5 themes link this year’s Cybersecurity 20/20 conferences (visibility, detection and response, access control, governance, and data protection). Select the themes most relevant to you.
Enjoy!
More than ever, keeping your business safe from computer attacks is a vital issue for organizations. NOVIPRO puts at your disposal a team specialized in computer security and develops strategies on all aspects of cyber security aligned with your corporate vision and mission.
Monitoring endpoints is one of the biggest challenges for a security operations team. Within yourinfrastructure, user roles, software, and behaviors can vary greatlyfrom one machine to the other. With so many assets and users to manage, the challenge is to differentiate malicious behavior from normal operations.In particular, security analysts have to balance targeting suspicious behaviours against minimizing the number of false positives reported. In this session, we will discuss and illustrate how IBM QRadar can help you implement security use cases such as detecting reconnaissance tools, monitoring credential dumping, and identifying actions taken by malicious actors in real-time.
Among rapidly evolving technological advances, the emergence of AI-enhanced malware makes cyber attacks exponentially more dangerous and harder to identify. We are beginning to see AI-powered cyber attacks being exploited on a large scale. To protect against offensive AI attacks, organizations are turning to defensive cyber AI, which can identify and neutralize emerging malicious activity, no matter where or when it occurs. In this session, learn more:
.png)
Presented in english
While cybersecurity teams work to address operational and functional gaps, cybercriminals develop attacks targeting the top areas of risk for a company. Using the Forescout Device Cloud, the world’s largest repository of connected device data, Forescout Research Labs analyzed the risk posture of more than 8 million devices to uncover detailed information about the greatest points of risk inherent across today’s extended enterprise. Session topics include:
The Cyber security risk you know, don't you? Low, medium, high, or 0 to 10? But is it really enough to build a sensible roadmap and present this strategy to the board of directors? "Clearly not enough" answer company directors who are increasingly educated about the importance of ever-increasing IT risks. It is therefore becoming essential to quantify these risks in terms of probability and financial impact. This quantification thus makes it possible to determine the return on investment of Cyber projects and thus to prioritize the Cyber security roadmap, programs and strategy according to risk appetite, tolerance and capacity. We will discuss methods to structure this risk quantification for your organization and support discussions or decisions with business lines, board of directors and insurers.
Presented in english
A lot has been said about threat hunting, by a lot of people. They'll tell you how difficult it is, what products you should use, how to automate the pain away, and how you should've been doing this all along. But here's the thing...you have been doing it all along. The concepts and techniques aren't and shouldn't be new. You know this stuff, and it doesn't take a rocket surgeon to put some structure around it and develop a hunting program. So join us for some straight talk about what's valuable, what isn't, and where to focus when what you're looking for is wrongdoers and results.
The evaluation of its security posture allows to respond correctly to current threats. This activity is essential to maximize the efficiency of protection measures adapted to the business. Current events show us that basic hygiene is not done in the state of the art. How can services improve this reality?
Presented in english
What happens when a small, nimble attacker with limited resources takes on a hegemonic, established target? DISASTER -just ask Equifax, Sony, CapitalOne or anyone else who's been the victim of a data breach. Fortunately, we can all study cyber attacks and breaches and learn what works and what doesn't for protection and defence. So let's look at just such an attack from a long time ago in a galaxy far, far away...
Presented in english
Security is a critical issue for all enterprises and with more and more pressure being to provide ultimate security, teams are being stretched which ultimately creates a risk. The need to have flexible tools that will improve operational efficiency and improve security are at an all-time high. By choosing to add a Packetbroker to your network, a security team can apply precision filtering to isolate packets quickly, send only relevant data to tools so they are not oversubscribed, can have the ability to share packets with multiple tools and have crystal clear visibility into network packets even when they are encrypted. This presentation will inform the participants on the use and combined value of using a Packetbrokers with tools from vendors like Riverbed.
We are used to talking about defenses, but what if we were to ask ourselves who is on the other side of the fence? During this conference, we will present, on a humorous note, different attacks and the associated countermeasures.
Presented in english
Protection of digital assets requires an understanding of where your business and security are aligned to unlock innovation and growth while limiting business risk. It’s not enough to simply wrap security around your business, you need to build a security program that delivers real business results. This session will introduce strategies and IBM Security solutions that deliver good security that’s good for your business.
