Cloud Blog: Cloud CISO Perspectives: What you’re missing when you miss out on mWISE Conference

Source URL: https://cloud.google.com/blog/products/identity-security/cloud-ciso-perspectives-what-youre-missing-when-you-miss-out-on-mwise-conference/
Source: Cloud Blog
Title: Cloud CISO Perspectives: What you’re missing when you miss out on mWISE Conference

Feedly Summary: Welcome to the second Cloud CISO Perspectives for August 2024. Today Google Cloud Security’s Peter Bailey talks about our upcoming Mandiant Worldwide Information Security Exchange (mWISE) Conference, and why mWISE can be one of the most valuable events this year for CISOs, security leaders, and those looking to rise through the ranks to attend.As with all Cloud CISO Perspectives, the contents of this newsletter are posted to the Google Cloud blog. If you’re reading this on the website and you’d like to receive the email version, you can subscribe here.–Phil Venables, VP, TI Security & CISO, Google Cloud

aside_block
), (‘btn_text’, ‘Visit the hub’), (‘href’, ‘https://cloud.google.com/solutions/security/leaders?utm_source=cloud_sfdc&utm_medium=email&utm_campaign=FY23-Q2-global-PROD418-email-oi-dgcsm-CISOPerspectivesNewsletter&utm_content=ciso-hub&utm_term=-‘), (‘image’, <GAEImage: GCAT-replacement-logo-A>)])]>

What you’re missing when you miss out on mWISEBy Peter Bailey, VP/GM SecOps, Google Cloud SecurityWhen you look at the history of cybersecurity, understanding the key threats targeting your industry and prioritizing the right defensive measures across people, processes, and technologies has always been critical to a successful cyberdefense program. In addition to meeting compliance requirements, security leaders need to understand and actively manage their organization’s security posture through a complex combination of technical and process-based solutions. A vital part of that equation is having access to leading expertise on threats, and the best practices to defend against them.

Peter Bailey, VP/GM SecOps, Google Cloud Security

One of the best resources to access expertise and the latest information on threats and best practices is to participate in the mWISE Conference, moving this year for the first time to Denver, Colo., on September 18-19. mWISE is where security leaders and practitioners go to hear directly from Mandiant’s frontline experts and security practitioners, as well as meet and build relationships with your peers, whether you’re a CISO, security operations leader, engineer, journalist, or analyst.

mWISE is Mandiant’s annual cybersecurity and knowledge-sharing conference. It may be the only one in the world that’s produced by a vendor but is vendor-agnostic. At mWISE, security practitioners of all levels–from entry level to CISO– come together to share their unique experiences and their knowledge of strengthening their defenses.Unlike other conferences, what happens at mWISE doesn’t stay at mWISE — and that’s by design. We want attendees to come away with a better understanding of the threat landscape, to have a stronger network of peers to rely on for sharing information, and a better sense of how the state of cybersecurity is evolving alongside the technology that it serves.Four key questions that security leaders and practitioners discuss at the conference include:Are we thinking about the right risks?What can we learn from other incidents that have happened?What are some of the new best practices and techniques?How can we broaden and deepen our understanding of our security posture and risk management operations?Keynote speakers this year include Kevin Mandia, founder of Mandiant and strategic security advisor, Google Cloud; Jen Easterly, director, CISA; Charles Carmakal, CTO, Mandiant Consulting; and John Hultquist, chief analyst, Mandiant Intelligence. We’ll be exploring the state of ransomware with a panel of cybersecurity luminaries, and contemplating how soon AI will be able to match human intelligence with David Eagleman, neuroscientist and author.In addition to featuring frontline experts, critical insights, and cutting-edge trends, this year we’re adding two new tracks: Intersection of AI and Cybersecurity, and Next-Gen CISO.

I’ve always felt that mWISE is a must-attend for security leaders and practitioners who want to improve their understanding of the current risk and threat landscape, and how others are operating in it.

