CE Cybersecurity Trends and Strategies for Hosting in the Cloud

•

1 like•641 views

Why does security feel like the most frustrating challenge in government IT? In part, because security in a cloud-first, mobile-first world calls for new approaches. Data is accessed, used and shared on-premises and in the cloud–erasing traditional security boundaries. In this webinar, we’ll examine current trends in cybersecurity and some resulting strategy shifts that have the potential to greatly enhance public sector organizations’ ability to balance risk and access, better detect and respond to attacks and just make faster and more coordinated cybersecurity decisions overall. Finally, we’ll look at a common set of attacks occurring specifically in state and local government and steps you can take right now to help mitigate these. Join Dean Iacovelli, Director for Secure Enterprise at Microsoft, as he discusses current trends and strategies to mitigate your cybersecurity risk.

Technology

“WHAT HAPPENED AT THE CITY OF
XXX ?”
IMPACT
Own domain Delete backups Exfiltrate data Redirect funds Ransom Botnet
ESCALATION
Pass the hash Pass the ticket
RECON
Target recon Network traversal Mailbox persistence Device persistence
ENTRY
PHISHING
Spear, whaling, trusted user
PASSWORD
Brute force, spray
KNOWN VULNERABILITIES
OS, database, apps
Video

AUTOMATION
of investigation and
response
INTEGRATION of all
components for coordinated
insights and response
FOUNDATIONS OF A MODERN SECURITY
PLATFORM
MACHINE LEARNING and AI
to separate signal and noise
CLOUD
SCALE
real-time
threat intel
“By 2020, 30% of security
spending will be on vendors that
provide an integrated platform
approach to security”
– 2017 IDC FutureScape report

AN ARGUMENT FOR UTILITY
COMPUTING
IN THE CYBER FIGHT
Hyperscale cloud vendors will far outspend even the Fortune
5 on security because their business model is TRUST.
Radically different economics - customers get access to 1B
in cyber spend, only pay for a “slice”.
Move to cloud is part of a sound risk management strategy –
i.e. transferring risk
Cloud helps you stay continually patched and compliant
Certs AND a track record

Action How We Can Partner
Self-service
Fast
Track
Premier MCS Partner
10. Deploy Azure Backup and Recovery services     
9. Move doc stores to OneDrive for Business     
8. Automate info protection and classification     
7. Deploy Win 10 and Cred Guard to all clients.    
6. Deploy Endpoint Protection with automated
investigation/remediation.
   
5. Monitor and reduce time-to-patch    
4. Deploy next gen Security Information and Event
Management tools
   
3. Deploy behavior-analysis content scanning    
2. Leverage Microsoft Secure Score best practices across
Identity, Office 365, Windows clients and servers.
   
1. Deploy phishproof identities for all users, including
Just-In-Time and Just-Enough admin accounts.
   

BRAKES ARE WHAT ALLOW THE CAR
TO GO FASTER.
FINALLY, PLEASE REMEMBER…

Our most unique global asset in the
fight, informed by trillions of feeds.
Machine learning helps sort the
signal from the noise. This signal is
leveraged across all of Microsoft’s
security services.
450B
monthly
authentications
18+B
Bing web pages
scanned750M+
Azure user
accounts
Enterprise
security for
90%
of Fortune 500
Malware data
from Windows
Defender
Shared threat
data from partners,
researchers and law
Enforcement
worldwide
Botnet data from
Microsoft Digital
Crimes Unit
1.2B
devices scanned
each month
400B
emails analyzed
200+
global cloud
consumer and
Commercial services
INTELLIGENT SECURITY GRAPH
Back

What's hot

Webinar Express: What is a CASB?

Bitglass

Sacon - IoT Forum Fresh Thinking (Arvind Tiwary + Bikash Barai)

Priyanka Aash

Zero Trust Cybersecurity for Microsoft Azure Cloud

Block Armour

As organizations transition from on-premise data storage and device-centric security to the cloud, the need for a data-centric solution becomes critical. Enterprises need to protect data in the cloud, at access, on the network, and across all devices. While cloud app vendors now offer robust functionality, they lack the level of granular control and deep visibility many organizations need, either for compliance purposes or simply to enable an increasingly mobile workforce. Join Bitglass and CSA to learn how Cloud Access Security Brokers can protect data in the cloud by providing comprehensive security and real-time data protection. In this webinar, you will learn how CASBs leverage APIs and proxies to control data on both managed and unmanaged devices, enabling secure SaaS and BYOD.

Beyond the Firewall: Securing the cloud with a CASB (in partnership with CSA)

Bitglass

Globally recognized cybersecurity expert and best-selling author, Sai Huda, says the top three cyber threats that all organizations need to be on heightened alert for in 2021 are ransomware, cloud misconfigurations exploit and supply chain compromise. Sai Huda advises businesses on cyber risk management and is a frequent keynote speaker at major industry conferences. He is also the author of the best-selling book “Next Level Cybersecurity: Detect the Signals, Stop the Hack.” In this ground-breaking book, Sai Huda reveals 15 signals that provide early tip-offs to cyberattacks and a seven step method to implement an early warning and detection system to stop a cyber attack in time and prevent loss or damage. Sai Huda is warning businesses worldwide to be on heightened alert for ransomware, especially new variants that are programmed to scan for keywords that indicate mission critical or highly sensitive data so that critical data can be found quickly. Then the ransomware will exfiltrate a copy, then it will encrypt and lock down access to the data and demand a ransom payment. The attacker will then release a portion of the data publicly to extort the victim to pay the ransom. Phishing and unpatched vulnerabilities are the two main ways the attacker is able to insert ransomware. He is also warning that cloud misconfigurations are another major threat as businesses move to the cloud but fail to configure properly all of the systems and services the cloud provider makes available. The cloud provider is responsible for security of the cloud, while the business itself is responsible for security in the cloud. Cloud configurations require specific know-how to prevent and detect a cyber attack. Otherwise, there will be many doors and windows open for an attacker to exploit and break in. Supplier compromise is also another major threat, especially software providers, as evident with the recent SolarWinds supply chain compromise, where the attackers inserted a backdoor malware into the software update process at the supplier and with one fell swoop, as thousands downloaded the software update, the attacker gained entry undetected into thousands or organizations worldwide. So a compromise at a supplier can be the backdoor into the organization. Regardless, there will be signals of the attackers and in his book Sai Huda reveals the signals that organizations must be on the look out for to prevent becoming victim to ransomware, cloud misconfigurations exploit or supply chain compromise.

