Recorded: April 25th | 2024 Watch
Today, most security and IT teams are dealing with an attack surface that is exponentially larger than it used to be, and many organizations lack full visibility into their entire asset landscape. Networks often include hundreds or thousands of networking devices, security products, IoT devices, and connected OT systems; and businesses are relying more and more on third-party code and apps to get their work done.
On this webinar we will explore actionable strategies for reducing your attack surface and defending against third-party risks, and attendees will gain insights on:
- The different types of attack surfaces, including digital, social engineering, and physical.
- Common attack vectors utilized by threat actors, such as vulnerable web components, phishing emails, weak credentials, malware, and misconfiguration exploits.
- Innovative approaches to attack surface reduction, including meticulous inventory management, access restriction, network segmentation, and comprehensive employee cybersecurity training.
- Effective strategies to combat threats and mitigate third-party risks.
Moderator
Colin Whittaker, PCI Industry Alumni, Founder and Director Informed Risk Decisions Ltd. Colin has been instrumental in driving forward a risk and security strategy for payments over the last 15 years since he retired from the military in 2001, and took up the role of Head of Security at APACS. Whilst there he was one of the first people to be elected to the PCI SSC Board of Advisors where he was always keen to try and promote the differences in threat between Europe and UK, and the US. Since that election he hasn't moved far from the PCI domain. In 2010 he moved to Visa Europe and became the Vice President Payment System Risk with responsibilities for designing and operating the Visa Europe PCI compliance strategy for European merchants and service providers. He was also responsible for coordinating Visa Europe's approach to cardholder data breaches in Europe, and for the changes to the Visa Europe Compliance strategy through the creation of the Technology Innovation Programme which gave the very first PCI DSS compliance relief for EMV chip accepting merchants. In 2015 he went independent and currently provides cyber security risk consultancy services to a wide range of public and private companies. Colin has presented on Information Security at major events around the world, and has published a number of papers on securitty.
Panel
Neal Roylance, Director of Security Research from RiskRecon, a Mastercard Company. As a Cybersecurity expert, Neal has been focused on protecting digital assets of large financial companies over the last 17+ years. Neal has acted in CISO and Director level roles to implement effective security programs and governance at these institutions. Neal has also spent time in engineering and architecture roles that have contributed to a strong understanding of "what works" at all levels of a security organization. Neal is currently focused on delivering objective security assessments that empower organizations to build effective risk management of critical 3rd party relationships.
Andrew Snell, Director, Solutions Engineering, Prevalent. Andrew Snell is responsible for assisting organizations in identifying solutions for third-party risk management program efficiencies. Over the past 6 years at Prevalent, Andrew has worked with organizations of all sizes in developing, validating, and optimizing third-party risk management programs and processes through the use of risk management technology and service offerings.He comes from a background heavily built on customer success which serves as his foundation for every customer interaction.
Rachael Olsen is a Senior Solutions Engineer at LogicGate, an industry-leading risk management platform that helps organizations centralize, automate, and scale their GRC programs. Prior to LogicGate, Rachael worked at PwC for 7 years, helping clients in various industries to deploy their GRC programs and adopt a risk-centric culture. In her free time, she loves hiking in the mountains and traveling internationally to experience new cultures and cuisines.
Tim Mullen servers as the Chief Information Security Officer (CISO) of OneTrust. Tim brings over 20 years of experience in information security encompassing all roles and functions. Tim has an extensive background in many areas within information security such as: : Architecture & Advisement, Identity and Access Management, Incident Response, Security intelligence, Application Security, Vulnerability Management, Penetration testing, Red Team, Risk Management, and Data Governance, etc. Before joining OneTrust, Tim served as Deputy CISO at Change Healthcare for two and a half years where he oversaw multiple security teams and organizations Prior to Change Healthcare, Tim served as CISO at Travelport for 4 years, and prior to that role he was the Head of Global Security Architecture, Engineering and Operations at InterContinental Hotels Group (IHG). He has held many leadership roles with other large corporations in his career such as: Home Depot, Fidelity National Information Services, and AT&T. On a personal note, Tim was born and raised in Atlanta, GA where he lives with his wife and two kids. Tim is a big sports enthusiast. In his spare time, he enjoys playing golf, tennis, and coaching his children's sports teams.y, NY.