Let’s go back, way back to 2013 when AV was AV, whitelisting was whitelisting, and EDR ads were taking over airport terminals. Ah, the good old days. News Flash! Dr. Emmett Brown just showed up and he’s got urgent news from the future. No matter how good your incident response capabilities are, they cannot stand on their own (sort of like Biff, who was nothing without his buddies). To be effective, incident response (IR) must be pa...

Data is everywhere and it is being pressed into service in ways that none of us could have imagined just a few years ago. But all too often the data governments collect is locked up in system- or program-specific silos. This makes it tough for jurisdictions to leverage data for new and valuable purposes, like supporting enterprise decision-making, measuring outcomes and performance, and carrying out higher-level analysis. Join Government Tech...

Organizations are increasingly focused on implementing Zero Trust policies to limit exposure to cyberattacks, which is admirable best practice. But how can you verify that your policies and configurations are actually working as intended? In Episode 4 of his ongoing series on using packet forensics for cybersecurity, Jake Williams looks at why packet data is an indispensable resource for verifying Zero Trust implementations and troubleshooting...

In this workshop, SANS certified instructor Jean-François Maes will walk you through some of the most used NTLM relay attack paths pentesters use to compromise the domain. We will take a look at: What is NTLM auth? Using broadcast traffic for fun and profit Active Directory Certificate Services abuse ShadowCredentials And more! BEFORE THE WORKSHOP: This workshop requires a large local LAB that must be downloaded prior to the workshop. D...

Are institutions prepared to deal with escalating cyber threats and other potentially disruptive events? This session will examine the interconnections between cybersecurity, business continuity and disaster recovery — and how a holistic approach to these critical issues can strengthen resilience. We will explore topics such as: Using Zero Trust to stay ahead of increasingly numerous and sophisticated threats Building executive level sup...

There is no doubt that Zero Trust has become one of the main topics in the cybersecurity industry. Since the US Federal Government mandated agencies to accelerate the adoption of Zero Trust and issued detailed guidelines on implementing a Zero Trust Architecture in the second half of 2021, Zero Trust has become both the ‘de facto’ cybersecurity approach and a controversial concept used by some as a marketing ploy. But what is Zero...

Open to Public Sector only. Come Celebrate with us on November 17, 2022, when we will recognize the extraordinary and strategic work cities across the country are doing to streamline their government’s services, improve and enhance their cyber preparedness, build partnerships, and leverage emerging technology to deliver on top city priorities and important constituent services. The Center for Digital Government’s 2022 Digital Citie...

Migration to the cloud has helped state and local governments improve agility and speed, but it has also presented new challenges. New skills, processes, and resources are needed to manage and maintain cloud services. The increased demand on IT teams paired with the talent shortage has left many agencies struggling to find enough people with the necessary skills to modernize older systems. Managed cloud services can help agencies accelerate t...

Threat actors continue to make government agencies – at the federal, state and local levels – one of their most important targets. A series of Presidential Executive Orders and DHS CISA Binding Operational Directives have been issued in response, often with specific cybersecurity control and technology requirements. Government agencies need to address both these pressures, and do it with limited resources, prioritizing their action...

In today’s ever-evolving world of cyber threats, your organization’s cybersecurity strategy is only as good as your next attack. A modern security approach has to be centered on agility, adaptability and sustainability. Thank you for joining us for the final virtual conversation in our ongoing series on Managing Cyber Risks, as we discuss how to build and adapt a risk management strategy that’s able to withstand future shifts...