Charlotte, NC

With the advent of ChatGPT, Generative AI has taken off, infiltrating various areas and forms within organizations. Moreover, we now find ourselves in the post-pandemic era, prompting companies to reevaluate their security decisions regarding access and purchases made during the pandemic. In this presentation, Kevin will discuss emerging trends in Generative AI, the evolving post-pandemic security landscape, and the essential areas IT professionals must scrutinize to leverage the productivity benefits of Generative AI while ensuring the security of their valuable asset – data.

Identity management is crucial for securing user access across an organization’s IT infrastructure. A comprehensive identity management platform provides a unified view of user identities and access rights, allowing administrators to easily manage user access, detect and remediate identity-related threats, and enforce access policies. This presentation will provide an overview of the key features and benefits of a modern identity management platform and demonstrate how it can help organizations to enhance their security posture and protect against the latest identity-based threats.

As organizations look to adopt new security principles and network architectures like Zero Trust, they leave a critical gap – email. Around 91% of all cyber attacks begin with a phishing email, and newer attacks like Business Email Compromise directly impact the bottom line.
Moreover, these attacks don’t need sophisticated malware or network intrusion to succeed; they exploit the implicit trust we place in our email communications. Join this session to: Learn how phishing attacks use trust and business logic as attack techniques Get common success criteria used for evaluating Zero Trust and anti-phishing solutions See how Zero Trust principles can be extended to email

From web applications to email and software supply chains – every facet of an organization’s digital ecosystem requires robust protection. A zero-trust architecture can mean a lot of things and be daunting to implement, but it’s critical to prevent the pervasive risk of file-borne threats that could include malware, viruses, ransomware, and malicious scripts, often camouflaged within innocuous file formats.

The foundational steps to fortify defenses begin with asset and data identification, data flow mapping, access controls, network segmentation, and incident response planning. However, what’s next, and how do you continue to build a zero-trust security architecture? The answer lies in a layered defense strategy, incorporating true zero-trust technologies to not only drive compliance but mature your cybersecurity posture.

This layered approach should include multiscanning to significantly enhance threat detection rates, data sanitization to ensure file safety before use, country of origin detection to prevent potentially malicious code or files from infiltrating the organization, and Data Loss Prevention (DLP) to ensure the integrity of sensitive data by scrutinizing files prior to their transit. Finally, emerging technologies like adaptive threat analysis can provide actionable threat intelligence, enabling organizations to stay one step ahead of potential adversaries.

Experts at OPSWAT know first-hand what it takes to safeguard digital assets and ensure the resilience of organizations’ IT and OT infrastructure. Hear Joe Edwards, VP of Global Sales Engineering share his insights on implementing and maintaining robust zero-trust security in this evolving and complex threat landscape.

The August 2023 SANS DevSecOps Survey shows that latest automated tools — such as CNAPP, CSPM, and CWPP — by themselves are not enough to succeed with DevSecOps. The survey reported that automated application testing grew by 52% between 2022 and 2023, yet organizations reported that tools like these were seen as less useful than in 2022. How is that possible? Great DevSecOps requires a foundation of solid testing data plus  good communications and consistent processes. Join Seemplicity as we share our insights from the SANS survey and talk about a foundation for successful DevSecOps.