Defending Your Corporate Endpoints How to Go Beyond Anti-Virus

•Download as PPTX, PDF•

0 likes•370 views

Businesses large and small continue to struggle with malware. Traditional approaches to malware protection, like standalone anti-virus, are proving themselves unfit for the task. Kevin Beaver, Independent Information Security Expert dives into: • How to get a better grasp of the weaknesses in endpoint security • Examining whether or not anti-virus is effective • A comparison between a proactive versus reactive approach to fighting the malware fight.

Defending Your Corporate Endpoints:
How to Go Beyond Anti-Virus

Presented by Kevin Beaver, CISSP
Independent Information Security Consultant,
Speaker, Author, & Expert Witness
Principle Logic, LLC
www.principlelogic.com
kbeaver@principlelogic.com
Copyright © 2013, Principle Logic, LLC - All Rights Reserved.

About Kevin
•Independent consultant
» 24 years experience in IT – 18 years in information security
» Focus on performing security assessments

•Expert witness
» Data breaches, security best practices/due diligence,
compliance and intellectual property cases

•Professional Speaker

•Author

• Creator/author of Security On Wheels audiobooks & blog
(securityonwheels.com)

About Chris
•Security Expert
» 30 years of engineering and marketing experience,
currently specializing in:
» Data Protection
» Whitelisting
» Endpoint Security

•At Lumension
» Director of Solution Marketing

•Blogger
» http://blog.lumension.com/author/chris-merritt

3
Copyright © 2008, Principle Logic, LLC, All Rights Reserved.

Why is it
we
cannot
achieve
what’s
truly
needed?

Is it the
complexity
of the threat
or the
complexity
of our own
systems?

Gaining Control

Know what Know how
Technical
you’ve got it’s at risk People/Process

Implement
policies/plans

Regulatory Enforce
Automation
Refine and
with repeat
technology

How You Can Learn More
•Kevin’s website: principlelogic.com/resources
•Kevin’s blog: securityonwheels.com/blog
•Kevin’s audio programs: securityonwheels.com

•Kevin’s books:

@kevinbeaver PrincipleLogic

www.linkedin.com/in/kevinbeaver

Defense-in-Depth Strategy
Successful risk mitigation
AV
starts with a solid vulnerability
Control the Bad management foundation,
augmented by additional
Device Control
Control the Flow layered defenses which go
beyond the traditional blacklist
HD and Media Encryption
approach.
Control the Data

Application Control
Control the Gray

Patch and Configuration Management
Control the Vulnerability Landscape

17

More Information
• Free Security Scanner Tools • Get a Quote (and more)
» Vulnerability Scanner – discover all OS and http://www.lumension.com/endpoint-
application vulnerabilities on your network management-security-suite/buy-now.aspx#2
» Application Scanner – discover all the apps
being used in your network
» Device Scanner – discover all the devices
being used in your network
http://www.lumension.com/Resources/
Security-Tools.aspx

• Lumension® Endpoint Management
and Security Suite
» Online Demo Video:
http://www.lumension.com/Resources/Demo-
Center/Vulnerability-Management.aspx
» Free Trial (virtual or download):
http://www.lumension.com/endpoint-
management-security-suite/free-trial.aspx

18

Defending Your Corporate Endpoints How to Go Beyond Anti-Virus

Do you know Flexential has an extensive, robust, highly mature Professional Security Consulting team with deep and varied bench strength? In this call, you’ll get a brief overview of their portfolio, a focused discussion on Ransomware, with a very specific Solution Flexential offers for this problem. Ransomware is going to continue to be a growing challenge, each of your Customers are struggling with it, and Flexential’s offers a short engagement to help Customers be properly prepared and not pay the Ransom! These engagements can lead to not only greater Security Opportunities, but also to Disaster Recovery, backup solution and strategy discussion, and ultimately great MRR for each of our Partners!

Webinar: Backup vs. Ransomware - 5 Requirements for Backup Success

Storage Switzerland

Ransomware is the universal threat. No matter an organization's data center location, or its size, it can be devastated by a ransomware attack. While most organizations focus on the periphery, they also need to be prepared for a breach, something that ransomware is particularly adept. In case of a breach, an advanced backup and disaster recovery solution can ensure safe and timely recovery of data without paying ransom. In this webinar join experts from Storage Switzerland and Micro Focus as they discuss the impact of ransomware and the core features of a backup solution that can mitigate the associated risks.

Safeguard your enterprise against ransomware

Quick Heal Technologies Ltd.

Endpoint Security Evasion

Invincea, Inc.

There have been many recent publications that focused on malware evasion techniques – specifically techniques that malware employs to avoid detection and tools that can be used to defeat this evasion. But what happens when malware doesn’t need to evade detection because it first disables the very tools you’re using to detect malware and evade detection? It sounds complicated but the threat is very real and extremely easy to accomplish.

Ransomware Has Evolved And So Should Your Company

Veriato

Ransomware is typically initiated via phishing or social engineering tactics, these attacks often take advantage of human error for the successful delivery of the malware. These criminal organizations are impartial to the size of your organization. They target any company with data, and if you don't pay the ransom, your information could be posted to a public forum or sold on the Dark Web for profit. Most companies unfortunately are forced to pay due to system failure and file corruption. The scariest about these methods is that the Ransomware doesn't need to be developed by the attackers. Ransomware services can now be purchased on the DarkWeb and used at the Cybercriminal's will (RAAS). As these Ransomware attacks and services evolve, how can companies arm themselves with the right solutions to defend themselves from these evergrowing attacks? Join us in our latest webinar with Dr. Christine Izuakor (cybersecurity expert) and Jay Godse (head of product dev at Veriato).

Make Every Spin Count: Putting the Security Odds in Your Favor

David Perkins

Cerdant’s Director of Engineering, Joshua Skeens, presented the best ‘bets’ to increase your security odds. Josh warned customers to stop gambling with their data, and cautioned against weak, guessable passwords stating, “Use 2-Factor Authentication everywhere!” The first step in creating the best security posture possible for your business will always be just getting started, and to keep momentum Josh suggests implementing 1 new security practice each week.

