The Defenders Initiative

Principal Researcher

The Defender’s Initiative

Host of the Enterprise Security Weekly podcast and principal researcher of The Defender's Initiative

Valence Security

Director of Product Marketing

Enterprise Security Weekly

Main Host

Tenchi Security

Director of Product Management

CyberRisk Alliance

Senior Research Engineer

Headshot for Adrian Sanabria from PPWorks

There is often no better teacher than failure. Instead of waiting to learn from your own failures, why not learn from others? Find out what third party breaches can teach us about third party risk and vendor due diligence! This webcast with Bill Brenner and Enterprise Security Weekly host Adrian Sanabria will walk through:



<ul>
<li>Improving the vendor due diligence process by focusing on outcomes and exploring automation opportunities</li>



<li>Evaluating products</li>



<li>How to secure third-party software and prepare for the risks they create</li>



<li>Real-world breach examples and what they can teach us</li>
</ul>

Third-party code

Cybercast

Understanding third party risk by studying third party breaches

As cyber threats continue to evolve, security teams are constantly challenged with the task of fortifying their organization&#8217;s defenses against a myriad of potential vulnerabilities. In this SC Panelcast, Tia Hopkins, Chief Cyber Resilience Officer &amp; Field CTO at eSentire, and Nathan Wenzler, Chief Security Strategist at Tenable, will delve into the pivotal role of exposure management in bolstering cyber resilience. From identifying and prioritizing vulnerabilities to implementing effective mitigation strategies, the panelists will provide invaluable insights into how exposure management can empower security teams to safeguard their organizations against emerging threats. Moderated by Adrian Sanabria, host of Enterprise Security Weekly, this discussion promises to equip cybersecurity professionals with actionable strategies to navigate the complex landscape of cyber resilience. Discussion points include: 



<ul>
<li>Defining exposure management and its similarities/differences with vulnerability management&nbsp;</li>



<li>How exposure management fits into cyber resilience&nbsp;</li>



<li>How eSentire and Tenable’s are partnering on vulnerability management to enable customers’ Exposure Management strategy</li>
</ul>

Vulnerability Management

Exposure management: How organizations can use it to build cyber resilience

In this webcast, we unravel the insights and implications behind the latest global AI security guidelines, distilling complex recommendations into four key takeaways that every cybersecurity professional should know. As nations grapple with the rapid adoption of artificial intelligence, regulatory bodies worldwide have collaboratively devised comprehensive guidelines to address the unique security challenges posed by AI technologies. Join our experts as they break down these guidelines, offering practical interpretations and actionable strategies to fortify your organization against emerging AI-related threats. From risk assessment frameworks to ethical considerations, we will explore the pivotal facets that shape the future of AI security on a global scale.

AI/ML

4 key takeaways from new global AI security guidelines

Most conversations around Identity Resilience focus on the prevention of attacks. But as statistics increasingly show that a major breach is a matter of “when”, not “if”, CISOs are realizing that their Identity Resilience strategy is missing a critical piece: response.&nbsp; In this conversation, we’ll explore Identity Resilience from the lens of Business Continuity:



<ul>
<li>What is Identity Resilience and why is it trending with CISOs?&nbsp;</li>



<li>How to build a strong partnership between risk teams and security teams.</li>



<li>Myths vs. realities of Disaster Preparedness for IAM environments.</li>



<li>Why most IAM backup plans are woefully inadequate.</li>



<li>Why regulators and insurers are starting to pay attention.</li>
</ul>

Identity

Identity Resilience: The Missing Piece to Securing Your Identities

As organizations navigate the dynamic landscape of governance, risk, and compliance (GRC), join our webcast to explore the critical priorities that will shape the second half of 2024. In an environment marked by evolving regulations, heightened cyber threats, and a rapidly changing business landscape, staying ahead of GRC challenges is paramount. Our experts will provide insights into emerging regulatory landscapes, the integration of advanced technologies in compliance, and the strategic alignment of GRC frameworks with organizational objectives. From data privacy considerations to proactive risk management, this webcast will equip you with the knowledge needed to fortify your GRC strategy for the months ahead.

