Du må beskytte. Du må detektere. Og du må vite hvordan du skal respondere
Beskyttelse, deteksjon og respons. Du kan ikke ha en uten de andre. Ekte digital robusthet krever de riktige verktøyene, prosessene og evnene i alle tre. Likt.
I denne videoen utforsker vi ulike angrepskjeder, før vi forteller litt om teknologiene og tjenestene Conscia og Cisco tilbyr for å redusere sannsynligheten for sikkerhetsbrudd, øke sjansene for rettidig deteksjon og gjenvinne kontrollen over infrastrukturen din så raskt som mulig.
Agenda
Introduction: Drawing on his experience as a Red Team in several large organizations, Lars Erik Braatveit guides us through the most common attack methods and how criminals move laterally within networks. He presents multiple scenarios, using storytelling and illustrations. Where can we, as defenders, create obstacles for the attackers?
Our mission is to protect as much as possible to prevent disaster from occurring. We call this Breach Protection. In a world where new attack methods are constantly evolving and new vulnerabilities are introduced, perfect protection is, however, impossible. That’s why it’s essential to have proper monitoring and alerting for unwanted incidents. We call this Breach Detection. When an intruder is detected inside, whether we identify the unwanted activity before anything goes wrong, or you discover it because ransomware has hit your company, action must be taken. We call this Breach Response. |
Breach Protection: What is breach protection, what are the key drivers behind an optimal breach protection infrastructure. How do the Cisco products and solutions increase the power of your breach protection shield. Per Arne Sørkilflå, Cisco
Cisco Secure Firewall: Explore how Cisco Secure Firewall acts as a vital line of defense, blocking unauthorized access and protecting against external threats. Zlatko Marić Cisco Secure Email Threat Defense: Understand the importance of email security and how Cisco Secure Email Threat Defense protects against phishing and other email-borne attacks. DEMO: Cisco Secure Email Threat Defense Overview. Zlatko Marić Cisco Umbrella: Discover how Cisco Umbrella combines DNS-layer protection with secure web gateway and cloud-delivered firewall to prevent access to malicious sites, enhance visibility into internet activity, and bolster threat intelligence across Cisco security solutions. Zlatko Marić |
Breach Detection: How do you do detect a breach as quickly as possible, how do you build an infrastructure with the needed solutions for an effective detection capability? How do Cisco products and services maximize your breach detection capabilities? Per Arne Sørkilflå, Cisco
Cisco Secure Network Analytics: Explore how Secure Network Analytics provides comprehensive visibility and streamline breach detection. DEMO: Cisco Secure Network Analytics Overview. Zlatko Marić Cisco XDR Overview: Explore how Cisco XDR, a key component of the Cisco Breach Protection Suite, integrates multiple telemetry sources and threat intelligence to streamline investigations and enhance SOC efficiency. Learn how the Breach Protection Suite supports SOC incident management by addressing common use cases, such as prioritizing critical incidents, enabling rapid recovery from ransomware, and confidently hunting emerging threats. DEMO: Cisco XDR Overview. Zlatko Marić Streamlining Incident Response with Cisco XDR: Experience how Cisco XDR Incidents streamline incident detection, triage, and response, facilitating focused and efficient incident resolution. DEMO: Incident Investigation in Cisco XDR. Zlatko Marić Enhancing Threat Hunting with Cisco XDR Investigate: Unlock the power of Cisco XDR Investigate for deep threat hunting, enabling analysts to uncover hidden threats before they escalate. DEMO: On-Demand Threat Hunting in Cisco XDR. Zlatko Marić |
Breach Response and Mitigation: Learn how to build an efficient response organization, including the processes and infrastructure needed to manage incidents effectively. Per Arne Sørkilflå, Cisco
Responding to an Incident in Cisco XDR: Explore the incident response capabilities in Cisco XDR and learn how it streamlines threat containment, automates remediation actions, and integrates with existing tools to accelerate incident resolution. DEMO: Incident Investigation in Cisco XDR. Zlatko Marić Strengthening Security Operations with Cisco XDR Automation: Explore the automation capabilities of Cisco XDR, accelerating threat response and freeing up resources for strategic tasks. DEMO: Cisco XDR Automated Incident Response. Zlatko Marić Streamlining Ransomware Recovery with Cisco XDR and Cohesity: Understand how Cisco XDR integrates with Cohesity for ransomware recovery, restoring critical data and responding to threats in real time. DEMO: Automated Ransomware Response and Data Recovery. Zlatko Marić Conscia Digital Forensics and Incident Response (DFIR): Explore how Conscia’s DFIR service combines forensics (investigation) and incident response (action) to ensure a comprehensive approach to handling security breaches. Lars Erik Braatveit, Conscia |