When it comes to the new threats posed by the use of AI in cybersecurity, we’ll be exploring how innovative companies are using AI to strengthen defenses, automate threat detection, and counter AI-based attacks. Industry leaders at the forefront of AI-driven security innovation will share what they’ve learned thus far into the AI revolution.The sessions in our Next-Gen CISO track are curated by current CISOs at the top 1,000 global companies, and are designed to help the next generation of security practitioners step confidently into the CISO role. We’ll be covering:Speaking to the board of directors on cybersecurity topics critical and mundaneResponding to the ever-changing threat landscape, data leak, and prompt injection attacksNavigating regulatory compliance requirementsManaging risks from third-party vendorsEnsuring robust data privacy and protectionAddressing concerns over personal litigation stemming from breachesFinding qualified cybersecurity talent in a challenging employment environmentI’ve always felt that mWISE is a must-attend for security leaders and practitioners who want to increase their knowledge of the current risk and threat landscape, and how others are operating in it.We don’t face these risks in a bubble or alone. Cybersecurity is effectively a team sport supported by a large community with shared interests. Connecting with our peers can help us get impactfully better at managing the complex risks we face, and mWISE is one of the best places to do that. If you’d like to join us in September, you can register to attend mWISE in-person or virtually here.

aside_block
<ListValue: [StructValue([(‘title’, ‘Join the Google Cloud CISO Community’), (‘body’, <wagtail.rich_text.RichText object at 0x3e202f99dfa0>), (‘btn_text’, ‘Learn more’), (‘href’, ‘https://rsvp.withgoogle.com/events/ciso-community-interest?utm_source=cgc-blog&utm_medium=blog&utm_campaign=2024-cloud-ciso-newsletter-events-ref&utm_content=-&utm_term=-‘), (‘image’, <GAEImage: GCAT-replacement-logo-A>)])]>

In case you missed itHere are the latest updates, products, services, and resources from our security teams so far this month:mWISE Conference 2024: Your front-row seat to the future of cybersecurity: Experts from Mandiant, Google Cloud, and the wider cybersecurity community will come together September 18-19 at mWISE in Denver, Colo. This is your chance to immerse yourself in the latest threat intelligence, cutting-edge tools, and engage with the strategic minds that are shaping the future of cybersecurity. Register today.Reimagine security through the power of convergence at Google Cloud Security Summit 2024: Elevate your security with a convergence of security capabilities, AI, and frontline threat intelligence, to enable the next level of proactive defense. Read more.Testing your LLMs differently: Security updates from our latest Cyber Snapshot Report: In our latest Cyber Snapshot Report, learn how securing LLMs is similar to (and different from) traditional web app security. Read more.One week wonder: How Etsy mastered the art of SIEM migration: What if we told you that it’s possible to conquer your next SIEM migration in a matter of weeks, not months? Etsy did just that. Here’s how. Read more.Introducing delayed destruction, a new way to protect your secrets: Delayed destruction is an important step in adding deletion prevention capabilities to Secret Manager. Here’s how it works. Read more.What’s new in Assured Workloads: Enable updates and new control packages: Here are the latest additions to our portfolio of software-defined controls and policies that can make supporting your compliance requirements easier on Google Cloud. Read more.Google Cloud expands services in Saudi Arabia, delivering enhanced data sovereignty and AI capabilities: We are excited to announce new data residency, sovereignty, security, and AI capabilities for the Google Cloud region in the Kingdom of Saudi Arabia. Read more.Using dual-region buckets in Google Cloud Storage: Organizations can mitigate risks and improve regulatory compliance, data availability, and performance by using dual-region buckets in Cloud Storage. Read more.Please visit the Google Cloud blog for more security stories published this month.

aside_block
<ListValue: [StructValue([(‘title’, ‘Tell us what you think’), (‘body’, <wagtail.rich_text.RichText object at 0x3e202f99dc10>), (‘btn_text’, ‘Vote now’), (‘href’, ‘https://www.linkedin.com/feed/update/urn:li:ugcPost:7234636010368729089/’), (‘image’, <GAEImage: GCAT-replacement-logo-A>)])]>