The Top Three 2021 Cyber Threats

Sai Huda

Para trabajar en un ecosistema digitalmente transformado, los directores de sistemas de información y otros líderes empresariales tienen que navegar en un entorno de amenazas a la seguridad en constante cambio. Las soluciones de Next Gen Security (NGS) son soluciones de seguridad optimizadas para trabajar mejor con la escala masiva y cobertura expansiva de la Tercera Plataforma. Aunque 7 de cada 10 empresas afirman estar en el proceso de implementar una solución más de seguridad de nueva generación, 3 de esos 7 no tendrá éxito por la falta de competencia interna, por lo que el tema de seguridad es cada día más crítico”. Akamai ofrece un rendimiento a escala con la solución de distribución en la nube más grande y confiable del mundo. Sus recursos se escalan de forma que sus clientes no tengan que hacerlo. Akamai tiene una visibilidad sin igual de las propiedades más atacadas en la web y obtiene inteligencia ante amenazas continuamente a partir de inspecciones avanzadas tanto del tráfico bueno como del malo.

Desafíos de la Ciberseguridad en un ecosistema digitalmente transformado

Cristian Garcia G.

Cybersecurity 2020: Your Biggest Threats and How You Can Prevent Them

SrikanthRaju7

Zero Trust Run-time Kubernetes Security made easy with AccuKnox

AccuKnox

(SACON) Nilanjan, Jitendra chauhan & Abhisek Datta - How does an attacker kno...

Priyanka Aash

Cloud & Cybersecurity

IndSightsResearchSG

API Security Needs AI Now More Than Ever

Ping Identity

What is Cloud and what are the best practices?

IndSightsResearchSG

Black Hat USA 2014 - A Practical Attack Against Virtual Desktop Infrastructur...

Lacoon Mobile Security

Cloud Security Strategy by McAfee

Cristian Garcia G.

Jun 15 privacy in the cloud at financial institutions at the object managemen...

Ulf Mattsson

Zero Trust Enterprise Network at Adobe

Vishwas Manral

Cloud Access Security Broker (CASB)

rkulandaivel

Spyphones are surveillance tools surreptitiously planted on a users handheld device. While malicious mobile applications mainly phone fraud applications distributed through common application channels - target the typical consumer, spyphones are nation states tool of attacks. Why? Once installed, the software stealthy gathers information such as text messages (SMS), geo-location information, emails and even surround-recordings. How are these mobile cyber-espionage attacks carried out? In this engaging session, we present a novel proof-of-concept attack technique which bypass traditional mobile malware detection measures- and even circumvent common Mobile Device Management (MDM) features, such as encryption. http://www.blackhat.com/us-13/briefings.html#Brodie

BlackHat USA 2013 - Practical Attacks against Mobile Device Management Solutions

Lacoon Mobile Security

For enterprises looking to protect cloud app data, Cloud Access Security Brokers (CASBs) have quickly emerged as the go-to solution. But how have CASBs matured and encompassed critical pieces of the security puzzle, from identity management to data leakage prevention? Join Bitglass and (ISC)2 for Episode 1 of the CASB Wars webinar trilogy for a discussion about the evolution of CASBs from app discovery to complete cloud security suites and basic API-based controls to more capable multi-protocol proxies.

CASBs - A New Hope

Bitglass

Cybersecurity 2020 the biggest threats to watch out for

Cigniti Technologies Ltd

What's hot (20)

Webinar Express: What is a CASB?

Sacon - IoT Forum Fresh Thinking (Arvind Tiwary + Bikash Barai)

Zero Trust Cybersecurity for Microsoft Azure Cloud

Beyond the Firewall: Securing the cloud with a CASB (in partnership with CSA)

The Top Three 2021 Cyber Threats

Desafíos de la Ciberseguridad en un ecosistema digitalmente transformado

Cybersecurity 2020: Your Biggest Threats and How You Can Prevent Them

Zero Trust Run-time Kubernetes Security made easy with AccuKnox

(SACON) Nilanjan, Jitendra chauhan & Abhisek Datta - How does an attacker kno...

Cloud & Cybersecurity

API Security Needs AI Now More Than Ever

What is Cloud and what are the best practices?

Black Hat USA 2014 - A Practical Attack Against Virtual Desktop Infrastructur...

Cloud Security Strategy by McAfee

Jun 15 privacy in the cloud at financial institutions at the object managemen...

Zero Trust Enterprise Network at Adobe

Cloud Access Security Broker (CASB)

BlackHat USA 2013 - Practical Attacks against Mobile Device Management Solutions

CASBs - A New Hope

Cybersecurity 2020 the biggest threats to watch out for

Similar to CE Cybersecurity Trends and Strategies for Hosting in the Cloud

Video surveillance has a growing significance as organizations seek to safeguard their physical and capital assets. Simultaneously, the requirement to detect more places, people, and things together with a desire to draw out more useful information from video data is rousing new demands for capacities, capabilities, and scalability. IBM Storage offers a broad spectrum of offerings which are ideally suited to help organizations store, manage and secure increasingly large volumes of video surveillance footage. Hear about the evolving DVS space and how IBM Storage offerings -- such as FlashSystem, Storwize Family, Elastic Storage Server, Spectrum Scale and Spectrum Archive -- can deliver higher value for digital video surveillance solutions.

