[Cisco Connect 2018 - Vietnam] Brian cotaz cyber security strategy

•

0 likes•99 views

Nur Shiqim Chok

Cisco Connect 2018 - Vietnam

Technology

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Brian Cotaz
Consulting Systems Engineer
bcotaz@cisco.com
Cybersecurity Strategy:
An Integrated Approach

Cryptolocker Ransomware: $30 Million in Ransom

Cryptolocker and Operation Tovar: June 2,2014

Toilet
Urinal
Stall
Door
The checklist mentality

Time
ResponseDetectionThreat
Is my security posture effective?

UTM
Network
Analytics
Advanced Malware
Secure Internet Gateway
WebW W W
Policy and Access
Email
NGFW/ NGIPS
Cloud Access Security
Best of Breed Portfolio

1.6M19.7BDaily Security Intelligence
Daily Threats Blocked
Deployed Security Devices
Daily Malware
Sandbox Reports
120TB
Security
Intelligence
1.6M
Deployed
Devices
19.7B
Threats
Blocked
150,000
Micro-
applications
1,000
Applications
93B
Daily Email
Messages
35%
Enterprise
Email
13B
Web
Requests
150M
Deployed
Endpoints
3-5
min
Updates
Cisco Security Intelligence
Global Visibility
Global Footprint
5B
Daily Email
Connections
4.5B
Daily Email
Blocks
14M
Deployed
Access
Gateway
75,000
FireAMP
Updates
6,000
New Clam
AV Sigs
1.1M
Sandbox
Reports
World Class Threat Intelligence

Network
ISR/ASR
Advanced
Malware
Umbrella
Web
W W W
ISE
Email
NGFW/
NGIPS
Threat Grid
Stealthwatch
Event
Threat Intel
Policy
Context
Meraki
Cloudlock
Integrated Architecture

Rapid Threat Containment (RTC)
With Firepower Management Center (FMC) and ISE
Initial compromise Detection
Protect critical data, by stopping attacks faster, based on real-time threat intelligence
Internet
Enterprise
Network
Monetize theft
Time To Detection (TTD): 100-200 days - http://bit.ly/cisco-asr-2016Problem
Infection spread
Data hoarding
Data exfiltration
100 – 200 days Initial compromise Containment
Internet
Solution
PxGrid
Enterprise
Network
Sensor
- AMP/
- NGIPS/
- ASA
(wFirePOWER)
EPS: Quarantine
(over PxGrid)
COA
Minutes
FMC
ISE
TrustSec
segmentation
Rapid Threat Containment

28
Backup Slide: Umbrella and Threatgrid Integration
C&C
File
Hash

29
Backup Slide: Umbrella and Threatgrid Integration
File
Analysis
Report

Summary
• Threats has become more
sophisticated
• We cannot solve this problem using
point product approach
• It will only increase complexity
• Cisco Security Approach
• Best of Breed Portfolio
• Integrated Architecture

[Cisco Connect 2018 - Vietnam] Brian cotaz cyber security strategy

Gain in-depth information on the massive WannaCry ransomware attack On Friday, May 12, the WannaCry ransomware variant swept the globe. In a short period of time, WannaCry (also known as Wanna Decryptor and WannaCryptor) infected over 230,000 systems in 150 countries. It was a particularly effective piece of malware because it not only encrypted data and held it for ransom, but it also spread like wildfire to other systems. Entire organizations found themselves looking at a ransom note on their screens and wondering what to do next. As the situation continues to unfold, please join us as Adam Myers, VP of Threat Intelligence at CrowdStrike, presents an in-depth look at the WannaCry ransomware. Register for this webcast to learn: -A complete technical understanding of the WannaCry threat -What analysts were seeing on the day of the WannaCry outbreak -How to prevent WannaCry infections and protect against ransomware going forward

Cynet

YanivTaieb

Palestra Filipi Pires - Ransomware – Existe proteção para isso?

BHack Conference

WannaCry ransomware outbreak - what you need to know

Symantec Security Response

The WannaCry ransomware outbreak shook the world when it occured in May 2017. This slidedeck looks at the attack, how it was carried out, and its success rate. It also attempts to figure out who was likely to have been behind this devastating cyber attack. For more information on this outbreak, take a look at these additional resources: What you need to know about the WannaCry Ransomware: https://www.symantec.com/connect/blogs/wannacry-3 WannaCry: Ransomware attacks show strong links to Lazarus group: https://www.symantec.com/connect/blogs/wannacry-ransomware-attacks-show-strong-links-lazarus-group Can files locked by WannaCry be decrypted: A technical analysis: https://medium.com/threat-intel/wannacry-ransomware-decryption-821c7e3f0a2b

