Name: Protecting Against Software Supply Chain Attacks
Start: 2024-04-23T15:00:00Z
End: 2024-04-23T15:00:38.000Z
Location: BrightTALK
Rating: 5

Thales is a global leader in cybersecurity, helping the most trusted companies, organizations and governments around the world protect critical applications, sensitive data, and identities anywhere at scale. Through our innovative services and integrated platforms, Thales helps customers achieve better visibility of risks, defend against cyber threats, close compliance gaps, and deliver trusted digital experiences for billions of consumers every day.

With the sheer number of new platforms and technologies being adopted by the healthcare and life sciences industry, it dramatically expands the attack surfaces and making these industries more vulnerable to attacks by cybercriminals.

This results in more sensitive data could be at risk in more platforms. 68% of healthcare and life-sciences organizations reported that more than 40% of their data in cloud is sensitive. However, on average, only 45% of sensitive data is cloud is encrypted*.

Now is the time to take charge of your sensitive data, join this webinar to learn the following:
- Top data security risks that come with digitalisation in the healthcare industry
- Common challenges to protect data in different environments
- How to secure sensitive data at scale with a data security platform with risk and threat identification and data protection capabilities

Protecting Australian healthcare’s sensitive data from a cyber-attack pandemic

Thales followed up this year on its 2024 Digital Trust Index, this time interviewing even more end consumers. An alarming trend has emerged across the board – that consumer confidence in digital services – or their trust in Digital services is in a state of decline. 

This first episode of the 2025 Latte & Learn webinar series explores findings from the 2025 Digital Trust Index survey and compares it to findings from last year. 

Key Takeaways: 
- Decline in Digital Trust is not only quantifiable, but preventable 
- How to establish trust – both ways – between businesses and consumers 
- CIAM and Beyond – practical steps brands can take to foster increase in trust

Speakers:
• Ammar Faheem, Product Marketing Director of CIAM, Thales
• Haider Iqbal, Director of IAM, Thales
• John Tolbert, Director of cybersecurity research, KuppingerCole

The State of Digital Trust in Decline

This webinar will explore the impact of quantum computing on cryptography, addressing key questions such as the nature of quantum technology, the threats it poses, and the concept of crypto-agility. We will discuss regulatory perspectives and identify organizations most affected by these changes. Finally, actionable steps will be provided for enhancing crypto-agility to safeguard against emerging risks in the evolving technological landscape. Join us to stay informed and prepared for the future of cryptography.

Crypto Agility in the Age of AI and Quantum

As cybersecurity threats continue to escalate, the Hong Kong Government has introduced the Protection of Critical Infrastructures (Computer Systems) Bill to enhance cybersecurity standards for essential services and critical societal and economic activities. This Bill was passed into law on 19th March 2025.

The new law mandates that operators across key sectors—such as banking, healthcare, and transportation—implement robust cybersecurity measures to safeguard essential services.

Join our webinar to navigate the latest requirements, featuring insights from a legal expert who will provide a critical perspective on the law. We will discuss:

- An overview of the new law and its implications for critical infrastructure operators
- Best practices for compliance and risk management, particularly focusing on data and application security
- How Thales Solutions can support your organization in achieving compliance and enhancing your cybersecurity posture

*This session is conducted in Cantonese.

Navigating Hong Kong’s Critical Infrastructure Protection Law

Join us as Thales explores a unique approach to creating a seamless and secure authentication experience for consumers, employees, and partners. As organizations strive to enhance security while improving overall user experiences, breaking free from passwords has become a crucial step in the evolution of authentication.

In this session, we’ll explore the compelling advantages of a passwordless framework, supported by robust FIDO mechanisms. Our discussion will cover essential topics such as key lifecycle management, the role of passkeys, and identity assurance in a secure digital environment. Attendees will gain actionable insights into how passkeys strengthen security, streamline authentication, and reduce the risks associated with traditional passwords.

Learn from our expert speakers how organizations across various industries are leveraging passwordless authentication to enhance user experience, reduce friction, and strengthen security.

Key Takeaways:
- Taking a strategic, phased approach, to eliminating passwords
- Role of FIDO in passwordless authentication and passkeys
- Overview of FIDO key lifecycle management processes
- Best practices for implementing FIDO-powered passwordless strategies
- Q&A session for addressing your specific concerns

Don’t miss this opportunity to transform your authentication processes and embrace a future without passwords.

Speakers:  
• Sarah Lefavrais, IAM Product Marketing Director, Thales 
• Ammar Faheem, IAM Product Marketing Director, Thales 
• Megan Shamas Chief Marketing Officer, at FIDO Alliance

The Essential Role of Passkeys in Modern Passwordless Authentication for Customers, Partners & Workforce

To kick off 2025 as UNESCO’s International Year of Quantum Science and Technology, this webinar will showcase how quantum-enabled technologies provide opportunities to strengthen systems against emerging threats and how the advent of post-quantum computing is driving the development of new cryptographic standards. Enhancing cryptographic agility and resilience to support crypto-agility and post-quantum readiness starts with advanced random number generation. Hear from BT Group first-hand how quantum random number generation (QRNG) is a foundation of cryptographic keys protecting sensitive data and secure communications in the post-quantum era.     