IBM in Surveillance: Solutions that Deliver Innovation

Paula Koziol

If we know anything about IT, it’s that they don’t appreciate additional work, additional security risk or duplicate efforts. Trust us when we say, we are with you! That’s why we’ve partnered with Microsoft and built our solutions on the Azure platform. In this webinar we want to introduce you to Azure’s security features, plus audit tools for data centers, specific security tools for customers and of course, the ease-of-use that Azure AD offers OpusCapita customers. Our goal in this webinar is to give you an introduction to OpusCapita and Azure and reduce or eliminate any fear you might have when adopting SaaS solutions. Spoiler alert - with source-to-pay on Azure, you still have full control over your vpn connections and user management.

Azure - a secure platform for source-to-pay

OpusCapita

Smart Analytics for The Big Unknown

Adrian Dumitrescu

Ibm security overview 2012 jan-18 sellers deck

Arrow ECS UK

Y20151003 IoT 資訊安全_趨勢科技分享

m12016changTIIMP

GDPR Part 5: Better Together Quest & Cyberquest

Adrian Dumitrescu

Cloud Computing: Its Applications and Security Issues (A Major Challenge in C...

IRJET Journal

Top Cybersecurity vendors.pptx

SonaliG6

Latest Cybersecurity Trends

IRJET Journal

"Evolving Cybersecurity Strategies" - Identity is the new security boundary

Dean Iacovelli

Micro Technologies (India) Ltd. is an IT based company, a leading global developer, manufacturer and marketer of security devices for its clients across the globe. Product lines include the much-needed security devices, life style and support systems and web-based software. Micro Technologies has a history of leading-edge security solutions products. This tradition continues through a singular focus on innovation, advanced technology and making the life of its clients safe, secure and manageable in terms of security, time and money one of the most important defining characteristics of a security and life support solution based company in the early 21st century. It is one of the most valued security solutions across the globe and has been accorded with many national and international awards for its growth and R & D. Micro Technologies aims at displaying not just the technological innovation and prowess but also the product diversity in various segments of vehicle, premises, mobile, other assets and now entering Energy & Health Segments.

Micro Technologies India ltd

Nehul Gupta

Legacy monitoring and troubleshooting tools can limit visibility and control over your infrastructure and applications. Organizations must find monitoring and troubleshooting tools that can scale with the volume, variety and velocity of data generated by today’s complex applications in order to keep pace with business demands. Our upcoming webinar will discuss how Sumo Logic helped Scripps Networks harness cloud-native machine data analytics to improve application quality and reliability on AWS. Sumo Logic allows IT operations teams to visualize and monitor workloads in real-time, identify issues and expedite root-cause analysis across the AWS environment. Join us to learn: • How to migrate from traditional on-premises data centers to AWS with confidence • How to improve the monitoring and troubleshooting of modern applications • How Scripps Networks, a leading content developer, used Sumo Logic to optimize their transition to AWS Who should attend: Developers, DevOps Director/Manager, IT Operations Director/Manager, Director of Cloud/Infrastructure, VP of Engineering

Real-time Visibility at Scale with Sumo Logic

Amazon Web Services

As the Internet of Things is deployed across a wide range of industrial, consumer, and business environments, of special interest and concern is the need to implement IoT solutions with careful attention to security. While many of the challenges in IoT security are similar to the challenges of securing information technology (IT) computing environments, there are special considerations due to the scale, operating conditions, system capabilities, and wide range of device types which are used in IoT solutions. Further, these systems, by connecting the electronic and physical worlds, must address both operations technology (OT) security and information technology (IT) security. In this session we will discuss the existing and emerging capabilities from IBM which we are both building into our IoT platform as well as the solutions built on top of that platform. Security features address the full spectrum of designing, building, deploying, and operating IoT solutions and are being built to enable a risk-based approach to applying these security capabilities. Both well-established and new technologies such as blockchain-based collaboration are part of these security capabilities. We consider device, network, application, and user security, with consideration for confidentiality, integrity, and availability of the systems and information. Considerations for safety and privacy also factor into the capabilities which IBM is building to secure IoT environments.

Securing your IoT Implementations

TechWell

MaaS360 with Watson

Sylvia Low

SplunkLive! Munich 2018: Siemens Security Use Case

Splunk

EENA2019: Track3 session1 improving response times & decision making_Eric Basha

EENA (European Emergency Number Association)

Why WSO2 for Digital Transformation

WSO2

Emerging Application and Data Protection for Multi-Cloud Personal data privacy will be the most prominent issue affecting how businesses gather, store, process, and disclose data in public cloud. Businesses have been inundated with information on what recent privacy laws like GDPR and CCPA require, but many are still trying to figure out how to comply with them on a practical level. Many companies are focusing on data privacy from the legal and security side, which are foundational, but are missing the focus on data. The good news is that these data privacy regulations compel businesses to get a handle on personal data - how they get it, where they get it from, which systems process it, where it goes internally and externally, etc. In other words, the new norms of data privacy require proactive data management, which enables organizations to extract real business value from their data, improve the customer experience, streamline internal processes, and better understand their customers. The new Verizon Data Breach Investigations Report (DBIR) provides perspectives on how Criminals simply shift their focus and adapt their tactics to locate and steal the data they find to be of most value. This session will discuss Emerging Application and Data Protection for Multi-cloud and review Differential privacy, Tokenization, Homomorphic encryption, and Privacy-preserving computation.

