Name: How to Protect PII Data in Your Web Applications
Start: 2022-10-20T10:29:00Z
End: 2022-10-20T10:29:24.000Z
Location: BrightTALK
Rating: 0

Join us for this informative technology series for insights into emerging security trends that every IT professional should know. These brief sessions will give you an opportunity to discover best practices from market leaders as well as hands-on advice from industry experts on a variety of security and compliance topics.
 
Let Qualys help keep you up-to-date with cost-effective and efficient technology trends. Choose the topic that interests you or plan to attend the entire series to make sure you stay ahead of the curve.

Please join the Qualys research and product teams for the webinar “This Month in Vulnerabilities and Patches” on December 14, 2023.

We will discuss this month's high-impact vulnerabilities, including those that are part of August 2023 Patch Tuesday. We will walk you through the steps to address the key vulnerabilities using Qualys VMDR and Patch Management.

We will cover:

The significant vulnerabilities published this month:

Microsoft Patch Tuesday, December 2023 
Other Significant Vulnerabilities

An action plan to quickly identify and remediate vulnerabilities:

Learn how to use Qualys Patch Management to remediate vulnerabilities

This Month in Vulnerabilities and Patches, December 2023

Business success depends on a cyber security team’s ability to manage a constantly evolving attack surface. Organizations must have a plan to measure, communicate, and eliminate risk within the internal and external attack surface.

Join Kunal Modasiya (VP of Product Management at Qualys) and Beatrice Sirchis (VP of Application Security at IDB Bank) to learn how to use Qualys CyberSecurity Asset Management (CSAM) to achieve the following:

• Complete visibility across a constantly changing hybrid environment
• Proactively reduce tech debt, eliminate unauthorized software that poses risks, and identify missing security agents (such as CrowdStrike and Splunk Collector)
• Prioritizing using business context and TruRisk of assets
• Turbocharging remediation through a CMDB connector to automatically triage and assign tickets, closing them 95% faster

Attend this webinar to learn how to measure risk across the attack surface, communicate risk to business stakeholders, and eliminate risk with the greatest potential business impact.

Driving Business Outcomes with Unified Attack Surface Management

Many organizations today run their businesses using proprietary or “First-Party” applications built on 80% open-source components to meet their unique needs. These applications have limited risk assessments performed against them, and even if they do, the lifecycle of these vulnerabilities (from discovery to prioritization to remediation) is rarely managed through a unified platform solution such as VMDR.

As a result, SecOps teams are either “blind” to this risk or do not measure it at all!

If potential security risks lurking unnoticed and unaddressed in custom, first-party applications are a concern to you, we invite you to the upcoming Qualys webinar. With this solution, Qualys unifies threat detection and remediation of both third and first-party applications/software to give expanded detection, and remediation capabilities for deep-embedded, open-source (OSS) in production like log4J, OpenSSL and more using the single powerful Cloud Agent.

Discover & Assess the Risk of Open-Source Software (OSS) Vulnerabilities

Please join the Qualys research and product teams for the webinar “This Month in Vulnerabilities and Patches” on November 16, 2023.

We will discuss this month's high-impact vulnerabilities, including those that are part of November 2023 Patch Tuesday. We will walk you through the steps to address the key vulnerabilities using Qualys VMDR and Patch Management.

We will cover:

The significant vulnerabilities published this month:

Microsoft Patch Tuesday, November 2023 
Other Significant Vulnerabilities

An action plan to quickly identify and remediate vulnerabilities:

Learn how to use Qualys Patch Management to remediate vulnerabilities

This Month in Vulnerabilities and Patches, November 2023

Most endpoint detection and response (EDR) solutions only focus on endpoint activity to detect attacks, creating a tidal wave of alerts without any context or way to prioritize severity. 

Considering EDR is your “last line of defense” against malicious threats, isn’t it time to look at a dynamic detection and response solution that unifies multiple context vectors to shield your organization from known and unknown threats?

Join us on Thursday 2nd November to learn how to reduce the risk of compromise by integrating vulnerability management with endpoint threat detection and response. 

