How does an organization’s external attack surface impact its offensive security initiatives? In our experience, a comprehensive understanding of this attack surface can help better emulate real-world attack scenarios and reduce threat exposure. In this webcast, we’ll explore the results of our survey that was designed to understand how knowledge of an organization’s external attack surface can help its security team evaluate...

How does an organization’s external attack surface impact its offensive security initiatives? In our experience, a comprehensive understanding of this attack surface can help better emulate real-world attack scenarios and reduce threat exposure. In this webcast, we’ll explore the results of our survey that was designed to understand how knowledge of an organization’s external attack surface can help its security team evaluat...

In the modern age of cloud migration and deployment, many security and operations teams are having to adapt their controls, processes, and overall strategies to better accommodate hybrid on-premises and cloud environments. While some architecture and control concepts stay relatively static, many don't. So what should organizations do? How can traditional firewalls and cloud-native controls co-exist? What network security controls are most read...

The NIST cybersecurity framework (CSF) is a well-known and respected framework for building cybersecurity programs. The NIST CSF organizes the framework beginning with functions that organize basic cybersecurity activities at their highest level. These functions are Identify, Protect, Detect, Respond and Recover. The NIST CSF functions can help cloud organizations express their management of cybersecurity risk by organizing information, enabli...

X may have given it to the free Twitter API but there are still A LOT of data sources out there that we can monitor for free and fire alerts when things meet our criteria. In this webinar, we’ll look at multiple sources that can be monitored, what value they can provide, and provide sample Python code you can use to achieve great results on extremely low powered hardware.

Microsegmentation is hard to achieve via ongoing network monitoring. How do you effectively microsegment hosts and enforce authentication mechanisms while limiting user impact? Join Matt Bromiley and Zero Networks’s VP of Customers Nicholas DiCola in this 30-minute webcast as they explore how Segment by Zero Networks centrally manages host-based firewalls and automates policy implementation in real time. You’ll learn the myriad of...

Asset and inventory control solutions are difficult to build and maintain. Many organizations spend lots of time, effort, and resources to get ahold of their inventory of assets, but few are able to effectively leverage their asset inventory data to enrich security operations. Snowflake’s IT and Security teams leverage ServiceNow asset data to create data models and join them to other sources of truth within Snowflake itself. In this web...

Cloud environments are attractive targets for hackers due to their complexity, which can make them difficult to defend. This presentation will cover three crucial strategy cloud security that can greatly impact your cloud's security posture. We'll kick off by exposing common vulnerabilities that hackers exploit to compromise cloud environments. Then, we'll dive into effective mitigation strategies in three areas and show you how to implement t...

Attackers have been breaching the cloud for years by stealing long-lived credentials. To combat these attacks, cloud providers have been building improved authentication workflows for external identity providers. This workshop explores Workload Identity Federation and how you can replace long-lived cloud credentials with short-lived tokens signed by an OpenID Connect identity provider. Join Eric Johnson, author of the open-source Nymeria proje...

It seems like a new IT or cybersecurity acronym is born every two days, but no one wakes up saying, “I need to solve my XMPFSCLR problem.” Instead, IT and security teams have to translate acute, urgent challenges into industry category-speak just to understand what tools can solve their problems. In this webinar, we’ll deconstruct two distinct and growing categories – Cyber Asset Attack Surface Management (CAASM) and Sa...