Emerging application and data protection for multi cloud

Ulf Mattsson

Insecure mag-19

Ambuj Sharma

What happens in the Innovation of Things?

Kim Escherich

Similar to CE Cybersecurity Trends and Strategies for Hosting in the Cloud (20)

IBM in Surveillance: Solutions that Deliver Innovation

Azure - a secure platform for source-to-pay

Smart Analytics for The Big Unknown

Ibm security overview 2012 jan-18 sellers deck

Y20151003 IoT 資訊安全_趨勢科技分享

GDPR Part 5: Better Together Quest & Cyberquest

Cloud Computing: Its Applications and Security Issues (A Major Challenge in C...

Top Cybersecurity vendors.pptx

Latest Cybersecurity Trends

"Evolving Cybersecurity Strategies" - Identity is the new security boundary

Micro Technologies India ltd

Real-time Visibility at Scale with Sumo Logic

Securing your IoT Implementations

MaaS360 with Watson

SplunkLive! Munich 2018: Siemens Security Use Case

EENA2019: Track3 session1 improving response times & decision making_Eric Basha

Why WSO2 for Digital Transformation

Emerging application and data protection for multi cloud

Insecure mag-19

What happens in the Innovation of Things?

More from Case IQ

With recent announcements of increasingly stringent federal policies around record-keeping and due diligence, compliance and investigation professionals are feeling the pressure to demonstrate consistency and rigor in their case management processes. Planning your investigation, having the right team members involved and reporting on outcomes of an investigation can all be difficult phases of the process. However, being able to demonstrate that you are quickly, consistently and accurately triaging incidents is even more important now. The key is to establish decision-making approaches and plan out your entire protocol before the matter comes to your attention through hotline reporting or other mechanism. This ensures structure and success as you triage, investigate, staff the investigation properly and meet the inevitable challenges of reporting and addressing the root causes of incidents.

How Best Practices in Triage Protocol Can Boost Compliance and Reduce Risk

Case IQ

In order to avoid risk while running a successful organization, today’s leaders need to do more than react to cases of harassment, misconduct and employee fraud. They need to prevent these issues. Purpose-built case management software provides data-driven reports that help companies manage risk, spot trends and protect employees and the organization by preventing incidents, as well as fines and reputation damage. But home-grown or dated solutions come with many challenges. For instance, managing incidents and investigations using manual methods leads to duplication of effort and information silos, resulting in inefficiency. Using these solutions also comes with security risks and inconsistent documentation, opening the company up to fines and lawsuits. i-Sight’s powerful case management platform streamlines your investigative process and provides the data you need to analyze results, prevent incidents and protect your employees. You’ll save time and money, ensure compliance, and reduce risk, all with one tool.

How to Drive Efficiency and Reduce Risk with Investigative Case Management So...

Case IQ

When investigating a “he said/she said” case of sexual harassment or other alleged misconduct, are you using scientifically validated methods to interview witnesses, assess their credibility, and reach a defensible conclusion? Over the past 15 years, scientists have found that much of the conventional wisdom on how to effectively interview witnesses and determine truthfulness is wrong. At the same time, courts have found companies liable for using scientifically unproven interviewing techniques in workplace investigations. In this webinar you will learn about the hundreds of research studies that scientists have conducted on how to best interview witnesses and assess credibility. You will learn how to apply these scientifically validated methods to your investigations. Join the i-Sight team and former U.S. Department of Justice attorney Michael Johnson as they discuss how to apply these scientifically validated methods to your investigations.

Who's Lying? Using the Cognitive Interview to Assess Credibility in Workplace...

Case IQ

Vicarious trauma is a type of second-hand psychological response most often associated with first responders and front-line crisis workers. Although corporate incident investigators and HR and compliance professionals are usually not the first on the scene, they frequently find themselves listening to both victims and accused people who recount what could be the worst days of their professional lives. There is no doubt that the case management process can be stressful and sometimes triggering for those who are managing it. The personal and organizational impacts can include compromised risk assessment and investigations, investigator burnout and absenteeism, and a less healthy workplace overall. Join expert workplace investigator Ken McCarthy as he shares his experience with vicarious trauma and compassion fatigue resulting from his involvement in workplace investigations.

Protecting the Mental Wellbeing of Corporate Investigators

Case IQ

As an investigator, you don’t define your value to the organization; leadership does. What are you doing to be a better business advisor and contribute to the organization’s goals? In other words, why should the bosses listen to you? Because misconduct doesn’t happen in a vacuum! It results from a perfect storm of factors like employee ignorance, a failure to see the larger implications, a lack of training and procedures, or a failure of internal controls. And you have a view to all of this in your cases. This webinar outlines how you can become a better strategic advisor, how to think like a business leader, and what keeps executives awake at night. You’ll learn how case management can drive a culture of prevention, and how you can prove the bottom-line ROI of investigations. Join Meric Bloch, Strategic Advisor at Winter Investigations as he discusses how investigators can become business advisors to the C-suite using their knowledge of case management and risk assessment. In this webinar, you will learn: Goals of a strategic business advisor. -What advice does a strategic advisor give? -What should a strategic advisor not do? -How an investigator can become a strategic advisor. -How stellar case management positions investigators as strategic advisors.

Meric Bloc_Webinar Nov22.pptx

Case IQ

You get it. Being an ethical organization matters. A lot. But ethics isn’t just a quarterly HR campaign or a glossy conduct guide; in order to really have a bottom-line business impact, organizational ethics must function as an integral pillar of company culture over time. So, what are the best practices to make sure your organization is regularly thinking about ethics and including it in everyday decision making? What are some creative ways to bring focus to this vital but often overlooked function? And how can you most effectively deal with and investigate an incident or a breach when it occurs?