Presented in english
The workplace has forever changed, transforming when, where, and how we work. Overnight, we were all faced with concerns about massive increases in remote workers, cloud application growth, and how to secure everything. We would like to show you how to enable your workforce to get work done from anywhere-securely and effectively.
Through 12 questions, NOVIPRO's security experts will help you understand what you need to address to secure your business. Based on Forrester's Zero Trust Extended security methodology, discover the needs of your security ecosystem through 6 key competencies: data, networks, people, devices, workload, analytics and orchestration.
The international legislative framework for the protection of personal data is changing. Bill 64, which is being studied in the National Assembly, is part of this major trend, the consequences of which extend far beyond the borders of the GAFAMs (Google, Amazon, Facebook, Apple, Microsoft).
Presented in english
As more business moves to the cloud, security data is frequently spread across different tools, clouds and IT environments. This requires teams to spend more time integrating tools and information –and maintaining those integrations –and less time securing their organizations. But there is a better way! This session will introduce the IBM Cloud Pak for Security –a modern platform for unified security operations and cyber threat hunting in ahybrid, multicloud world.
Among rapidly evolving technological advances, the emergence of AI-enhanced malware makes cyber attacks exponentially more dangerous and harder to identify. We are beginning to see AI-powered cyber attacks being exploited on a large scale. To protect against offensive AI attacks, organizations are turning to defensive cyber AI, which can identify and neutralize emerging malicious activity, no matter where or when it occurs. In this session, learn more:
In today's new reality of the ever-expanding network, the network without borders and the new reality of the teleworker, it has become difficult, if not impossible, to know what is really connected to your network. Today's IT teams must rely on modern tools to find out what they can't see. We will explore the benefits and ease of use of Network Access Control (FortiNAC) to help you rediscover and control your networks.
In the journey towards digital transformation, our coaching missions give us the opportunity to observe the rapprochement between IT and TO for the same objective of efficiency. Two approaches, two teams, two different risk profiles that overlap, creating a prime area for hackers. How to set up a DevSecOps approach and with which recipes? Come and discover through concrete examples the success factors.
Presented in english
Ransomware is an equal opportunity destroyer with almost limitless potential to cause harm. Case in point: the City of Atlanta network breach, March 2018. Atlanta’s phase one recovery required millions of dollars and more than a year to accomplish. Even now, remediation and rebuilding efforts continue. During this session, we will discuss Atlanta’s chronology of events, from time of breach to present day, as well as Forescout’s role in restoring Atlanta’s network and services. We will also cover use cases going forward—for the City of Atlanta and for every organization intent on hardening networks and minimizing the ransomware threat.
Presented in english
With a Splunk deployment collecting up to 1M alerts a day from various security tools, which range from the trivial to the disastrous. And it’s not just individual alerts that matter, it’s the ability to combine multiple alerts from multiple security tools in a particular sequence and within a particular time frame and recognize that pattern as a security event which then generates the relevant alert on Splunk. SecOps teams spend a lot of time trying to write rules for Splunk alerts which fire off when these conditions happen – but they’re nearly impossible to test. In fact, most security teams only see what security events really look like in the rear-view mirror. With Threat Simulator, they can evaluate not only the effectiveness of their WAFs, firewalls, IDSs and more, but their ability to correctly classify and respond to security events on their network.
Presented in english
Digital transformation has been reshaping work for years. 2020 has accelerated global reliance on remote work and cloud-based technologies at a pace we’ve never seen before. From a cybersecurity perspective, many organizations have been caught flat-footed by insider threats.
According to Verizon, 30% of data breaches are insider driven. The cost of these insider breaches has risen by 31% in two years to $11.45 million. Whether negligent, malicious, or criminal, insider threats present a major financial and reputational risk to organizations. Insiders can be anyone from a trusted employee, to a third-party contractor, to a supply chain vendor.
Yet, most organizations still rely on defending outside attacks to a “perimeter” that no longer exists – especially in our new work reality. Modern security programs complement traditional “outside-in” security solutions with a people-centric approach to insider threats. Only an approach that blends people, process and technology can successfully prevent data loss.
In this talk you will learn:
Presented in english
With the digital transformation of businesses, security is moving to the cloud. This is driving a need for converged services to reduce complexity, improve speed and agility, enable multicloud networking and secure the new SD-WAN-enabled architecture.
Presented in english
Resilient organizations are plugged into the ever-evolving security landscape and building programs that enable them to innovate and drive their business. In this session, we will discuss how traditional perimeter security has evolved into security at the application layer, a key target of cyber criminals.