Cybersecurity

UmairFirdous

In this presentation, Peter Starceski discussed artificial intelligence and machine learning and how they have been applied to the cybersecurity industry. He highlighted how leveraging artificial intelligence and machine learning provides defenders with an advantage they have never possessed till now. Peter shared examples of how machine learning have proven successful at stopping zero days and preventing ransomware prior to any other legacy solution. He examined the shifting nature of the threat landscape and to how to move beyond signature-based threat detection to rely on a mathematical, algorithmic, and scientific approach to disarm a threat.

The Cost of Doing Nothing: A Ransomware Backup Story

Quest

Cerdant Security State of the Union

David Perkins

Tech Demo: Take the Ransom Out of Ransomware

marketingunitrends

Webinar: Ransomware Checklist – Are You Ready For Ransomware’s Next Wave?

Storage Switzerland

Believe it or not, it has been a year since WannaCry crippled organizations around the world, and since that time ransomware attacks have only accelerated. The ransomware "industry" is now a $5 billion market and is projected to grow to over $11 billion by 2019. Backup alone is not enough, ransomware is the new disaster, and it can impact any organization regardless of size or location. Are you ready for what is coming next? Attend our live webinar as experts from Storage Switzerland and Infrascale help you create a Ransomware Preparedness Checklist.

Cloud – Helps or Hurts Insider Threat?

ThinAir

How to Detect System Compromise & Data Exfiltration with AlienVault USM

AlienVault

More information on this webcast: http://ow.ly/IyNdF Have you ever wondered how the bad guys actually get control of a system? And, how they convert that system into a data-syphoning droid? Then you won't want to miss our next live demo, where AlienVault's security gurus Mark Allen & Garrett Gross will walk you through the steps of a system compromise, including how AlienVault USM detects these nefarious activities every step of the way. You'll learn: How attackers exploit vulnerabilities to take control of systems What they do next to find & exfiltrate valuable data How to catch them before the damage is done with AlienVault USM Using a real-world example of a common vulnerability, Mark will show you how USM gives you the evidence you need to stop an attack in its tracks.

HOW TO PREPARE FOR AND RESPOND TO A RANDSOMWARE ATTACK [Webinar]

Stanton Viaduc

With recent attacks on hospital data catching headlines, we wanted to provide some best practices in this webinar to keep your systems safe and sound! We will be co-presenting this webinar with our partners at Intellisuite IT Solutions. What you will learn: How-to use an Intranet to educate staff on IT security How-to Engage staff in pro-active thinking about IT and patient privacy with a social Intranet tools. How a proactive IT plan and an Intranet can help keep an organization safe from Ransomware Attacks How-to publish and ensure readership on HITECH, HIPPA and other IT policies across the entire hospital using a web based Policy Manager How an Intranet can alert staff of an attack and train staff on ways to prevent attacks How to leverage layered security to prevent ransomware attack Important elements of a layer security approach What to do if ransomware attack evades the initial layer Risks of vulnerable or unprotected system Organization’s recourse for getting back to production are restoring from backup or paying the ransom

Ransomware Detection: Don’t Pay Up. Backup.

marketingunitrends

Ransomware: Why Are Backup Vendors Trying To Scare You?

marketingunitrends

Ransomware. The very word strikes fear into the hearts of admins, backup specialists, and security pros. Backup software vendors know if all your data is not protected, there is a good chance that if (when?) ransomware hits, you will most likely lose data. But, what should scare you more is less than half of ransomware victims fully recover their data, even with backup. What can you do to make sure you are not on the wrong side of a statistic?

Is Antivirus (AV) Dead or Just Missing in Action

Quick Heal Technologies Ltd.

Security Essentials

Ashley Deuble

Jump Start Your Application Security Knowledge

Denim Group

How to Jump-Start Your Application Security Knowledge For the Network Security Guy Who Knows Nothing about Web Applications Most security officers are not software developers, and rarely do they have control over the security associated with internally developed software systems. However, CSO's are still frequently held accountable when externally-facing software is compromised and a breach occurs. Unless security professionals radically upgrade their knowledge of software and software development techniques, they will continue to inadequately manage the risk that custom software systems represents to the enterprise. Presented by John Dickson of Denim Group and Jeremiah Grossman of WhiteHat Security, this webinar will help non-development security managers understand the salient aspects of the software development process and to upgrade their IQ on software. It will help them to identify risks with different assessment approaches, how to inject themselves into the development process at key "waypoints," and to understand ways to influence development peers to write more secure code.

Content Analysis System and Advanced Threat Protection

Blue Coat

Michael jarmark internet security basics

MichaelJarmark_

Declaration of malWARe

Scott Sutherland

This presentation will take a high level look at the malware life cycle and the role that both hackers and IT professionals play in it. It should be interesting to IT professionals as well as individuals interested in learning more about the general approach used by hackers to gain unauthorized access to systems, applications, and sensitive data. More security blogs by the authors can be found @ https://www.netspi.com/blog/

New USM v5.0 - Get Complete Security Visibility Faster & Easier Than Ever

AlienVault

AlienVault Unified Security Management™ (USM) integrates SIEM/event correlation with built-in tools for intrusion detection, asset discovery, vulnerability assessment and behavioral monitoring to give you a unified, real-time view of threats in your environment. NEW v5.0 (available 4/20) makes it faster and easier than ever to get the insights you need, starting on Day 1. Join us for a live demo to see how new USM v5.0 makes it easier than ever to accomplish these key tasks: Discover all IP-enabled assets on your network Identify vulnerabilities like unpatched software or insecure configurations Detect network scans and malware like botnets, trojans & rootkits Speed incident response with built-in remediation guidance for every alert Generate accurate compliance reports for PCI DSS, HIPAA and more

Cambodia CERT Seminar: Incident response for ransomeware attacks

APNIC

Triangulum - Ransomware Evolved - Why your backups arent good enough

Martin Opsahl

Vulnerability Management V0.1TECHNOLOGY CONTROL CO.

Evolving State of the Endpoint Webinar

Lumension

BYOD & Mobile Security: How to Respond to the Security Risks

Lumension

Bring Your Own Device (BYOD) is a popular topic in 2013. Trying to understand the security risks and prepare strategies to either adopt, or decide against BYOD for security and data control reasons is the challenge. The 160,000 member Information Security Community on LinkedIn conducted the survey "BYOD & Mobile Security 2013" to shed some light on the drivers for BYOD, how companies will benefit from BYOD, and how they respond to the security risks associated with this trend. With 1,600 responses, some interesting insights and patterns into BYOD were uncovered.