Don’t miss this special Technical Series where you’ll discover: 
• The importance of a holistic solution when IT and Security teams use numerous point solutions 
• How to orchestrate endpoint security, vulnerability management and remediation within your wider risk mitigation strategies 
• The value proposition of this process alignment
• How Qualys’ EDR solution provides comprehensive endpoint security with complete context

Register now and don't miss this opportunity to see how to build an integrated solution using the Qualys Cloud Platform.

Qualys Technical Series – The “hidden” value of EDR

Organizations using legacy tools should be concerned about the growing specter of sophisticated cyber threats – especially those with advanced malware. Many firms only focus on misconfigurations and vulnerability management, but detection and response of threats must be added for a more complete security solution. How can deep learning AI be used for threat detection in container security and cloud detection and response? 

Join us on Tuesday September 19 at 8 AM PT for the cloud AI cybersecurity fireside chat with a Qualys VP of Product Management. In this informative event, you'll learn how to leverage cutting-edge cloud technology to detect and combat the sophisticated challenges posed by malware and other threats. 

Here’s what you’ll learn during this event: 
• What are the limitations of traditional endpoint security tools in the cloud? 
• What are the latest escalating threats and malicious cloud activities, such as ELF malware?
• Why do cloud threat go undetected for long periods of time?
• How can you better manage and reduce cloud risks with deep learning AI?
• How can detect sophisticated malware in cloud containers?
• How can you protect your product environment with cloud detection and response at runtime?

Defeating Cloud Threats and Malware with AI

Any organization that accepts credit cards in the U.S. must comply with the new Payment Card Industry Data Security Standard (PCI DSS) v4.0. The consequences for non-compliance include:
• Fines up to $100,000 per month
• Increased transaction fees
• Termination of merchant agreements
• Fees and penalties for data loss
• Costs for potential lawsuits
• Brand damage and customer loss

Join us for a fireside chat with Gene Yoshida, Risk Consultant with a leading Financial Services Firm, on Tue Oct 17 at 8 AM PT to hear about key insights into the latest requirements under v4.0 and how you can ensure cybersecurity compliance. Here’s what you’ll learn by attending:

• PCI DSS 4.0 timeline and recommended milestones
• New v4.0 mandates as compared to previous versions
• Which industries are affected and how
• How compliance, IT, and security teams can collaborate to comply
• Which solutions will be effective to avoid audit failures, which won’t, and why

PCI DSS 4.0 Cybersecurity Best Practices Webinar

Please join the Qualys research and product teams for the webinar “This Month in Vulnerabilities and Patches” on October 12, 2023.

We will discuss this month's high-impact vulnerabilities, including those that are part of August 2023 Patch Tuesday. We will walk you through the steps to address the key vulnerabilities using Qualys VMDR and Patch Management.

We will cover:

The significant vulnerabilities published this month:

Microsoft Patch Tuesday, October 2023 
Other Significant Vulnerabilities

An action plan to quickly identify and remediate vulnerabilities:

Learn how to use Qualys Patch Management to remediate vulnerabilities

This Month in Vulnerabilities and Patches, October 2023

Join us on October 10th, 2023, for an online seminar review of the new GigaOm Radar Report for Continuous Vulnerability Management.
The Radar featured in our online seminar describes the value and progression of vulnerability management (VM) capabilities to help organizations build the best security and vulnerability management program to meet their needs, now and into the future. This new Report shifts its focus to continuous VM for traditional areas of coverage, with the addition of new modern requirements that support public cloud resources and IT / DevOps workflows. 

Cited as the Report’s only “Outperformer” among 11 providers, GigaOm notes: “Qualys is a well-established player in the vulnerability management field, offers vulnerability management, detection, and response (VMDR), a risk-based solution for managing vulnerabilities and misconfigurations. With the recent upgrades to VMDR 2.0 with its TruRisk capability, the platform has undergone significant upgrades, providing a range of SaaS-delivered features to effectively measure and reduce cyber risk.”  

Featured speaker is Chris Ray, GigaOm Analyst. Chris Ray is a seasoned professional in the cybersecurity field, bringing a wealth of experience from small teams to large financial institutions, as well as industries such as healthcare, financials, and tech. He has acquired an extensive amount of experience advising and consulting with security vendors, helping them find product-market fit as well as deliver cybersecurity services.

