mWISE 2024
Welcome to August 2024’s second edition of Cloud CISO Perspectives. The Mandiant Worldwide Information Security Exchange (mWISE) Conference is coming up, and today, Google Cloud Security’s Peter Bailey discusses why CISOs, security leaders, and those aiming to advance through the ranks should attend.
mWISE Conference
What is absent when one does not participate in mWISE
Knowing the primary threats to your sector and prioritizing defensive measures across people, processes, and technologies has always been the foundation of a successful cyberdefense program. In addition to compliance, security directors must actively manage their organization’s security posture using a sophisticated blend of process- and technology-based solutions. Having access to the finest knowledge about dangers and how to defend against them is a crucial component of that equation.
Attending mWISE, which is being held this year for the first time in Denver, Colorado, on September 18–19, is one of the greatest ways to get knowledge and the most recent information on risks and best practices. mWISE is the place for security leaders and practitioners to meet and form relationships with colleagues, whether you’re a CISO, security operations leader, engineer, journalist, or analyst. You can also hear directly from Mandiant’s frontline experts and security practitioners.
Mandiant mWISE conference
Mandiant hosts an annual cybersecurity and knowledge-sharing conference called mWISE. It might be the only one created by a vendor that doesn’t care about the vendor in the entire universe. Security professionals of all stripes from entry-level to CISO gather at mWISE to exchange their distinct experiences and defensive strategy know-how.
It’s intentional for what transpires at mWISE to be different from other conferences. Attendees should leave with a greater grasp of the threat landscape, a more robust peer network to rely on for information exchange, and an improved knowledge of how cybersecurity is changing in tandem with the technology it supports.
At the conference, security executives and practitioners debate four important questions, which are as follows:
- Are the risks we are considering appropriate?
- What do we know from past occurrences that have occurred?
- Which modern methods and approaches are considered best?
- How can we improve the breadth and depth of our knowledge on risk management and security posture?
Mandiant mWISE 2024
This year’s keynote speakers include Charles Carmakal, CTO of Mandiant Consulting; Jen Easterly, director of CISA; John Hultquist, chief analyst of Mandiant Intelligence; and Kevin Mandia, founder of Mandiant and strategic security advisor to Google Cloud. A distinguished panel of cybersecurity experts will discuss the current state of ransomware, and novelist and neuroscientist David Eagleman will ponder when artificial intelligence will be able to match human intelligence.
Google Cloud will be looking at how creative businesses are utilizing AI to bolster defenses, automate threat detection, and thwart AI-based attacks in order to address the new challenges presented by the usage of AI in cybersecurity. Leaders in the field who are at the forefront of security innovation powered by AI will discuss what they have discovered so far about the AI revolution.
The Next-Gen CISO track comprises specially selected sessions led by CISOs from top 1,000 global businesses. The aim of the program is to prepare the upcoming security professionals to confidently take on the role of CISO. Topics discuss include:
- Addressing both important and unimportant cybersecurity issues to the board of directors
- Addressing the dynamic threat landscape, data breaches, and rapid injection assaults
- Navigating the criteria for regulatory compliance
- Handling risks associated with outside vendors
- Providing strong privacy and safety for data
- Addressing worries about lawsuits brought about by individual violations
- Acquiring skilled cybersecurity personnel in a demanding work setting
mWISE Conference 2024
For security practitioners and leaders who wish to learn more about the current threat and risk environment and how other people are acting in it, many people believed that mWISE is an essential event to attend.
With the backing of a sizable community with common goals, cybersecurity is essentially a team sport. mWISE is one of the best venues to connect with peers, who can help us get much better at managing the various risks we face.
Here are the most recent information, goods, services, and tools from Google Cloud security teams so far this month, in case you missed it:
- mWISE Conference 2024: A front-row seat to cybersecurity’s future Mandiant, Google Cloud, and other cybersecurity experts will convene on September 18–19 at mWISE in Denver, Colorado. Here’s your opportunity to learn about the most recent threat information, utilize state-of-the-art tools, and network with the visionary leaders influencing the direction of cybersecurity.
- At the Google Cloud Security Summit in 2024, rethink security by utilizing the potential of convergence. Boost your security by combining AI, frontline threat intelligence, and security skills to allow the next generation of proactive protection.
- Differentially testing your LLMs Security updates from Google Cloud’s most recent report, Cyber Snapshot: Discover how protecting LLMs differs from and is similar to typical web app security in their most recent Cyber Snapshot Report.
- A week-long curiosity: How Etsy become an expert in SIEM migration: Could you imagine being able to successfully complete your next SIEM migration in a few weeks instead of months? Etsy carried it out.
- A new method of keeping your secrets safe is called delayed destruction. A crucial first step in giving Secret Manager deletion prevention capabilities is delayed destruction. Here’s how it functions.
- Assured Workloads’ latest developments: Activate fresh control packages and updates: The newest products in Google’s collection of software-defined policies and controls that can simplify the process of meeting your compliance needs on Google Cloud are listed below.
- Google Cloud enhances data sovereignty and AI capabilities while expanding its offerings in Saudi Arabia: Google is thrilled to share with you the Kingdom of Saudi Arabia’s Google Cloud region‘s new data residency, sovereignty, security, and artificial intelligence capabilities.
- The utilization of dual-region buckets in Google Cloud Storage can help organizations reduce risks and enhance performance, data availability, regulatory compliance, and compliance.
News on threat intelligence
- Cracking the memory-only, cunning virus known as PEAKLIGHT: Using a multi-step, intricate infection technique, Mandiant has discovered a novel memory-only dropper. PEAKLIGHT is a PowerShell-based downloader that is executed and decrypted by this dropper.
- credentials for “WireServing” up: Increasing access levels for Azure Kubernetes services: If an attacker managed to get access to a Microsoft Azure Kubernetes services cluster that was susceptible, they may have increased their privileges and obtained credentials for services that the cluster relies on. The flaw has been fixed by Microsoft.
- Hacking outside of dot-com: List of exclusive TLDs: In a recent assignment, Mandiant researcher Idan Ron sought to locate newly undiscovered attack surfaces by identifying top-level domains (TLDs) that belonged to a client. Idan collaborated with ProjectDiscovery to develop a tool as there wasn’t one that already existed to fulfill this purpose.
Listen to this now: Mandiant podcasts and Google Cloud Security
- Overcoming SOC challenges: What are the key attributes of a modern-day SOC leader that include burnout, leadership, and the evolution of SIEM? The hosts of the Cloud Security podcast, Anton Chuvakin and Tim Peacock, talk with Nicole Beckwith, senior security engineering manager, Threat Operations, Kroger, about the condition of the SOC, how to handle burnout, and how she goes about creating and sustaining a high-functioning SOC team.
- Tim and Anton argue over tools: Is it better to rely on third parties or cloud providers? Google Cloud hosts, Anton and Tim, engage in a heated debate in this episode over whether it is better to purchase most cloud security measures from third-party vendors or from cloud providers.
- The significance of CoSAI to you: Artificial intelligence poses a wide range of threats. With Google Cloud’s Secure AI Framework, they have come a long way. Google’s senior engineering director David LaBianca informs Tim and Anton.