Cymulate Webinar Series: Evolving SecOps into Exposure Management

From military exercises to politics to video games, whenever there is any form of formal conflict, teams get stronger when they understand how the other side operates – their strategies, tactics, and core strengths.

This session will give blue team members information and tips and tricks for breaking out of the confines of defensive thinking to better visualize and simulate threat activity from the threat actor point of view.

- High-level review of how threat actors tend to operate
- Visualization of infrastructure and systems as seen by a threat actor
- Differences between different types of threat actors (lone wolves, small gangs, organized groups, state sponsored activity, etc.)
- Myths of how threat activity happens commonly held by defenders

Security leaders can choose between hundreds – if not thousands – of tools, appliances, platforms, and solutions that can be used to defend their organization from cyber attacks. Once narrowed down to a select few, deciding which of the choices is the best fit can be a challenge because you’re relying on vendor-supplied information or operating in highly control proof of concept. Breach and Attack Simulation provides the independent assessment of each solution or tool with a common set of criteria based on real-world threat activity. Learn how to use Breach and Attack Simulation for a fair and targeted bake-off that validates each tool meets the needs of the organization.

As the knowledge and expertise of an organization’s cybersecurity people, process, and technology evolves, keeping these questions in mind can be a major help to keeping that growth on track:

1 – Where are we at this point in our cybersecurity maturity?
2 – Where can we move to proactivity without sacrificing reactivity?
3 – How can we more fully integrate business leadership into the cybersecurity process?
4 – What challenges and roadblocks are continuing to surface?
5 – What should be integrated into the next cycle of review and action?

With hundreds of thousands of potential vulnerabilities to be dealt with at any time, how can organizations define which should be addressed first? This webinar will provide guidance and ideas on how to gauge not only the priority of patching and upgrading, but also to map out the urgency of performing those remediation actions – and how these may be two extremely different things for each vulnerability discovered.

Red teaming is a complex operation that is highly specific to the individual environment(s) in which each exercise is run. A single wrong move can have significant impact on business operations and revenue generation, or produce misleading or incorrect results or both. In order to avoid these negative outcomes, many organizations automation have limited the use of automation in red team operations. However, modern tools and platforms can be used successfully and safely to automate many components of red team operations, such as discovery and probing, without incurring risk. This allows the red team staffers to accomplish more with the same number of people and still reduce the rate of burnout common to the industry. This webinar will speak to methods which can be used to safely automate major components of red team exercises without incurring risk, while still seamlessly integrating into the manual operational phase of the exercises themselves.