Name: From the Trenches: Protecting Against Distributed Log4j Attacks
Start: 2022-07-18T15:49:00Z
End: 2022-07-18T15:49:51.000Z
Location: BrightTALK
Rating: 0

At BlueVoyant, we recognize that effective cybersecurity requires active prevention and defense across both your organization and supply chain.  Our proprietary data, analytics and technology, coupled with deep expertise, works as a force multiplier to secure your full ecosystem. 

Accuracy. Actionability. Timeliness. Scalability.

If your organization was impacted by a data breach, what’s your plan? How quickly you detect and remediate that intrusion will help you reduce the financial and reputational impact due to the fallout. A proactive plan can make all the difference, but where do you start?

Tune in to this on-demand webinar as we discuss the consequences of incomplete incident response plans, outdated training, and unprepared teams — all of which can lead to costly data breaches. You’ll learn best practices for building a proactive cybersecurity program with proper incident preparedness.

What you’ll learn:
– Incident preparedness | Understand a breach’s impact and create a strong incident response plan.
– Left of boom | Learn proactive tactics to reduce corporate risk exposure to a cybersecurity incident.
– Right of boom | Know what to do when a cybersecurity incident occurs and how to get in front of it.
– Continuous vigilance | See how BlueVoyant Elements can protect your infrastructure, monitor your supply chain, and keep your security team and employees aware of the latest attack vectors.

A Left of Boom Cybersecurity Approach for a Right of Boom World

With the current push for digital business transformation, organizations are increasingly dependent on external parties, increasing their vulnerability to vendor cyber risk. Because many vendor risk management programs are developed as tactical responses to ensure compliance with a growing list of data privacy and cybersecurity regulations, they often result in labor-intensive and inefficient processes that deliver marginal productivity or value.

Industry best practices for effective Third-Party Cyber Risk Management can help improve your own program, and enterprise cyber risk solutions can further provide cyber defense for your third parties. The BlueVoyant Terrain: 3PR for Third-Party Cyber Risk Management service helps protect clients by identifying, managing, and remediating security risks posed by their third-party vendors and suppliers. By continuously monitoring a client’s supply chain across their ecosystem through our Risk Operations Center (ROC), BlueVoyant can help identify cyber risks that could impact the client and their partners.

Accelerating Your Third-Party Risk Management Program

Watch part 2 of our 3-part series to discover what our panel of Cloud Security experts share about how organizations are tightening their security through Secure Score.

Learning Outcomes:
• Gain a deeper understanding of your Secure Score
• How to improve your score through taking recommended actions
• How to maximize your organization’s Microsoft license investment

You Have Your Secure Score, Now What?

Watch part 3 of our 3-part series we share a live demo and real-world use case on how you can unlock the full value of your Microsoft investment and use Secure Score to help you understand the steps you must take to efficiently enhance your security posture.

Learning Outcomes:
• Gain a deeper understanding of your Secure Score
• How to improve your score through taking recommended actions
• How to maximize your organization’s Microsoft license investment

Deep Dive Into Secure Score for Microsoft 365 and Cloud Advisor

s your company trying to understand how to scope and manage data for CMMC Compliance? If so, join us for the first in a two-part CMMC webinar series where we will walk through scoping in accordance with the new CMMC 2.0 Scoping Guide.

During this session Amy Williams, CMMC-PI and CMMC-PA, Ian Frist, CMMC-PI, and Matt Weber, CMMC-RP, will provide an overview of the new Scoping guide and unpack the first two asset categories, CUI Assets and Security Protection Assets. There will be tips and insights based on the subject matter experts’ experience helping companies face these challenges.

This is part one of a two-part series. In the next session, we will cover Contractor Risk Managed Assets, Specialized Assets, and Out-of-Scope Assets.

Simplifying CMMC Series Part 1: Scoping and Managing Your Data

As we continue to move toward a cloud-native world, the need for Security Information and Event Management (SIEM) is on the rise but management and monitoring is no easy task. Companies want visibility and insights in order to take action, however, the sheer volume and types of log data has become almost impossible to drive ROI even for the most advanced organizations.

Please join us for a roundtable discussion with Forrester Research about measuring the value of a SIEM while managing the exponential rise in the data they collect.

The Value of SIEMs and the Inherent Value They Provide

Most organizations and their business leaders are concerned about security. However, most also think securing their cloud environment comes at a high cost. This is not necessarily true.

Following Secure Score recommendations can protect your organization from security threats. From a centralized dashboard in the M365 Defender portal, your organization can monitor and bolster the security of its M365 identities, apps and devices.

Register to discover what our panel of Cloud Security experts will share about how organizations are tightening their security through Secure Score.