Governance, Risk and Compliance

Key GRC priorities for the second half of 2024

Siloed identity tools and legacy complexity are the enemies of a modern identity program. There is a growing interest in tool convergence – specifically IGA and PAM convergence. The promise of simplicity, efficiency, improved security, and enhanced governance is appealing and can help protect identities from deepfakes and other AI-based threats. But not all converged solutions are built the same. In this webinar, Saviynt identity experts will share their experience in helping the world’s largest and most complex organizations modernize their identity programs and define what true PAM and IGA convergence looks like. You’ll gain insights into how to effectively unify governance and privilege organizations to achieve:



<ul>
<li>True Risk Reduction: Remove privileged accounts to minimize vulnerabilities.</li>



<li>Real Risk Mitigation: Implement just-in-time and just-enough privilege provisioning.</li>



<li>Greater Business Efficiency: Reduce the number of tools your team needs to learn, manage, and secure.</li>



<li>Combating AI-Based Threats: Enhance your defenses against deepfakes and other AI-driven attacks by integrating IGA and PAM.</li>
</ul>

AI benefits/risks

How Unified IGA and PAM Can Protect Organizations from Ransomware and Other Identity-Based Threats

As cyber threats continue to evolve, security teams are constantly challenged with the task of fortifying their defenses against a myriad of potential vulnerabilities. In this SC Panelcast, Tia Hopkins, Chief Cyber Resilience Officer and Field CTO at eSentire, and Nathan Wenzler, Chief Security Strategist at Tenable, will delve into the pivotal role of exposure management in bolstering cyber resilience. From identifying and prioritizing vulnerabilities to implementing effective mitigation strategies, the panelists will provide invaluable insights into how exposure management can empower security teams to safeguard their organizations against emerging threats. This discussion promises to equip cybersecurity professionals with actionable strategies to navigate the complex landscape of cyber resilience. Discussion points include: defining exposure management and its similarities/differences with vulnerability management, how exposure management fits into cyber resilience, and how eSentire and Tenable are partnering on vulnerability management to enable Exposure Management strategy for customers.

Security Management

Exposure Management: How organizations can build cyber resilience

After eight years of submission review, testing, and evaluation, NIST has formally announced the PQC standard specifications, setting in motion the largest cryptographic transition in the history of computing – replacing legacy encryption with PQCs. The multiyear crypto migration is certain to usher in new challenges, uncertainties, and risks. This panel cast will discuss planning considerations as enterprises ponder and prepare their systems, data, devices, networks, and stakeholders for the quantum era.



Talk Track Question Set:



<ul>
<li>What are these new algorithms and why do they matter?</li>



<li>Is the quantum computer really a threat?</li>



<li>How will algorithms start to appear in the enterprise? What will the &#8220;roll-out&#8221; look like?</li>



<li>What kind of impact can users expect? Are systems compatible? &nbsp;What will break?</li>



<li>What can enterprises do today to minimize this impact?</li>



<li>What is the current state of cryptography? What are current cryptography risks?</li>



<li>Will these new algorithms remediate all cryptographic deficiencies in the enterprise?</li>



<li>What will be the longevity of these algorithms? &nbsp;Can we confidently trust them?</li>



<li>How might an enterprise go about becoming truly &#8220;crypto-agile?”</li>
</ul>

Encryption

What the NIST Post-Quantum Cryptography (PQC) Standard Means to Enterprises

Is Your Browser the Weakest Link in Your Security Chain? Zero Trust has been the gold standard in cybersecurity for over a decade, but most organizations are still struggling to implement it where it matters most: the browser. As more applications move to the web, hackers are exploiting this gap with increasingly sophisticated tactics, leaving traditional defenses powerless.



