Vulnerability Management for Managers (08/24/2010)

Many managers and even many IT staff may not understand what vulnerabilities really are and how to manage them.  Vulnerabilities are different from traditional issues like viruses and spam; they can be exploited by attackers unless the exposures are eliminated.  Having a better understanding of vulnerabilities translates into knowing how they impact overall risk.  Join Allen Vance, the Senior Product Manager at SecureWorks responsible for Application and Data Security services for this educational webcast; he has CISSP certification and 25 years experience in security and systems development.

What Threat Intelligence Can Do For You (08/03/2010)

Threat Intelligence is a critical component of an information security strategy.  The program should be comprehensive, combining both internal and external resources, and must develop actionable intelligence.   Join Kevin Houle, Senior Director for SecureWorks’ Threat Intelligence (TI) as he discusses how to leverage TI to gain an advantage in a rapidly evolving threat environment.

Demo of an Advanced Security Portal (07/20/2010)

The purpose of a security portal is to present actionable security intelligence and reporting. This allows you to easily identify the steps you should to take to address threats and vulnerabilities in a systematic fashion that is aligned with your business and compliance priorities.

Join Tim Heagarty, SecureWorks Security Engineer, as he presents the SecureWorks security portal and takes you on a guided tour of the portal's capabilities, including newly enhanced functions. Learn how our system tickets and processes over 11 billion events a day. In addition, Rick Talford, VP of Product Management, will answer your questions during the Q&A session.  Attendees will be given private access to the Demo Client Portal for up to two weeks.

Social Engineering: The Dark Art (06/08/2010)

A Social Engineering attack is an attempt to find – and exploit -- human vulnerabilities in your security system. These attacks can take many forms, but all of them focus on the employees and processes in your organization. Educating your employees about these scenarios is key to developing and maintaining a strong security program.

Join Beau Woods, SecureWorks Solutions Architect, as he takes you through the social engineering techniques the bad guys use and makes recommendations on how you can minimize their chances of success.

Web Application Security: A Comprehensive Approach (05/25/2010)

Web applications are one of the fastest growing point of attack for cybercrime. According to SecureWorks' Counter Threat Unit^SM research team, the largest increase in new vunerabilities during the first quarter of 2010 was due to site-specific and implementation specific Web application weaknesses . Join us for this free webcast as we discuss how to secure web applications with a balanced, defense-in-depth approach that minimizes risk.

Living with CIP: So You`re Compliant, Now What? (05/04/2010)

Join SecureWorks as we discuss how to develop a more effective way to live with CIP that addresses your security and compliance requirements.

Log Monitoring Best Practice – Get Beyond the Network Layer (03/09/2010)

A sound log management approach defines what your company needs to monitor and retain in order to satisfy both security and compliance needs. For this reason, it is critical that organizations focus not only on network logs, but also the logs from hosts and applications that support critical business processes. Join SecureWorks as we discuss how to develop a more effective log management strategy that addresses your security and compliance requirements.

Social Media Security (02/23/2010)

Social networking websites are some of the most trafficked sites on the Internet. The increase in popularity and activity of these sites has created new risks to not only individuals but also organizations. The same properties that make these sites attractive communication tools also make them well-suited for malicious activity. Join Ben Feinstein, a Director on SecureWorks' highly regarded research team, the Counter Threat Unit(TM), as he discusses risks and attacks on social networking systems and examples of recent Twitter scams.  Mr. Feinstein has over a decade of experience designing and implementing security-related information systems and extensive expertise in IDS/IPS, digital forensics, incident response and secure messaging.

New HIPAA and HITECH Rules: Experts discuss the impact on healthcare firms and business associates (02/02/2010)

Please note we have changed the time of tomorrow's webcast. We will begin at 2 pm EST, not 3 pm as originally communicated. If you are unable to attend the live webcast due to the time change, we will be posting the webcast archive recording on our website approximately 48 hours after the live event. Thank you for your flexibility. We look forward to an interesting webcast.

Enforcement of the HITECH Act begins February 2010. The update added more rigorous data-breach notification requirements and increased penalties for violations. It also extended the compliance requirement to business associates of healthcare organizations. Any organization that handles patient health information, as well as other protected information, is now required to be HIPAA compliant. Join SecureWorks and a panel of HIPAA security experts as we discuss how these new requirements could impact your organization's security policies and practices and what steps the experts recommend for getting and staying compliant.

Panel Members:
Beau Woods, Solutions Architect, SecureWorks Security and Risk Consulting
Sharon Finney, Corporate Data Security Officer, Adventist Health System
Mac McMillan, Consultant
Heather Hilliard, Attorney

Security in a New Era of Threats (01/07/2010)

Podcast

In this podcast, Jon Ramsey, CTO at SecureWorks, addresses an array of security issues currently facing businesses, including security in the cloud, insider attacks, securing mobile devices and how to manage spam and malware. The story of a CEO whose Gmail account was hacked eventually leading to the loss of $1 million will shock you.

