Name: The Brick House: Ransomware Negotiation Stories: Behind The Screens
Start: 2023-10-25T16:50:00Z
End: 2023-10-25T16:51:02.000Z
Location: BrightTALK
Rating: 5

The GuidePoint Security Channel features presentations by leading real-world certified practitioners in the fields of AppSec, Cloud Security, Digital Forensics, Government Risk & Compliance, Identity & Access Management, Incident Response, Penetration Testing, Security Operations, Vulnerability Management and more. 

As cloud environments grow more complex, the need to effectively manage access and secure applications has become more urgent than ever. Cloud security is no longer just about protecting infrastructure—it’s about ensuring that the right people have access to the right resources and that applications themselves are fortified against evolving threats.

Watch this discussion on how integrating Identity and Access Management (IAM) and Application Security (AppSec) can strengthen your cloud security posture. They will discuss key strategies for securing user access across multi-cloud environments, addressing vulnerabilities in cloud-native applications and building a unified defense strategy. Whether you are dealing with multi-cloud environments, hybrid infrastructures, or cloud-native applications, this discussion will provide actionable insights to protect your organization’s most valuable assets.

Panelists:
Kevin Converse, Vice President, Identity and Access Management
Jonathan Villa, Practice Director, Cloud Security
Robert Darwin, Senior Director of Security Engineering

The Brick House: Unified Cloud Defense With Identity, Access and Application Security

This report presentation by Jason Baker and Grayson North from GuidePoint's Research and Intelligence Team covered the July-September 2024 ransomware landscape including industry, geography, group activity and trends. Key points included the emergence of new prolific groups like Ransomhub, which saw a 150% increase in victims, and the decline of traditional heavyweights like Lockbit and Alpha/Black Cat. The total number of observed victims dropped by 22% compared to the same period last year. The discussion highlighted the shift to a "new middle class" of ransomware groups and the impact of law enforcement disruptions. Additionally, the use of AI in ransomware operations and phishing techniques exploiting legitimate services were noted.

Exploring Ransomware's Emerging Middle Class Evolving Cyber Threats—A GRIT Presentation

[PART TWO] In Part One of our series, we explored the threat intelligence life cycle, the importance of setting intelligence requirements and how threat modeling helps identify adversaries and protect your organization.

In Part Two of our series, we build on those concepts by discussing the importance of continuous improvement, feedback loop and aligning threat intelligence with an organization’s security goals. Our panelists will also touch on how to enhance threat intelligence maturity, refine intelligence objectives and further integrate these practices into daily operations. Don’t miss this in-depth discussion on advancing your threat intelligence program.

Featured Panelists:
• Tony Cook, Senior Director, DFIR & Threat Intelligence, GuidePoint Security
• Jason Baker, Principal Security Consultant
• Will Baxter, Security Engineer, Team Cymru
• Henry Carpenter, Senior Solutions Engineer, Cyware
• Dan Kropp, Director of Intelligence Services, Recorded Future

Part Two: A Day in the Life of a Threat Analyst

[PART ONE] Get a behind-the-scenes look at the daily routines of threat analysts working on the front lines of cyber intelligence. In this live panel, experts from GuidePoint Security, Cyware, Team Cymru, and Recorded Future discuss the workflows, tools and strategies they rely on to defend against evolving threats. Whether you're sharpening your skills or exploring new career paths, this session offers valuable insights into the world of threat intelligence.

Featured Panelists:
• Tony Cook, Senior Director, DFIR & Threat Intelligence, GuidePoint Security
• Jason Baker, Principal Security Consultant, GuidePoint Security
• Will Baxter, Security Engineer, Team Cymru
• Henry Carpenter, Senior Solutions Engineer, Cyware
• Dan Kropp, Director of Intelligence Services, Recorded Future

Part One: A Day in the Life of a Threat Analyst

The latest Brick House presentation focused on building a strong cybersecurity culture through a proactive and inclusive approach. Key topics included the importance of strong passwords, multi-factor authentication, phishing awareness and regular software updates. The expert panel—featuring GuidePoint Security's Ed Dunnahoe, Vice President, IA, Andy Lux, Vice President Engineering, Heartland, Steve Rosenkranz, Senior Director Corporate Information Security and Andre Rosario, Security Consultant —discussed integrating security into everyday business operations, fostering a culture of trust and leveraging AI to enhance security awareness.

They emphasized the value of tailored training, practical exercises, and leadership alignment to promote better security practices across the organization. Notable statistics included a 68% breach rate due to human error and the increasing use of AI in social engineering attacks. The panel offered practical advice, such as verifying suspicious requests, using AI with caution and maintaining strong situational awareness.