• Previously CISO at tech startup while providing vision for product development
• Consulting engineer with Bank of America, JP Morgan, Suntrust, and Wells Fargo
• Extensive experience in deeply technical network security fields

Survey of the GigaOm Radar Report for Continuous Vulnerability Management

To be able to understand what risks you have in your environment you need to ensure that the data quality within your Vulnerability Management solution is accurate, because Rubbish In = Rubbish Out. 

Join us to learn some best practices to ensure the data quality within Qualys subscriptions are as good as they can be.

Connect with us on Tuesday 10th October in our Qualys Technical Series to discover:

• How do you identify issues in your subscription
• How do you ensure your data is kept to a good standard
• The benefits that this will bring to your risk management program

Register now and don't miss this opportunity to optimize the quality of data within your Qualys subscription.

Qualys Technical Series Webinar - Best Practices to Optimize your Data Quality

Companies rely on vulnerability management to support the foundation of a cybersecurity plan. And the scale of vulnerabilities identified in today’s threat landscape means bigger security budgets and more tools. But the risks seem to rise along with the budget. 

With a wide range of tools, it’s easy to get lost in feature-land. But when it comes to the goal of minimizing security risk, there are 7 signs your vulnerability management solution(s) might be failing. 

Join us for this Qualys webinar, 7 Signs Your Vulnerability Management Is Failing. We’ll cover:

• 7 common indicators of vulnerability management solution's inadequacy to manage, measure and remediate 
        risk;
• Potential risks and implications of conventional vulnerability management;
• Other factors to consider besides budget and risk;
• Examples from the field.

7 Signs Your Vulnerability Management Is Failing

Join us for our regularly scheduled Qualys Technical Series.

With the introduction of Patch Management a few years ago, Qualys customers were presented with the opportunity to not only continuously detect vulnerabilities on their assets, but then to automatically remediate them as well.

However, as new features have been added, some customers may not be leveraging these to their full extent, and are still performing manual tasks that could be automated.

In this Qualys Technical Series, we'll cover key themes around using Patch Management efficiently, followed by a live demo, including:
• The various different entry points for using patch management according to your workflow.
• QQL examples to automatically select and apply patches to match policy, over current practices
• Fitting Patch Management into existing workflows, including how to build exceptions into these
• Examples of useful, actionable dashboards that you can employ for efficiently tracking patch progress
• Other applications for the Patch Management module, such as custom scripting and software installation
• Addressing 0days when no patch is available

We hope you join us!

Automating Remediation, Qualys Patch Management Best Practices

Please join the Qualys research and product teams for the webinar “This Month in Vulnerabilities and Patches” on September 14, 2023.

We will discuss this month's high-impact vulnerabilities, including those that are part of August 2023 Patch Tuesday. We will walk you through the steps to address the key vulnerabilities using Qualys VMDR and Patch Management.

We will cover:

The significant vulnerabilities published this month:

Microsoft Patch Tuesday, September 2023 
Other Significant Vulnerabilities

An action plan to quickly identify and remediate vulnerabilities:

Learn how to use Qualys Patch Management to remediate vulnerabilities

This Month in Vulnerabilities and Patches, September 2023

Producing containerized web applications in a DevOps lifecycle allows for rapidly deploying useable content for your customers and partners.

Securing those web applications and containers need not be an “after the horse has bolted” affair.

Take part in our upcoming webinar, if you want to understand how to integrate Qualys Web Application Scanning and Qualys Container Security into your CI/CD pipeline to optimize secure-by-default web applications and the containers that host them.

Connect with us on Thursday 7th September in our Qualys Technical Series to discover how to:
• Integrate Qualys WAS and Container Security into a CI/CD Pipeline 
• Configure Qualys WAS with Web Application and scanning options 
• Scan and retrieve findings directly in the CI/CD software

Register now and don't miss this opportunity to discover how to maximise your best efforts to integrate Qualys WAS and Container Security into your DevOps pipeline.

