The principle of risk-based protection is a fundamental principle that guides the work of security professionals, and this is nothing new. However, one of the consequences of the past period is that we need to review previously well-established methodologies and processes, or at least change the pace, because, among other things, the acceleration of everyday digitalisation has created a new situation in this respect.

The volume of security events continues to grow, and the scope and sophistication of attacks are increasing. We can define the known attack scenarios, but how about the emerging and unknown threats in your environment? Our extended Fusion ML detection capability can help you find the emerging and unknown threats in your environment by applying extended ML analysis and by correlating a broader scope of anomalous signals, while keeping the alert fatigue low.

The Future of Work is coming. And it’s borderless, lightning-fast, highly creative.

According to Cisco’s Workforce of the Future survey, employees want greater ownership and choice in the new world of work. The study captured their feelings about working from home this year, their expectations for their organizations in 2021, and what learnings and new working practices they wish to adopt for the future. Finally, it sets a path forward for business leaders looking beyond the new normal.

Join Richard Archdeacon as he discusses Cisco’s Future of Work by establishing a secure and trusted workplace environment anywhere and everywhere your workforce is, with a SASE and Zero Trust approach. 

Resiliency focuses on key aspects of the business withstanding and recovering from cyber disruptions. During the session we will share our experience on how to build both cyber and business resiliency, especially in the areas of Data Privacy & Protection, applications hardening, detecting and responding to threats, and securing identities.

"The instinctive startle effect is also unavoidable by airline pilots. The right level of resilience triggers the appropriate response. How can the two main pillars of resilience be maintained: confidence and competence? Especially if a pilot does not fly for weeks or months (see Covid-19)?

Airlines are prepared for accidents and operational disruptions to ensure an adequate level of resilience. The "Emergency Response Plan", an internal manual, summarizes the expected scenarios. These must be simulated and practised. Are airlines fully resilient to completely unexpected business disruption as well?

I try to give practical examples of these issues during a short presentation."

Up until the last 2-3 years, large enterprises have generally sought to protect their assets with island solutions, guarded by SIEM systems as the first integrating technology. Depending on which vendor's solution was used, these SIEM systems monitored a smaller or larger part of the IT environment. Building, maintaining and analysing their alert rules consumed significant resources from SOC teams. Today, many feel the limitations of this approach. Building and maintaining newer and newer rules requires methodology, a lot of manpower and time, and somehow keeping up with rapidly changing attack methods and techniques. Teams are thin on the ground, lacking significant manpower. There are of course many promising new/brand-new technology beacons on the horizon, but can a new manufacturer, a new technology element, really bring some improvement? Alongside this, in what direction are we developing our processes? How do we strengthen our team? What results should we be satisfied with? How do we arm and organise ourselves wisely?

In this slot, rather than a product presentation you will hear a story of attackers and defenders in the play of automated attacks. We will discuss costs and values of protected assets as well as the cost of the attack itself.

The year 2022 brought us never thought changes. We see these evolving dynamics in the field of cyber defence, such as the daily presence of earlier unknown “zero-day” exploits within corporate infrastructure followed by trojan or ransomware attacks. Internal innovation is part of the cyber defence strategy. It requires new dynamics from teams working with networks and cyber security. Although the converging competence is not just a challenge. It is the solution to cure the relevant expert scarcity as well.

We introduce directions in the domains of automatization, dynamic analysis and zero trust via architectural cases.

Network security, network background. Public and private networks and a telecom proposal from the base. Public internet everywhere, but what about the leased lines? IP VPN, IPSec, network separation.

Network perimeter security and the cost of the trust. Cybersecurtiy and the trend of home working. Being up to date in a cost efficient era.

Protected network, unprotected employees? The benefit of the Mobile device management.

Organizations are facing an unprecedented number of attacks, that are more complex, than they’ve ever faced before. An efficient SOC could help a lot to build an efficient defense. The presentation will raise questions about what a modern SOC is – and what it isn’t, who and how should start create one.

The modern understanding of security defines the complex problem of what is colloquially referred to as "security policy" as layers of interdependence. Two security experts help us understand the incomprehensible. Is it a communication war in our neighbourhood? On one hand, we need to understand the fundamental layer of security studies. What is military power good for and why is it useful when it is not in operation? By the end of the panel discussion, we have a better picture of the cybersecurity experts’ future once the conventional battles end at our borders. 