You will discover: 
• The value of using DISC™ Quantum Random Number Generators (QRNGs) in your cryptographic systems.
• How integrating DISC™ QRNGs can bring enhanced security features to Thales’ Luna HSM solution.
• BT Group’s perspective through research of DISC™ QRNGs in telecommunications.

How DISC™ QRNGs Combined with Luna HSMs Brings Security Innovation to Customers

Third-party and supply chain vulnerabilities are among the biggest threats to critical infrastructure security. This session will delve into how Business-to-Business IAM (B2B IAM) can help organizations mitigate external risks, enforce least privilege access, and ensure compliance with evolving regulations. Learn how to secure supplier and partner access without compromising operational agility.

Addressing 3rd-Party & Supply Chain Risks in Critical Infrastructure with B2B IAM

Operational technology (OT) systems are at the core of critical infrastructure, yet they are increasingly vulnerable as IT/OT convergence accelerates. Is your organization prepared to address these challenges and improve your cybersecurity posture?
Join us for an insightful webinar where our panel of industry experts will share proven strategies to elevate OT cybersecurity maturity and resilience.
Key Takeaways Include:
• Navigating the unique challenges of OT cybersecurity 
• Best practices and frameworks for elevating cyber maturity
• Address the challenges with comprehensive solutions 
• Case studies highlighting real-world stories 
Who Should Attend:
OT professional, cybersecurity specialist, or decision-maker in the energy, manufacturing, or critical infrastructure industries, this webinar empowers you with knowledge and strategies to enhance resilience in your OT environments.

Unlock OT Cyber Maturity: Real-World Strategies

IAM plays a crucial role in business continuity planning for critical infrastructure organizations. This session will cover five key tactics to ensure seamless access control during disruptions, cyber incidents, and operational crises. Learn how to mitigate risks and keep systems secure while maintaining productivity in high-stakes environments.

Business Continuity: 5 Tactics for a More Resilient IAM in Critical Infrastructure

Zero Trust is now a necessity for securing critical infrastructure against evolving cyber threats. In this session, we’ll explore four key considerations for implementing Zero Trust in high-risk environments, including identity verification, least privilege access, continuous monitoring, and segmentation strategies. Learn how to build a Zero Trust architecture that enhances resilience while maintaining operational efficiency.

Top 4 Considerations for Zero Trust in Critical Infrastructure

As quantum computing capabilities and global technological competition intensify, organisations must act now to future-proof their security strategies. Join industry leaders from Keyfactor and Thales as they explore how to achieve quantum resilience with PKI and HSM technologies, drawing insights from recent industry milestones such as Deepseek's advancements and shifting global cybersecurity priorities. Discover practical guidance on integration best practices, performance optimisation, and strategic planning, including the benefits of a Thales PKI Health Check. Stay informed on critical trends and learn how to secure your digital infrastructure against the challenges of the future.

Securing the Future: Achieving Quantum Resilience with PKI and HSM Integration

Ven y conoce de primera mano el futuro de la integración de Thales e Imperva, aprovechando lo mejor de las tecnologías de Protección de Bases de Datos, construyendo una hoja de ruta con priorización, automatización y Postura. Conversaremos sobre el recién lanzamiento de Data Risk Intelligence.

Data Risk Intelligence - Priorizar, automatizar, controlar y proteger los sistemas de bases de datos

Data Risk Intelligence: Priorizando, Automatizando, Controlando e Protegendo Sistemas de Bancos de Dados Gerenciados através de indicadores de Postura

Data Risk Intelligence - Priorizando, Automatizando, Controlando e Protegendo Sistemas de Bancos de Dados

Organizations today face significant pressure to enhance authentication methods in response to the growing complexity of cyber threats, particularly phishing attacks. This webinar highlights the urgent need for phishing-resistant authentication methods such as FIDO (Fast Identity Online) and CBA (Certificate Based Authentication). Additionally, we’ll explore the solutions proposed by Thales, Versasec, and Microsoft to securely manage phishing-resistant authentication at scale, covering every step of the authentication lifecycle from onboarding to revocation.  

Takeaways:  
Understand the critical need for phishing-resistant authentication.  
Learn how to overcome deployment challenges with innovative management tools and platforms.  
Discover Versasec ‘s and Thales’ solutions for secure and scalable PKI and FIDO key management in Microsoft 365 environments 

Speakers:
Gregory Vigroux, Sr PKI/FIDO Product Line Manager at Thales 
William Houry, VP of Worldwide Sales at Versasec 
Tim Larson, Sr Product Manager at Microsoft Identity Network and Access Security

The Secret to Scalable FIDO Success: Simplifying Key Provisioning & Lifecycle Management in Microsoft Entra ID

Are you aware that 95% of financial services organizations reported an increase in cyberattacks last year? 

