Baltimore, MD

Establishing DNS as an enterprise control point is not only a recommended best practice by government entities around the world, but also provides an incredible opportunity to prevent and detect threats.  Tying together DNS centric threat intelligence and contextual data from existing systems can accelerate investigations and automate remedial activities.

2 out of every 3 organizations globally fell victim to ransomware in 2023. In a landscape dominated by cyberthreats, fortifying your defenses is imperative. As attacks become more sophisticated and targeted, adopting a comprehensive approach to cyber resilience extends beyond data backup.

In this session, we’ll explore multi-faceted strategies for delivering resilience and share learnings from real-world attacks to identify opportunities to enhance your organizations’ cybersecurity posture. Delving in the realms of cyber resilience, business continuity and incident response, you’ll gain insights into the latest trends in attacks, emerging threat vectors, the double-edge sword of artificial intelligence (AI) and best practices for hardening your defenses.

Red teaming is a proven methodology for identifying vulnerabilities and improving organizational resilience. However, organizations often misunderstand red teaming, resulting in suboptimal outcomes. This talk will provide an executive guide to red teaming to demystify this powerful technique and equip leaders with the knowledge and tools to leverage it effectively.

We will begin by clarifying the meaning of red teaming and outlining what it involves and doesn’t. We will delve into the various components that make up red teaming, encompassing activities such as penetration testing, physical security testing, and adversarial simulations, and analyze the circumstances in which each is most suitable. Also, we will underscore the importance of setting up defined goals, properly scoping the project, and choosing the best team members.

Last but not least, we will tackle the cultural and organizational factors that can influence the outcome of red teaming. We will focus on fostering a culture of ongoing enhancement and employing red teaming to stimulate innovation and strategic planning. Furthermore, we will emphasize the significance of creating an environment of confidence and openness with relevant parties while ensuring seamless integration of red teaming into broader risk management applications.

“Threat intelligence” has become the latest requirement for organizations looking to bolster their security practices. Buy a feed or three, suck them into your SIEM, automate blocking IOCs, and check the box. And in many ways, that addresses a sizable chunk of the tactical and operational value of threat intel. However, a growing number of organizations are realizing that threat intel can also inform strategy: how and why we train our users, where we should be investing our security resources, and what kinds of conversations executive leadership should actually be having to avoid becoming the latest cautionary tale used to sell more feeds. Join Chris Dawson, Threat Intel Lead at Proofpoint, to learn about the increasingly strategic role of threat intelligence modern businesses.

No Security Prevention architecture will ever be 100% effective. Eventually, even the best-planned barrier will be breached, either from the outside or internally. An “assume breach” Security mindset needs to exist in parallel with efforts to prevent one, and the architecture needs to be able to address breaches which were not detected, and to contain them. Zero Trust needs to plan for the unexpected.

A successful cloud security strategy needs to evolve to meet the rapidly changing needs of the business and the growth of the cloud. Cutting-edge security teams are developing new approaches to increasing their company’s adoption of cloud and AI app development while managing the growth in potential attack surfaces. In this session, learn how you can improve your cloud security operational efficiency by 10 times while consolidating multiple siloed technologies using a cloud-native application protection platform (CNAPP).