Learning Outcomes:
• Determine if your SaaS and Azure environments are secure
• Take advantage of free tools in Microsoft
• Get access to Secure Score
• Find out what Secure Score rates against

Secure Score for Microsoft 365 + Defender

Using the latest thinking from Microsoft®, financial services can unleash the value of their Microsoft Security 365 investment and its suite of cybersecurity capabilities to protect their institutions, customers, and partner ecosystems from ransomware and increasingly aggressive cyber threats.

Join Michael Cardell, General Manager, Fiserv Secure Managed Services, Dan Menicucci, Microsoft Chief Security Advisor for Financial Services, and Davitt Potter, BlueVoyant Cyber Sales Engineer to learn how financial services use Microsoft Security to fortify their security posture, automate security incident handling and reduce manual threat hunting so they can focus their resources on driving strategic initiatives forward instead of battling bad actors.

Davitt Potter, Cyber Sales Engineer at BlueVoyant, will discuss the following:
- What your peers in financial services are experiencing
- Bringing together the Microsoft Security Ecosystem and managed security in your environment
- Optimizing the value of your Microsoft Security licensing investments
- Live demo of threat hunting and incident handling within Microsoft Sentinel

How FIs are Maximizing Microsoft Security Investments to Defend Their Businesses

Businesses worldwide use Microsoft security products to gain the highest security posture possible. But for many organizations, products within Defender for Cloud and 365 Defender suites leave security data distributed and isolated, or even worse, raw log detection correlations are often done from scratch.

It’s time to maximize the power of Sentinel as a single pane of glass for security.

Benefits of Cross-Fabric Detections for Microsoft Defender for Cloud

The health care field continues to be one of the most exposed sectors to cyberattacks. In this webinar, learn how now more than ever it’s critical for hospital infrastructure to be fortified and resilient. The recent surge of ransomware attacks targeting health care organizations has made it clear that cybercriminals can deny access to health data, disrupt care delivery and risk patient safety. It may take an organization over a year to recover from a highly disruptive ransomware attack. The speed at which your team can detect, contain and eradicate a cyberthreat is paramount to avoiding critical business disruption.

Why Hospitals are a Target of Cybercrime and How to Mitigate Risk

Join Microsoft’s Eugen Rusen, Security Cloud Solution Architects Lead CEE, and BlueVoyant’s Marius Mocanu and Adrian Grigorof, Co-heads MSFT Security Consulting as they lead a unique seminar on the latest challenges organizations face today with building a complete cybersecurity practice.

Please note this session is in Romanian.

In this webinar, the following topics are covered:

Don’t budget for a breach, budget for protection: Learn why organizations are investing in 24x7 monitoring, threat detection, and remediation managed security services
Today’s security landscape: Understand the financial and social impact of a cybersecurity incident
Threat and vulnerability updates: Learn how to scale and protect your organization against the rapid evolution of cybersecurity attacks
Understanding Investments: Boost your security protection by leveraging your Microsoft investments
Speakers
Eugen Rusen, Microsoft
Marius Mocanu, BlueVoyant
Adrian Grigorof, BlueVoyant

Securing the Modern Workplace

When it comes to keeping up with an organization’s critical threats, it’s important to have visibility into your third parties. Traditionally, organizations have relied on risk ratings to keep track of the security posture across their shared third-party network and identify where they may be most vulnerable. 

Useful as they are, however, risk ratings have their limitations. Users have difficulty deploying and wrapping an efficient process around them. Just trying to keep up with vendors and services in-house is time and resource-intensive. Even outsourcing yields little payout from ratings alone if your organization lacks the program to act on the information. So how do you effectively “get good” at-risk scores and extract the real value behind them for your business? 

Enter the Risk Operations Center (ROC), staffed with cyber security experts who curate alerts to evaluate potential risk to your third-party ecosystems. ROCs can continuously assess and rate risk posture, prioritize and mitigate critical concerns, and effectively keep up with an evolving threat landscape. 

Unfortunately, ROCs are difficult to create and maintain, which is why enterprise solutions have been created to lower the barrier to entry for organizations that want to leverage these benefits. 

This webinar will explore how a Risk Operation Center effectively operationalizes security ratings by: 
● Creating and utilizing ratings for continuous monitoring 
● Validating ratings with expert oversight 
● Modifying ratings based on an organization's tailored risk appetite

Operationalizing Third-Party Cyber Risk Management

When ransomware attacks impact security cores occur every 11 seconds, organizations should look at all parties involved: from ransomware gangs and victims to insurance brokers and even policymakers, It's how they'll understand the true consequences of ransomware. In order for them to reinforce and better their cybersecurity posture, organizations need to be in better position to identify and prioritize potential attacks.

