Triad NC ISSA Monthly Meeting - 2019-11 @ Forsyth Tech
Event Information
Description
************************* LOCATION NOTE *************************
We are back at Forsyth Tech for the November meeting. Also, while we are in the normal Forsyth Tech building, we will be in a different room, room #4446.
********************************************************************
Agenda:
1. Meet, greet, network, and dinner (will be provided) (6:00 pm - 6:45 pm)
2. Chapter business (6:45 pm - 7:00 pm)
3. Presentation (7:00 pm - 8:00 pm): It’s Time for a New Generation of Security
Abstract:
Cloud security and proper incident response are business-critical concerns which cannot be treated as afterthoughts. With Information as a Service (IaaS) and Platform as a Service (PaaS) being the most transformative change in IT in the last 25 years, companies continue to move their workloads to public cloud as well as to cloud-native tools like Docker and Kubernetes. As they do this, they are also exposing themselves to risks and threats that cannot be detected with a "Next-Gen" Anti-Virus or firewall.
Join Lacework for a free discussion on the anatomy of a compromise using a real-life breach scenario, how it happened, and what you can do to prevent it. The discussion will include examples of different types of cyber attacks (SSH brute force attacks, Illicit crypto mining, container vulnerabilities, identity and access management (IAM) privilege escalations, ...) and why some can be so challenging to detect, especially in public cloud and containerized environments.
We will then dive into a quick demo showing how you can automatically detect these indicators of compromise within your own cloud environments proactively before they spur into something more brand damaging.
Note: Lacework will also be raffling off a $100 Amazon Gift card for one lucky attendee! - JUST REMEMBER YOUR BUSINESS CARD AND YOU ARE ELIGIBLE!!
Presenter's Biography:
Anthony Alves - Senior Security Engineer, Lacework
* 20+ Years working with security, SaaS, Public Cloud, & DevOps
* Experience with SOC 2, PCI, HIPAA, and other compliance frameworks
* Massachusetts native