approach to securing AI systems and provide insights on leading secure AI adoption initiatives

AI security foundations: Understanding the unique risks associated with AI systems

In today's dynamic cloud landscape, maintaining a strong security posture is paramount. Google Cloud's Security Foundation offers a comprehensive set of cloud-first security controls to address common cloud adoption use cases.

In this webinar, learn about the recommended security products and capabilities to build a strong layered defense architecture. We will delve into four key use cases and showcase how Security Foundation can help you secure:

> AI & GenAI: Secure AI workloads and address prompt injections, AI model theft & more
> Infrastructure Modernization: Protect VMs and containers and address risks like crypto mining and unauthorized access.
> Application Modernization: Shift left with vulnerability detection, supply chain security, and runtime protections.
> Data & Analytics: Maintain data governance, identify, categorize, and control access to your data.

Register now to empower your organization to safeguard its most valuable assets in the cloud.

Security Foundation: How to secure your sensitive data in Google Cloud?

The 20+ year old SIEM market has been undergoing tectonic shifts - technological advances in cloud security, threat intelligence and of course AI, are fundamentally changing how SecOps teams need to operate. The SIEM vendor landscape is also changing rapidly, with market exits and mergers of legacy providers, and the rapid rise of more modern SecOps platform providers. 

In this webinar, our guest speaker, Allie Mellen, Principal Analyst at Forrester, and Chris Corde, Director of Product Management at Google Cloud Security will unpack the recent developments in the SIEM market and provide recommendations on how SecOps professionals should navigate the current and future landscape to better prepare for today’s and tomorrow’s cyber threats.

Navigating the SIEM market shakeup, featuring Forrester Research and Google Cloud Security

Account-based fraud, such as credential stuffing and account takeover, is a growing threat to businesses and their customers.

Learn how reCAPTCHA can be your first line of defense, protecting your users and your bottom line.

Register now for this webinar to:
> Discover the latest account-based fraud tactics and their potential damage.
> Learn how reCAPTCHA can stop unauthorized access and protect your users' accounts.
> Understand best practices for implementing reCAPTCHA to enhance security without compromising user experience.

Register now to equip yourself with the knowledge to combat account-based fraud effectively and safeguard your users' accounts.

Beyond Bots: Shielding Your Business from Account-Based Fraud with reCAPTCHA

The most impactful attacks of today do not target production systems. Instead, they focus on the software supply chain. The well-known SolarWinds attack threatened thousands of organizations, for example, while a bug in the widely used Apache Log4j 2 library affected millions.

Join this webinar where we talk about some of the most notorious software supply chain attacks, discuss lessons learned from these, and offer actions you can take right now to prevent similar attacks from happening.

3 Actions IT Leaders Can Take to Improve Software Supply Chain Security

Software Supply Chain

Software Security

Web Application Security

Web Security

Log4j

Threat Detection

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

The storage community on BrightTALK is made up of thousands of storage and IT professionals. Find relevant webinars and videos on storage architecture, cloud storage, storage virtualization and more presented by recognized thought leaders. Join the conversation by participating in live webinars and round table discussions.

Storage

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

3 Actions IT Leaders Can Take to Improve Software Supply Chain Security

Presented by

About this talk

More from this channel