Threat Intelligence newsDecoding PEAKLIGHT, the stealthy, memory-only malware: Mandiant has identified a new memory-only dropper using a complex, multistage infection process. This dropper decrypts and executes a PowerShell-based downloader known as PEAKLIGHT. Here’s what we know. Read more.‘WireServing’ up credentials: Escalating privileges in Azure Kubernetes services: An attacker with access to a vulnerable Microsoft Azure Kubernetes services cluster could have escalated privileges and accessed credentials for services used by the cluster. Microsoft has patched the vulnerability. Read more.Hacking beyond dot-com: Enumerating private TLDs: During a recent engagement, Mandiant researcher Idan Ron aimed to identify top-level domains (TLDs) owned by a client to find previously uncovered attack surfaces. Finding no existing tool that met this need, Idan worked with ProjectDiscovery to create one himself. Learn how he did it. Read more.
Now hear this: Google Cloud Security and Mandiant podcastsConquering SOC challenges: Leadership, burnout, and the SIEM evolution: What are the most important qualities of a successful SOC leader today? Nicole Beckwith, senior security engineering manager, Threat Operations, Kroger, explores the state of the SOC, including her approach to building and maintaining a high-functioning SOC team, and how to approach burnout, with Cloud Security podcast hosts Anton Chuvakin and Tim Peacock. Listen here.Anton and Tim tussle over tools: Should you trust cloud providers or choose a third party: An epic debate episode, in which our hosts Anton and Tim duke it out (proverbially) over whether you should buy the majority of cloud security tools from a cloud provider — or a third-party vendor. Listen here.CoSAI and why it matters to you: The universe of AI risks is broad and deep. We’ve made a lot of headway with our Secure AI Framework, David LaBianca, senior engineering director, Google, tells Anton and Tim. Here’s how SAIF intersects with the Coalition for Secure AI, how Microsoft and OpenAI got involved, and how the AI security landscape is rapidly evolving. Listen here.To have our Cloud CISO Perspectives post delivered twice a month to your inbox, sign up for our newsletter. We’ll be back in two weeks with more security-related updates from Google Cloud.

AI Summary and Description: Yes

Summary: The text discusses the upcoming Mandiant Worldwide Information Security Exchange (mWISE) Conference, highlighting its value for security leaders to gain insights on the evolving cyber threat landscape, including AI’s role in cybersecurity. This forum is positioned as essential for enhancing knowledge and networking within the cybersecurity community.

Detailed Description:
– **Event Overview**: mWISE is presented as a critical annual conference aimed at security leaders and practitioners, focusing on current cybersecurity threats and best practices for defending against them.
– **Key Advantages of Attendance**:
– Access to leading experts in cybersecurity.
– Opportunities for networking with peers across different levels of security expertise.
– Engagement in discussions about key cybersecurity risks and strategies for managing them.

– **Conference Details**:
– *Date and Location*: Scheduled for September 18-19, 2024, in Denver, Colorado.
– *Participation*: The conference is designed for a wide audience, including CISOs, security operations leaders, and tech practitioners. It encourages knowledge-sharing among attendees.

– **Focus Areas**:
– Exploration of AI’s role in enhancing cybersecurity defenses, automating threat detection, and combating AI-based attacks.
– Discussions on pertinent security topics including:
– Effective communication with boards about cybersecurity issues.
– Responding to the evolving threat landscape.
– Regulatory compliance and risk management.
– Protecting data privacy.
– Building cybersecurity talent in a competitive job market.

– **Keynote Speakers**:
– Including notable figures such as Kevin Mandia from Mandiant and Jen Easterly from CISA, who will present insights on ransomware and the future of AI in security.

– **Importance of Community Engagement**:
– Emphasized that cybersecurity relies heavily on community support and information sharing, reinforcing that mWISE fosters this collaborative environment.

– **Additional Resources**: The article provides information about other relevant events, updates on new security capabilities, and insight into the current cybersecurity landscape. Topics covered also include advancements in cloud services, dual-region data policies, and the novel concept of delayed destruction for managing data security.

This detailed breakdown highlights the mWISE Conference’s significance, particularly in the context of its focus on AI in cybersecurity, compliance discussions, and the development of community knowledge-sharing practices that are critical to improving an organization’s overall security posture. Such insights are crucial for professionals in the fields of AI security, cloud, and infrastructure.