5 Steps to Creating an Ethical Work Culture

Case IQ

Compliance officers know that a strong culture of compliance is indispensable to risk management and better business performance in the modern world. So how, exactly, can you capture insights into the current state of your corporate culture, and then use that information to (1) shore up weak spots in ethics and compliance operations; and (2) leverage a strong culture of compliance for better operations across the enterprise? Join Matt Kelly, Editor and CEO of RadicalCompliance.com, as he discusses how and why compliance leaders need to use data to improve their investigations and corporate culture.

How to Assess, Level Up, and Leverage Your Culture of Compliance

Case IQ

Internal investigations have long been a part of every ethics & compliance program and every E&C professional’s tool kit. However, the US Department of Justice has made clear that internal investigations are more important than ever. In October 2021, Deputy Attorney General Lisa Monaco reinstituted the substance of the Yates Memo, requiring companies to turn over all information on any culpable individuals. Recent criminal enforcement actions by the DOJ have thrown new and increasing scrutiny on internal investigations. Now, CCOs and CECOs must certify compliance in any FCPA settlement. In short, getting E&C internal investigations right has taken on a new importance.

Everything You Need to Get E&C Investigations Right (According to the DOJ)

Case IQ

Over the past few months, we’ve seen employees quit in record numbers. While there are many reasons for “The Great Resignation”, a standout is employee trust. A study from Gallup suggests that only one in three employees strongly agree that they trust the leadership of their organization. Employees want to trust the companies they work at and the people they work with. They want to feel comfortable coming to HR with their complaints and concerns. But building trust takes time, and effort. As organizations are planning their post-pandemic strategies, now is a perfect time to place an intentional emphasis on building trust.

5 Ways to Build Employee Trust for Less Turnover and Fewer Incidents

Case IQ

In today’s “new world of work,” many organizations run on a hybrid model, with some employees working remotely and others in the physical office. While this set-up is convenient, it can cause unique interpersonal issues between employees. Reduced face-to-face communication makes it harder for teams to bond, while making it easier for harassers to get away with bad behavior. To reduce harassment incidents in your hybrid workplace, you need to foster a culture of openness, willingness to learn, and compassion. Join workplace investigation and executive management expert Kenneth McCarthy as he outlines how to address and prevent hybrid workplace harassment incidents.

Hybrid Workplace Harassment: Are You Protecting Your Company from Hidden Thre...

Case IQ

The topic of workplace diversity, equity, and inclusion is at an all-time high right now. It has been proven that there is a direct correlation between inclusive workforces, productivity, and revenue. According to the McKinsey & Company diversity report, “companies in the top-quartile for ethnic and cultural diversity on executive teams were 33% more likely to have industry-leading profitability.” Without a strong DEI program, though, your organization could face internal harassment incidents, discrimination lawsuits, high employee churn, and a poor corporate reputation, leading to lost customers and clients. Join inclusive marketing consultant, speaker, and author Michelle Ngome as she outlines DEI best practices that will increase your organization’s revenue, as well as prevent workplace incidents.

Finding Value Before a Crisis: How Workplace DEI Drives Revenue and Prevents ...

Case IQ

More and more, disgruntled employees have been taking to TikTok, Twitter, and other social media sites to share videos and posts of their bad work experiences. These stories are more likely than ever to go viral, which can lead to lost business, reputational damage, employee churn, and lawsuits, just to name a few unwelcome consequences for employers. While some people might be acting in bad faith, employees have been finding tried traditional HR channels less than satisfactory. They feel un-heard and undervalued, and they turn to the internet to tell their stories, and receive fast responses. You can’t build a brand or accomplish your mission statement without your employees. To avoid the repercussions of viral incidents and strengthen your brand, you have to repair your employer/employee relationship and work culture—or better yet, create a healthy, ethical culture from the start. Join employment lawyer Janette Levey as she breaks down major viral incidents including Better.com, Starbucks, and Amazon, their consequences, and what to do to avoid them.

How Not to Get Called Out on TikTok: Improving Your Brand Through Employer/Em...

Case IQ

What is Psychological Safety in the Workplace?

Case IQ

Case management is an integral component of any institution’s overall compliance program, let alone those with suspicious activity report (“SAR”) filing responsibilities. However, misconduct is often reported through multiple channels such as whistleblower complaints, HR, and even through a company’s legal department. If misconduct requires SAR filing, input from HR, and advice from legal, but comes in through possibly siloed teams, how can a company feel confident that they are accurately capturing and consistently dispositioning these cases? The answer boils down to an often-overlooked area – case management systems. Join financial crime compliance advisory and training specialist Michael Schidlow, as he explains best and worst practices in the field, gives tips on what case management tools should always and shouldn’t ever do, and describes how to utilize metrics from those systems to get an accurate snapshot of their company’s risk profile.

Misconduct or Missed Conduct? Ensuring Consistent SAR Reporting of Internal M...

Case IQ

There’s no place for sexual harassment in today’s workplace, and employers have a responsibility to investigate every allegation. But reacting after a complaint is made doesn’t fix a culture that allows sexual harassment to occur. A proactive approach, incorporating a strong policy, backed by training and commitment at all levels, is key to building an organizational culture that discourages sexual harassment. Join Philip Miles, employment lawyer, McQuaide Blasko, as he outlines the steps for building policies and training plans to prevent sexual harassment in the workplace.