In the context of disaster recovery, our teams on the ground too often find that the promises of RTO and RPO are not often kept! Our experts will explain the reasons for this and point you in the direction of the essential good practices to implement.
Presented in english
Those with the skills and patience to deliberately penetrate your network, are also those who do the most damage, and who know how to stay hidden. Fighting skilled hackers starts by admitting they are human, and humans are inventive and cunning. In recent years we have seen a strong rise in 'cyber hunt' teams: individuals that hunt through the network actively looking for these bad guys. This webinar explores the technical and the business challenges of organizing hunt teams, and providing hunt teams with the telemetry they need to be effective.
Presented in english
Organizations that set up “temporary” remote workers and virtual security operations are now contemplating if their organizations are fully protected and optimized. Those that are still transforming or planning for a longer-term impact are exploring how to do so effectively and securely. Wherever you are in your journey, this presentation will provide you with six key considerations for risk-based assurance that will improve protection, productivity, and compliance. Get best practices, actionable steps and free tools you can use to address today’s challenges and tomorrow’s opportunities.
10h00 - 10h30.png?width=21&name=ANG%20(1).png){kind=small}
[CONFÉRENCE EN ANGLAIS]
Unifying the three top trends driving cybersecurity today - Bob Kalka, Vice-président de la division Sécurité d'IBM
Across the three trends most dramatically influencing the direction of cybersecurity today, there are a couple of accelerators unifying clients' approaches to these. This presentation will detail these trends and unifying factors, with an emphasis on intriguing case studies.
10h45 - 11h45 [CONFÉRENCE EN ANGLAIS]
Cybersecurity in the new normal - Kevin Peuhkurinen, Directeur de recherche principal à Info-Tech Research Group
Has the pandemic forced you to re-think your information security strategy? Are you looking for insight on how to address emerging threats and trends in the new normal? Join Kevin Peuhkurinen, Principal Research Director at Info-Tech Research Group, as we review how a remote workforce may lead to new insider threats, what the pandemic-driven cloud acceleration will mean for your security program and how to update your strategy to address the cybersecurity challenges in the new normal .
14h55 - 15h40 [CONFÉRENCE EN ANGLAIS]
Digital Identity - A Driver for Canadian Inclusion and Prosperity - Joni Brennan, présidente de CCIAN (Conseil Canadien de l'identité et l'authentification numérique)
In the push to digital transformation Digital Identity is a foundational building block that must be addressed. Digital Identity must work for governments and businesses from all sectors. Educators and accreditors wrestle with the implications of what digital identities and credentials will mean when they are used across the economy and through different networks for identity information verification. Today, the ecosystem of trust is active and involves the financial institutions and certain orders of government, but the rapidly evolving world requires transactions to move much faster, with more security, and with data protections. The challenges are complex and the implications will reach each and everyone of us. This session will share experiences from Canada's public and private collaboration to deliver digital identity that works for the benefit of all Canadians.
9h00 - 9h45
CONFÉRENCES AU CHOIX
[ VISIBILITÉ ]
Tant d'activités suspectes... par où commencer? L'essentiel de la surveillance des points terminaux avec QRadar
Gladys Koskas, QRadar Security Content Specialist - IBM Security
Conférence en français
[ DÉTECTION ET RÉPONSES ]
IA offensive vs IA défensive: La bataille des algorithmes
Sophia Chakri, Directrice de comptes - DarktraceConférence en français
[ CONTRÔLE D'ACCÈS ]
Measuring Risk in 2020-Enterprise of Things Report
Shawn Taylor, Senior Systems Engineer - ForeScout TechnologiesConférence en anglais
9h50 - 10h35
CONFÉRENCES AU CHOIX
[ GOUVERNANCE ]
La quantification du risque Cyber
Cédric Brossard, Consultant exécutif - IBMConférence en français
[ CONTRÔLE D'ACCÈS ]
6 Keys to Risk-based Assurance for the Remote Workforce and Security Operations
Murtaza Hafizji - RSA Conférence en anglais
[ DÉTECTION ET RÉPONSES ]
La sécurité dans le Cloud
Joelle Cimon, Conceptrice de solutions préventes en infrastructure et Dominique Derrier, CISO - NOVIPROConférence en français
10h40 - 11h25
CONFÉRENCES AU CHOIX
[ STORY TELLING ]
Cyber Wars: An IBM Story
Vivienne Suen, conceptrice d'architecture en cybersécurité et John Beal, directeur sécurité - IBMConférence en anglais
[ VISIBILITÉ ]
Respond faster with better data by using a Packetbroker to clear the noise
Dennis Carpio, Sr. Director, Business Development - Keysight TechnologiesConférence en anglais
[ DÉTECTION ET RÉPONSES ]
Qu'en est-il du côté de l'attaquant...
