Hardening Retail Security: Why and How to Prevent Breaches and Attacks
- Thursday, September 25th, 2014 at 1:00 PM EDT (17:00:00 UTC)
- John Pescatore and Erick Ingleby
You can now attend the webcast using your mobile device!
Even the security community was shocked at a number of very large-scale and high-profile breaches at major U.S. retailers at the height of the 2013 holiday shopping season. Costs directly associated with the Target breach alone are approaching $61 million U.S. dollars, and the company has scrambled to maintain its share price, customer trust and supply chain in the wake of the breach.
So it's not a matter of if your organization will be attacked or breached, but when. A recently released SANS report on incident response noted that 48% of respondents have experienced up to 25 breaches or incidents in the past two years, and those are just the incidents they know about and can report.
How can security professionals mitigate risk by identifying breaches more quickly and with greater accuracy by recognizing abnormal behaviors as they occur? How do they evaluate the many pieces of security data and differentiate the true anomalies? This webcast, led by SANS Institute senior analyst John Pescatore and Erick Ingleby, LogRhythm, will address the current retail threat landscape and what retailers can do to harden security, prevent breaches and deal with all the data flowing into and through their organizations. Attendees will learn how to evaluate their risk and improve their security posture, as well as how to prevent becoming the next Target or other high-visibility breach.
John Pescatore joined SANS as director of emerging security trends in January 2013. He has 35 years experience in computer, network and information security. Prior to joining the SANS Institute, Mr. Pescatore was Gartnerís lead security analyst for 13 years, working with global 5000 corporations and major technology and service providers. Before joining Gartner, Mr. Pescatore was Senior Consultant for Entrust Technologies and Trusted Information Systems, where he started, grew and managed security consulting groups focusing on firewalls, network security, encryption and Public Key Infrastructures. Prior to that, Mr. Pescatore spent 11 years with GTE developing secure computing and telecommunications systems. Mr. Pescatore began his career at the National Security Agency, where he designed secure voice systems, and the United States Secret Service, where he developed secure communications and surveillance systems. He holds a Bachelor's degree in Electrical Engineering from the University of Connecticut and is a NSA Certified Cryptologic Engineer. He is also an Extra class amateur radio operator, callsign K3TN.
Erick Ingleby has over 11 years of experience in the network security industry. He has served as an end-user of SIEM products working as an analyst at Schriever Air Force Base's CERT and as an IT security consultant with Accuvant focused on SIEM deployments prior to coming to LogRhythm. At LogRhythm, Erick has pioneered post-sale channel and partner-enablement services for large, complex Enterprise and MSSP SOC deployments. Most recently Erick was instrumental in shaping new service offerings for retail cybercrime, compliance automation and incident support. Erick currently serves as a product manager helping to shape tactical roadmap development and perform industry and competitive analysis.