Your Browser is a Double-Edged Sword—a gateway for accessing critical applications, but also a prime target for attacks and data leaks. So how can you lock down this high-risk entry and exit point without grinding productivity to a halt?



Join us for this hard-hitting webcast as we expose the latest threats targeting your applications, both external and internal. Discover why network-based defenses and legacy Zero Trust models fall short against today&#8217;s browser-based threats. And learn how Menlo Security can help you master true Zero Trust in the browser—simplifying your security strategy and safeguarding your most critical assets.



Key Takeaways:



<ul>
<li>Unveil the newest and most dangerous browser-based threats targeting your applications.</li>



<li>Implement Zero Trust where it counts—your web traffic and browser interactions.</li>



<li>Explore how browser-focused Zero Trust can replace VPNs, reduce VDI dependency, and secure third-party access.</li>



<li>Get insider insights from Coalfire&#8217;s recent assessment of the Menlo Secure Enterprise Browser Solution.</li>
</ul>



Don&#8217;t miss out—secure your spot now and take the first step in fortifying your browser against relentless threats.

Zero trust

Zero Trust vs. Evasive Browser Threats: Are You Leaving Your Front Door Wide Open?

Like many large organizations, IBM found itself trying to manage a fragmented and inefficient Identity and Access Management (IAM) landscape, riddled with legacy systems that hindered scalability, compliance, and operational efficiency. The company managed to turn things around with help from Saviynt. This webcast will explore how IBM successfully overhauled its IAM processes to enhance security, streamline operations, and improve user satisfaction through its partnership with Saviynt. &nbsp;Attendees will discover the strategic approach that allowed IBM to manage over 500,000 identities and 6 million active user accounts, and the lessons learned in creating a unified access management solution that meets the demands of modern digital governance. Specifically, we will delve into how Saviynt helped IBM:



<ul>
<li>Reduce manual efforts and streamline operations with a global support team.</li>



<li>Improve access governance and risk management, reducing security threats.</li>



<li>Automate and standardize processes, enhancing overall efficiency and user satisfaction.</li>



<li>Ensure adherence to global regulations, enhancing IBM&#8217;s compliance posture.</li>
</ul>



Attendees will walk away with concrete, actionable guidance that will help them transform their organizations&#8217; IAM programs to better protect customers, employees and partners.

Enhancing Governance and Security at Scale: IBM’s IAM Transformation

As cyber threats continue to evolve, maintaining robust network security is paramount for protecting organizational assets and data. Join us for an insightful hot topics webcast where industry experts will present a comprehensive forecast of network security trends and offer strategic guidance for late 2024 and early 2025. This session will delve into the latest threats, advanced security techniques, and innovative solutions to help you fortify your network infrastructure. Attendees will gain valuable insights into managing network security risks, ensuring compliance, and leveraging new technologies to enhance their security posture.



Key takeaways:



<ul>
<li>Network Security Trends: Understand the emerging trends and future directions in network security for the coming months.</li>



<li>Threat Landscape: Identify the latest threats targeting network infrastructures and learn how to mitigate them.</li>



<li>Best Practices: Discover practical strategies for securing your network against evolving cyber threats.</li>



<li>Innovative Solutions: Explore new technologies and tools that can strengthen your network security efforts.</li>



<li>Regulatory Compliance: Stay informed about upcoming regulatory changes and how they impact network security practices.</li>



<li>Risk Management: Learn how to effectively manage and reduce risks associated with network security.</li>
</ul>

Network Security

Building Modern Network security: Forecast and guidance: Late 2024, early 2025

As today&#8217;s threats and how we work continue to rapidly evolve, traditional security tools like Multi-Factor Authentication (MFA) and Single Sign-On (SSO) are no longer enough for you to provide truly secure workforce access to applications and information. While foundational, we&#8217;ve seen these controls easily bypassed through methods like social engineering, where attackers exploit privileged users like help desks to reset credentials, allowing threat actors to gain unauthorized access to sensitive employee accounts. Once inside, they escalate privileges, disable security measures, and compromise critical systems. If foundational tools are not enough what can organizations do differently to mitigate the risk of modern workforce identity focused attacks?