What's hot

Thinking Differently About Security Protection and Prevention

David Perkins

The Cost of Doing Nothing: A Ransomware Backup Story

Quest

Cerdant Security State of the Union

David Perkins

Tech Demo: Take the Ransom Out of Ransomware

marketingunitrends

Webinar: Ransomware Checklist – Are You Ready For Ransomware’s Next Wave?

Storage Switzerland

Cloud – Helps or Hurts Insider Threat?

ThinAir

How to Detect System Compromise & Data Exfiltration with AlienVault USM

AlienVault

HOW TO PREPARE FOR AND RESPOND TO A RANDSOMWARE ATTACK [Webinar]

Stanton Viaduc

Ransomware Detection: Don’t Pay Up. Backup.

marketingunitrends

Ransomware: Why Are Backup Vendors Trying To Scare You?

marketingunitrends

Is Antivirus (AV) Dead or Just Missing in Action

Quick Heal Technologies Ltd.

Security Essentials

Ashley Deuble

Jump Start Your Application Security Knowledge

Denim Group

Content Analysis System and Advanced Threat Protection

Blue Coat

Michael jarmark internet security basics

MichaelJarmark_

Declaration of malWARe

Scott Sutherland

New USM v5.0 - Get Complete Security Visibility Faster & Easier Than Ever

AlienVault

Cambodia CERT Seminar: Incident response for ransomeware attacks

APNIC

Triangulum - Ransomware Evolved - Why your backups arent good enough

Martin Opsahl

Vulnerability Management V0.1TECHNOLOGY CONTROL CO.

What's hot (20)

Thinking Differently About Security Protection and Prevention

The Cost of Doing Nothing: A Ransomware Backup Story

Cerdant Security State of the Union

Tech Demo: Take the Ransom Out of Ransomware

Webinar: Ransomware Checklist – Are You Ready For Ransomware’s Next Wave?

Cloud – Helps or Hurts Insider Threat?

How to Detect System Compromise & Data Exfiltration with AlienVault USM

HOW TO PREPARE FOR AND RESPOND TO A RANDSOMWARE ATTACK [Webinar]

Ransomware Detection: Don’t Pay Up. Backup.

Ransomware: Why Are Backup Vendors Trying To Scare You?

Is Antivirus (AV) Dead or Just Missing in Action

Security Essentials

Jump Start Your Application Security Knowledge

Content Analysis System and Advanced Threat Protection

Michael jarmark internet security basics

Declaration of malWARe

New USM v5.0 - Get Complete Security Visibility Faster & Easier Than Ever

Cambodia CERT Seminar: Incident response for ransomeware attacks

Triangulum - Ransomware Evolved - Why your backups arent good enough

Vulnerability Management V0.1

Viewers also liked

Evolving State of the Endpoint Webinar

Lumension

BYOD & Mobile Security: How to Respond to the Security Risks

Lumension

Combating Threats with Workstation Configuration Management

Lumension

In this presentation, Randy Franklin Smith from Ultimate Windows Security, stands up for group policy as the “right” way to configure the bulk of workstation security settings. But for endpoint configuration management to be secure, efficient and compliant, group policy is only part of the answer. Randy will discuss the need for status visibility and reporting. In addition, there are many areas that group policy does not address; he will provide multiple examples of commands and configuration tweaks commonly required to secure endpoints for which there’s no corresponding settings within group policy.

Paul Henry’s 2011 Malware Trends

Lumension

Join security and forensics expert, Paul Henry, to learn about the latest malware trends and more importantly, practical steps you can take to better protect your organization from evolving threats. Learn: • How social media and removable devices have become new, targeted paths into your network • Why traditional defenses are not effective in the unending arms race with financially motivated “bad guys” • How to ensure an effective depth-in-defense security strategy that includes application whitelisting

Securing Your Infrastructure: Identity Management and Data ProtectionLumension

Creating Your Red Flags Rule Playbook

Lumension

Even with organizations tightening up data security measures, cybercriminals have become very sophisticated and continue to find ways to steal personal information and use it to open or access accounts. According to Javelin Strategies, incidences of identity theft grew by 11 percent from 2008 to 2009 altering the lives of 11 million Americans. If that pattern continues, one in every 20 Americans will be a victim of identity theft this year. The Red Flags Rule, which is enforceable as of June 1, 2010, and carries significant financial recourse for non-compliance, requires organizations across multiple industries to implement additional data security measures and be able to identify the danger signs of fraudulent activity. In this 30-minute webcast, you will learn key tips to developing your Red Flags Rule playbook to effectively: 1. Enhance your data security practices 2. Harmonize data security control requirements across other data protection regulations such as PCI DSS 3. Monitor controls that the Federal Trade Commission mandates 4. Respond to red flags as they are identified

Reorganizing Federal IT to Address Today's Threats

Lumension

New reports show U.S. government servers are faced with 1.8 billion cyber attacks every month. View this technical presentation on ‘Reorganizing Federal IT to Address Today’s Threats’ by Richard Stiennon, analyst with IT Harvest and author of Surviving Cyber War, and Paul Zimski, VP of Solution Strategy with Lumension, as they examine: *Today’s threats targeting government IT systems *How federal IT departments can be reorganized to improve security and operations *What key endpoint security capabilities should be implemented Get expert insight and recommendations on improving your approach to securing IT systems from today’s sophisticated threats.

The Shifting State of Endpoint Risk: Key Strategies to Implement in 2012

Lumension

Review this presentation as we reveal statistics from the 2012 State of the Endpoint survey, sponsored by Lumension® and conducted by Ponemon Institute. Find out about today's growing insecurity, IT's perceived areas of greatest risk for 2012, and the disconnect between risk and planned security strategies. In addition, we will examine the evolving IT risk environment and recommendations to more effectively and cost-efficiently secure your endpoints. * How organizations are creating a perfect storm for hackers * The Top 3 new threats to the workplace * Perceived risks and corresponding strategies to combat today's evolving endpoint environment Find out about our reliance on productivity tools, but how inadequate collaboration and resource restrictions for security are creating a perfect storm for hackers.

