Name: Five Questions to Ask as You Evolve Threat Exposure Management
Start: 2023-09-13T15:00:00Z
End: 2023-09-13T15:00:52.000Z
Location: BrightTALK
Rating: 5

Cymulate exposure management and security validation drives continuous threat exposure management programs and supports both the technical and business requirements of scoping, discovery, prioritization, validation, and mobilization.

Each month, we'll dive into the attacker tools emerging as the most prolific and highest risk in the threat landscape. We'll showcase a few that stand out from our continuous examination of the threat landscape and research performed by our highly experienced and diverse researchers. We'll evaluate how these tools work, the phases of intrusion, the threat actor profile (who did it, motivations, origin, why they chose their targets), and how the attack propagated. Furthermore, we’ll provide clear demonstrations of how we detected and replicated the attack propagation using the advanced capabilities of the Cymulate platform.

Cymulate Threat Research Lab Update: November 2023

From military exercises to politics to video games, whenever there is any form of formal conflict, teams get stronger when they understand how the other side operates – their strategies, tactics, and core strengths. 

This session will give blue team members information and tips and tricks for breaking out of the confines of defensive thinking to better visualize and simulate threat activity from the threat actor point of view. 

- High-level review of how threat actors tend to operate 
- Visualization of infrastructure and systems as seen by a threat actor 
- Differences between different types of threat actors (lone wolves, small gangs, organized groups, state sponsored activity, etc.) 
- Myths of how threat activity happens commonly held by defenders

Saltt Technologies Webinar: Thinking Like An Attacker

This session will demonstrate the core capabilities of Cymulate Breach and Attack Simulation; including Web Gateway, Email Gateway, Immediate Threat, and Endpoint Security testing assessments.

Demo - Cymulate Breach and Attack Simulation. Part 1

Red teaming is a complex operation that is highly specific to the individual environment(s) in which each exercise is run.  A single wrong move can have significant impact on business operations and revenue generation, or produce misleading or incorrect results or both.  In order to avoid these negative outcomes, many organizations automation have limited the use of automation in red team operations.  However, modern tools and platforms can be used successfully and safely to automate many components of red team operations, such as discovery and probing, without incurring risk.  This allows the red team staffers to accomplish more with the same number of people and still reduce the rate of burnout common to the industry.  This webinar will speak to methods which can be used to safely automate major components of red team exercises without incurring risk, while still seamlessly integrating into the manual operational phase of the exercises themselves.

Red Teaming – Automate What You Can

With hundreds of thousands of potential vulnerabilities to be dealt with at any time, how can organizations define which should be addressed first?  This webinar will provide guidance and ideas on how to gauge not only the priority of patching and upgrading, but also to map out the urgency of performing those remediation actions – and how these may be two extremely different things for each vulnerability discovered.

Urgency vs Priority in Vulnerability Management

Cymulate Threat Research Lab Update: September 2023

“The Bake It Off” Webinar Builds a New Level of Trust With Security Product Evaluation Through Attack Simulation. 

What’s the count on your security tool choices? 

No single person could inspect all of them and make an informed choice about which tool is the best for their organization. 

The Bake it Off webinar walks you through independent assessments with Breach and Attack Simulation (BAS) that works with your time, budget, and team right now.  

Put your tools to the test within your production environment to see how they react to simulated attacks.  

Watch how to use BAS for a fair and targeted bake-off that validates each tool that meets your needs.

Overwhelmed by the Sheer Number of Security Tools?

Extended BAS modules: WAF, Full Kill-Chain Scenarios, Data Exfiltration, and an overview of custom templates for all modules

Demo - Cymulate Breach and Attack Simulation. Part 2

CSPM (aka cloud security posture management) is only a partial solution for cloud exposure management. Identifying misconfigurations in the cloud is a critical step to discover security weaknesses, but assessment data often includes hundreds of potential weaknesses without context to actual risk. Cloud misconfigurations require validation to confirm breach feasibility and prioritization that considers compensating controls and business impact. 

Attend this webinar to learn how security leaders are implementing Cymulate in their exposure management programs to strengthen their cloud security resilience and reduce risk. Experts from Cymulate will model the Cymulate Exposure Management Platform to achieve: 

- A risk-based view of cloud security posture 
- A risk-profiled cloud asset inventory, attack surface, and validated attack paths 
- Program baselines and executive communication for cloud deployments 

Cymulate will also demonstrate the recent updates to its Breach and Attack Simulation Advanced Scenarios solutions for a threat-informed defense for cloud infrastructure. With the expansion of cloud and Kubernetes scenarios, Cymulate BAS Advanced Scenarios provides security leaders and teams with the security validation critical to managing the security posture for cloud infrastructure.