Join this panelcast to hear more about:



<ul>
<li>The changing definition of &#8220;privilege&#8221; and trends in attacker methods targeting workforce users.</li>



<li>The shortfalls of SSO and MFA alone for securing against modern evolving threats.</li>



<li>Approaches to counter advanced threats and safeguard workforce access without negatively impacting user experience or productivity.</li>



<li>Strategies to strengthen your security posture by adding advanced Identity Security capabilities and controls to your environment via a defense-in-depth strategy.</li>
</ul>

SSO/MFA

Reimagining Workforce Security Beyond MFA and SSO

Generative AI like Microsoft Copilot has the potential to revolutionize productivity, but security teams are rightly concerned about the risks of deploying it at scale. This webcast is for organizations looking to roll out Copilot without adding risk to data. 



<ul>
<li>The Challenge: Many organizations are eager to adopt Copilot but are held back by data security and compliance concerns.</li>



<li>The Reality: Current rollouts are often limited to small-scale trials due to uncertainty around sensitive data protection.</li>



<li>The Risk: Without proper security measures, the use of Copilot could lead to exposure of confidential business information.</li>



<li>The Need: Security teams require clear guidance on how to evaluate, configure, and monitor Copilot deployments.</li>
</ul>



Join us to learn practical strategies for ensuring that your organization can leverage Microsoft Copilot securely, while protecting data and meeting compliance requirements.

Data Security

Microsoft Copilot: How to Minimize Data Security Risks During Adoption

In today’s digital landscape, organizations are increasingly relying on cloud infrastructure to support their operations. Experts from both companies will discuss best practices for designing a robust cloud architecture that prioritizes security without sacrificing performance. Attendees will gain insights into:



<ul>
<li>Best practices for designing a robust, secure cloud architecture.</li>



<li>Insights into integrating Fortinet’s features with Google Cloud.</li>



<li>Addressing common challenges like threat management, compliance and resource optimization</li>



<li>Ensure modern business demands are met while safeguarding sensitive data.</li>
</ul>



Don’t miss this opportunity to learn how to leverage cutting-edge technologies to build a resilient cloud environment!

Cloud Security

Building a Secure and Scalable Cloud Infrastructure with Fortinet and Google Cloud

Some of the biggest breaches this year—Snowflake, Dell, UnitedHealth—have a common thread: Attackers exploited gaps in identity management, exposing critical failures in Least Privilege strategies. Is your organization next?



<ul>
<li>Learn from the experts: Hear firsthand accounts of painful experiences and lessons learned from major breaches.</li>



<li>Achieve true Least Privilege: Get actionable guidance on implementing effective Least Privilege strategies based on real-world insights.</li>



<li>Discover innovative solutions: Explore how Opal Security is addressing the challenges of Least Privilege with cutting-edge Posture Management.</li>
</ul>



Attendees will walk away equipped to better protect their organizations and stay out of the data breach headlines!

IAM Technologies

War Stories On The Path To Least Privilege

With third-party risks increasingly impacting business continuity and security, relying on traditional monitoring approaches is no longer enough. Public data holds critical early-warning signals, but extracting actionable insights from public data in real-time can be overwhelming. That&#8217;s where AI comes in. In this webcast, we&#8217;ll discuss:



 Why Third-Party Risk is Growing: • Increased reliance on complex supply chains and external partners. • The challenge of monitoring vendor ecosystems for emerging threats. • Attackers have discovered the &#8216;one-to-many&#8217; benefits of targeting third parties.



 How AI Transforms Third-Party Risk Management: • Real-time identification of vendor exposure through public data. • Faster response to threats impacting subsidiaries and supply chains.



Join us to learn how security teams can leverage AI to spot hidden risks across their third-party network and strengthen their organization&#8217;s resilience.