Endpoint Security Fundamentals Part 3: Building the Endpoint Security Program

Lumension

ProcibisPandji Bagaskara

People Announcement_APAC Operations CI 20160120RTN. PRABAGERAN THIGARAYAH

Updated Curriculum VitaeDileep Nakka

Busca fieras héctorescolacollserola2

Notorious evaluationEllieSwan

mohammed abd el badiea c.v2016v1mohamed badiea

Web Design & Development Courses in Pune |Web Development Classes in Pune | ...

abeda786

Viewers also liked (16)

Evolving State of the Endpoint Webinar

BYOD & Mobile Security: How to Respond to the Security Risks

Combating Threats with Workstation Configuration Management

Paul Henry’s 2011 Malware Trends

Securing Your Infrastructure: Identity Management and Data Protection

Creating Your Red Flags Rule Playbook

Reorganizing Federal IT to Address Today's Threats

The Shifting State of Endpoint Risk: Key Strategies to Implement in 2012

Endpoint Security Fundamentals Part 3: Building the Endpoint Security Program

Procibis

People Announcement_APAC Operations CI 20160120

Updated Curriculum Vitae

Busca fieras héctor

Notorious evaluation

mohammed abd el badiea c.v2016v1

Web Design & Development Courses in Pune |Web Development Classes in Pune | ...

Similar to Defending Your Corporate Endpoints How to Go Beyond Anti-Virus

How to Build and Validate Ransomware Attack Detections (Secure360)

Scott Sutherland

Ransomware is a strategy for adversaries to make money – a strategy that’s proven successful. During this presentation, we will cover how ransomware works, ransomware trends to watch, best practices for prevention, and more. At the core of the discussion, Scott will explain how to build detections for common tactics, techniques, and procedures (TTPs) used by ransomware families and how to validate they work, ongoing, as part of the larger security program. Participants will leave this webinar with actionable advice to ensure their organization is more resilient to ever-evolving ransomware attacks.

DSS ITSEC CONFERENCE - Lumension Security - Intelligent application whiteli...

Andris Soroka

Tech Throwdown: Secure Containerization vs Whitelisting

Invincea, Inc.

To address the inadequacy of traditional anti-virus solutions, white-listing and secure containerization approaches have both gained traction in the enterprise. Both approaches have the overarching goal of preventing a successful breach at the endpoint, but each works differently and also focus on different parts of the cyber kill chain. Invincea, a secure containerization solution, inoculates high-risk and Internet-facing applications against attack by running them in secure virtual containers, which have restricted access to the underlying host OS. This effectively removes the most common means of delivering the infection (see figure below). Any successful exploits of targeted applications (such as IE, Java, Flash, etc.), including by 0-day exploits, are kept safely in quarantine where additional forensic details may be uncovered. Whitelisting attempts to prevent infections by allowing only certain known executables to run. This means whitelisting solutions will not see initial exploits; rather, whitelisting focuses on the next step beyond the exploit where many attacks then attempt to launch 2<sup>nd</sup> stage (malicious) executables with additional goals such as privilege escalation, lateral movement, or data exfiltration. In other words, whitelisting solutions do not have visibility into exploits of existing programs and for memory-resident malware. In addition, whitelisting solutions that prevent unknown software from running will flag legitimate software (such as patches) that are not updated with the whitelist.

5 Steps to an Effective Vulnerability Management Program

Tripwire

Revelations about recent breaches have certainly put the question to security professionals across the world, “What can I do to prevent an attack from happening?” Current threats are complicated and driven by highly motivated adversaries. You can’t defend what you don’t know. This can be a big challenge when it comes to network visibility. Many organizations don’t have a true sense of all that is on their network. Network situational awareness represents the foundation of comprehensive vulnerability management. In this informative webcast, Tripwire and Lumeta provide insight on how to: -Identify and fingerprint more assets in your environment -Ensure greater coverage for scanning devices on your network, including BYOD -Compile a proper and complete inventory of assets, even those that are unused -Intelligently prioritize vulnerabilities -Effectively reduce risk on critical systems

Micro Focus SRG Solution Mapping to the New BDDK Regulations for Turkish Fina...

Emrah Alpa, CISSP CEH CCSK

Secure DevOPS Implementation Guidance

Tej Luthra

The Hacker Playbook: How to Think like a Cybercriminal to Reduce Risk

BeyondTrust

In this presentation from their joint webinar, security experts and trainers at CQURE, Greg Tworek and Mike Jankowski-Lorek, help you put on your hacker cap to better identify dangerous vulnerabilities, strengthen your systems, and STOP the data breaches that litter the news sites today. They will also demonstrate how to exploit systems and how (from the hacker perspective) this can be proactively mitigated. Catch the full on-demand webinar here: https://www.beyondtrust.com/resources/webinar/hackers-playbook-think-like-cybercriminal-reduce-risk/?access_code=de936e36f25bb91acaae7593959af3c1

Journey to the Cloud: Securing Your AWS Applications - April 2015

Alert Logic

James Brown, Director of Cloud Computing & Security Architecture, Alert Logic covers: • The shared security model: what security you are responsible for to protect your content, applications, systems and networks vs AWS. • Overview of the OWASP Top 10 most critical web application security risks (such as SQL injections) • Best practices for how to protect your environment from the latest threats

Protecting health and life science organizations from breaches and ransomware

Cloudera, Inc.

3 Things to Learn About:  * 1. Ransomware is a particular problem and currently the highest priority for healthcare organizations. Machine learning can use the structure of a malicious email to detect an attack even before the email is opened. * 2. Big data architectures provide the machine-learning models with the volume and variety of data required to achieve complete visibility across the spectrum of IT activity—from packets to logs to alerts.  * 3. Intel and industry partners are currently running one-hour, complimentary, confidential benchmark engagements for HLS organizations that want to see how their security compares with the industry .

Module 6.pptx

ssuser66c4d5

Information Security and the SDLC

BDPA Charlotte - Information Technology Thought Leaders

How To Secure MIS

AaDi Malik

Cybersecurity: An FBI perspective: how cyber criminals exploit the goodness o...