Building Effective Sexual Harassment Prevention Policies and Training

Case IQ

The modern workplace should be an inclusive and welcoming environment for all employees but that isn’t always the case. In fact, systemic inequality is the norm for a vast number of workplaces throughout North America, Europe and beyond. And while the BLM and MeToo movements have received much media attention, the underlying factors that contribute to the inequality they point out aren’t always addressed. Implicit, or unconscious, bias is the root of many systemic inequities in the workplace. It’s important that we recognize our personal biases, take action to mitigate them and actively serve as an ally to others. On June 10, join Catherine Mattice-Zundel, president of Civility Partners, a training and consulting firm focused on helping organizations build positive workplace cultures, as she outlines strategies for uncovering and reducing implicit bias in workplace decision-making. The webinar will cover: ● The origins of bias and four different types of bias ● Risk factors that increase our likelihood to engage in bias ● How to compensate for and attempt to overcome bias through clear and tangible actions ● Strategies to combat microaggressions and other exclusive behaviors using simple, tried and true intervention methods

How to recognize and minimize unconscious bias in the workplace

Case IQ

Whether you are investigating fraud, harassment or other misconduct, solid online research skills can serve you well. The internet is a valuable resource for finding information and evidence to support your case, and it’s important to stay up to date on its use and limitations. Join Cynthia Hetherington, investigation expert, trainer and founder of Hetherington Group, as she explores techniques and tools for getting the information you need online.

Search Engine Skills for Workplace Investigators

Case IQ

In a 2019 Monster survey, 90 per cent of employees said they had experienced bullying in the workplace. The Pew Research Center reports that 69 per cent of women say they have been sexually harassed in a professional setting. These numbers point to a serious problem that leaders can’t afford to ignore. Policies and training are, of course, critical to the prevention of bullying and harassment, but there are other avenues that you may not have considered. Diversity and inclusion have benefits that go far beyond compliance. Not only do companies that embrace diversity and inclusion outperform those that don’t, but understanding, accepting and valuing differences ensures a fairer, more collaborative environment with less conflict. Join Catherine Mattice-Zundel, president of Civility Partners, a training and consulting firm focused on helping organizations build positive workplace cultures, as she explores strategies for using diversity and inclusion to prevent harassment and bullying. The webinar will cover: What constitutes bullying and harassment in the workplace Best practices for addressing and preventing bullying and harassment How diversity and inclusion helps to reduce bullying and harassment How to achieve diversity and inclusion Case studies of how bullying, inequities and harassment tie together, and how resolving one requires resolving all

Preventing Bullying and Harassment Through Diversity and Inclusion in the Wor...

Case IQ

“I never would have imagined”, said the company owner, manager, colleague, or workplace friend. It is hard to reconcile that people would engage in fraudulent behavior in the workplace, let alone the depth of these schemes. Financial misconduct and internal fraud are among the biggest threats to today’s organizations. Without the right controls and prevention measures in place, companies are at financial and reputational risk. Join financial crime compliance advisory and training specialist Michael Schidlow, as he reviews recent cases of internal fraud, what we can learn from them, and controls that companies can put in place to prevent fraud

Insider Threat: Cases and Controls to Prevent Internal Fraud and Prevention

Case IQ

It’s long been clear that organizations with strong ethical cultures perform better than those without. In addition to the multitude of positive impacts a strong ethical culture provides, these organizations will also typically experience less fraud and misconduct. However, to achieve maximum results, a strong ethical culture must focus on accountability and include robust fraud prevention measures. Ethical accountability takes time and effort to build, but the rewards of fostering the right culture in an organization are measurable. Fewer fraud incidents, for example, can be demonstrated by hard numbers. A strong code of conduct is a great start, but it’s critical to have a comprehensive ethics program that fosters accountability. Join Joseph Agins, CFE, CCEP, adjunct professor and fraud expert, as he outlines strategies organizations can use to ensure every employee from the C-Suite down has the tools they need to help them make ethical decisions and prevent fraud. The webinar will cover: The importance of tone from the top Identifying the pressures employees face and thus the ethics and fraud risks Understanding the resources employees have (or not) to report wrongdoing Whether the internal imagining of the culture matches the reality Developing tools and strategies for fostering ethics in the workplace Anti-fraud measures that should be incorporated into every ethics policy Encouraging ethics and accountability

7 Ways to Increase Ethical Accountability and Decrease Fraud Risk

Case IQ

More from Case IQ (20)

How Best Practices in Triage Protocol Can Boost Compliance and Reduce Risk

How to Drive Efficiency and Reduce Risk with Investigative Case Management So...

Who's Lying? Using the Cognitive Interview to Assess Credibility in Workplace...

Protecting the Mental Wellbeing of Corporate Investigators

Meric Bloc_Webinar Nov22.pptx

5 Steps to Creating an Ethical Work Culture

How to Assess, Level Up, and Leverage Your Culture of Compliance

Everything You Need to Get E&C Investigations Right (According to the DOJ)

5 Ways to Build Employee Trust for Less Turnover and Fewer Incidents

Hybrid Workplace Harassment: Are You Protecting Your Company from Hidden Thre...

Finding Value Before a Crisis: How Workplace DEI Drives Revenue and Prevents ...

How Not to Get Called Out on TikTok: Improving Your Brand Through Employer/Em...

What is Psychological Safety in the Workplace?

Misconduct or Missed Conduct? Ensuring Consistent SAR Reporting of Internal M...

Building Effective Sexual Harassment Prevention Policies and Training

How to recognize and minimize unconscious bias in the workplace

Search Engine Skills for Workplace Investigators

Preventing Bullying and Harassment Through Diversity and Inclusion in the Wor...