Leveraging AI and Public Data to Gain Control Over Third-Party Risk

With the rise in advanced persistent threats (APTs) and increased regulatory pressure, security teams face the challenge of ensuring compliance while maintaining a resilient cybersecurity posture. Hear from security experts at ePlus who will provide an overview of the current cybersecurity challenges in commercial markets and the hurdles customers are facing. In this webcast, experts from Qmulos, Splunk, and ePlus will discuss how to achieve continuous compliance through real-time data monitoring, providing critical insights for mitigating risks before, during, and after cyber incidents. Using examples from U.S. government agencies’ and commercial institutions&#8217; successful implementations of cybersecurity and compliance requirements including NIST 800-53, Insider Threat (ICS 500-27), and M-21-31 this panel will highlight:



<ul>
<li>The Compliance Challenge: How security teams can meet growing regulatory pressures, including advanced persistent threat (APT) risks.</li>



<li>Achieving Cybersecurity Compliance in Real-Time: Learn how a U.S. government agency successfully met its cybersecurity mandates, logging and monitoring requirements using Qmulos and Splunk.</li>



<li>Compliance Automation: Discover how automating compliance processes reduces the operational burden on security teams and ensures real-time visibility across all systems.</li>



<li>Proactive Risk Management: Find out how continuous monitoring empowers security teams to make faster, more informed risk management decisions.</li>



<li>Actionable Insights: Practical steps you can take to implement real-time compliance and strengthen your security posture.</li>
</ul>



Attendees will leave with a clearer understanding of how to use compliance as a tool for proactive risk management and how Qmulos and Splunk can help transform the traditional approach to cybersecurity in today’s dynamic threat environment.

Compliance Management

Real-Time Compliance, Real-World Protection: Fortifying Cybersecurity with Qmulos and Splunk

In today&#8217;s fast-paced threat landscape, organizations are increasingly challenged by the frequency and complexity of attacks, particularly zero-day vulnerabilities, that demand swift and strategic responses. Third-party risk management (TPRM) teams are often caught off guard, scrambling to mitigate risk while navigating a growing ecosystem of vendors. Fortunately, with the right preparation, rapid responses can be streamlined, effective, and less stressful.



Join us for a comprehensive session that combines best practices for zero-day vulnerability attack responses with cutting-edge, data-driven TPRM strategies. We&#8217;ll explore how to prepare your organization for efficient, real-time responses to emerging threats, and how leveraging tools like ProcessUnity&#8217;s Global Risk Exchange can revolutionize your third-party assessments.



Attendees will learn: • How to prepare for zero-day vulnerabilities in advance, reducing reaction time and exposure to loss. • Strategies to gain full visibility into your vendor ecosystem and quickly identify which third parties require immediate action during an attack. • The benefits of adopting a data-first strategy for TPRM to enhance efficiency in onboarding, continuous monitoring, and fourth-party risk evaluation. • How real-time data, automation, and quick-assess campaigns can scope, distribute, and score responses, making your TPRM processes more proactive and effective.



Join us, earn CPE credits and gain knowledge and tools to streamline emergency assessments and revolutionize your third-party risk management practices, positioning your organization for success in an increasingly complex risk environment.

From Zero-Day to 360-Degree Protection: How to Accelerate Attack Response for Stronger Third-Party Risk Management

Security teams today are inundated with data but lack actionable insights. The rise of public data sources—ranging from social media and blogs to leaked databases and dark web forums—offers new opportunities for real-time threat detection and risk management. But with this wealth of information come significant challenges: noisy data, false positives, and the need for rapid context. In this webcast, we&#8217;ll explore: The Key Challenges:



<ul>
<li>The struggle to sift through noisy and unstructured public data.</li>



<li>Overload from false positives that slow down response times.</li>



<li>Gaps in context that hinder risk prioritization.</li>
</ul>



What Security Teams Will learn:



<ul>
<li>Best practices to filter relevant signals and eliminate noise.</li>



<li>Integrating public data into existing SIEM and SOAR workflows.</li>



<li>Strategies to turn external intelligence into timely, actionable insights.</li>
</ul>

Unlocking the Power of Public Data: Make Your Security Team Faster and More Effective

Today&#8217;s application and cloud security tools aren&#8217;t built to protect today&#8217;s applications from new and existing risks that AI/ML and GenAI/LLMs introduce. Security teams need a new approach to protect data and AI supply chains. 