Watch the full episode for more actionable insights to strengthen your organization's security culture.

The Brick House: Prioritizing a Security Culture

Enhancing your cybersecurity measures involves more than just setting up defenses—it's about continuously evolving them. Join Gary Brickhouse, CISO, for a roundtable discussion on maturing your cybersecurity programs to meet and exceed industry standards. Our experienced panel will provide their perspectives on basic security protocols to sophisticated cybersecurity frameworks and discuss growing and adapting security frameworks to maintain a competitive edge. 

With GuidePoint Security Panelists:
Chris Peltz, Practice Lead
Lance Fischer, Senior Security Architect
Russ Thomas, Principal Security Consultant
Zachary Sheaffer, Managing Security Consultant, IA

The Brick House: Basics to Brilliance—Maturing Your Cybersecurity Program

Watch this roundtable discussion on penetration testing strategies that go beyond traditional vulnerability checks. Our GuidePoint Security panel of TAS and AppSec practitioners focus on advanced methods for testing the weakest points of your organization’s cybersecurity.

The Brick House: Into the Breach–Advanced Pen Testing Tactics

Cybersecurity dynamics are rapidly shifting. Join our GuidePoint Research and Intelligence Team (GRIT) analysts for an in-depth discussion on the ransomware trends, emerging threats and tactical shifts within the ransomware ecosystem during Q2 of 2024.

Our analysts will present unique findings, identifying key patterns, best practices, and lessons learned. Gain actionable recommendations to reinforce your defenses against sophisticated cyber adversaries.

Adaptive Defenses: Q2 ’24 Ransomware Trends and Recommendations

The landscape of Identity and Access Management (IAM) is undergoing a seismic shift, driven by rapid technological advancements and evolving cyber threats. A paramount challenge facing IAM revolves around the integration and management of increasingly complex multi-cloud environments.

Navigating IAM in a Cloud-Based World

Promote responsible AI use by equipping yourself with best practices for securing AI-driven systems, managing risks and preparing for the future of AI in cybersecurity. Register now to secure your spot and gain invaluable insights into the future of AI in cybersecurity.

The Brick House: Beyond the Buzz – Understanding AI’s Evolving Impact on Cyber

This roundtable discussions with experienced compliance professionals will focus on building successful compliance programs, identifying and addressing governance gaps and preparing for upcoming regulatory changes. It’s an essential discussion for cybersecurity professionals responsible for data security management and regulatory compliance.

The Brick House: The State of Cybersecurity Compliance

As digital threats are becoming more sophisticated and more pervasive, the concept of cyber resilience has emerged as a cornerstone for those at the forefront of information technology, cybersecurity and risk management.

The Brick House: A Holistic Approach to Cyber Resilience

In the first quarter of 2024, cybersecurity remains crucial for businesses and individuals. As technology advances, cyber threats evolve, highlighting the need to stay updated on trends. 

Ransomware continues to be one of the most impactful threats experienced across all industry verticals. With major groups like LockBit and Alphv having struggles of their own, GRIT has been focused on analyzing how the ransomware ecosystem will be affected.

On April 24, 2024 at 1pm ET our GuidePoint Research and Intelligence Team will provide an in-depth analysis of current ransomware trends, share best practices for proactive defense measures and offer an interactive Q&A session to address your specific questions.

Beyond The Leak Sites: Analyzing the Impact of Ransomware in Early 2024

This Brick House roundtable discussion focuses on the multifaceted challenge of securing the Internet of Things (IoT). With the increasing prevalence of internet-enabled devices across all industries including municipalities, healthcare and finance, the imperative to safeguard this interconnected ecosystem intensifies.

Gary Brickhouse, CISO at GuidePoint Security, along with a panel of Operational Technology (OT) and Threat & Attack Simulation (TAS) practitioners will discuss the most pressing issues in IoT security from navigating threats, pinpointing vulnerabilities and developing robust security measures for critical infrastructure and edge computing.

The Brick House: Securing All The Internet of Things

This illuminating roundtable lays a path forward for responsible and innovative Identity and Access Management, full of practical experience and innovations, guiding organizations to a future fortified against the unknowns of Identity Management. Our conversation will walk you through the business value of IDAM, Zero Standing Privilege (ZSP) and automation. Hosted by Gary Brickhouse, CISO and a panel of seasoned GuidePoint Security IAM practitioners, sharing pivotal insights for today’s Identity professionals.