The evolution of the cybercrime-as-a-service model has made ransomware a real threat to organizations around the world, but what are the unintended consequences of ransomware? How can organizations get inside an attacker's mind to stay one step ahead.

Join us in this session as we discuss:
- How market forces, geopolitics, and policy challenges have made ransomware so difficult to avoid
- The consequences of ransomware - from the victim to the attacker
- How investigating ransomware from the perspective of an attacker can improve your security posture
- The future of ransomware

Ransomware Under the Microscope: From Victim to Attacker

Microsoft Cloud App Security is one of our favorite portals.  Because it works so well and it looks so good.  But what you may not know is the ability to extend your security and information policies beyond the cloud layer in both directions.  
Join BlueVoyant’s Director of Microsoft Support Solutions, Micah Heaton, as he unpacks some of the deeper integration potential around MCAS and your 3rd party SaaS and PaaS apps.   Micah will demystify the deployment experience with MCAS and answer specific questions from attendees around their use cases.

How You Can Extend the Cloud Perimeter Beyond the Microsoft Cloud

The Microsoft Security Center at security.microsoft.com is getting better everyday.  In the past year we’ve seen Microsoft successfully consolidate the Endpoint and Office security portals into a single pane of glass.  Soon enough, we’ll expect to see Microsoft Cloud App Security and Defender for Identity join this portal.
This webinar is for you if you’ve been comfortable with the old portal but want to know more about the new environment. Join BlueVoyant’s Director of Microsoft Support Solutions, Micah Heaton, as he showcases the ability to hunt across events based on the unified alerting and show how resolution actions can take on new meaning for your organization going forward.

How to Create a Unified Threat Hunting Experience Across Security Portals

Many companies are finding that the best way to save on Infrastructure costs is to leverage cloud technologies to support their business-critical applications. But making the transition to the cloud has its fair share of speed bumps along the way. 

How do you get there from where you are now? Especially when you’re faced with limited resources, time, and budget to effectively optimize, manage, and scale security operations. 

It’s time to rethink how technology, people, process, and data privacy are applied to modernizing security operations. 

Join BlueVoyant, Splunk & Concanon to learn how you can start tapping into the value of your data within days instead of weeks and months.

Panel Speakers: 
Milan Patel, Global Head of Managed Security Services, BlueVoyant
Andy Hershey, Group Vice President Global Cloud Sales & GTM Transformation, Splunk
Anthony Giallombardo, Director of Cybersecurity, Concanon

How to Accelerate Your Migration to Splunk Cloud Platform

In the last 18 months, there have been more than 281,000 data breach notifications and 272.5 million euros imposed in fines in Europe, according to DLA Piper. As security breaches lead to losses in revenue and reputation, leaders must rethink their approach to organisational security to ensure that they stay ahead of current threats, and maintain a good security posture.
 
Some organisations are still unaware of the full range of Microsoft's capabilities, from the ability to integrate it with third-party solutions, utilizing it to expedite threat detection, and prevent data breaches. As such, many are not leveraging the full potential of Microsoft cloud security, and are therefore falling behind in the race to secure their business.
 
Join this panel to learn how to fully integrate and operationalize Microsoft solutions and learn to thrive and succeed in the current threatscape. 
 
Join us as experts in the field discuss:
-  How to reduce alert fatigue, optimize logs, and concentrate on high value sources of information
-  The integration between Microsoft’s EDR technology and incident response across the productivity and collaboration layer
-  How to create a unified threat hunting experience across security portals
-  The differences between traditional endpoint and cloud-based device management
-  How you can extend the cloud perimeter beyond the Microsoft cloud

Demystifying Microsoft: Unlocking Microsoft Cloud Security’s Full Potential

Last December, the Log4j vulnerability took the cyber world by storm. Within days, thousands of attacks had targeted unsuspecting organizations that scrambled to plug the holes and avoid carnage.

While the initial surge of action seems to have died down for the moment, security teams should understand that they aren’t out of the woods yet. The long-term ramifications are drastic, and could affect every facet of a company’s digital footprint and supply chain.

Join us for a fireside chat with BlueVoyant’s CISO, Sadiq Khan, and Head of Third-Party Risk, Adam Bixler, as they discuss how the Log4j vulnerability could change the landscape for security practitioners going forward and how BlueVoyant is prepared to respond to attacks leveraging it.

From the Trenches: Protecting Against Distributed Log4j Attacks

Log4j

Cyber Attacks

Cyber Defence

Cyber Security

Risk Management

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

From the Trenches: Protecting Against Distributed Log4j Attacks

Presented by

About this talk

More from this channel