Agenda | April 29, 2022 | 11:00 AM - 3:30 PM EDT
Schedule | Description |
---|---|
11:00 AM | Welcome & Opening RemarksJake Williams, SANS Instructor & Subject Matter Expert |
11:15 AM | The Current State of Attack Surface ManagementCyber-threats are driving a renewed business focus on security posture management but growing attack surfaces have made security hygiene more difficult. However, with as many 30% of exposed assets unknown to security teams and 7 in 10 experiencing a compromise in the past 12 months from unknown or poorly managed assets, executives and corporate boards are increasingly asking for greater visibility and formal metrics via real-time data analysis and better program management. Ian Lee, Director of Product Marketing, Randori |
11:50 AM | Dynamics of Russia's Use of Cyber in WarCyber-threats are driving a renewed business focus on security posture management but growing attack surfaces have made security hygiene more difficult. However, with as many 30% of exposed assets unknown to security teams and 7 in 10 experiencing a compromise in the past 12 months from unknown or poorly managed assets, executives and corporate boards are increasingly asking for greater visibility and formal metrics via real-time data analysis and better program management. The Grugq |
12:25 PM | Randori Solution OverviewProtecting your attack surface is a critical capability for every security team, but few know how to operationalize ASM solutions to work for IT, security, and the business. In this practical session, Randori Sales Engineer Jonathan Ross will provide attendees with an overview of the Randori Offensive Security Platform and how they can use it to discover unknowns, prioritize issues, and validate their defenses. The demo will include real-world examples of how companies like Air Canada, Lionbridge, NOV, and more are using Randori to regain control of their attack surfaces and stay one step ahead of attackers. Jon Ross, Senior Sales Engineer, Randori |
12:35 PM | Break |
12:45 PM | Fireside Chat: The Role of the Attacker's Perspective in Calculating RiskAdopting a risk-based approach to cybersecurity can and does make organizations more secure than a maturity-based approach that is, ultimately, arbitrary. In this session, Forrester analyst Allie Mellen will interview Brenden Smith, CISO at First Bank about his experience using the attacker perspective to advance his SOC and ultimately build a more resilient and agile security program. Attendees can expect to learn:
Allie Mellen, Analyst, Forrester |
1:15 PM | Painting the Target: Looking at Your Attack Surface Like an AdversaryJoin, Ben Baumgartner, Director of Targeting at Randori for an exciting lunch & learn that dives into the fast-paced world of offensive security. Over a free lunch of your choice, Ben will pull back the curtain behind how his team inside Randori’s Hacker Operation Center discovers, classifies and prioritizes millions of targets daily for some of the world’s largest organizations. He’ll break down the 6 factors his team uses to determine which targets to paint for the Randori Attack Team’s active operations and why those are the same seven factors any vulnerability team should be using to prioritize risk. Ben Baumgartner, Director of Targeting, Randori |
1:45 PM | Reduce Your Risk to Identity Attack SurfaceIn this session Randori and Silverfort pull back the curtain on identity based attacks, providing a live view into both the attacker and the defender perspective of identity threats and show how using Randori & Silverfort in combination can help you reduce your risk to credential based attacks.. Evan Anderson, Director of Offensive Security, Randori
|
2:20 PM | Panel: Building Resilience in the Face of Cyber ConflictAs organizations face the threats of increased Russian activity in cyberspace, experts from offensive and defensive security come together to discuss what steps organizations can be taking to harden their attack surfaces and enhance their cyber resiliency. Question the panel will cover include: Has the risk to corporations really changed? What types of activity should we expect from Russia? Where do ransomware gangs fit into this equation? What can CISOs do now to reduce their risk? What is the role of the government in defending private industry? Moderator: |
3:20 PM | Wrap-Up and Closing RemarksJake Williams, SANS Instructor & Subject Matter Expert |