2021 SecurityWeek CISO Forum, Presented by Cisco

Adrian Stone, Vice President and Chief Information Security Officer (CISO) at Peloton Interactive, joins SecurityWeek for a live discussion on building a modern security program to defend expanding attack surfaces. 

Expect a lively discussion on security incident response, security engineering, software development, governance, risk management, and compliance, for both product and enterprise security functions.

Login to Watch

With increasingly distributed workforces and the rise in identity-based attacks, identity has become the de facto perimeter for organizations today. Identity is the foundation of a zero trust architecture, as you need to ensure the right people have the right level of access, on the right device, to the right resource, in the right context. Learn how a comprehensive, identity-first security strategy can tie the complexities of protecting people and assets together in a seamless experience.

Login to Watch

Login to Watch

As organizations shift to flexible, hybrid workforce environments, IT and security teams are managing more devices than ever, with employees accessing business data across more locations, networks, and devices. While the hybrid model might be the new normal, not all organizations are set up to successfully “work from anywhere.”  
 
There’s no one-size-fits-all solution for how businesses should realize secure hybrid work environments, so organizations must be strategic around planning their specific approaches to securing distributed working environments.  
 
Join this session as Cisco’s Shaila Shankar covers:

• The technical – and cultural – elements of a designing a secure hybrid workforce environment that supports successful digital transformation  
• Real-life examples of cybersecurity concerns that threaten hybrid workforce environments  
• Cisco’s approach to cloud security for all, no matter where organizations are in their cloud-adoption journey  

 

Cloud is a journey that most all of us are on or soon will begin. This presentation will talk about some key strategies for establishing a security posture, methods for discovering security gaps. And best practices for securing your cloud platforms.

Login to Watch

In many organizations today, intelligence and security are out of sync. Teams and objectives are siloed, analysis lacks relevance, and the response is slow and reactionary — resulting in lost time and wasted resources. To drive down risk while achieving meaningful operational outcomes, intelligence must be embedded into the core of every security workflow, function, and decision. This requires a unified approach for collecting, analyzing, and automating data and insights.

Login to Watch

The acceleration of digital transformation over the last year has put increasing pressure on security executives to drive new approaches to their cybersecurity strategy, increase resilience, and decrease security and legal risk. Organizations and security professionals across industries are taking proactive measures to strengthen their defenses while fully engaging corporate leadership in these approaches. During this session we will discuss top risks enterprises face today, key tactics for risk mitigation, and how to build trust with leadership by understanding the full breadth of their risk calculations and adopting agile and innovative solutions.

Login to Watch

Authentication is a foundational element of every cybersecurity program. With more than 80% of data breaches and most ransomware incidents stemming from credential-based attacks (e.g., phishing, credential stuffing, RDP brute, etc.), it has become clear that passwords are a fatally flawed authentication method. Unfortunately, many common solutions are “band-aids” on top of passwords and are lacking from both a security and user experience perspective.  Replacing passwords as an authentication factor is finally possible. While eliminating passwords is a critical step in stopping credential-based attacks, it is just a first step on the journey to advanced authentication and access control needed to achieve zero trust.
Discussion points in this presentation will include:

• A brief history of authentication
• Changing requirements in the new work from home(or anywhere) business model and cloud-centric architectures
• Can we gain risk-reduction improvements by converging the traditionally disparate identity and security processes and technologies?
• A case for continuous user authentication
• What is device risk and why is the real-time assessment of endpoint security important