Insider Threat: Cases and Controls to Prevent Internal Fraud and Prevention

7 Ways to Increase Ethical Accountability and Decrease Fraud Risk

Recently uploaded

Architecting Cloud Native Applications

WSO2

Axa Assurance Maroc - Insurer Innovation Award 2024

The Digital Insurer

MINDCTI Revenue Release Quarter One 2024

MIND CTI

ICT role in 21st century education and its challenges

rafiqahmad00786416

Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood

Juan lago vázquez

MySQL Webinar, presented on the 25th of April, 2024. Summary: MySQL solutions enable the deployment of diverse Database Architectures tailored to specific needs, including High Availability, Disaster Recovery, and Read Scale-Out. With MySQL Shell's AdminAPI, administrators can seamlessly set up, manage, and monitor these solutions, ensuring efficiency and ease of use in their administration. MySQL Router, on the other hand, provides transparent routing from the application traffic to the backend servers in the architectures, requiring minimal configuration. Completely built in-house and supported by Oracle, these solutions have been adopted by enterprises of all sizes for their business-critical applications. In this presentation, we'll delve into various database architecture solutions to help you choose the right one based on your business requirements. Focusing on technical details and the latest features to maximize the potential of these solutions.

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...

Miguel Araújo

Following the popularity of "Cloud Revolution: Exploring the New Wave of Serverless Spatial Data," we're thrilled to announce this much-anticipated encore webinar. In this sequel, we'll dive deeper into the Cloud-Native realm by uncovering practical applications and FME support for these new formats, including COGs, COPC, FlatGeoBuf, GeoParquet, STAC, and ZARR. Building on the foundation laid by industry leaders Michelle Roby of Radiant Earth and Chris Holmes of Planet in the first webinar, this second part offers an in-depth look at the real-world application and behind-the-scenes dynamics of these cutting-edge formats. We will spotlight specific use-cases and workflows, showcasing their efficiency and relevance in practical scenarios. Discover the vast possibilities each format holds, highlighted through detailed discussions and demonstrations. Our expert speakers will dissect the key aspects and provide critical takeaways for effective use, ensuring attendees leave with a thorough understanding of how to apply these formats in their own projects. Elevate your understanding of how FME supports these cutting-edge technologies, enhancing your ability to manage, share, and analyze spatial data. Whether you're building on knowledge from our initial session or are new to the serverless spatial data landscape, this webinar is your gateway to mastering cloud-native formats in your workflows.

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

Safe Software

Scaling API-first – The story of a global engineering organization Ian Reasor, Senior Computer Scientist - Adobe Radu Cotescu, Senior Computer Scientist - Adobe Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe

apidays

Join our latest Connector Corner webinar to discover how UiPath Integration Service revolutionizes API-centric automation in a 'Quote to Cash' process—and how that automation empowers businesses to accelerate revenue generation. A comprehensive demo will explore connecting systems, GenAI, and people, through powerful pre-built connectors designed to speed process cycle times. Speakers: James Dickson, Senior Software Engineer Charlie Greenberg, Host, Product Marketing Manager

Connector Corner: Accelerate revenue generation using UiPath API-centric busi...

DianaGray10

Whatsapp Number Escorts Call girls 8617370543 Available 24x7 Navi Mumbai Call Girls Service Offer Genuine VIP Model Escorts Call Girls in Your Budget. Navi Mumbai Call Girls Service Provide Real Call Girls Number. Make Your Sexual Pleasure Memorable with Our Navi Mumbai Call Girls at Affordable Price. Top VIP Escorts Call Girls, High Profile Independent Escorts Call Girls, Housewife Women Escorts Call Girl, College Girls Escorts Call Girls, Russian Escorts Call girls Service in Your Budget.

Navi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot Model

Deepika Singh

Three things you will take away from the session: • How to run an effective tenant-to-tenant migration • Best practices for before, during, and after migration • Tips for using migration as a springboard to prepare for Copilot in Microsoft 365 Main ideas: Migration Overview: The presentation covers the current reality of cross-tenant migrations, the triggers, phases, best practices, and benefits of a successful tenant migration Considerations: When considering a migration, it is important to consider the migration scope, performance, customization, flexibility, user-friendly interface, automation, monitoring, support, training, scalability, data integrity, data security, cost, and licensing structure Next Wave: The next wave of change includes the launch of Copilot, which requires businesses to be prepared for upcoming changes related to Copilot and the cloud, and to consolidate data and tighten governance ShareGate: ShareGate can help with pre-migration analysis, configurable migration tool, and automated, end-user driven collaborative governance

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

sammart93

AXA XL - Insurer Innovation Award Americas 2024

The Digital Insurer

Automating Google Workspace (GWS) & more with Apps Script

wesley chun

Manulife - Insurer Transformation Award 2024

The Digital Insurer

The Good, the Bad and the Governed - Why is governance a dirty word? David O'Neill, Chief Operating Officer - APIContext Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...

apidays

The value of a flexible API Management solution for Open Banking Steve Melan, Manager for IT Innovation and Architecture - State's and Saving's Bank of Luxembourg Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - The value of a flexible API Management solution for O...

apidays

Created by Mozilla Research in 2012 and now part of Linux Foundation Europe, the Servo project is an experimental rendering engine written in Rust. It combines memory safety and concurrency to create an independent, modular, and embeddable rendering engine that adheres to web standards. Stewardship of Servo moved from Mozilla Research to the Linux Foundation in 2020, where its mission remains unchanged. After some slow years, in 2023 there has been renewed activity on the project, with a roadmap now focused on improving the engine’s CSS 2 conformance, exploring Android support, and making Servo a practical embeddable rendering engine. In this presentation, Rakhi Sharma reviews the status of the project, our recent developments in 2023, our collaboration with Tauri to make Servo an easy-to-use embeddable rendering engine, and our plans for the future to make Servo an alternative web rendering engine for the embedded devices industry. (c) Embedded Open Source Summit 2024 April 16-18, 2024 Seattle, Washington (US) https://events.linuxfoundation.org/embedded-open-source-summit/ https://ossna2024.sched.com/event/1aBNF/a-year-of-servo-reboot-where-are-we-now-rakhi-sharma-igalia

A Year of the Servo Reboot: Where Are We Now?