Ransomware continues to be a major threat. This slidedeck looks at the first six months of 2017, examines why enterprises are being increasingly impacted by ransomware, and reviews the effect of high-profile incidents such as WannaCry and Petya. For more on this area, read Symantec Security Response's blog and whitepaper: https://www.symantec.com/connect/blogs/businesses-most-risk-new-breed-ransomware

Dragonfly: Western energy sector targeted by sophisticated attack group

Symantec Security Response

Symantec found evidence linking a recent campaign of cyber attacks on the energy sector in Europe and the U.S. to a group called Dragonfly, which was first seen in 2011. This "Dragonfly 2.0" campaign appears to have begun in 2015, with an increase in activity seen since the beginning of 2017. Read more about this group in Symantec Security Response's blogs: https://www.symantec.com/connect/blogs/dragonfly-western-energy-sector-targeted-sophisticated-attack-group Dragonfly 1.0: https://www.symantec.com/connect/blogs/dragonfly-western-energy-companies-under-sabotage-threat-energetic-bear

Shamoon attacks - Destructive malware targeting Middle East organizations

Symantec Security Response

How to protect your business from Wannacry Ransomware

Kaspersky

Kaspersky Lab is teaming up with Comae Technologies to present an emergency webinar for businesses to help them understand and defend against the WannaCry ransomware. The malware has primarily affected business networks, and has claimed victims around the world in a wide range of industries. Juan Andres Guerrero-Saade, senior security researcher in Kaspersky Lab’s Global Research and Analysis Team, will be joined by Matt Suiche from Comae Technologies to present the very latest information on how the ransomware breaches defenses and the subsequent stages of attack. They will independently explain how organizations can determine if they have been infected and the critical actions they need to take to secure networks and endpoints against this threat. Full blog: https://blog.kaspersky.com/wannacry-windows-update/16593/

WannaCry ransomware attack

Abdelhakim Salama

Threat landscape update: June to September 2017

Symantec Security Response

Umbrella roaming-customer-facing

Ricardo Mendizabal

The Next Generation Security

Cybera Inc.

Cyber Security Extortion: Defending Against Digital Shakedowns

CrowdStrike

Real world lessons from CrowdStrike Services experts investigating complex cyber extortion attacks The criminal act of theft is as old as civilization itself, but in the cyber realm new ways to steal your organization's data or profit by holding it hostage, continue to evolve. With each advancement in security technology, adversaries work tirelessly on new techniques to bypass your defenses. This webcast, "Cyber Extortion: Digital Shakedowns and How to Stop Them" examines the evolution of cyber extortion techniques, including the latest "datanapping" exploits. Whether it's an attack on a major movie studio, a massive healthcare system, or a global entertainment platform, recent extortion attempts demonstrate how critical it is to understand today's threat landscape so you can ensure that your organization mounts the best defense possible. Download this presentation to learn what security experts from the cyber defense frontlines are discussing. Learn about: •The range of extortion techniques being used today, including commonalities and differences in approaches •Commodity type ransomware/datanapping vs. hands-on attacks — how are they alike and what are their differences? •Potential outcomes of paying vs. not paying when attempting to recover data after an attack •Real world examples of successful attacks and those that were thwarted or mitigated •Strategies for keeping your organization from being targeted and what to do if you become the victim of a cyber shakedown

Research: From zero to phishing in 60 seconds

Imperva

Here are the highlights of our research on do-it-yourself kits for phishing attacks, allowing attackers to quickly and elegantly mount a phishing campaign. These slides present examples of phishing kits, reviews their main capabilities, and shows a statistical and clustering analysis of our collection of phishing kits. The main goal of our research is to shed light on the dynamics of phishing and the distribution of phishing kits in the underground community

The Internet is on fire – don't just stand there, grab a bucket!

Frode Hommedal

NTXISSACSC4 - A Brief History of Cryptographic Failures

North Texas Chapter of the ISSA

A Brief History of Cryptographic Failures Cryptography is hard. It's not hard in the way a challenging video game is, or hard like getting through War and Peace without falling asleep, or even hard like learning a new skill. Cryptography is hard because it's both a system and a technical implementation, and failures in either part can have catastrophic (and sometimes existential) impacts. In this talk we'll take a look at some of the many ways that cryptographic systems have failed over the years, from accidental design flaws like the Data Encryption Standard (DES) defeat so elegantly demonstrated by the Electronic Frontier Foundation to intentional design flaws such as the reported National Security Agency (NSA) backdoor in the Dual Elliptic Curve (EC) Deterministic Random Bit Generator (DRBG). This talk will be a high-level discussion... no PhD in mathematics is required! Brian Mork is the Chief Information Security Officer for Celanese, where he acts as a senior level executive reporting to the Chief Information Officer (CIO) and leading the strategy and operations of Information and Systems Security. His areas of responsibility include the Security Operations Center (SOC), SAP security, global security architecture, Industrial Control Systems (ICS) security architecture and governance, and the firewalls. He is responsible for establishing and maintaining an enterprise wide information security program to ensure that data information assets are adequately protected. Responsible for identifying, evaluating and reporting on information security risks in a manner that meets company needs, compliance and regulatory requirements. Mr. Mork oversees all technology risk management activities and acts as an advocate for all information security and business continuance best practices.