The transcript of this podcast is available here.

Best Practices for Windows Log Monitoring (12/10/2009)

Many organizations rely on Windows systems for key business processes and data support, making them a key source of security and compliance information. Monitoring the audit logs across these systems enables you to quickly identify and thwart malicious activity. However, performing effective log monitoring requires the right mix of technology, expertise and resources.  Join SecureWorks as we discuss the right log monitoring approach to help keep your organization efficient and compliant.

Testing and Training – Imperatives for Maintaining a Strong Security Posture (11/19/2009)

By orchestrating proactive security practices, your organization can increase system-wide security and compliance. Penetration tests or "pen tests" are a vital part of this process. By subjecting your system to a simulated real-world attack, you can identify the extent to which your system is vulnerable to an actual determined attack. Another vital part in maintaining a strong security posture is educating your employees about information security; security breaches often occur due to human error and lax attitudes about security procedures. Join SecureWorks as we discuss the Pen Testing Process and Security Awareness Training for all of your company’s employees and your IT staff.

Anatomy of a Web Application Attack: Looking Through the Eyes of an Attacker and an Analyst (11/10/2009)

Web applications, particularly those that handle medical and financial information, are a prime vector of attack. But preventing application attacks requires a different approach from that used to protect against classic network attacks. Join SecureWorks and Imperva – leaders in managed Web security services – for a fascinating look at Web application attacks from the perspective of an attacker as well as from that of a Managed Security Services Provider (MSSP) responsible for defending against them.

Intelligent Intrusion Prevention: Why "human intelligence" is critical to effective IPS (10/15/2009)

An Intrusion Prevention System is only as good as it’s tuning, which is why many financial institutions fail to get optimum protection from their IPS appliances. According to a survey by Infonetics, only 70% of IPS devices are deployed in-line where they can actively block attacks. The industry standard is that only 60% of signature updates are actually applied to IPS devices, leaving financial assets vulnerable and exposed. In this webcast, you will learn how SecureWorks’ iSensor IPS turns the industry standard on its head and provides unmatched protection for financial institutions.  

Elevated Risk: How to Protect Against the Increasing Insider Threat (09/29/2009)

With growing financial pressures, staff reductions and economic uncertainty, the risk of malicious activity by trusted individuals is greater than ever. Join us for a free webcast as we discuss how you can cost-effectively reduce the risk your organization faces from rogue employees, contractors and others with access to sensitive systems and data.

Comprehensive Web App Protection (09/24/2009)

According to Gartner, "80% of organizations will experience an application security incident by 2010." Regulators have also recognized the risk that insecure Web applications pose. Many compliance mandates including PCI, FFIEC, NERC CIP, FISMA and others now require organizations to secure their Web applications and protect them from attack. To protect against Web application threats, organizations must go beyond traditional network defenses. Join us for a free webcast as we discuss how SecureWorks provides businesses with comprehensive security for their Web applications.

Web App Firewall (WAF): Securing Financial Applications and Data (08/20/2009)

Financial institutions rely on Web applications to support key business processes and interact with their customers, partners and employees. However, attackers are increasingly exploiting the vulnerabilities in Web applications to bypass security controls and steal sensitive data. Join our complimentary webcast as we discuss how financial institutions can cost-effectively block Web application threats and secure the applications on their websites.

PCI 6.6: What’s the Best Option for You? (08/04/2009)

Requirement 6.6 of the Payment Card Industry Data Security Standard mandates steps organizations must take to secure their public-facing Web applications. Many companies struggle to comply with section 6.6, despite guidance issued last year by the PCI Security Standards Council. Companies successful in complying are finding an approach that not only satisfies section 6.6, but also enables their organization to run more efficiently and more securely. Join experts from Imperva and SecureWorks as they discuss how enterprises are satisfying PCI 6.6 and safeguarding their web applications.

Elevated Risk: How to Protect Against the Increasing Insider Threat (07/23/2009)

With growing financial pressures, staff reductions and economic uncertainty, the risk of malicious activity by trusted individuals is greater than ever. Join us for a free webcast as we discuss how you can cost-effectively reduce the risk your organization faces from rogue employees, contractors and others with access to sensitive systems and data.

Emerging and Zero-Day Threats: Combating Cybercrime with the Counter Threat Unit(SM) (06/23/2009)

Leveraging a wide array of data sources – including information from across our client base – the Counter Threat Unit (CTU) identifies emerging threats and develops countermeasures to protect against them. Join Don Jackson, Director of Threat Intelligence, as he discusses how Threat Intelligence is gathered, analyzed and used by the CTU to combat cybercrime and safeguard client assets.