Discover how to tackle this challenge in 2025 with insights from Teradata and Thales.

Join us as we delve into the latest data security trends, challenges, regulatory compliance mandates, and  expert recommendations from the latest Financial Services Data Threat Report. We will discuss the evolving role of AI, regulatory compliance, and how Thales and Teradata’s joint solutions can help your organization navigate these changes and overcome security challenges.

Webinar Highlights:

• Thales Data Threat Report Financial Services Edition: Gain insights into the evolving security threat landscape, challenges, and strategies for protecting data across cloud, on-premises, multi-cloud, and hybrid environments.
• Platform Complexity and GenAI Integration: Understand the complexities of integrating GenAI into security products and services in 2025.
• Cybercrime and Compliance Solutions: Learn about effective solutions for financial organizations to combat cybercrime and stay compliant with regulations.

Attendees will receive a free copy of the 2024 Thales Data Threat Report Financial Services Edition.

Financial Services Security Trends & Challenges in 2025 – with Teradata and Thales

Insurances face an ongoing race to innovate amidst rising customer expectations and pervasive security threats. The challenge lies in formulating a strategy that weaves robust security and privacy measures with a seamless digital experience for customers and partners.
In this session, we will share practical strategies and success stories specifically tailored to insurance professionals. 
You'll discover:
• Why insurance companies need to modernize their identity systems to remain competitive in the digital age
• The benefits of future-proof Identity technology for insurance, such as improved Customer experience and operational efficiency on Brokers access
• Challenges insurers may face to strike a balance between security and user experience, thriving in the digital revolution.

Speakers: 
Jim McDonald - Director of Risk Consulting RSM US LLP
Marco Venuti - Director of IAM Business Acceleration, Thales

Modern Identity Solutions at the Heart of Insurance's Digital Evolution

IBM Consulting and Thales join forces to outline the challenges presented by PCI DSS 4.0 and how can organizations achieve compliance in order to meet the upcoming deadline of March 2025. IBM Consulting, a Qualified Security Assessor, will outline the new requirements of PCI 4.0 while Thales will give an overview of how its Data Security, Access Management and Application Security solutions can help organizations uncover compliance gaps, protect sensitive cardholder data and monitor risks automatically. 

• Understand the new requirements and challenges to comply with PCI DSS 4.0.
• How to discover compliance gaps and vulnerabilities across hybrid IT.
• Protect sensitive cardholder data and all paths to it.
• Continuously monitor for risks and threats.

PCI DSS 4.0: What is new and how to achieve compliance?

In today's dynamic business landscape, the seamless collaboration and sharing of sensitive content are paramount, necessitating robust measures to safeguard against unauthorized access and ensure compliance with data protection regulations.
Discover how Thales CCKM and M365 DKE encryption solutions facilitate a paradigm shift in data security, empowering organizations to encrypt sensitive content with dual keys, one of which remains exclusively under the organization's control. This innovative approach guarantees the highest level of data security, mitigating risks associated with unauthorized access by hackers, privileged users, and external entities.
Embrace this opportunity to explore the strategic imperative of integrating these cutting-edge technologies to fortify data protection practices, nurture trust, and uphold regulatory compliance.
Join us for an insightful webinar highlighting Thales CipherTrust Cloud Key Management (CCKM) integration with M365 DKE.
#MISA

Enhanced Security and Risk-Based Control Over Sensitive Data in Microsoft 365

Software supply chain attacks tend to be very lucrative for criminals and devastating to businesses. A single breach can impact thousands of victims in a rapid domino effect. What can organizations due to protect against these security risks? Join us as we discuss methods to protect software releases, safeguard private encryption keys, proactively detect vulnerabilities, and ensure software transparency.

Protecting Against Software Supply Chain Attacks

root of trust

container signing

code signing

SBOM

Supply Chain

Welcome to the virtualization community on BrightTALK! Whether it affects servers, storage, networks, desktops or other parts of the data center, virtualization provides real benefits by reducing the resources needed for your
infrastructure and creating software-defined data center components. However, it can also complicate your infrastructure. Join this active community to learn best
practices for avoiding virtual machine sprawl and other common virtualization pitfalls as well as how you can make the most of your virtualization environment.

Virtualization

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The application development community features top thought leadership focusing on optimal practices in software development, SDLC methodology, mobile app development and application development platforms and tools. Join top software engineers and coders as they cover emerging trends in everything from enterprise app development to developing for mobile platforms such as Android and iOS.

Application Development

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Protecting Against Software Supply Chain Attacks

Presented by

About this talk

More from this channel