Anonymous, Expert en sécurité - FortinetConférence en français
11h30 - 12h15
CONFÉRENCES AU CHOIX
[ PROTECTION DE DONNÉES ]
IBM Digital Trust - protecting what matters,
Ezra Singh, Digital Trust Specialist - IBMConférence en anglais
[ CONTRÔLE D'ACCÈS ]
Secure Remote Worker
Paul Coderre, Cybersecurity Partner Specialist - CiscoConférence en anglais
[ GOUVERNANCE ]
Cybersécurité : évaluez votre niveau de maturité en 12 questions,
Roger Ouellet, directeur de la pratique sécurité et Ludovic Faider, spécialiste sécurité - NOVIPROConférence en français
12h20 - 13h05
[ GOUVERNANCE ]
Projet de loi 64 sur la protection des renseignements personnels : qu’est-ce qui va changer pour les entreprises québécoises?
Jocelyn Auger, partenaire - BCF avocats d'affairesConférence en français
13h15 - 14h00
CONFÉRENCES AU CHOIX
[ VISIBILITÉ ]
Hunting for threats in a hybrid, multicloud world
Constantine Grancharov, Senior Product Manager et Jerry Frady, Americas Technical Sales Leader - IBM Conférence en anglais
[ DÉTECTION ET RÉPONSES ]
IA offensive vs IA défensive: La bataille des algorithmes
Karina Fredette, Directrice de comptes Cybersécurité - DarktraceConférence en français
[ CONTRÔLE D'ACCÈS ]
Savez-vous quels appareils se cachent vraiment dans votre réseau aujourd'hui, comment savoir ce que vous ne savez pas!
Benoit Dansereau, Pre-Sales Security Expert - FortinetConférence en français
14h05 - 14h50
CONFÉRENCES AU CHOIX
[ GOUVERNANCE ]
La nécessité du DevSecOps dans la transformation numérique de l’entreprise
Dominique Derrier, CISO et Fourkane Irki, Analyste Systèmes - NOVIPROConférence en français
[ CONTRÔLE D'ACCÈS ]
A Ransomware Story: What happened, the response and the way forward
Shawn Taylor, Senior Systems Engineer - ForeScout TechnologiesConférence en anglais
[ VISIBILITÉ ]
Don’t Wait for the Breach: Perfecting Your Splunk Alerts
Scott Register, VP Security Solutions - Keysight TechnologiesConférence en anglais
14h55 - 15h40
CONFÉRENCES AU CHOIX
[ PROTECTION DE DONNÉES ]
4 Steps to Reducing insider risk in the new [work] reality
Michael McKee, EVP and General Manager - ProofPointConférence en anglais
[ VISIBILITÉ ]
Capture the Cloud with SASE
Akshay Kashyapa, Technical Solutions Architect - CiscoConférence en anglais
[ DÉTECTION ET RÉPONSES ]
Cyber Resilience: Reaching the New Frontier in DevSecOps
Neil Correa, Sr. Cyber Security Strategist - Micro FocusConférence en anglais
15h45 - 16h30
CONFÉRENCES AU CHOIX
[ PROTECTION DE DONNÉES ]
RTO/RPO : tiennent-ils leurs promesses en cybersécurité?
Éric Cothenet, directeur des solutions technologiques et Philippe Arnaud, spécialiste protection des données - NOVIPROConférence en français
[ VISIBILITÉ ]
Titre à confirmer
Paul Brugan, Technical Channel Manager - RiverbedConférence en anglais
[ DÉTECTION ET RÉPONSES ]
Titre à confirmer
RSAConférence en anglais
-1.png){kind=logo}
.png){kind=logo}
.png){kind=logo}
.png){kind=logo}
.png){kind=logo}
.png)
.png)
.png)
.png)
.png)
.png)
.png)
.png)
.png)
.png)
.png)
.png)
.png){kind=logo}