CrowdCast Monthly: Operationalizing Intelligence

CrowdStrike

In today’s threat environment, adversaries are constantly profiling and attacking your corporate infrastructure to access and collect your intellectual property, proprietary data, and trade secrets. Now, more than ever, Threat Intelligence is increasingly important for organizations who want to proactively defend against advanced threat actors. While many organizations today are collecting massive amount of threat intelligence, are they able to translate the information into an effective defense strategy? View the slides now to learn about threat intelligence for operational purposes, including real-world demonstrations of how to consume intelligence and integrate it with existing security infrastructure. Learn how to prioritize response by differentiating between commodity and targeted attacks and develop a defense that responds to specific methods used by advanced attackers.

Cloud-Enabled: The Future of Endpoint Security

CrowdStrike

As the cost and complexity of deploying and maintaining on-premises security continues to rise, many endpoint security providers have embraced the cloud as the ideal way to deliver their solutions. Yet, incorporating cloud services into legacy architectures limits their ability to fully engage the tremendous power the cloud offers. CrowdStrike Falcon recognized the value of cloud-delivery from the beginning, developing architecture built from the ground up to take full advantage of the cloud. CrowdStrike’s cloud-powered endpoint security not only ensures rapid deployment and infinite scalability, it increases your security posture by enabling real-time advanced threat protection across even the largest, distributed enterprises. In this CrowdCast, Jackie Castelli, Sr. Product Manager will discuss: •The advantages of endpoint protection purpose-built for the cloud – why it allows you to take full advantage of the cloud’s power •The common concerns organizations face when evaluating cloud-based endpoint security - can privacy and control be assured? •Real-world examples demonstrating the unique advantages offered by CrowdStrike Falcon’s innovative cloud-powered platform

Hacking Closed Networks

Priyanka Aash

When the USS John McCain collided with a freighter, there was speculation that the ship was hacked, but officials quickly stated it was impossible because the ship’s network was closed. That is not true. Stuxnet is one of many examples where attackers breached closed networks. This presentation will cover many ways closed networks can be compromised with examples, and how to prevent such attacks. Learning Objectives: 1: Overcome the myth that closed networks can’t be hacked. 2: Identify vulnerabilities allowing access to closed networks. 3: Learn how to counter the vulnerabilities allowing compromise of closed networks. (Source: RSA Conference USA 2018)

BGA Eğitim Kataloğu

Asım Önder Kabataş

BAIT1103 Chapter 5limsh

Mobile Security Assessment

Sylvain Martinez

Behind the Curtain: Exposing Advanced Threats

Cisco Canada

Today's advanced threats hide in plain sight, patiently waiting to strike, challenging security teams to track their progress across their network and endpoints. Meanwhile, executive and board-level reporting requirements are increasing as leadership demands in-depth answers that are unavailable from today’s block/allow security tools. With 55% of organizations unable to identify the origin of their last security breach, it’s time to stop relying on tools that define security based on what they see ‘out there’ and instead hunt for threats by tracking files, file relationships, and both endpoint and network behavior ‘in here’—inside your environment. In the first part of this interactive session, learn how Cisco’s Advanced Malware Protection (AMP) solutions use big data analytics to compare a real-time, dynamic history of your environment to the global threat landscape, automatically uncovering and blocking advanced threats before they strike. Then watch workflow examples demonstrating how your security team can use this advanced visibility and control to dramatically improve their efficiency and finally deliver the business 100% confidence answers.

SOPHOS presentation used during the SWITCHPOINT NV/SA Quarterly Experience Da...

SWITCHPOINT NV/SA

What's hot

Hack In The Box (Dubai) 04172008guesta84549

NTXISSACSC3 - Managing Cyber Security Across the Enterprise by Asif Effendi

North Texas Chapter of the ISSA

Ransomware 2017: New threats emerge

Symantec Security Response

Dragonfly: Western energy sector targeted by sophisticated attack group

Symantec Security Response

Shamoon attacks - Destructive malware targeting Middle East organizations

Symantec Security Response

How to protect your business from Wannacry Ransomware

Kaspersky

WannaCry ransomware attack

Abdelhakim Salama

Threat landscape update: June to September 2017

Symantec Security Response

Umbrella roaming-customer-facing

Ricardo Mendizabal

The Next Generation Security

Cybera Inc.