To that end, this session will explore:



<ul>
<li>Real-world examples of vulnerabilities, misconfigurations, and malware found in the data and AI supply chain that today&#8217;s application and cloud security tools don&#8217;t protect against &#8212; and how attackers are exploiting them.</li>



<li>Best practices to secure notebook environments, MLOps infrastructure and open-source AI usage in pre-production.</li>



<li>The urgent need for a comprehensive, all-in-one platform to secure AI-powered applications from development to production</li>



<li>How Noma Security&#8217;s solution is designed to more effectively secure the data and AI supply chain, first- and third-party models and AI applications at runtime.</li>
</ul>



Join us for this all-important topic and earn CPE credits in the process.

Application security

Rooting Out Overlooked Risks in the Data and AI Supply Chain: Introducing a New Approach

Are traditional virtual desktop infrastructures (VDI) holding your organization back? Join us for a forward-thinking webinar that reimagines secure access, bypassing the limitations of VDI to embrace a streamlined, browser-based approach. Discover how Menlo Secure Enterprise Browsing, in partnership with Google Cloud, enables seamless access to essential applications while meeting the highest standards of security through physical isolation and zero-trust principles. In this session, we&#8217;ll dive into the transformative potential of leaving VDI behind for a cloud-native solution, highlighting key benefits including: 



<ul>
<li>&nbsp;Robust Security: Shield your organization from web-based threats with continuous zero-trust enforcement and advanced data control to prevent leaks.</li>



<li>&nbsp;Cost Savings: Say goodbye to costly VDI hardware and infrastructure. Menlo Security and Google Cloud offer a per-user licensing model that simplifies expenses and reduces resource demands.</li>



<li>&nbsp;Improved Productivity: Cut the latency issues typical of VDI setups, enabling faster, more responsive access that empowers employees to work without delay.</li>



<li>Streamlined IT Operations: Simplify deployment and maintenance with zero-touch management and centralized control, giving IT teams a break from cumbersome VDI updates and upkeep.</li>
</ul>



Don&#8217;t miss this chance to explore a modern approach to secure access that boosts productivity, enhances security, and slashes costs. Register now to step into the future of enterprise browsing.

Endpoint/Device Security

Break Free from Legacy VDI: Elevate Security and Performance with Menlo Security & Google Cloud

In the world of cybersecurity, numbers can either light the path to resilience or muddy the waters. Which risks demand your immediate focus? Which business units are hackers most likely to target? And how do you ensure security earns its rightful place among top business priorities? Here&#8217;s the real challenge: Where do you begin? It all starts with aligning security metrics to your business&#8217;s unique context. SC Media and Axonius invite you to a dynamic session that cuts through the noise, delivering a clear, actionable roadmap to identify the cybersecurity metrics that truly matter. This is more than a checklist—it&#8217;s a strategy for turning metrics into momentum. Here&#8217;s what we&#8217;ll explore:



<ul>
<li>The state of cybersecurity spending today – Where organizations are investing and what’s being overlooked.</li>



<li>Proving the value of cybersecurity investments – Tying security outcomes to business success.</li>



<li>Enhancing your cybersecurity program – From reactive to proactive, step-by-step.</li>



<li>Measuring what matters with Axonius – Tools and techniques to track, report, and improve.</li>
</ul>



Don&#8217;t let irrelevant metrics stall your progress—join us to take control of your cybersecurity narrative.