The Brick House: Future-Proofing Identity & Access Management

As organizations navigate the murky waters of cyber threats amplified by AI sophistication and quantum leaps in computing, they face the paradox of innovation and vulnerability. With every stride in technology, a shadow looms, challenging the encryption that once guarded our secrets. We are now at a point in time where the keystones of data privacy are no longer set in stone but in constant flux.

Get expert strategies to safeguard your organization’s data in the Brick House roundtable discussion, hosted by Gary Brickhouse, CISO, GuidePoint Security, who has assembled a panel of Data Governance and Privacy practitioners to shed light on effective strategies for safeguarding organizational data. Together, they’ll unveil insights and strategies to fortify your data against advancements in technology, organizational challenges, and cyber-attacks with practical experience in a lively discussion on the delicate balance between data access, privacy, and security.

Balancing Privacy and Security in a Hyper Cyber World

Our 2023 GRIT Annual Ransomware Report provides an in-depth analysis of the scale and implications of ransomware attacks in 2023, clarifying their potential impact on your business operations. More specifically, GRIT’s analysts will deep dive into ransomware’s developments and impacts over the last year and what that means across all industry verticals in 2024. With this knowledge, cybersecurity leaders and analysts can make educated and prioritized decisions regarding how to defend their organizations.

Register for this live talk to gain a deeper understanding of how ransomware operates and learn about best practices for prevention, detection and response.

A 2023 Ransomware Retrospective: Critical Insights Informing Expectations in '24

The cyber threat landscape underwent significant changes in 2023, ushering in an era where organizations must fortify their defenses against an even wider array of sophisticated threats for 2024. These include the rise of AI-generated deepfakes, sophisticated phishing scams, novel extortion techniques, and increasingly frequent attacks on cloud infrastructure and supply chains, along with the ever-present danger of zero-day exploits. To navigate this complex environment, it is critical to bolster security protocols, elevate employee security consciousness, and establish robust incident response frameworks.

The Brick House: Cybersecurity 2024 — Security Risks and Evolving Threats

The Brick House: SaaS Security Challenges and Solutions

The Brick House: Third-Party Risk Management Lessons Learned

The Brick House: Application Security's Expanding Landscape

The Brick House: The Amplifying Effect of AI on Cybersecurity

The Brick House: The Evolving Role of the CISO

The Brick House: Demystifying Threat Detection and Response

The Brick House: Securing Hybrid Environments

The Brick House: Unpacking Identity & Access Management

The Brick House: Why OT/ICS Cybersecurity Matters

The Brick House: Informing your 2023 Security Strategy

The Brick House: Breach Notifications and the Impact on Your Business

The Brick House: Cybersecurity Awareness—Securing The Human Element

The Brick House: IR Fundamentals—Revamping Your IR Response

The Brick House: How to Use Threat Intel to Improve and Inform Your Defenses

The Brick House: Security Skills, Recruiting and Retention

The Brick House: Security Architecture Fundamentals

The Brick House: Cloud Security Evolution and Expansion

The Brick House: Security Program Fundamentals

The Brick House: The Evolution of Identity within Your Security Stack

The Brick House: Mergers & Acquisitions Due Diligence

The Brick House: Supply Chain Risk Management

The Brick House: 2022 Security Trends

The Brick House: Zero Trust: Who Should You Trust?

The Brick House

Explore the intricate aftermath of a ransomware incident, where a myriad of choices awaits. Engaging with hackers, assessing the compromised data’s value, weighing ransom payment pros and cons, and the legality of such payments emerge as pivotal considerations. As ransomware groups escalate coercive tactics, urgency heightens around these determinations.

Panelists:
Drew Schmitt, GRIT Lead Analyst
Grayson North, Senior Threat Intelligence Consultant
Jason Baker, Threat Intelligence Consultant
Nic Finn, Senior Threat Intelligence Consultant

The Brick House: Ransomware Negotiation Stories: Behind The Screens

cybersecurity

RaaS

Ransomware

Threat Analysis

Cyber Attacks

Cyber Crime

Cyber Incident Response

Negotiation

Threat Intelligence

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The unexpected nature of natural disasters and other disruptive events means that preparation is key to managing disaster recovery and business continuity planning. Join the business continuity and disaster recovery community for live and recorded presentations discussing best practices for business continuity planning, disaster recovery programs and business continuity management. Learn from BCDR experts to develop your critical infrastructure and gain insight into tactical solutions to your BCDR issues.

Business Continuity / Disaster Recovery

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

The Brick House: Ransomware Negotiation Stories: Behind The Screens

Presented by

About this talk

More from this channel