Ruth Edmonds

Automating Critical Security Controls for Threat Remediation and Compliance

Qualys

Trends like the increased use of cloud computing by businesses and their vendors introduce new complexities in reducing risk and assessing security across the supply chain. Demonstrating continuous risk reduction and compliance with internal policies and external regulations, fixing violations and configuration drift, centrally managing exceptions, and documenting progress are all common challenges. The Center for Internet Security’s (CIS) Critical Security Controls (CSCs) were selected and prioritized by leading security experts to stop today’s most common and serious cyber threats. By implementing these controls, organizations can improve their security posture and reduce the risk of threats to critical assets, data, and network infrastructure. In this webcast SANS Senior Analyst John Pescatore and Tim White, Director of Product Management for Qualys Policy Compliance (PC), discuss how you can achieve continuous security and compliance, and leverage Qualys solutions to address all 20 CSCs. The presentation encompasses: • An overview of the CIS Critical Security Controls, including ongoing updates • Success patterns organizations have demonstrated for using the controls to their advantage • How an automation can reduce the staffing load to determine whether controls are in place and effective • How to prioritize remediation efforts • Real-world examples of recent attacks that leveraged misconfigured systems Watch the on-demand webcast: https://goo.gl/j6Posx

2012-12-12 Seminar McAfee Risk Management

Pinewood

In de praktijk blijkt het vaak lastig te bepalen welke risico’s een organisatie loopt en wat daarvoor een passend beveiligingsniveau is. Deze kennis is echter wel noodzakelijk om de juiste maatregelen te nemen en effectief in informatiebeveiliging te investeren. Pinewood organiseerde op 12 december 2012 in samenwerking met McAfee een seminar die hierop inspeelde. Handige tools zoals Risk Management en McAfee Nitro (het SIEM product van McAfee) en de pragmatische aanpak van Pinewood bieden concrete handvatten en inzicht om tot een effectief informatiebeveiligingsbeleid te komen.

MID_SIEM_Boubker_EN

Vladyslav Radetsky

OSB180: Learn More About Ivanti Endpoint Security

Ivanti

Application Whitelisting - Complementing Threat centric with Trust centric se...

Osama Salah

Information Technology Security Basics

Mohan Jadhav

Two for Attack: Web and Email Content Protection

Cisco Canada

Similar to Defending Your Corporate Endpoints How to Go Beyond Anti-Virus (20)

How to Build and Validate Ransomware Attack Detections (Secure360)

DSS ITSEC CONFERENCE - Lumension Security - Intelligent application whiteli...

Tech Throwdown: Secure Containerization vs Whitelisting

5 Steps to an Effective Vulnerability Management Program

Micro Focus SRG Solution Mapping to the New BDDK Regulations for Turkish Fina...

Secure DevOPS Implementation Guidance

The Hacker Playbook: How to Think like a Cybercriminal to Reduce Risk

Journey to the Cloud: Securing Your AWS Applications - April 2015

Protecting health and life science organizations from breaches and ransomware

Module 6.pptx

Information Security and the SDLC

How To Secure MIS

Cybersecurity: An FBI perspective: how cyber criminals exploit the goodness o...

Automating Critical Security Controls for Threat Remediation and Compliance

2012-12-12 Seminar McAfee Risk Management

MID_SIEM_Boubker_EN

OSB180: Learn More About Ivanti Endpoint Security

Application Whitelisting - Complementing Threat centric with Trust centric se...

Information Technology Security Basics

Two for Attack: Web and Email Content Protection

More from Lumension

Using SCCM 2012 r2 to Patch Linux, UNIX and Macs

Lumension

Today, everything has to be patched. From desktop and laptop to server and every operating system in between. With compliance, what we have to pay attention to is what’s actually out there on our network – not just what you wish were there. Servers (Windows, UNIX and Linux)Even Windows-centric environments have at least a few UNIX or Linux servers that need to be secure and patched. Linux and UNIX servers often fulfill critical functions with few and short maintenance windows. These can be a real pain point for admins who specialize in Windows or are managed by an entirely different admin. Desktops (Windows and Macs)Maybe you are responsible for desktops instead of servers. Again it’s not just a Windows story any more. More and more people are opting for Macs instead of Windows. Watch the vulnerability lists and you’ll see that Macs need patching too. The kicker though is the 80/20 rule. If at least 80% of the computers on your network are Windows and the remaining 20% are everything else – it’s a safe bet, given the maturity and ease of WSUS, that 20% of your patching effort goes to Windows but 80% of your effort is consumed with patching all the different flavors of UNIX, Linux and your Mac computers. We need one system to manage all our patches and one pane of glass to prove compliance from data center to desktop. Believe it or not System Center 2012 R2 provides the infrastructure to do just that – it just needs a little help. Last time we showed you how you can patch 3rd party apps on Windows through System Center Update Manager. This time we’ll show you how you can patch non-Windows systems using the new System Center clients for UNIX, Linux and Mac.

2015 Endpoint and Mobile Security Buyers Guide

Lumension

Mike Rothman, Analyst and President of Securosis, as he dives into an interactive discussion around endpoint security management in 2015. • Protecting Endpoints: How the attack surface has changed, and the impact to your defense strategy • Anti-Malware: The best ways to deal with today’s malware and effectively protect your endpoints from attack • Endpoint Hygiene: Why you can’t forget the importance of ensuring solid management of your endpoint devices • BYOD and Mobility: The extent that corporate data on smart mobile devices impacts your organization • The Most Important Buying Considerations in 2015

Top 10 Things to Secure on iOS and Android to Protect Corporate Information

Lumension

Security expert Randy Franklin Smith from Ultimate Windows Security, shows you a technical and pragmatic approach to mobile security for iOS and Android. For instance, for iOS-based devices, he talks about: • System security • Encryption and data protection • App Security • Device controls Randy also discusses Android-based devices. While Android gets its kernel from Linux, it builds on Linux security in a very specialized way to isolate applications from each other. And learn about iOS and Android mobile device management needs: Password and remote wipe capabilities are obvious but there’s much more to the story. And you’ll hear Randy's list of top-10 things you need to secure and manage on mobile devices in order to protect access to your organization’s network and information.