Log Management SaaS: A Better Alternative (06/09/2009)

Log Management is a key operational process for security and compliance with regulatory mandates, but many banks face challenges implementing, managing and maintaining the technology required for efficient Log Management. Join us for a free webcast as we discuss Log Management technology and Software-as-a-Service alternatives that help banks overcome Log Management challenges quickly and cost effectively.

Staying Secure in a Down Economy (05/07/2009)

Budget cuts are inevitable during an economic downturn. However, organizations still have to stay ahead of hackers and malicious insiders even while trimming back security spending. This means doing more with less to protect their assets from today’s threats. Join our complimentary webcast as we discuss pragmatic ways that organizations of all sizes can make the most of their security resources.

Log Management SaaS: A Better Alternative (03/31/2009)

Log Management is a key operational process for security and compliance, but many enterprises face challenges implementing, managing and maintaining the technology required for efficient Log Management. Join us for a free webcast as we discuss Log Management technology and Software-as-a-Service alternatives that help enterprises overcome Log Management challenges quickly and cost effectively.

Virtual Security: Safeguarding Virtual Machines (03/24/2009)

According to Gartner, "Virtualization will transform how IT is managed, what is bought, how it is deployed, how companies plan and how they are charged." Seeking to gain the benefits of virtualization, many utilities are using virtualization now or planning to deploy virtual machines in the near future. Join us for our free webcast as we discuss the security implications of using virtual machines in your environment.

Emergency Procedures: Best Practices for Incident Response (01/15/2009)

Are you prepared to respond during and after a successful attack on your organization? When an incident occurs, how quickly and thoroughly you respond has a major impact on the damage done by hackers or malicious insiders. Join us for our complimentary webcast as we discuss best practices for emergency response to data breaches, internet attacks and other security incidents.

PCI DSS 1.2: Getting on the Path to Compliance (11/18/2008)

The Payment Card Industry Data Security Standard (PCI DSS) version 1.2 is comprised of 12 broad requirements which organizations must meet each year to maintain compliance. As with other regulations and guidelines, PCI DSS compliance cannot be achieved through technology alone. It requires establishing and maintaining a PCI Program that incorporates the appropriate policies, procedures and technology to ensure ongoing compliance through continuous protection of payment card data that is collected, stored or transmitted. Join our free webcast as we discuss how to build a successful PCI Program that will help your organization achieve and maintain compliance with the PCI DSS version 1.2.

Top 5 SIEM Pitfalls: Understanding the Risks (10/28/2008)

Security Information and Event Management (SIEM) is a key operational security process, but many SIEM projects fail due to unforeseen risks that result in higher costs and unmet expectations. Join us for a free webcast as we discuss the top 5 pitfalls enterprises encounter when deploying SIEM and how to avoid them.

Best Practices for PCI Compliance (10/07/2008)

The Payment Card Industry Data Security Standard has had a major impact on Universities. After an initial period of uncertainty and inaction towards PCI compliance, many Universities have learned the hard way that PCI compliance is not optional if your institution processes, stores or transmits credit card data. Join our complimentary webcast as we discuss Best Practices for PCI Compliance and how Universities are meeting the requirements.

Aligning Your Security Program with Your Business (09/23/2008)

Understanding the impact of security issues on your business is essential to aligning your security program with business objectives. Recognizing the potential risks to your business processes allows you to prioritize security operations and allocate resources to more effectively manage those risks. In this complimentary webcast, we will discuss best practices for determining the business impact of security risks.

IT Security Triage: Critical Needs for Healthcare (08/19/2008)

Prioritizing critical needs is essential when resources are insufficient to address everything. In IT Security, that means identifying the biggest risks to your IT assets and determining the best way to address them. Join our free webcast as we discuss top IT security needs for healthcare providers and best practices for satisfying those needs in a cost effective fashion.

Building and Sustaining a Security Operations Center (07/29/2008)

Your security team plays a crucial role in securing and maintaining the confidentiality, integrity and availability of your business' IT assets. However, time and resource constraints limit security operations and their effectiveness. Join our free webcast as we discuss best practices for building sustainable security operations that meet your business needs and make the most of your security team.

Securing SCADA Networks (01/29/2008)

Responsible for monitoring and controlling critical infrastructure processes, SCADA networks are core utility assets. With the recent CIA confirmation of cyber attacks disrupting power equipment and affecting multiple cities, it is clear that SCADA networks must be protected from cyber threats. However, unique protocols and systems make securing SCADA networks a challenge for many utilities. Protecting these vital networks from cyber threats requires a combination of security expertise and in-depth knowledge of the specialized protocols and systems that are a part of SCADA networks.

In this webcast we will discuss how SCADA networks can be secured and protected against cyber threats.