Igalia

Corporate and higher education. Two industries that, in the past, have had a clear divide with very little crossover. The difference in goals, learning styles and objectives paved the way for differing learning technologies platforms to evolve. Now, those stark lines are blurring as both sides are discovering they have content that’s relevant to the other. Join Tammy Rutherford as she walks through the pros and cons of corporate and higher ed collaborating. And the challenges of these different technology platforms working together for a brighter future.

Corporate and higher education May webinar.pptx

Rustici Software

Artificial Intelligence Chap.5 : Uncertainty

Khushali Kathiriya

presentation ICT roal in 21st century education

jfdjdjcjdnsjd

Recently uploaded (20)

Architecting Cloud Native Applications

Axa Assurance Maroc - Insurer Innovation Award 2024

MINDCTI Revenue Release Quarter One 2024

ICT role in 21st century education and its challenges

Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe

Connector Corner: Accelerate revenue generation using UiPath API-centric busi...

Navi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot Model

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

AXA XL - Insurer Innovation Award Americas 2024

Automating Google Workspace (GWS) & more with Apps Script

Manulife - Insurer Transformation Award 2024

Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...

Apidays New York 2024 - The value of a flexible API Management solution for O...

A Year of the Servo Reboot: Where Are We Now?

Corporate and higher education May webinar.pptx

Artificial Intelligence Chap.5 : Uncertainty

presentation ICT roal in 21st century education

CE Cybersecurity Trends and Strategies for Hosting in the Cloud

3. “WHAT HAPPENED AT THE CITY OF XXX ?” IMPACT Own domain Delete backups Exfiltrate data Redirect funds Ransom Botnet ESCALATION Pass the hash Pass the ticket RECON Target recon Network traversal Mailbox persistence Device persistence ENTRY PHISHING Spear, whaling, trusted user PASSWORD Brute force, spray KNOWN VULNERABILITIES OS, database, apps Video

4. CYBERSECURITY BY THE NUMBERS

6. AUTOMATION of investigation and response INTEGRATION of all components for coordinated insights and response FOUNDATIONS OF A MODERN SECURITY PLATFORM MACHINE LEARNING and AI to separate signal and noise CLOUD SCALE real-time threat intel “By 2020, 30% of security spending will be on vendors that provide an integrated platform approach to security” – 2017 IDC FutureScape report

7. AN ARGUMENT FOR UTILITY COMPUTING IN THE CYBER FIGHT Hyperscale cloud vendors will far outspend even the Fortune 5 on security because their business model is TRUST. Radically different economics - customers get access to 1B in cyber spend, only pay for a “slice”. Move to cloud is part of a sound risk management strategy – i.e. transferring risk Cloud helps you stay continually patched and compliant Certs AND a track record

8. Action How We Can Partner Self-service Fast Track Premier MCS Partner 10. Deploy Azure Backup and Recovery services      9. Move doc stores to OneDrive for Business      8. Automate info protection and classification      7. Deploy Win 10 and Cred Guard to all clients.     6. Deploy Endpoint Protection with automated investigation/remediation.     5. Monitor and reduce time-to-patch     4. Deploy next gen Security Information and Event Management tools     3. Deploy behavior-analysis content scanning     2. Leverage Microsoft Secure Score best practices across Identity, Office 365, Windows clients and servers.     1. Deploy phishproof identities for all users, including Just-In-Time and Just-Enough admin accounts.    

9. BRAKES ARE WHAT ALLOW THE CAR TO GO FASTER. FINALLY, PLEASE REMEMBER…

10. Q & A

11.

12.

13. Our most unique global asset in the fight, informed by trillions of feeds. Machine learning helps sort the signal from the noise. This signal is leveraged across all of Microsoft’s security services. 450B monthly authentications 18+B Bing web pages scanned750M+ Azure user accounts Enterprise security for 90% of Fortune 500 Malware data from Windows Defender Shared threat data from partners, researchers and law Enforcement worldwide Botnet data from Microsoft Digital Crimes Unit 1.2B devices scanned each month 400B emails analyzed 200+ global cloud consumer and Commercial services INTELLIGENT SECURITY GRAPH Back

Editor's Notes

1 Bitsight report cited in NPR article 2 Verizon 2017 Data Breach Report 3 Verizon 2017 Data Breach Report 4 Microsoft Incident Response team 5 2017 Global Information Security Workforce Study 6 Forbes 7 Slate https://slate.com/technology/2015/07/opm-head-katherine-archuleta-resigns-over-data-breach.html
To defend against attacks that are ruthlessly fast and extraordinarily complex, the need for sophisticated software utilizing machine learning and operating on as much data as possible has never been greater. This is where we offer something very unique and powerful to every consumer and every organization. We have been quietly building something incredible: The Microsoft Intelligent Security Graph. Every second we are adding hundreds of GBs worth of the telemetry to the Graph. This anonymized data is coming from the 100’s of global cloud services we operate, consumer and commercial, data about the threats faced by the +1B PCs we update via Windows Update every month, aggregated with external data points we collect through extensive research, partnership with industry and law enforcement through our Digital Crime Units, and our Cybersecurity Defense Operations Center. To give you a sense on what that means, we add to the Security Graph with data from the 300B monthly authentications across our consumer and enterprise services, as well as the 200B e-mails that are analyzed each month for malware and malicious web sites. We receive trillions of pieces of data from billions of devices. http://www.gettyimages.com/license/545863031

CE Cybersecurity Trends and Strategies for Hosting in the Cloud

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Similar to CE Cybersecurity Trends and Strategies for Hosting in the Cloud

Similar to CE Cybersecurity Trends and Strategies for Hosting in the Cloud (20)

More from Case IQ

More from Case IQ (20)

Recently uploaded

Recently uploaded (20)

CE Cybersecurity Trends and Strategies for Hosting in the Cloud

Editor's Notes