2014 BYOD and Mobile Security Survey Preliminary Results

Lumension

Using SCUP (System Center Updates Publisher) to Security Patch 3rd Party Apps...Lumension

Careto: Unmasking a New Level in APT-ware Lumension

Securing Your Point of Sale Systems: Stopping Malware and Data Theft

Lumension

Point of Sale (POS) systems have long been the target of financially-motivated crime. And in 2013 the magnitude of cybercrime against POS systems skyrocketed, with 97% of breaches in the retail sector and 47% in the healthcare sector aimed against POS systems. With sensitive financial and personal records getting exposed by the millions, the FBI recently warned that POS systems are under sustained and continued attack. During this webcast, we will take you into the three critical entry points to POS system attacks. We’ll discuss how the attacks look, the timelines for these breaches, and what proactive security measures you can take to help your organization minimize the risk to your POS systems. •3 Critical Entry Points to POS System Attacks •Impacts to an Organization •Top 3 Security Measures to Minimize Risk

2014 Security Trends: SIEM, Endpoint Security, Data Loss, Mobile Devices and ...

Lumension

Thanks to you, the audience at UltimateWindowsSecurity, for the 2014 Survey. It was a great success with over 600 respondents! I appreciate all of you who took the time give me your thoughts. You’ve provided some great ideas for real training for free™ in the coming year and I’ve learned which topics are most important to you. That’s going to benefit all of us. In this presentation, we'll present our findings. We’ll talk about the community’s top goals for 2014, which topics you recommended I cover in 2014 and what our community sees as the greatest security concerns for 2014. And we’ll discuss other trends emerging from the data. Find out about the top trends, such as: SIEM – What are the top SIEM solutions? What is the UWS community’s top 3 biggest challenges with log/monitoring/security analytics? Endpoint Security – How widely is application whitelisting being used and what is driving its adoption? Which endpoint security technologies really work and which are just hype? Mobile Devices – Are employee owned mobile devices supported at your organization? Is your biggest concern with mobile devices malware, data loss, compliance? The Cloud – How widely are your peers embracing the cloud? Is your organization’s security policy, technology and training keeping up with the move to the cloud? Advanced Security Topics – What are your peers doing about “big data”? What about endpoints as sensors, and other new security approaches? This will be a fact-filled and fascinating presentation on where we are and where we are going on a host of different security fronts. Don’t miss it.

2014 Data Protection Maturity Survey: Results and AnalysisLumension

Greatest It Security Risks of 2014: 5th Annual State of Endpoint Risk

Lumension

Organizations around the world are losing intellectual property and customer data to cyber criminals at mind-boggling rates. How is this happening? For 5 consecutive years, the annual State of the Endpoint Report, conducted by Ponemon Institute, has surveyed IT practitioners involved in securing endpoints. This year’s report reveals endpoint security risk is more difficult to minimize than ever before. What are IT pros most concerned about heading into 2014? From the proliferation of mobile devices, third party applications, and targeted attacks/APTs, endpoint security risk for 2014 is becoming more of a challenge to manage. Larry Ponemon of the Ponemon Institute reveals statistics on growing insecurity, IT’s perceived areas of greatest risk for 2014 as well as tactical suggestions for how to improve your endpoint security. Specifically, you will learn: •IT perspective on the changing threat landscape and today’s Top 5 risks; •Disconnect between perceived risk and corresponding strategies to combat those threats; •Tips and tricks on how to best communicate today’s threats and subsequent needed responses up the management chain

Windows XP is Coming to an End: How to Stay Secure Before You MigrateLumension

Adobe Hacked Again: What Does It Mean for You?

Lumension

Last time it was Adobe’s code signing servers. This time it’s 2.9 million (let’s just call it 3) customers’ data and lots and lots of source code – including that of Acrobat. Adobe products already require constant patching but offer no enterprise level solution for patching. In this presentation by Ultimate Windows Security, we’ll present why this will likely lead to more and we’ll look at what we know about this latest Adobe breach. But more importantly I’ll show what you can do in advance to protect yourself against zero-day exploits in Adobe products and programs. After all this won’t be the last time a software vendor is hacked. In this day and age we have to protect ourselves from the failures of our software providers. I’ll present 3 ways you can go on the offensive to protect yourself from the constant vulnerabilities discovered in Adobe Reader, Acrobat, Flash and Oracle Java. Here’s what we’ll discuss: *Alternatives to Adobe and Java *Different ways to containing vulnerable apps in a sandbox * Using advanced memory protection technologies to detect and stop buffer overflows and other memory based attacks Patching and AV only helps you close the window on hacker opportunity. To prevent the window from opening in the first place you have to prevent untrusted code from ever running in the first place. That requires application whitelisting and memory protection against code injection – a growing menace that bypasses controls based on file system and EXE scanning. That’s why Lumension is sponsoring this event. I think you’ll be interested seeing 2 of their end-point security technologies that will help protect you from the new exploits on their way as a result of this hack as well as the constant stream of exploits discovered every day. This is going to be a really cool presentation with practical tips that you can apply. Learn how to protect your systems from other software vendor vulnerabilities.

Real World Defense Strategies for Targeted Endpoint Threats Lumension

APTs: The State of Server Side Risk and Steps to Minimize RiskLumension

2014 Ultimate Buyers Guide to Endpoint Security SolutionsLumension

Data Protection Rules are Changing: What Can You Do to Prepare?

Lumension

The European Union’s proposed new data protection regulation aims to update Europe’s data protection laws and to provide a more consistent data protection framework across the Continent. But the new regulation, which replaces the EU’s existing data protection directive and member states’ data protection laws, will put some new demands on organisations holding personal data. Breach disclosure and “the right to be forgotten” will force businesses to update their data protection and retention policies. This presentation will: - Review the current EU laws, and contrast them with laws in other parts of the world; - Examine the arguments for strengthening data protection in Europe, and the likely outcomes; - Look at what security teams should already be doing to put themselves ahead of legislative changes; - Outline strategies and technologies organisations need to meet current and future data protection requirements - Help infosecurity teams to explain the changes – and their consequences – to their boards

