Attack Surface Management Solutions Forum 2022

  • Friday, 29 Apr 2022 11:00AM EDT (29 Apr 2022 15:00 UTC)
  • Speaker: Jake Williams

1 in 3 breaches today originate from unknown exposures. Yet fewer than 70% of exposed assets are known to security teams. The SANS ASM Solutions Forum, will take place on April 29, 2022 as a virtual event. This half-day event will bring together thought leaders, subject matter experts, and practitioners from around the globe to share stories and best-practices for managing your external attack surface. 

Topics covered will include:
• How You Can Adopt a More Proactive Approach to Attack Surface Management
• The current state of attack surface management
• How hackers conduct reconnaissance and prioritize results
• Why EASM was critical to a prompt Log4j response
• Best-practices for hardening your human attack surface
• Advice from SANS Experts on attack surface management

Join the SANS Solutions Forum Interactive Slack Workspace for this event (and all SANS Forums)! Connect once and you're set for all events in 2022!

Download a copy of the presentations here!

Attack_Surface_Management_Solutions_Forum_-_Reg_Page_(2).png

Sponsor

Randori_an_IBM_Company_secondary_lockup_pos_RGB_(9).png

Agenda | April 29, 2022 | 11:00 AM - 3:30 PM EDT

Schedule

Description

11:00 AM

Welcome & Opening Remarks

Jake Williams, SANS Instructor & Subject Matter Expert

11:15 AM

The Current State of Attack Surface Management

Cyber-threats are driving a renewed business focus on security posture management but growing attack surfaces have made security hygiene more difficult. However, with as many 30% of exposed assets unknown to security teams and 7 in 10 experiencing a compromise in the past 12 months from unknown or poorly managed assets, executives and corporate boards are increasingly asking for greater visibility and formal metrics via real-time data analysis and better program management.

Ian Lee, Director of Product Marketing, Randori

11:50 AM

Dynamics of Russia's Use of Cyber in War

Cyber-threats are driving a renewed business focus on security posture management but growing attack surfaces have made security hygiene more difficult. However, with as many 30% of exposed assets unknown to security teams and 7 in 10 experiencing a compromise in the past 12 months from unknown or poorly managed assets, executives and corporate boards are increasingly asking for greater visibility and formal metrics via real-time data analysis and better program management.

The Grugq

12:25 PM

Randori Solution Overview

Protecting your attack surface is a critical capability for every security team, but few know how to operationalize ASM solutions to work for IT, security, and the business. In this practical session, Randori Sales Engineer Jonathan Ross will provide attendees with an overview of the Randori Offensive Security Platform and how they can use it to discover unknowns, prioritize issues, and validate their defenses. The demo will include real-world examples of how companies like Air Canada, Lionbridge, NOV, and more are using Randori to regain control of their attack surfaces and stay one step ahead of attackers.

Jon Ross, Senior Sales Engineer, Randori

12:35 PM 
Break

12:45 PM

Fireside Chat: The Role of the Attacker's Perspective in Calculating Risk

Adopting a risk-based approach to cybersecurity can and does make organizations more secure than a maturity-based approach that is, ultimately, arbitrary. In this session, Forrester analyst Allie Mellen will interview Brenden Smith, CISO at First Bank about his experience using the attacker perspective to advance his SOC and ultimately build a more resilient and agile security program.

Attendees can expect to learn:

  • Why the attacker's perspective is critical in risk management
  • How using ASM and continuous red-teaming can prepare a team for unknown threats
  • What technologies can be leveraged to best integrate the attacker's perspective into their day to day jobs

Allie Mellen, Analyst, Forrester
Brenden Smith
, Chief Information Security Officer, FirstBank

1:15 PM

Painting the Target: Looking at Your Attack Surface Like an Adversary

Join, Ben Baumgartner, Director of Targeting at Randori for an exciting lunch & learn that dives into the fast-paced world of offensive security. Over a free lunch of your choice, Ben will pull back the curtain behind how his team inside Randori’s Hacker Operation Center discovers, classifies and prioritizes millions of targets daily for some of the world’s largest organizations. He’ll break down the 6 factors his team uses to determine which targets to paint for the Randori Attack Team’s active operations and why those are the same seven factors any vulnerability team should be using to prioritize risk.

Ben Baumgartner, Director of Targeting, Randori

1:45 PM

Reduce Your Risk to Identity Attack Surface

In this session Randori and Silverfort pull back the curtain on identity based attacks, providing a live view into both the attacker and the defender perspective of identity threats and show how using Randori & Silverfort in combination can help you reduce your risk to credential based attacks..

Despite investments, the tracking and management of login portals and exploitation of credentials and basic MFA implementations remain a blind spot for today’s security stacks. Over average, organizations have dozens of login portals they are not aware of and fewer than 50% of organizations have MFA deployed across all access points.

Join this session with Silverfort and Randori as they provide a live view into both the attacker and the defender perspective of identity threats and demonstrate:
How organizations are leveraging Randori & Silverfort to identify access points, test assumptions and identify blind spots in their security programs
How an attacker who has obtained admin credentials can identify possible paths into an organization and use those to gain access to practically any machine in the environment.
How enforcing MFA on all access interfaces within the environment materially increases the level of efforts skilled attackers need to employ in order to achieve their objectives.

Evan Anderson, Director of Offensive Security, Randori
Jonathan Nativ, Director of Strategic Alliances, Silverfort

2:20 PM

Panel: Building Resilience in the Face of Cyber Conflict

As organizations face the threats of increased Russian activity in cyberspace, experts from offensive and defensive security come together to discuss what steps organizations can be taking to harden their attack surfaces and enhance their cyber resiliency. Question the panel will cover include: Has the risk to corporations really changed? What types of activity should we expect from Russia? Where do ransomware gangs fit into this equation? What can CISOs do now to reduce their risk? What is the role of the government in defending private industry?

Moderator:
Maria Korolov,
Award-Winning Cybersecurity Journalist

Panelists: 
David Wolpoff (moose), CTO, RandoriJake Williams, SANS Instructor & Subject Matter Expert

3:20 PM

Wrap-Up and Closing Remarks

Jake Williams, SANS Instructor & Subject Matter Expert