Asset Management

Unlocking the Metrics That Drive Real Cybersecurity Impact

The SIEM market is undergoing profound transformation and legacy systems often fall short of meeting the demands of today’s security landscape, where cyber threats are more sophisticated, and IT environments are increasingly complex:



<ul>
<li>Mid-to-large enterprises, especially those with annual revenues of up to $5B, face significant challenges in maintaining agility/responsiveness with outdated SIEMs.</li>



<li>The additional pressures of vendor consolidation and market shifts make choosing the right path forward daunting for security teams.</li>
</ul>



This webcast is designed for security leaders and teams navigating the complexities of SIEM transitions. It will address the challenges organizations face during this shift and offer practical insights into evaluating and adopting next-generation SIEM solutions.



Attendees will gain a deeper understanding of how to overcome the limitations of legacy systems, optimize costs, and ensure their security strategies align with modern operational requirements.



We&#8217;ll Cover:



<ul>
<li>Core Challenges:&nbsp;Exploring the pain points of legacy SIEM deployments, including inefficiencies in data management, alert fatigue, and the inability to address evolving threats.</li>



<li>Lessons Learned:&nbsp;Real-world insights into transitioning from traditional to next-generation SIEM platforms, focusing on reducing complexity, enhancing threat detection, and improving operational efficiency.</li>



<li>Strategic Guidance:&nbsp;Best practices for assessing SIEM vendors and selecting solutions tailored to your organization’s needs, with an emphasis on scalability, cost-efficiency, and agility.</li>
</ul>



The session will feature thought leadership perspectives on navigating the SIEM market and examples of how innovative tools, such as Graylog, can simplify the transition while empowering security teams to better address modern challenges.

SIEM

Navigate a shifting SIEM market: Challenges, lessons and strategic insights

Ransomware gangs have evolved into corporate-like powerhouses—Ransomware, Inc.—with sophisticated business models and ruthless tactics. As their operations escalate, cybersecurity professionals must stay ahead to combat the next wave of attacks.



This webcast will cover:



<ul>
<li>How ransomware gangs mimic corporate structures, from Ransomware-as-a-Service to high-stakes negotiation strategies.</li>



<li>Proven methods to disrupt their playbook and outpace their advances.</li>



<li>Best practices for building a ransomware-resilient organization.</li>



<li>How emerging government regulations can reinforce your defense.</li>
</ul>



Attendees will leave equipped with:



<ul>
<li>Concrete steps to dismantle ransomware targeting your organization.</li>



<li>Tools and techniques for enhancing incident response and fortifying long-term resilience.</li>



<li>Key insights into the latest ransomware trends and strategies to outwit these corporate cybercriminals.</li>
</ul>



Don&#8217;t miss your chance to outsmart Ransomware, Inc. Register now to arm yourself with the knowledge to fight back—and earn CPE credits in the process!

Ransomware

Inside Ransomware, Inc.: Defeating the Corporate Machine Driving Cybercrime

As cyber threats grow more sophisticated, Security Operations Centers (SOCs) must evolve to defend against a constantly changing threat landscape. Incorporating AI into security operations isn&#8217;t just an advantage—it&#8217;s a game-changer for detecting and responding to advanced attacks at speed and scale. SOC leaders now face a critical decision: how to adopt AI-driven strategies that enhance their capabilities while closing security gaps.



In this webcast, we&#8217;ll explore:



<ul>
<li>The evolving challenges facing SOCs in today&#8217;s complex threat environment.</li>



<li>Why AI is a must-have for improving detection, response, and identity protection.</li>



<li>Key steps to seamlessly integrate AI into your existing workflows.</li>



<li>Proven strategies to leverage AI for threat detection, IR, and identity security.</li>



<li>Best practices for fostering a culture of innovation within SOC teams.</li>
</ul>



Attendees will learn:



<ul>
<li>Actionable guidance on integrating AI to improve your security posture.</li>



<li>Methods for reducing threat response times and boosting intelligence with AI.</li>



<li>How to enable effective collaboration between AI tools and human analysts.</li>
</ul>



Join us to learn how AI can transform your security operations—and earn valuable CPE credits along the way. Register today and prepare your SOC for tomorrow&#8217;s threats!

