Presented by Rob Wayt, Director of Governance, Risk & Compliance • Structured Communication Systems
The cybersecurity regulatory compliance landscape has never been more complicated, with updates to CMMC, GLBA, PCI, TSA, and security best practices. This discussion will delve into these new and evolving concepts and provide practical ways to solve these challenges, improve security maturity, and remain compliant.
Presented by Jeff Simpson, Sr Sales Executive, Cybersecurity Solutions • AT&T Alaska
With Cybersecurity compliance mandates increasing, and attacks on vulnerable supply chains and endpoints on the rise, it has never been more important to assess and take proactive measures to secure your network. This presentation pulls together information from many different analysts and digests their views on which Cybersecurity priorities your organization may face this year, along with the top eight cybersecurity trends for 2023, such as Supply Chain Resilience, Security Architecture Modernization and Data-Centric Transformation.
Presented by Kevin Hinrichs • FBI Special Agent, Cyber Squad
To successfully build a plan for addressing cyber threats, organizations need to know when and how to engage law enforcement. Oftentimes addressing law enforcement is seen as a barrier or a complication for incident handling. Law enforcement should be viewed as an asset and ally in the fight against cyber threats. For companies looking for insight into exactly what they are facing, this cooperation can fill a crucial need. The presentation aims to shed light on what it really means to work with law enforcement, and how that work can be mutually beneficial to both parties.
Special Agent Kevin Hinrichs is a 12-year Alaska resident who spent 13 years in the control system industry as a software developer before joining the FBI. He previously worked as lead developer for a software suite focused on critical condition management across a vast array of ICS/SCADA platforms. Since pivoting to work for the FBI, Special Agent Hinrichs has been assigned to the Cyber Squad in Anchorage where he works on a range of cyber issues including BEC, insider threat, hacktivism, nation-state threats, and has extensively focused on the ransomware threat, specifically enterprise ransomware. Special Agent Hinrichs has a Bachelor’s Degree from the University of Houston in Computer Science and Mathematics. Among the roles Special Agent Hinrichs fulfills for the FBI Anchorage office are the InfraGard Coordinator position for the Alaska InfraGard Chapter, the primary point of contact for ICS/SCADA issues, and the subject matter expert for cryptocurrency.
Presented by Jerry Yarborough, Sr SLED Account Executive • Extreme Networks
During the presentation, we will discuss how to simplify your network and make it more secure by using the IEEE standard 802.1aq. We explain the standard, and how it is easier to use than traditional networking and much more secure. We will demo its simplicity and what makes it secure.
We will then move into Wifi 6e and how it is changing the way we must look at wireless deployments. We will discuss all the changes that it has brought us and what we must be planning for with the higher speeds that we will be able to achieve.
Presented by Terry Hillis, Systems Engineering, Cortex • Palo Alto Networks
The best way to manage exposure, reduce risk, and improve your security posture is to understand your attack surface through the eyes of an attacker. We’ll demonstrate how to reduce the frequency and severity of your security incidents without additional analysts or efforts and help your organization actively discover, learn about, and respond to unknown risks in all connected systems and exposed services. Learn how you can boost your Attack Surface Management (ASM) with visibility into your on-prem and cloud-based internet-connected assets and recommendations on prioritized actions so you can better defend your organization.
In this session, you will learn about:
Presented by Brian Knopp, Principal Security Engineer • Arctic Wolf
Are “AI” and Machine Learning tools like ChatGPT having an impact on cybersecurity? This session will examine the top attacks looking back on 2022. We’ll define them by quantifiable impacts, like affected individuals, cost, and data breaches. We’ll also discuss key sociological and economic factors that increased vulnerabilities in 2022, identify industries that saw significant attacks, and summarize the top 5-6 data breaches and evaluate the impact of these threats on personnel retention and insurability, 2023 predictions, and the most common recommendations to improve your security posture.
Presented by John McLaughlin, Sales Engineer • BlackBerry Cylance
You come into work to a bunch of servers that have been infected with ransomware. Where to go from here? We’ll take you through the basic steps you need to take in the event this happens to you.
Presented by Rubrik
Organizations have invested heavily in IT security, attempting to fortify their perimeter, network, endpoint, and application protections. Despite these investments, hackers are successfully penetrating these defenses and targeting enterprise data, including backup data. Ransomware is starting to specifically target online backups by encrypting or deleting them. If your organization was the target of an attack today, how do you know what data was impacted and where? Manually sifting through millions of files and comparing each snapshot consumes FTE time and prolongs recovery exponentially. Mass restores of the entire environment could mean high data loss and weeks’ worth of work down the drain. In this session, we will discuss how to protect your last line of defense, the backups. We will walk through the anatomy of a recovery, the best practices, and advanced tools to ensure you will not have to pay a ransom, and how to quickly recover your data to continue business operations.
Presented by Tyler Conrad and Jeremy Georges • Arista Networks
In this presentation, we will explore the different network segmentation models available, including VLANs, VRFs, and group-based segmentation models.
We will begin with an overview of the different segmentation models and discuss their benefits and drawbacks. VLANs provide a simple way to segment traffic but do not scale well in larger environments. VRFs offer more robust isolation but can be complex to manage. Group-based segmentation models offer a flexible and scalable way to segment traffic based on the endpoint itself rather than the network. We will discuss the implementation and configuration of each of these models and provide examples of how they can be used in different scenarios.
Next, we will discuss how EVPN with either VXLAN or MPLS transport can be used as an attachment point to allow for segmentation to cross the network device boundary and become a network-wide policy.
Finally, we will compare the different models to help you choose the best segmentation approach for your network, as well as how to layer these together to have a more complete design. By the end of this presentation, you will have a better understanding of modern segmentation architectures and be equipped to make informed decisions for your network.
Presented by Sumi Gorla, Director of Systems Engineering • Illumio
Regardless of the sophistication of the ransomware, the end goal is always the same: get in through a vulnerability and move laterally through your network. Join this presentation as we help peel back the layers to provide you with simple steps to get started that include:
Sumi Gorla is the Director of Systems Engineering at Illumio. Her responsibilities include executing Illumio strategic product vision, field engineering enablement, and enterprise customer selling and support across US West. Prior to Illumio, Sumi has held several engineering and technical sales leadership roles in companies such as EMC, Brocade, Citrix, and BigSwitch Networks. As a sales leader, Sumi brings a unique approach to problem-solving, from both a technical and a business perspective. Sumi’s strengths are in her ability to explain how technical features can meet business requirements for all levels of audience.