Additional Resources:
https://cymulate.com/resources/application-cloud-security-validation/
https://cymulate.com/solutions/cloud-security-validation/
https://cymulate.com/schedule-a-demo/
https://cymulate.com/blog/the-power-of-validating-detection-in-kubernetes/

Pushing New Boundaries for a Threat-Informed Defense for Cloud

From military exercises to politics to video games, whenever there is any form of formal conflict, teams get stronger when they understand how the other side operates – their strategies, tactics, and core strengths. 

This session will give blue team members information and tips and tricks for breaking out of the confines of defensive thinking to better visualize and simulate threat activity from the threat actor point of view.  

- High-level review of how threat actors tend to operate 
- Visualization of infrastructure and systems as seen by a threat actor 
- Differences between different types of threat actors (lone wolves, small gangs, organized groups, state sponsored activity, etc.) 
- Myths of how threat activity happens commonly held by defenders

Think Like an Attacker

To keep the community updated on the current threat landscape, our dedicated Cymulate Research Lab will host a monthly threat research update webinar as a valuable resource for security professionals. 

This month’s deep dive will focus on the recent JumpCloud intrusion.  

Come learn how Cymulate’s highly experienced and diverse researchers continuously examine the cyber-threat landscape as they deliver in-depth visibility into today’s threats and the actors behind them.

Cymulate Threat Research Lab Update: August 2023

Finding a common language to communicate cyber risk between security and business leaders is notoriously difficult. Cybersecurity is complex and lacks the business context needed to understand and collaborate on new initiatives, while not changing the company’s risk profile.

Attend this webinar to learn how security leaders are implementing Cymulate in exposure management programs to gain an attacker’s view of exposure risk and a business's view on resilience and business impact. Experts from Cymulate will model the Cymulate platform against the Gartner framework for continuous threat exposure management (CTEM) and present how to achieve:
* A risk-based view of secure posture
* A risk-profiled asset inventory and attack surface
* Program baselines and executive communication
* Alignment to industry frameworks and compliance requirements

Cymulate will also provide a demonstration of its recently released Exposure Analytics solution. By aggregating vulnerability, attack surface, control validation, and other data from Cymulate and third-party platforms, security teams gain better insights, correlation of data, and remediation prioritization. You will also see how the tool displays exposure data with business context, which can be used for program scoping, performance tracking, and leadership reporting.

Getting Business Context into Exposure Management Programs (IST)

The cybersecurity community identifies and tracks new threat activity every day. Each new activity can have different levels of priority, affect different systems, and require different solutions. To stay up to date on the current threat landscape, check out our monthly Threat Research Update webinar. Our dedicated Cymulate Threat Research Group monitors and collaborates with the industry to prepare for and test emergent threats. These monthly updates are a valuable resource for security professionals who need to keep track of the latest threats. 

This month’s deep dive will go into the recent ransomware activity regarding MOVEit Transfer 0-day (CVE-2023-34362) and GoAnywhere MFT, which is a CL0P ransomware from an affiliate called Lace Tempest. 

Attendees will gain valuable insights of:  

- The phases of intrusion  
- The Threat Actor Profile (Who did it, motivations, origin, why they choose the targets)   
- What happened and how the actor propagated   
- How Cymulate detected the propagation and replicated it   
- What to do in the future

Cymulate Threat Research Lab Update: July 2023

Getting Business Context into Exposure Management Programs

Cybersecurity Optimization is the practice of making sure your people, process, and technology are in sync. Join Cymulate as we show you how to optimize your SIEM and SOC to be in perfect harmony.

Live Demo - Enrich and Optimize Your SIEM - June 23rd

Cymulate Webinar Series: Evolving SecOps into Exposure Management

As the knowledge and expertise of an organization’s cybersecurity people, process, and technology evolves, keeping these questions in mind can be a major help to keeping that growth on track: 

1 – Where are we at this point in our cybersecurity maturity? 
2 – Where can we move to proactivity without sacrificing reactivity?  
3 – How can we more fully integrate business leadership into the cybersecurity process? 
4 – What challenges and roadblocks are continuing to surface? 
5 – What should be integrated into the next cycle of review and action?

Five Questions to Ask as You Evolve Threat Exposure Management

Cyber Attacks

Cyber Defence

Cyber Security

Threat Detection

Threat Hunting

Threat Management

Threat Assessment

Insider Threat

Threat Intelligence

CISO

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Five Questions to Ask as You Evolve Threat Exposure Management

Presented by

About this talk

More from this channel