<ul>
<li>Gain actionable guidance on integrating AI to enhance your security posture.</li>
<li>Learn methods to reduce threat response times and boost intelligence with AI.</li>
<li>Discover how to enable effective collaboration between AI tools and human analysts.</li>
</ul>

Security Operations

Mastering AI in Security Ops: Essential Strategies for SOC Teams

The network perimeter is gone. As organizations increasingly adopt cloud services and remote work, traditional security strategies can&#8217;t keep up, leaving businesses exposed to unprecedented risk. Security teams are now tasked with protecting environments that lack clear boundaries, as cyber threats continue to evolve and exploit vulnerabilities in this fragmented landscape.



In this must-attend webcast, you&#8217;ll gain crucial insights into:



<ul>
<li>How a perimeter-less network reshapes security practices and common challenges.</li>



<li>The role of zero-trust architecture in securing today&#8217;s dispersed environments.</li>



<li>The latest technologies and strategies for protecting against modern threats.</li>



<li>Best practices for managing identity and access in a world without defined borders.</li>
</ul>



What you will learn:



<ul>
<li>Actionable strategies for implementing zero trust in your organization.</li>



<li>Methods for improving visibility and control over user access and devices.</li>



<li>How to integrate security tools for end-to-end protection.</li>
</ul>



Don&#8217;t miss this opportunity to future-proof your security strategy and earn CPE credits. Register today to secure your organization&#8217;s defenses in this new era!

<ul>
<li>Gain insights into how a perimeter-less network reshapes security practices and the common challenges it presents.</li>
<li>Learn the role of zero-trust architecture in securing today’s dispersed environments.</li>
<li>Discover the latest technologies and strategies for protecting against modern threats.</li>
</ul>

Your Network is Gone: How to Secure What’s Left in the New Era of Cloud and Remote Work

Deploying Copilot for Microsoft 365 near the top of nearly every enterprise’s to-do list.  Integration with the M365 suite poses exciting opportunities to help with tasks like summarizing lengthy emails, reviewing contract language, creating presentations, etc.  But integration with the Microsoft stack poses inherent risk in Copilot exposing sensitive info (i.e. sensitive HR data, patient records, layoff plans etc.). Knostic has a new readiness assessment designed to give you a baseline understanding of your organization’s over-permissioned access to Copilot, along with a continuous improvement model to leverage moving forward.  During this webinar, Knostic CTO Sounil Yu will walk through our approach. What you’ll learn:



<ol>
<li>How to understand the risk of exposing sensitive data through over-permissioned accounts.</li>



<li>Data and Identity governance controls you can implement to improve over-permissioned accounts</li>



<li>How to run this assessment on a continuous basis in order to assess + improve</li>
</ol>

<ul>
<li>Understand the risks associated with over-permissioned accounts leading to potential exposure of sensitive data.</li>
<li>Learn about data and identity governance controls to mitigate over-permissioning issues.</li>
<li>Discover methods to continuously assess and improve your organization’s permissions framework.</li>
</ul>

Adrian Sanabria

Equifax: the Log4Shell lesson we failed to learn

Digital Defense Frontline VM Review | Security Weekly Labs

Taegis VDR: Review | Security Weekly Labs

Vulnerability scanners: Overview | Security Weekly Labs

Vulnerability Scanners: Test methodology | Security Weekly Labs

Rapid7 InsightVM: Review | Security Weekly Labs

Open source vulnerability scanners: Review | Security Weekly Labs

Security Weekly Labs | Overview: Network Vulnerability Scanners

Cryptocurrency: Cybercrime’s New Favorite Tool

Attack Surface Management: Overview | Security Weekly Labs