CloudSecNext Summit Solutions Track 2023

Thank You to Our Sponsors

Agenda | October 17, 2023 | 11:00 AM - 2:00 PM EDT

Timeline (EDT)	Session Details
11:00 AM	Welcome & Opening Remarks AJ Yawn, Certified Instructor, SANS Institute
11:15 AM	Leveraging CNAPP to Secure Your Cloud Infrastructure Cloud infrastructure is an attacker’s playground. So how do you reduce your attack surface? With a holistic platform that automates cloud infrastructure security & empowers stakeholders to drive accurate risk prioritization & remediation across complex multicloud environments. Join Ermetic Sr. Solutions Engineer Thomas Gentsch to find out how to leverage an identity-first Cloud-Native Application Protection (CNAPP) approach for full asset discovery, deep risk analysis, runtime threat detection & compliance reporting. He’ll explain how to use powerful visualization, prioritization & remediation tools to close the cloud expertise gap. In this session, attendees will learn how to: Leverage an identity-first CNAPP approach for full asset discovery, deep risk analysis, runtime threat detection & compliance reporting Use powerful visualization, prioritization & remediation tools to close the cloud expertise gap Automate cloud infrastructure security Reduce their cloud attack surface Empower stakeholders to drive accurate risk prioritization & remediation across complex multicloud environments Thomas Gentsch, Sr. Solutions Engineer, Ermetic
11:50 AM	Why Siloed Cloud Security Tooling in the Modern Cloud Environment Isn’t Enough Learn how siloed point-based cloud tools, such as those that focus on capabilities like CSPM, or CWP or are agentless alone, are unable to keep up with the modern cloud computing environment. Understand how and why adversaries are taking advantage of gaps in security to successfully attack their victims. Finally, learn what steps organizations can take to reverse the adversary advantage and stop cloud breaches. Mike Sanders, Manager, Cloud Solution Architecture, CrowdStrike
12:25 PM	Break
12:40 PM	Rethinking Incident Response for Cloud-driven Enterprises The field of incident response was created when companies were mostly on-prem and the cyberattack landscape was more contained. Today's cloud and SaaS environments and the vast, dynamic attack surface they create have rendered the old retainer-based approach to IR obsolete. So, what should take its place? Join this talk for insights and recommendations from seasoned IR expert, Mitiga Co-founder and COO, Ariel Parnes. Ariel Parnes, Co-founder and COO, Mitiga
1:15 PM	Expanding SIEM Left: The role of SIEM in DevOps - A Fireside Chat with AJ Yawn AJ Yawn, Certified Instructor, SANS Institute Ken Westin , Field CISO, Panther
2:00 PM	Wrap-Up AJ Yawn, Certified Instructor, SANS Institute

Timeline (EDT)

Session Details

11:00 AM

Welcome & Opening Remarks

AJ Yawn, Certified Instructor, SANS Institute

11:15 AM

Leveraging CNAPP to Secure Your Cloud Infrastructure

Cloud infrastructure is an attacker’s playground. So how do you reduce your attack surface? With a holistic platform that automates cloud infrastructure security & empowers stakeholders to drive accurate risk prioritization & remediation across complex multicloud environments.

Join Ermetic Sr. Solutions Engineer Thomas Gentsch to find out how to leverage an identity-first Cloud-Native Application Protection (CNAPP) approach for full asset discovery, deep risk analysis, runtime threat detection & compliance reporting. He’ll explain how to use powerful visualization, prioritization & remediation tools to close the cloud expertise gap.

In this session, attendees will learn how to:

Leverage an identity-first CNAPP approach for full asset discovery, deep risk analysis, runtime threat detection & compliance reporting
Use powerful visualization, prioritization & remediation tools to close the cloud expertise gap
Automate cloud infrastructure security
Reduce their cloud attack surface
Empower stakeholders to drive accurate risk prioritization & remediation across complex multicloud environments

Thomas Gentsch, Sr. Solutions Engineer, Ermetic

11:50 AM

Why Siloed Cloud Security Tooling in the Modern Cloud Environment Isn’t Enough

Learn how siloed point-based cloud tools, such as those that focus on capabilities like CSPM, or CWP or are agentless alone, are unable to keep up with the modern cloud computing environment. Understand how and why adversaries are taking advantage of gaps in security to successfully attack their victims. Finally, learn what steps organizations can take to reverse the adversary advantage and stop cloud breaches.

Mike Sanders, Manager, Cloud Solution Architecture, CrowdStrike

12:25 PM

Break

12:40 PM

Rethinking Incident Response for Cloud-driven Enterprises

The field of incident response was created when companies were mostly on-prem and the cyberattack landscape was more contained. Today's cloud and SaaS environments and the vast, dynamic attack surface they create have rendered the old retainer-based approach to IR obsolete. So, what should take its place? Join this talk for insights and recommendations from seasoned IR expert, Mitiga Co-founder and COO, Ariel Parnes.

Ariel Parnes, Co-founder and COO, Mitiga

1:15 PM