SASIG HR Academy Session 1 – Security in the earliest stages of the employee lifecycle
People aren't always who they say they are and there can be many reasons for this. The first of this academy series looks at security in the earliest stages of the employee lifecycle, including advertising, interviewing and pre-employment screening, and what practical steps you can take to improve and develop security in your hiring process.
Recorderd on: Friday 5th March 2021
What to do about securing unstructured data: 5 actionable insights
As much as 90% of data is defined as unstructured and it’s growing 55-65% every year, says Forbes magazine. Organisations admit that they simply don’t know what data they have, where it is, or the controls that exist around it. Join us to hear five actionable insights gathered from data and security professionals at a virtual round table.
Recorderd on: Thursday 4th March 2021
Security control assurance 101: Does it do what it says on the tin?
Security controls are powerful tools, but they can be complex and difficult to configure and manage. Despite best efforts, it’s easy to miss weaknesses that a threat actor can use to their advantage. Join us to discover what type of assurance programme you need to test existing controls and adapt configurations to eliminate blind spots.
Recorderd on: Wednesday 3rd March 2021
Cyber Attack Lab live demonstration – Malware, C&C, and DNS exfiltration
A live malware attack demonstration also featuring C&C and DNS exfiltration. The demo starts with convincing a user to open an infected document, establishing a connection to the network, then stealing top-secret data. You’ll also learn how to run a fast and conclusive investigation – without wasting hours stitching logs or running reports.
Recorderd on: Tuesday 2nd March 2021
The three Cs of avoiding the security heebie-jeebies
Attackers are becoming more adaptable and capable, and their ingenuity coupled with the increased threats makes a CISO’s role more complicated. Security incidents are now inevitable where complex environments and inventive attacks collide. Join us to learn why traditional approaches are no longer effective and the importance of automation in response.
Recorderd on: Monday 1st March 2021
SASIG Metrics Academy Session 4 - The future of managing human cyber risk: What might the role of metrics, data and reporting be?
Join us for the last Metrics Academy session as we look to the future. Explore the opportunities and challenges brought by developments such as big data and predictive analytics. We will also share the predictions and research which all security professionals with an interest in people-related risk (and shouldn’t that be all of us?) should be aware of.
Recorderd on: Friday 26th February 2021
Intelligent threats call for threat intelligence
It’s time for businesses to reassess how they gather and assess information about threats, and what they do with that information. They need to understand the threat landscape and their threat exposure. Join us to learn what it means to be intelligence-led and why it is so important.
Recorderd on: Thursday 25th February 2021
DLA Piper GDPR fines and data breach survey: January 2021
Do you know which country tops the table for most data breach reports since GDPR launched in 2018? Or which countries have issued more than €69 million in total fines? Join us as DLA Piper reveals the results of its latest annual report and discusses the emerging legal standard for security controls.
Recorderd on: Wednesday 24th February 2021
“It's only words”* - ambiguities and contradictions as seen through the looking glass of risk and security (* apologies to the BeeGees)
Risk and security are terms misused and intertwined by many within organisations, and yet the impact their use has on performance and understanding is significant. Join us as we explore these definitions and consider the implications for communication of issues with the board, the organisation, and external stakeholders.
Recorderd on: Monday 22nd February 2021
SASIG Metrics Academy Session 3 - Reporting on human cyber risk: Using data and metrics to tell the story and understand the risk
Session 3 of the SASIG Metrics Academy builds on your understanding of different aspects of human cyber risk reporting. Various SASIG members and guest panellists will share their experiences and thoughts on best practice, building a collective picture on what human cyber risk reporting and data collection looks like in different organisations.
Recorderd on: Friday 19th February 2021
Online Safety Tech: How Scotland is playing its part through Cyber Scotland Week
Online Safety Technology is an emerging area within cyber security and has never been more relevant than now with the huge digital transformation our society is undergoing. Join us to discover insights into this area, how it helps keep society safe online, and how Scotland is supporting through Cyber Scotland Week.
Recorderd on: Thursday 18th February 2021
Cyber readiness: Attacks don’t happen on paper, so why measure human capability that way?
So why do we still measure skills on paper? This session will challenge traditional training methods and explore how organisations can equip teams with useful expertise and utilise gamification in skills development. You will also see unique approaches to mapping human capabilities when they face evolving threats and adversaries.
Recorderd on: Wednesday 17th February 2021
Get involved with the Kickstart Scheme! Recruit young people with full funding from the UK Government
Join this interactive session to learn about the UK Government’s new Kickstart Scheme, designed to help businesses and young people on Universal Credit. Companies who hire eligible people through the scheme can receive funding to cover 6 months of wages and costs. The Government has made £2bn available for this project, so join us to find out how to get involved.
Recorderd on: Tuesday 16th February 2021
Threat Intelligence: How do we make it more relevant to inform your defence?
Threat intelligence comes in all shapes and sizes. Does yours provide valuable insight or just distractions? When intelligence is properly contextualised, it provides real insight, a focus for your defences, and the ability to predict attackers’ next moves. Join this webinar to find out how to make your threat intelligence pertinent and relevant.
Recorderd on: Monday 15th February 2021
SASIG Metrics Academy Session 2 - Meaningful metrics (part 2): Where to find them, which ones matter, and how to prioritise them
In this session, we explore the different types of metrics and data available and widely used in human cyber risk management. We will look at the pros and cons of each type and explore why it is so important to be clear about what we are measuring. We also consider how metrics relate to the measurement of security behaviours.
Recorderd on: Friday 12th February 2021
The Chief's Brief with Sian John MBE, Microsoft Director of Security Strategic Growth Initiatives
Sian John MBE is Director of Strategic Growth for Microsoft's Cybersecurity Solutions Group and a highly respected member of the international cybersecurity community. She is a champion for all forms of diversity within our industry, and was awarded an MBE for services to cybersecurity. Join us to learn about Sian and her work at the highest echelons of global cybersecurity.
Recorderd on: Thursday 11th February 2021
Politics and the internet: Conspiracy, manipulation, and social media’s impact on the US Presidential Election
A president determined to undermine American democracy took to social media and incited the storming of the US Capitol Building last month. That’s what those calling for his impeachment say. In this webinar, Tarquin talks to witness and broadcaster Charles about the impact the internet has on promoting conspiracy theories and how we can make society more robust.
Recorderd on: Wednesday 10th February 2021
The pain of phishing – are you looking for a new solution?
If phishing gives you sleepless nights, join this interactive webinar and discover open phishing. Underpinned by gamification principles, such as point scoring and levelling up, open phishing means employees follow a path they plot themselves to become an organisation’s human firewall. Attendees will receive a report collated from the discussion.