QTS – Integrating Qualys WAS and Container Security to the DevOps Pipeline

Up to 60% of organizations today run their business using proprietary, or homegrown, software. While ‘first-party software’ provides organizations with customization and flexibility, it also leaves businesses exposed to unmanaged and unseen vulnerabilities left unnoticed in source code. Add in the lack of security and quality control typically supported by off-the-shelf software, and it’s clear that first-party software is a prime target for attackers looking to capitalize on the lack of related CVEs and security oversight - until now.

Join us for the launch of another Qualys innovation - First-Party Software Risk Management – a native integration with the Qualys Cloud Platform. You’ll learn:

· The Difference between First and Third-Party App Risk
· How Proprietary, or Homegrown, Applications Increase Cyber Risk
· How First-Party Risk Management works
· Use Cases from the Field
· How to get started with First-Party Risk Management

First-Party Software Risk Management

As organizations shift their digital footprint to cloud computing, the need for cybersecurity best practices remains stronger than ever. 
To help improve your cloud security posture, the Qualys Threat Research Unit analyzed 50 million global cloud assets for vulnerabilities using the Center for Internet Security (CIS) Benchmarks and other metrics. Our research has recently been published as the 2023 Qualys TotalCloud Security Insights whitepaper.

Join us for our Cloud Security Deep Dive webinar on August 24, 2023 at 11 am PT as we reveal eye-opening details about these insights. In this webinar we will cover:

• 2023 Qualys TotalCloud Security Insights -- data-backed insights from the Qualys TruRisk Platform about risks and best practices associated with cloud computing.
• Five Risk Facts identified from threat research data.
• Consequences for inaction or wrong action related to cloud security.
• Detailed recommendations on how Qualys TotalCloud and other best practices can help you to quickly remediate key cloud vulnerabilities.

Register for the webinar and join us for a Cloud Security Deep Dive to better understand your risks and how your team can prepare to avoid serious consequences related to today’s cloud threat landscape.

2023 Qualys TotalCloud Security Insights Deep Dive

Title: Risk-based Endpoint Security: Uniting endpoint protection with vulnerability and patch management for powerful outcomes

With the introduction of Qualys TruRiskTM, we’ve redefined cyber risk management beyond merely prioritizing vulnerabilities.

Traditional endpoint protection and EDR solutions operate without the context of asset criticality, vulnerabilities, misconfigurations, and missing patches, creating huge inefficiencies for security teams. Simply detecting and responding to malware incidents as they happen is no longer enough; to reduce risk in today’s dynamic threat landscape, you must tear down the walls that create technology silos and give your defenders the advantage they need.

In this webinar you will learn how Qualys is helping organizations to unite endpoint protection with vulnerability and patch management, driving some powerful outcomes: 
Join us and learn how to close more business with Qualys Endpoint Security. 

During this webinar, we will present:
- Qualys Endpoint Security
- Target buyers
- Key selling points
- Case studies
- Competition
- Objection handling
- Available sales content
- ...and more!

Beyond VM: Prevent, Detect, & Respond with Qualys Endpoint Security

Did you know that one out of every four web applications is collecting PII?
As consumers demand greater control of their personal data, organizations are forced to comply with today’s data privacy regulations, such as GDPR, PCI and Civil code, or face the risk of hefty fines and penalties. 
Since businesses interact with consumers through web applications, exchange of personally identifiable information (PII), such as names, addresses, Social Security numbers, and credit card numbers, is an inevitable reality. However, cybercriminals are also taking notice and honing in their attack to steal PII data in malicious ways.  
When scanning hundreds or even thousands of web applications or APIs, it is not always easy to know the full functionality of all those sites. This unknown becomes especially problematic when it comes to Personally Identifiable Information (PII).
Join this webinar to learn how Qualys WAS can help identify where PII is being collected. This visibility allows Cybersecurity teams to assess:
• Why is this site collecting PII?
• Should this site be collecting PII?
• Where is this PII being stored?
• How is this PII being safeguarded?
• What controls are in place to monitor the PII against misuse?

How to Protect PII Data in Your Web Applications

Cyber Security

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

How to Protect PII Data in Your Web Applications

Presented by

About this talk

More from this channel