Topic: Information Security

  Presented by Sysdig

Containers and microservices are designed to provide a reliable and low-cost way for teams to build and ship distributed applications. However, they also add extra layers of abstraction and orchestration to your environment that hinder your ability to do performance monitoring and security enforcement. Many challenges companies face in this world are similar to that of the traditional Linux world; however, the microservices layer adds additional complexity.

We’ll discuss how to overcome this challenge and specifically discuss:

• Benefits and drawbacks of different approaches to data collection in containers
• How using metadata from orchestrators like Kubernetes helps optimize and secure your containers
• Best practices for alerting and compliance in a distributed ephemeral infrastructure
• How troubleshooting and forensics has changed in containerized environments

  Presented by Darktrace

In a world that is increasingly digital, cyber-attack has become the most significant risk confronting today’s businesses, smart cities, and critical infrastructure. Online crime cost the world more than half a trillion dollars last year, while recent attacks have managed to influence the U.S. presidential election and disrupt the Ukrainian power supply. This troubling state of affairs is the product of several fundamental weaknesses with the traditional approach to cyber defense, which relies on predefining what threats look like at a time when criminals launch never-before-seen attacks daily. Moreover, these attacks increasingly strike at machine-speed, preventing security professionals from responding before their damage is done.

  Presented by GCSIT Solutions

In order to keep up with the increasingly dynamic, distributed nature of modern applications, security needs to be an intrinsic component of the infrastructure that applications and data live on, rather than a bolted-on afterthought.

We eplore how:

• You can enable micro-segmentation on the network with VMware NSX to prevent the lateral spread of threats.
• And how VMware vSphere and vSAN deliver at-rest data encryption.

  Presented by Mark Merchant • CISO, Municipality of Anchorage

As we are all well-aware, the CIS top 20 Critical Security Controls are a highly effective set of best practices developed by leading security experts from around the globe. If you are serious about protecting the confidentiality and integrity of your systems and information, effective implementation of these controls can certainly aid in “elevating your fruit to higher branches” and help keep it safe against the rapidly growing threat that exists today. In this presentation, I will touch on key concepts from the CIS Controls and identify some real technical examples of things that you can do in your organization without having to spend hundreds of thousands of dollars to achieve.