Cyber Security Extortion: Defending Against Digital Shakedowns

CrowdStrike

Research: From zero to phishing in 60 seconds

Imperva

The Internet is on fire – don't just stand there, grab a bucket!

Frode Hommedal

NTXISSACSC4 - A Brief History of Cryptographic Failures

North Texas Chapter of the ISSA

CrowdCast Monthly: Operationalizing Intelligence

CrowdStrike

Cloud-Enabled: The Future of Endpoint Security

CrowdStrike

Hacking Closed Networks

Priyanka Aash

BGA Eğitim Kataloğu

Asım Önder Kabataş

BAIT1103 Chapter 5limsh

Mobile Security Assessment

Sylvain Martinez

What's hot (20)

Hack In The Box (Dubai) 04172008

NTXISSACSC3 - Managing Cyber Security Across the Enterprise by Asif Effendi

Ransomware 2017: New threats emerge

Dragonfly: Western energy sector targeted by sophisticated attack group

Shamoon attacks - Destructive malware targeting Middle East organizations

How to protect your business from Wannacry Ransomware

WannaCry ransomware attack

Threat landscape update: June to September 2017

Umbrella roaming-customer-facing

The Next Generation Security

Cyber Security Extortion: Defending Against Digital Shakedowns

Research: From zero to phishing in 60 seconds

The Internet is on fire – don't just stand there, grab a bucket!

NTXISSACSC4 - A Brief History of Cryptographic Failures

CrowdCast Monthly: Operationalizing Intelligence

Cloud-Enabled: The Future of Endpoint Security

Hacking Closed Networks

BGA Eğitim Kataloğu

BAIT1103 Chapter 5

Mobile Security Assessment

Similar to [Cisco Connect 2018 - Vietnam] Brian cotaz cyber security strategy

Behind the Curtain: Exposing Advanced Threats

Cisco Canada

SOPHOS presentation used during the SWITCHPOINT NV/SA Quarterly Experience Da...

SWITCHPOINT NV/SA

Jd sherry howard a. schmidt cyber crime, cyberspy, cyberwar - taking the le...Graeme Wood

Symantec_2-4-5 nov 2010Agora Group

Security Challenges and Innovative Solutions for Securing a Complex World

InfotecsGmbH

Extending Network Visibility: Down to the Endpoint

Lancope, Inc.

In today’s world of constantly evolving security threats and attack vectors, organizations need to be vigilant about monitoring their network infrastructure. The network perimeter and security infrastructure is often challenged with the adoption of mobile devices, cloud, and BYOD policies. The need for visibility into endpoint activity has become more important than ever. Join Josh Applebaum (Ziften), Matthew Frederickson, (Council Rock School District) and Peter Johnson (Lancope) for a complimentary webinar to learn how you can achieve real-time network visibility and intelligence for improved incident response. Discover how you can: - Achieve additional visibility and context to network activity - Enhance your existing security investments (NetFlow, Firewall, SIEM, threat intelligence) - Improve incident response by obtaining real-time and historical endpoint data

Defending the Endpoint with Next-Gen Security

Sophos Benelux

Cisco Connect Toronto 2017 - Anatomy-of-attack

Cisco Canada

EverSec + Cyphort: Big Trends in Cybersecurity

Cyphort

Advanced threats are changing so often it is getting harder and harder to keep up! In addition to new attacks, hackers are reinventing older ones, making it even more difficult to detect. In this webinar, we will discuss at a high-level some of biggest cybersecurity threats happening right now, including: --The Resurgence of Ransomware - Locky and other new cryptolockers --Malvertising, oh My! - No website is safe from unknowingly spreading malware to visitors --I have RATs - How to defend against Remote Access Trojans stealing your data

Cisco Connect Vancouver 2017 - Anatomy of Attack

Cisco Canada

Irdeto Spokesman Yuan Xiang Gu Speaks At ISI SSP Beijing 2011

EASTWEST Public Relations

End Your Security Nightmares with ePlus and Cisco

ePlus

Malware evolution and Endpoint Detection and Response

Adrian Guthrie

As malware evolves into targeted Advance Persistent Threat the response has to change to more proactive security model. Automated Prevention Block malware and exploits to prevent Automated Detection -Targeted and zero-day attack are block in real time Automated Forensics - Forensic information for in-dept analysis of every attempted attack Automated Remediation - Automated malware removal all made possible by Big Data analytics and Collective Intelligence .