Java Insecurity: How to Deal with the Constant Vulnerabilities

Lumension

Just over a decade ago, the outcry over Microsoft’s security problems reached such a deafening level that it finally got the attention of Bill Gates, who wrote the famous Trustworthy Computing memo. Today, many would say that Microsoft leads the industry in security and vulnerability handling. Now, it’s Java that’s causing the uproar. But has Oracle learned anything from Microsoft in handling these seemingly ceaseless problems? I’ll start by reviewing the wide-ranging Java security changes Oracle is promising to make. They sound so much like the improvements Microsoft made back with Trustworthy Computing that I’m amazed it hasn’t been done before! We’ll move on to discuss what you can do now to address Java security in your environment. One of the banes of security with Java is the presence of multiple versions of Java, often on the same computer. Sometimes you really need multiple versions of Java to support applications with version dependencies (crazy, I know). But other times, multiple copies of Java are there “just because.” In this webinar, we’ll talk about the current Java mess and how you can get out of it, including: Assessment. We’ll discuss ways and tools for cataloging what versions of Java are actually out there on your endpoints. Identification. We’ll look at methods for identifying which versions are actually required by your users; for instance, I’ll show you how you might use Process Tracking and File Access events in the Windows Security Log to see which Java files are being accessed, by whom, and by which programs. Disabling. Can you just disable Java? Maybe not for everyone, but what if you could disable it for certain roles within your company that make up 25% – or even 75% – of your workforce? That would be worth it. We’ll explore how you might go about such a measure. Hardening. We’ll dive into the technical details of hardening Java and reducing your Java attack surface, where possible. Filtering. Another way to reduce your Java risk is by filtering Java content at your gateway. Again not full coverage control – but what is? Patching. Then, we’ll delve into the Java patching nightmare. Depending on self-updaters on each endpoint, is could be a recipe for disaster, and I’ll explain why. Basically the only way out of the Java mess is a 3rd party solution that can perform centralized patch management and remediation and that’s where our sponsor, Lumension, will come in.

3 Executive Strategies to Reduce Your IT Risk

Lumension

Do you want to know how ‘best-of-breed’ enterprises prioritize their IT risk? Join Richard Mason, Vice President & Chief Security Officer at Honeywell, whose team is responsible for global security, during a roundtable discussion with Pat Clawson, Chairman & CEO of Lumension and Roger Grimes, Security Columnist & Author. Uncover strategies beyond traditional antivirus signatures and learn a more holistic approach to effective risk management. Find out ‘how’ and ‘why’ you can make security a prioritized function within your organization. Join this expert panel webcast to learn how to: 1)Understand your business audiences and evaluate their risk tolerance 2)Leverage reputation management services that are appropriate for your organization 3)Utilize realistic change management to secure prioritized data depositories

The Evolution of Advanced Persistent Threats_The Current Risks and Mitigation...

Lumension

APTs have become a major topic of conversation – and in some cases, a critical threat – among IT security departments. But the technology and motivation behind APTs has changed significantly since the introduction of Stuxnet, continuing to evolve rapidly to avoid detection. In this special Dark Reading presentation, a leading expert on the origins and directions of APTs will discuss the changing nature of these sophisticated threats – and how you can prepare your enterprise security environment to detect and mitigate these complex and dangerous attacks.

2013 Data Protection Maturity Trends: How Do You Compare?

Lumension

In 2012 we found out that the BYOD environment and consumerization of the workplace had turned traditional notions of corporate IT upside down. The 2013 Data Protection Maturity Report will highlight how organizations have managed this trend over the last year and what steps are being taken in 2013 to further enhance data security. Find out how IT teams are developing a holistic model that encompasses policy, education, technology and enforcement. Within this slide deck, we look at each of data protection trends, helping you define your organization’s best practice guide to address the top concerns. We will also be showing you how you can gauge the maturity of your security systems, allowing you to plug any holes before your valuable data starts to leak through them.

More from Lumension (20)

Using SCCM 2012 r2 to Patch Linux, UNIX and Macs

2015 Endpoint and Mobile Security Buyers Guide

Top 10 Things to Secure on iOS and Android to Protect Corporate Information

2014 BYOD and Mobile Security Survey Preliminary Results

Using SCUP (System Center Updates Publisher) to Security Patch 3rd Party Apps...

Careto: Unmasking a New Level in APT-ware

Securing Your Point of Sale Systems: Stopping Malware and Data Theft

2014 Security Trends: SIEM, Endpoint Security, Data Loss, Mobile Devices and ...

2014 Data Protection Maturity Survey: Results and Analysis

Greatest It Security Risks of 2014: 5th Annual State of Endpoint Risk

Windows XP is Coming to an End: How to Stay Secure Before You Migrate

Adobe Hacked Again: What Does It Mean for You?

Real World Defense Strategies for Targeted Endpoint Threats

APTs: The State of Server Side Risk and Steps to Minimize Risk

2014 Ultimate Buyers Guide to Endpoint Security Solutions

Data Protection Rules are Changing: What Can You Do to Prepare?

Java Insecurity: How to Deal with the Constant Vulnerabilities

3 Executive Strategies to Reduce Your IT Risk

The Evolution of Advanced Persistent Threats_The Current Risks and Mitigation...

2013 Data Protection Maturity Trends: How Do You Compare?

Recently uploaded

Connector Corner: Automate dynamic content and events by pushing a button

DianaGray10

Here is something new! In our next Connector Corner webinar, we will demonstrate how you can use a single workflow to: Create a campaign using Mailchimp with merge tags/fields Send an interactive Slack channel message (using buttons) Have the message received by managers and peers along with a test email for review But there’s more: In a second workflow supporting the same use case, you’ll see: Your campaign sent to target colleagues for approval If the “Approve” button is clicked, a Jira/Zendesk ticket is created for the marketing design team But—if the “Reject” button is pushed, colleagues will be alerted via Slack message Join us to learn more about this new, human-in-the-loop capability, brought to you by Integration Service connectors. And... Speakers: Akshay Agnihotri, Product Manager Charlie Greenberg, Host

Monitoring Java Application Security with JDK Tools and JFR Events

Ana-Maria Mihalceanu

Accelerate your Kubernetes clusters with Varnish Caching

Thijs Feryn

UiPath Test Automation using UiPath Test Suite series, part 3

DianaGray10

GraphRAG is All You need? LLM & Knowledge Graph

Guy Korland

Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs. 1. Unifying Large Language Models and Knowledge Graphs: A Roadmap. https://arxiv.org/abs/2306.08302 2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs: https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/

Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...

Ramesh Iyer

In today's fast-changing business world, Companies that adapt and embrace new ideas often need help to keep up with the competition. However, fostering a culture of innovation takes much work. It takes vision, leadership and willingness to take risks in the right proportion. Sachin Dev Duggal, co-founder of Builder.ai, has perfected the art of this balance, creating a company culture where creativity and growth are nurtured at each stage.

FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf

FIDO Alliance

GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...