It has become almost a cliché to say "cyber threat is growing", "there is no 100% security"and "risk-proportional defence". In the corporate environment, we have all the answers, the proven solutions, we feel safe. Are we aware that in many cases we have a false sense of security? We can really get the answer when we have to perform in a crisis situation.

In this presentation we will hear a brief summary of recent and ongoing events around us, with new risks, and then I will try to show how we can and should respond to this false sense of security, and finally I will show how important the human factor, the teamwork and real teamwork are in a crisis situation. I would call this evolution Security 2.0.

The cybersecurity industry is experiencing a massive gap in talent and experience. As a result, organizations are struggling to build effective security operations (SecOps) programs to detect, investigate, and respond to threats before damage occurs. While tools, such as EDR, are built to hunt for threats and respond to incidents, they still require a skilled operator to benefit from all their capabilities. Only a few organizations have the right tools, people, and processes in-house to effectively manage their security program around-the-clock while proactively defending against new and emerging threats. As a result, organizations are increasingly looking toward managed detection and response (MDR) services to run their security operations program. With Sophos MTR, your organization is backed by an elite team of threat hunters and response experts who take targeted actions on your behalf to neutralize even the most sophisticated threats. This session provides clarity by walking you through the key considerations when choosing such a kind of service. 

Today, the development of trust is hampered by a number of negative experiences. The quality of loyalty and commitment to each other has changed in both personal and work life, which keeps people in a state of readiness. They are cautious in expressing trust in each other or in a situation: they do not dare to fully commit to it, lest they be disappointed, and this can start a negative spiral...

Integrated into every aspect of our lives, internet of things (IoT) devices and operational technology (OT) assets automate and streamline operations. Yet every time a smart device is added to our network, it expands your attack surface. This is because connected devices are inherently vulnerable and easy to hack.

Encompassing network- and device-level IoT security, Check Point IoT Protect prevents IoT cyber attacks, adapting protections to any IoT or OT device across smart-office, smart-building, healthcare and industrial environments.

Almost five years ago, the case of Maersk, a global transport company, sparked a debate about how to protect our organisation from the attacks that are coming. Now, in 2022, we ask Szilviusz Tapasztó, head of security at a prominent Hungarian company in a similar field, where Waberers is heading on this journey, what are the key questions they are looking to answer along the lines of challenges such as network security, user management, the rise of cloud technology, the Internet of Things and, more generally, proportionate and effective security management.

Oracle Exadata Cloud@Customer solution, where you can enjoy the benefits of both cloud and on-premise solutions in a flexible licensing environment where you can tailor your costs to your needs. You can go with your current operating environment with your existing licenses or easily manage a temporary capacity increase if needed.

Zero Trust as a concept and approach has a long history but just became a popular buzzword in the last two years. Following this principle organizations should not automatically trust anything inside or outside its perimeters. It looks like to have lots of benefits but how easy is to implement? Can this be applied to vendors? In this presentation, we will have a look at some of the key concepts, benefits and also myths about Zero Trust.

"Network is a utility service: we realize its existence only when it is not available. The same is true for IT security: it is only cared about by management or media, when there is an incident. Although, during my IT security career I equally needed the cooperation of network engineers and any other IT specialists responsible for all other aspects of IT. This panel session tries to get network security out of this shadow and show its crucial part of IT security, while also tries to address some key messages like "perimeter is dead" or the recently hyped "zero trust"."

While IDC has been tracking security spending trends, new solutions and interviewing thousands of business leaders for decades about what has changed in their organisation on this front, security leaders are constantly struggling to cope with external threats, the challenges of a changing organisation and often resistance from their own colleagues, false beliefs and cognitive dissonance. It is often said that the most important corporate challenge lies between the chair and the keyboard. Add to that the fact that that chair may be occupied by a technologist or a non-technologist, and it is now a question of whether the chair is in the office or at home, or on the beach or in a war zone.

IDC's closing interactive session will focus on the role and challenges of the human being, including the CISO. To help us understand this, we drew on a global IDC survey of 1,500 corporate executives and a range of other sources that shaped the speaker's views on the topic.