Malware evolution and Endpoint Detection and Response Technology

Adrian Guthrie

As Malware evolves into targeted Advance Persistent Threat the response has to be layered, proactive response, and highly visible Automated Prevention- Block Malware and exploits prevent future attacks Automated Detection- Targeted and Zero-day attacks are block in real time without signature files. Automated Forensic- Forensic information for in-dept analysis of every attempted attack Automated remediation- Automated malware removal to reduce burden on administrator. All made possible by big data analytic and collective intelligence

Case Study.pdf

DamaineFranklinMScBE

The possibilities provided by the internet in this day and times is almost limitless, fueled by presence of global networks and larger operations being performed on a daily basis coupled with people around the world who enjoy these benefits. However, the internet space is not used for peaceful reasons as it should be assumed. The growing development in technologies and substantive upgrade of programming systems has led to frequent cases of attacks by threat actors, becoming a real problem for large companies. Hence, therefore, one of the most famous cases in relation to hacking in the world was the hacking of important information on the eBay database, an online shopping store. The case study will focus on this attack. 3

Staying Ahead of Internet Background Exploitation - Microsoft BlueHat Israel ...

Andrew Morris

It’s not just you. The frequency of severe vulnerabilities in internet-facing enterprise software being massively exploited at scale has increased drastically. The amount of time between disclosure and exploitation of these vulnerabilities has been reduced to near-zero, leaving defenders with less time to react and respond. While combating internet-wide opportunistic exploitation is a sprawling and complex problem, there is both an art and a science to staying ahead of large exploitation events such as Log4J. In this talk we will share insights and challenges from operating a huge, shifting, adaptive, distributed sensor network listening to internet background noise and opportunistic exploitation traffic over the past four years. We will give a blunt state of the universe on mass exploitation. We will share patterns and unexplainable phenomena we’ve experienced across billions of internet scans. And we will make recommendations to defenders for preparing for the next time the cyber hits the fan.

TrendMicro - Security Designed for the Software-Defined Data Center

VMUG IT

festival ICT 2013: L’evoluzione della sicurezza verso la nuova era della Smar...festival ICT 2016

Webinar: Why evasive zero day attacks are killing traditional sandboxing

Cyren, Inc

Netwatcher Credit Union Tech Talk

NetWatcher

Similar to [Cisco Connect 2018 - Vietnam] Brian cotaz cyber security strategy (20)

Behind the Curtain: Exposing Advanced Threats

SOPHOS presentation used during the SWITCHPOINT NV/SA Quarterly Experience Da...

Jd sherry howard a. schmidt cyber crime, cyberspy, cyberwar - taking the le...

Symantec_2-4-5 nov 2010

Security Challenges and Innovative Solutions for Securing a Complex World

Extending Network Visibility: Down to the Endpoint

Defending the Endpoint with Next-Gen Security

Cisco Connect Toronto 2017 - Anatomy-of-attack

EverSec + Cyphort: Big Trends in Cybersecurity

Cisco Connect Vancouver 2017 - Anatomy of Attack

Irdeto Spokesman Yuan Xiang Gu Speaks At ISI SSP Beijing 2011

End Your Security Nightmares with ePlus and Cisco

Malware evolution and Endpoint Detection and Response

Malware evolution and Endpoint Detection and Response Technology

Case Study.pdf

Staying Ahead of Internet Background Exploitation - Microsoft BlueHat Israel ...

TrendMicro - Security Designed for the Software-Defined Data Center

festival ICT 2013: L’evoluzione della sicurezza verso la nuova era della Smar...

Webinar: Why evasive zero day attacks are killing traditional sandboxing

Netwatcher Credit Union Tech Talk

Recently uploaded

Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024

Tobias Schneck

As AI technology is pushing into IT I was wondering myself, as an “infrastructure container kubernetes guy”, how get this fancy AI technology get managed from an infrastructure operational view? Is it possible to apply our lovely cloud native principals as well? What benefit’s both technologies could bring to each other? Let me take this questions and provide you a short journey through existing deployment models and use cases for AI software. On practical examples, we discuss what cloud/on-premise strategy we may need for applying it to our own infrastructure to get it to work from an enterprise perspective. I want to give an overview about infrastructure requirements and technologies, what could be beneficial or limiting your AI use cases in an enterprise environment. An interactive Demo will give you some insides, what approaches I got already working for real.

LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...

DanBrown980551

Do you want to learn how to model and simulate an electrical network from scratch in under an hour? Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)! During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook. PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides: - A fully editable and extendable library for grid component modelling; - Visualization tools to display your network; - Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses; The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well. What you will learn during the webinar: - For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills; - For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.

GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...

James Anderson

Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management. The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM). Speakers: Bob Boule Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle. Gopinath Rebala Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.

Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf

91mobiles

State of ICS and IoT Cyber Threat Landscape Report 2024 preview

Prayukth K V

The IoT and OT threat landscape report has been prepared by the Threat Research Team at Sectrio using data from Sectrio, cyber threat intelligence farming facilities spread across over 85 cities around the world. In addition, Sectrio also runs AI-based advanced threat and payload engagement facilities that serve as sinks to attract and engage sophisticated threat actors, and newer malware including new variants and latent threats that are at an earlier stage of development. The latest edition of the OT/ICS and IoT security Threat Landscape Report 2024 also covers: State of global ICS asset and network exposure Sectoral targets and attacks as well as the cost of ransom Global APT activity, AI usage, actor and tactic profiles, and implications Rise in volumes of AI-powered cyberattacks Major cyber events in 2024 Malware and malicious payload trends Cyberattack types and targets Vulnerability exploit attempts on CVEs Attacks on counties – USA Expansion of bot farms – how, where, and why In-depth analysis of the cyber threat landscape across North America, South America, Europe, APAC, and the Middle East Why are attacks on smart factories rising? Cyber risk predictions Axis of attacks – Europe Systemic attacks in the Middle East Download the full report from here: https://sectrio.com/resources/ot-threat-landscape-reports/sectrio-releases-ot-ics-and-iot-security-threat-landscape-report-2024/

Connector Corner: Automate dynamic content and events by pushing a button

DianaGray10

Here is something new! In our next Connector Corner webinar, we will demonstrate how you can use a single workflow to: Create a campaign using Mailchimp with merge tags/fields Send an interactive Slack channel message (using buttons) Have the message received by managers and peers along with a test email for review But there’s more: In a second workflow supporting the same use case, you’ll see: Your campaign sent to target colleagues for approval If the “Approve” button is clicked, a Jira/Zendesk ticket is created for the marketing design team But—if the “Reject” button is pushed, colleagues will be alerted via Slack message Join us to learn more about this new, human-in-the-loop capability, brought to you by Integration Service connectors. And... Speakers: Akshay Agnihotri, Product Manager Charlie Greenberg, Host

Leading Change strategies and insights for effective change management pdf 1.pdf

OnBoard

When stars align: studies in data quality, knowledge graphs, and machine lear...

Elena Simperl

FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf

FIDO Alliance

UiPath Test Automation using UiPath Test Suite series, part 4

DianaGray10

Welcome to UiPath Test Automation using UiPath Test Suite series part 4. In this session, we will cover Test Manager overview along with SAP heatmap. The UiPath Test Manager overview with SAP heatmap webinar offers a concise yet comprehensive exploration of the role of a Test Manager within SAP environments, coupled with the utilization of heatmaps for effective testing strategies. Participants will gain insights into the responsibilities, challenges, and best practices associated with test management in SAP projects. Additionally, the webinar delves into the significance of heatmaps as a visual aid for identifying testing priorities, areas of risk, and resource allocation within SAP landscapes. Through this session, attendees can expect to enhance their understanding of test management principles while learning practical approaches to optimize testing processes in SAP environments using heatmap visualization techniques What will you get from this session? 1. Insights into SAP testing best practices 2. Heatmap utilization for testing 3. Optimization of testing processes 4. Demo Topics covered: Execution from the test manager Orchestrator execution result Defect reporting SAP heatmap example with demo Speaker: Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP

Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...

Ramesh Iyer

In today's fast-changing business world, Companies that adapt and embrace new ideas often need help to keep up with the competition. However, fostering a culture of innovation takes much work. It takes vision, leadership and willingness to take risks in the right proportion. Sachin Dev Duggal, co-founder of Builder.ai, has perfected the art of this balance, creating a company culture where creativity and growth are nurtured at each stage.

Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered Quality

Inflectra

In this insightful webinar, Inflectra explores how artificial intelligence (AI) is transforming software development and testing. Discover how AI-powered tools are revolutionizing every stage of the software development lifecycle (SDLC), from design and prototyping to testing, deployment, and monitoring. Learn about: • The Future of Testing: How AI is shifting testing towards verification, analysis, and higher-level skills, while reducing repetitive tasks. • Test Automation: How AI-powered test case generation, optimization, and self-healing tests are making testing more efficient and effective. • Visual Testing: Explore the emerging capabilities of AI in visual testing and how it's set to revolutionize UI verification. • Inflectra's AI Solutions: See demonstrations of Inflectra's cutting-edge AI tools like the ChatGPT plugin and Azure Open AI platform, designed to streamline your testing process. Whether you're a developer, tester, or QA professional, this webinar will give you valuable insights into how AI is shaping the future of software delivery.

