• Which industries have the highest password reuse & darknet exposure rates
• Popular (stolen) passwords influenced by the year’s most talked about people and events
• The proliferation of infostealer malware to siphon fresh authentication, cloud app & session cookie data from managed & unmanaged devices to bypass MFA and launch session hijacking & ransomware attacks
• How proper awareness, automated preventative response, and complete remediation of malware-infected devices lead to better security defenses, no matter the industry or sector  

• The cybersecurity marketplace is filled with numerous security vendors, leading to a sense of overwhelm
• The abundance of options can be distracting, with the allure of new and flashy tools
• Rob Allen offers insights on the true purpose of cybersecurity
• The presentation aims to demonstrate how understanding this purpose can provide operational advantages today.  

In this session we look at how micro-segmentation takes an explicit positive security approach, reducing the internal attack surface and blast radius, for effective ransomware protection and breach containment across on-prem, containers, multi-cloud and IoT/OT.

As organizations have raced to build a security strategy that evades bad actors and stays ahead of emerging threats, tools are an important component to include and optimize. But having telemetry tools isn't the same as using the telemetry the tools provide. You can't ignore parts of your environment without consequences. ​

​Single Source Telemetry will never be enough. Arctic Wolf uses all of the telemetry sources from your tools to paint the bigger picture and proactively improve your posture over time. ​

​See more, use more.

As APIs have become the backbone of modern applications and threat actors are increasingly targeting them. Whether it be to exfiltrate data, take control of critical systems, or disrupt key business services or digital supply chains, threat actors have taken notice and they see APIs as a prosperous attack vector. You’ll gain valuable insights into API security and learn proactive measures to safeguard your APIs. By understanding the challenges posed by API attacks, you’ll understand the best strategies to protect your organization.  

Encryption has come along way from the tool of choice for top secret state affairs to solutions everybody can find in their smartphones and messaging apps. However, not all encryption is created equal and in a lot of cases you don’t get the security that was promised. From bad implementation to backdoors to over-complicated usability - there are many reasons your most valuable data might end up unprotected.
In this session, we will talk about what you should look for when choosing an encryption solution for your needs.

Learn more about:

• The finer details of true end-to-end encryption
• How zero knowledge can improve your sleep
• How only ease of use can eliminate the human factor
• How breaches of encrypted data can still ruin security and why key rotation is key

The talk on "Enhancing Cyber Investigations with Maltego" explores the transformative impact of Maltego, a dynamic cyber investigation tool. Demonstrating its prowess in data aggregation, analysis, and visualization, the talk illustrates how Maltego empowers investigators to efficiently unearth hidden connections across diverse data sources.

Real-world use cases underscore its effectiveness in uncovering cyber threats, equipping attendees to elevate their investigative methodologies for stronger cybersecurity.  

• Challenges faced by UK PLC with the 'Distributed Edge'
• How Secure Access Service Edge (SASE) can help consolidate security posture
• How SASE enables a zero-trust architecture approach   

Recent studies from leading industry analysts have emphasized a shift in mindset regarding security awareness at the boardroom level. After a decade of emphasizing compliance, security awareness has enabled organizations to meet compliance objectives, but it hasn't effectively reduced the human layer risk, considering the escalating costs and frequency of cyber attacks.

An evolution in Security Awareness has been upon us, moving towards a new category of Human Risk Management. This presentation will be focused on how organisations can deploy a crawl, walk, run approach to move beyond compliance based initiatives using security and culture programmes.

• Current threat landscape and how it is changing
• How bad actors are using AI to increase the effectiveness of attacks
• The stages of an AI driven attack and how to combat each stage
• How to use AI to increase defence posture   

• How does exposure management differ from vulnerability management, and why is it important for organisations?
• What are the key components of a successful Continuous Exposure and Threat Management (CTEM) program and how do they enhance your organisation's cybersecurity posture?
• Learn to implement continuous exposure management in your organisation through a structured program that maps the attack surface, prioritises high-risk vulnerabilities, and takes proactive action to address critical exposures.  

Tines is no-code automation platform for your security teams. From start-ups to the Fortune 10, the world's best security teams trust Tines to powerfully manage their mission-critical workflows. This presentation will discuss Tines SOC Automation Capability Matrix, a framework for deciding what to automate. The Matrix is a culmination of the last five years helping hundreds of companies and government organisations get started and build upon their existing automations.

In this presentation, Thomas, Tines Co-Founder, will discuss how customers build smart, secure workflows with Tines, showcasing the unique features of our platform.

Attendees will learn:

• Why stopping 99% of email attacks isn’t good enough to protect organizations
• The benefits and potential risks of adding orchestrated tools to the security stack
• How employees can be transformed from a cybersecurity risk to a valuable asset   

Hear short presentations from these Cyber Runway Alumni.

The Evolution of Cyber Threat Intelligence - Iain Johnston

• The evolving face of cyber threat intelligence
• Operating at the pace of the adversary
• Good AI to counter Bad and Malicious AI
• Proactive Prevention of a Cyber Attack  
   

Utilizing Quantum Security Technologies to Empower Our Cybersecurity Capability - George Dunlop 

• What are Quantum Security Technologies?
• When is the Right Time to Consider Building Capability in Quantum Secure Solutions?
• What are the implementations and essential considerations of utilizing quantum security technologies now?  

Unlocking Your Global Data Sets: Secure & Controlled Access  - Jonathan Farina 

• Understanding of some of the complex challenges of managing international data, touching on privacy regulations, cross-border data transfers, and the constantly evolving cybersecurity landscape
• New insights and practical solutions to the challenges of global data sets
• Real-life examples that showcase WCKD RZR's own approach to addressing these issues 

Cyber Insurance: Is it a carrot or stick for SMEs? - Dr Clare Ryan

• Why cyber insurance costs have risen over the past 24 months
• The role of risk rating for underwriters
• The future of cyber insurance for SMEs 

Discover how you can practically set up a Zero Trust platform that:

• Enforces least privilege access for JUST the time of use
• Connect users only according to the user/device context
• Limit access to the functions needed to be used on an IT resource.