James Anderson

Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management. The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM). Speakers: Bob Boule Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle. Gopinath Rebala Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.

Bits & Pixels using AI for Good.........

Alison B. Lowndes

Mission to Decommission: Importance of Decommissioning Products to Increase E...

Product School

Key Trends Shaping the Future of Infrastructure.pdf

Cheryl Hung

De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...

Product School

Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...

Jeffrey Haguewood

Sidekick Solutions uses Bonterra Impact Management (fka Social Solutions Apricot) and automation solutions to integrate data for business workflows. We believe integration and automation are essential to user experience and the promise of efficient work through technology. Automation is the critical ingredient to realizing that full vision. We develop integration products and services for Bonterra Case Management software to support the deployment of automations for a variety of use cases. This video focuses on the notifications, alerts, and approval requests using Slack for Bonterra Impact Management. The solutions covered in this webinar can also be deployed for Microsoft Teams. Interested in deploying notification automations for Bonterra Impact Management? Contact us at sales@sidekicksolutionsllc.com to discuss next steps.

FIDO Alliance Osaka Seminar: Overview.pdf

FIDO Alliance

FIDO Alliance Osaka Seminar: FIDO Security Aspects.pdf

FIDO Alliance

Encryption in Microsoft 365 - ExpertsLive Netherlands 2024

Albert Hoitingh

PCI PIN Basics Webinar from the Controlcase Team

ControlCase

From Siloed Products to Connected Ecosystem: Building a Sustainable and Scala...

Product School

Securing your Kubernetes cluster_ a step-by-step guide to success !

KatiaHIMEUR1

Today, after several years of existence, an extremely active community and an ultra-dynamic ecosystem, Kubernetes has established itself as the de facto standard in container orchestration. Thanks to a wide range of managed services, it has never been so easy to set up a ready-to-use Kubernetes cluster. However, this ease of use means that the subject of security in Kubernetes is often left for later, or even neglected. This exposes companies to significant risks. In this talk, I'll show you step-by-step how to secure your Kubernetes cluster for greater peace of mind and reliability.

DevOps and Testing slides at DASA Connect

Kari Kakkonen

Recently uploaded (20)

Connector Corner: Automate dynamic content and events by pushing a button

Monitoring Java Application Security with JDK Tools and JFR Events

Accelerate your Kubernetes clusters with Varnish Caching

UiPath Test Automation using UiPath Test Suite series, part 3

GraphRAG is All You need? LLM & Knowledge Graph

Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...

FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf

GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...

Bits & Pixels using AI for Good.........

Mission to Decommission: Importance of Decommissioning Products to Increase E...

Key Trends Shaping the Future of Infrastructure.pdf

De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...

Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...

FIDO Alliance Osaka Seminar: Overview.pdf

FIDO Alliance Osaka Seminar: FIDO Security Aspects.pdf

Encryption in Microsoft 365 - ExpertsLive Netherlands 2024

PCI PIN Basics Webinar from the Controlcase Team

From Siloed Products to Connected Ecosystem: Building a Sustainable and Scala...

Securing your Kubernetes cluster_ a step-by-step guide to success !

DevOps and Testing slides at DASA Connect

Defending Your Corporate Endpoints How to Go Beyond Anti-Virus

1. Defending Your Corporate Endpoints: How to Go Beyond Anti-Virus Presented by Kevin Beaver, CISSP Independent Information Security Consultant, Speaker, Author, & Expert Witness Principle Logic, LLC www.principlelogic.com kbeaver@principlelogic.com Copyright © 2013, Principle Logic, LLC - All Rights Reserved.

2. About Kevin •Independent consultant » 24 years experience in IT – 18 years in information security » Focus on performing security assessments •Expert witness » Data breaches, security best practices/due diligence, compliance and intellectual property cases •Professional Speaker •Author • Creator/author of Security On Wheels audiobooks & blog (securityonwheels.com)

3. About Chris •Security Expert » 30 years of engineering and marketing experience, currently specializing in: » Data Protection » Whitelisting » Endpoint Security •At Lumension » Director of Solution Marketing •Blogger » http://blog.lumension.com/author/chris-merritt 3 Copyright © 2008, Principle Logic, LLC, All Rights Reserved.

5. The Current State of Malware

6. What This Applies To

7. Is traditional anti-virus useless?

9. What are the most common weaknesses?

10.

11. Why is it we cannot achieve what’s truly needed?

12.

13. Is it the complexity of the threat or the complexity of our own systems?

14. What This Applies To

15. Gaining Control Know what Know how Technical you’ve got it’s at risk People/Process Implement policies/plans Regulatory Enforce Automation Refine and with repeat technology

16. How You Can Learn More •Kevin’s website: principlelogic.com/resources •Kevin’s blog: securityonwheels.com/blog •Kevin’s audio programs: securityonwheels.com •Kevin’s books: @kevinbeaver PrincipleLogic www.linkedin.com/in/kevinbeaver

17. Defense-in-Depth Strategy Successful risk mitigation AV starts with a solid vulnerability Control the Bad management foundation, augmented by additional Device Control Control the Flow layered defenses which go beyond the traditional blacklist HD and Media Encryption approach. Control the Data Application Control Control the Gray Patch and Configuration Management Control the Vulnerability Landscape 17

18. More Information • Free Security Scanner Tools • Get a Quote (and more) » Vulnerability Scanner – discover all OS and http://www.lumension.com/endpoint- application vulnerabilities on your network management-security-suite/buy-now.aspx#2 » Application Scanner – discover all the apps being used in your network » Device Scanner – discover all the devices being used in your network http://www.lumension.com/Resources/ Security-Tools.aspx • Lumension® Endpoint Management and Security Suite » Online Demo Video: http://www.lumension.com/Resources/Demo- Center/Vulnerability-Management.aspx » Free Trial (virtual or download): http://www.lumension.com/endpoint- management-security-suite/free-trial.aspx 18

Defending Your Corporate Endpoints How to Go Beyond Anti-Virus

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Viewers also liked

Viewers also liked (16)

Similar to Defending Your Corporate Endpoints How to Go Beyond Anti-Virus

Similar to Defending Your Corporate Endpoints How to Go Beyond Anti-Virus (20)

More from Lumension

More from Lumension (20)

Recently uploaded

Recently uploaded (20)

Defending Your Corporate Endpoints How to Go Beyond Anti-Virus