Epistemic Interaction - tuning interfaces to provide information for AI support

Alan Dix

Paper presented at SYNERGY workshop at AVI 2024, Genoa, Italy. 3rd June 2024 https://alandix.com/academic/papers/synergy2024-epistemic/ As machine learning integrates deeper into human-computer interactions, the concept of epistemic interaction emerges, aiming to refine these interactions to enhance system adaptability. This approach encourages minor, intentional adjustments in user behaviour to enrich the data available for system learning. This paper introduces epistemic interaction within the context of human-system communication, illustrating how deliberate interaction design can improve system understanding and adaptation. Through concrete examples, we demonstrate the potential of epistemic interaction to significantly advance human-computer interaction by leveraging intuitive human communication strategies to inform system design and functionality, offering a novel pathway for enriching user-system engagements.

Transcript: Selling digital books in 2024: Insights from industry leaders - T...

BookNet Canada

The publishing industry has been selling digital audiobooks and ebooks for over a decade and has found its groove. What’s changed? What has stayed the same? Where do we go from here? Join a group of leading sales peers from across the industry for a conversation about the lessons learned since the popularization of digital books, best practices, digital book supply chain management, and more. Link to video recording: https://bnctechforum.ca/sessions/selling-digital-books-in-2024-insights-from-industry-leaders/ Presented by BookNet Canada on May 28, 2024, with support from the Department of Canadian Heritage.

Generating a custom Ruby SDK for your web service or Rails API using Smithy

g2nightmarescribd

Have you ever wanted a Ruby client API to communicate with your web service? Smithy is a protocol-agnostic language for defining services and SDKs. Smithy Ruby is an implementation of Smithy that generates a Ruby SDK using a Smithy model. In this talk, we will explore Smithy and Smithy Ruby to learn how to generate custom feature-rich SDKs that can communicate with any web service, such as a Rails JSON API.

Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...

Product School

DevOps and Testing slides at DASA Connect

Kari Kakkonen

JMeter webinar - integration with InfluxDB and Grafana

RTTS

Watch this recorded webinar about real-time monitoring of application performance. See how to integrate Apache JMeter, the open-source leader in performance testing, with InfluxDB, the open-source time-series database, and Grafana, the open-source analytics and visualization application. In this webinar, we will review the benefits of leveraging InfluxDB and Grafana when executing load tests and demonstrate how these tools are used to visualize performance metrics. Length: 30 minutes Session Overview ------------------------------------------- During this webinar, we will cover the following topics while demonstrating the integrations of JMeter, InfluxDB and Grafana: - What out-of-the-box solutions are available for real-time monitoring JMeter tests? - What are the benefits of integrating InfluxDB and Grafana into the load testing stack? - Which features are provided by Grafana? - Demonstration of InfluxDB and Grafana using a practice web application To view the webinar recording, go to: https://www.rttsweb.com/jmeter-integration-webinar

Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...

UiPathCommunity

💥 Speed, accuracy, and scaling – discover the superpowers of GenAI in action with UiPath Document Understanding and Communications Mining™: See how to accelerate model training and optimize model performance with active learning Learn about the latest enhancements to out-of-the-box document processing – with little to no training required Get an exclusive demo of the new family of UiPath LLMs – GenAI models specialized for processing different types of documents and messages This is a hands-on session specifically designed for automation developers and AI enthusiasts seeking to enhance their knowledge in leveraging the latest intelligent document processing capabilities offered by UiPath. Speakers: 👨‍🏫 Andras Palfi, Senior Product Manager, UiPath 👩‍🏫 Lenka Dulovicova, Product Program Manager, UiPath

Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...

Jeffrey Haguewood

Sidekick Solutions uses Bonterra Impact Management (fka Social Solutions Apricot) and automation solutions to integrate data for business workflows. We believe integration and automation are essential to user experience and the promise of efficient work through technology. Automation is the critical ingredient to realizing that full vision. We develop integration products and services for Bonterra Case Management software to support the deployment of automations for a variety of use cases. This video focuses on the notifications, alerts, and approval requests using Slack for Bonterra Impact Management. The solutions covered in this webinar can also be deployed for Microsoft Teams. Interested in deploying notification automations for Bonterra Impact Management? Contact us at sales@sidekicksolutionsllc.com to discuss next steps.

Recently uploaded (20)

Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024

LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...

GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...

Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf

State of ICS and IoT Cyber Threat Landscape Report 2024 preview

Connector Corner: Automate dynamic content and events by pushing a button

Leading Change strategies and insights for effective change management pdf 1.pdf

When stars align: studies in data quality, knowledge graphs, and machine lear...

FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf

UiPath Test Automation using UiPath Test Suite series, part 4

Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...

Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered Quality

Epistemic Interaction - tuning interfaces to provide information for AI support

Transcript: Selling digital books in 2024: Insights from industry leaders - T...

Generating a custom Ruby SDK for your web service or Rails API using Smithy

Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...

DevOps and Testing slides at DASA Connect

JMeter webinar - integration with InfluxDB and Grafana

Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...

Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...

[Cisco Connect 2018 - Vietnam] Brian cotaz cyber security strategy

4. Can anyone guess what year this is?

5. 12 gflops 142 gflops Deep Blue

6. Year 1986

7. 25 years later..

8. Cryptolocker Ransomware 2014

9. Cryptolocker Ransomware: $30 Million in Ransom

10. Cryptolocker and Operation Tovar: June 2,2014

11. After 3 days..

12. After 3 days..

13. After 1 month..

14. 1.5 Years later, now on version 4!

15. Even the best of the best gets hacked..

16. Toilet Urinal Stall Door The checklist mentality

17. Are we secure yet?

18. False sense of security

19.

20. Time ResponseDetectionThreat Is my security posture effective?

21. UTM Network Analytics Advanced Malware Secure Internet Gateway WebW W W Policy and Access Email NGFW/ NGIPS Cloud Access Security Best of Breed Portfolio

22. 1.6M19.7BDaily Security Intelligence Daily Threats Blocked Deployed Security Devices Daily Malware Sandbox Reports 120TB Security Intelligence 1.6M Deployed Devices 19.7B Threats Blocked 150,000 Micro- applications 1,000 Applications 93B Daily Email Messages 35% Enterprise Email 13B Web Requests 150M Deployed Endpoints 3-5 min Updates Cisco Security Intelligence Global Visibility Global Footprint 5B Daily Email Connections 4.5B Daily Email Blocks 14M Deployed Access Gateway 75,000 FireAMP Updates 6,000 New Clam AV Sigs 1.1M Sandbox Reports World Class Threat Intelligence

23. Network ISR/ASR Advanced Malware Umbrella Web W W W ISE Email NGFW/ NGIPS Threat Grid Stealthwatch Event Threat Intel Policy Context Meraki Cloudlock Integrated Architecture

24. Network ISR/ASR Advanced Malware Umbrella Web W W W ISE Email NGFW/ NGIPS Threat Grid Stealthwatch Event Threat Intel Policy Context Meraki Cloudlock Integrated Architecture

25. Rapid Threat Containment (RTC) With Firepower Management Center (FMC) and ISE Initial compromise Detection Protect critical data, by stopping attacks faster, based on real-time threat intelligence Internet Enterprise Network Monetize theft Time To Detection (TTD): 100-200 days - http://bit.ly/cisco-asr-2016Problem Infection spread Data hoarding Data exfiltration 100 – 200 days Initial compromise Containment Internet Solution PxGrid Enterprise Network Sensor - AMP/ - NGIPS/ - ASA (wFirePOWER) EPS: Quarantine (over PxGrid) COA Minutes FMC ISE TrustSec segmentation Rapid Threat Containment

26. Network ISR/ASR Advanced Malware Umbrella Web W W W ISE Email NGFW/ NGIPS Threat Grid Stealthwatch Event Threat Intel Policy Context Meraki Cloudlock Integrated Architecture Detect the C&C Which File could it be coming from? And what does it do?

27. 27 Umbrella and Threatgrid Integration

28. 28 Backup Slide: Umbrella and Threatgrid Integration C&C File Hash

29. 29 Backup Slide: Umbrella and Threatgrid Integration File Analysis Report

30. Network ISR/ASR Advanced Malware Umbrella Web W W W ISE Email NGFW/ NGIPS Threat Grid Stealthwatch Event Threat Intel Policy Context Meraki Cloudlock Integrated Architecture Detect the C&C Who else is infected? Which File could it be coming from? And what does it do?

31. 31 AMP Visibility Interface

32. 32 Backup Slide: AMP Visibility

33. 33 Backup Slide: AMP Visibility

34. Summary • Threats has become more sophisticated • We cannot solve this problem using point product approach • It will only increase complexity • Cisco Security Approach • Best of Breed Portfolio • Integrated Architecture

[Cisco Connect 2018 - Vietnam] Brian cotaz cyber security strategy

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Similar to [Cisco Connect 2018 - Vietnam] Brian cotaz cyber security strategy

Similar to [Cisco Connect 2018 - Vietnam] Brian cotaz cyber security strategy (20)

More from Nur Shiqim Chok

More from Nur Shiqim Chok (20)

Recently uploaded

Recently uploaded (20)

[Cisco Connect 2018 - Vietnam] Brian cotaz cyber security strategy