NEWS & EVENTS
Web Events:
Web Seminar: Hacking 101 for Management
How Hackers Attack your Website (simply explained)
November 20, 2008
Featuring:
Lars Ewe, CTO and Mandeep Khera, CMO
Duration:
1 Hour including Q&A session
Web Seminar: PCI Compliance & Beyond
Learn how to secure your Web applications and achieve PCI Compliance 6.6
06/25/2008
Featuring:
Chenxi Wang, Ph.D. / Forrester Research
Duration:
1 Hour including Q&A session with the Security Analyst
Web Hackinar: Web Application Security
Top 5 Common Mistakes in Securing Web Applications
03/20/2008
Featuring:
Tom Stracener; Sr. Security Analyst, Cenzic Inc.
Duration:
1 Hour
The threat of hackers and breaches in application security is a fact of life
for you and other security professionals; and though finding vulnerabilities
fast and adapting to increase government regulations is the name of the game,
just keeping up can leave you behind. In this very informative webcast, Tom
will share information on the:
- Challenges with securing web applications
- Common mistakes that endanger your web applications
- Top 5 five things you can do to protect your applications
- Ways to strengthen your application security posture
- Maximize resources with the right tools
- Protect sensitive data and maintain corporate reputation
- Identify vulnerabilities quickly and reduce outsourcing
Get Webcast
Archived Events:
Webcast: ISC Threat Update
SANS is happy to bring you the latest in our complimentary series of Webcasts.
12/12/2007
Featuring:
John Bambenek and John Weinschenk – CEO, Cenzic, Inc.
Duration:
30 Minutes
The SANS Internet Storm Center (ISC) uses advanced data correlation and visualization techniques to analyze data collected from thousands of sensors in over sixty countries. Experienced analysts constantly monitor the Storm Center data feeds searching for trends and anomalies in order to identify potential threats. When a threat is identified, the team immediately begins an intensive investigation to gauge the threat's severity and impact. This monthly webcast discusses recent threats observed by the Internet Storm Center, and discusses new software vulnerabilities or system exposures that were disclosed over the past month. The general format is about 30 minutes of presentation by senior ISC staff, followed by a question and answer period.
Get Webcast!
Podcast: Web Application Security
Web apps are the next frontier for hackers. Learn what IT must do to stay protected.
8/14/2007
Featuring:
John Weinschenk – CEO, Cenzic, Inc.
Duration:
15 Minutes
Once IT has set up protection against spyware and viruses, it must turn its attention to bigger threats. Web applications are the next frontier for hackers. Why are they such attractive targets? How do most corporations test for vulnerabilities (and what mistakes do they make)?
We discuss these and other security matters with John Weinschenk, CEO of Cenzic, a software and service provider for securing enterprise Web applications.
Get Podcast!
Forrester/Cenzic Webcast
Are Your Web Applications Secure? Think Again!
May 24, 2007
10:00 am Pacific
Speakers:
Chenxi Wang – Ph.D., Principal Analyst, Forrester.
John Weinschenk – CEO, Cenzic, Inc.
Duration:
1 hour
The threat of hackers and breaches in application security is a fact of life for you and other security professionals; and though finding vulnerabilities fast and adapting to increase government regulations is the name of the game, just keeping up can leave you behind. In this very informative webcast, we'll show you how to:
- Manage application vulnerabilities
- Strengthen your application security posture
- Maximize resources with the right tools
- Protect sensitive data and maintain corporate reputation
- Identify vulnerabilities quickly and reduce outsourcing
View Archive!
Borland/Cenzic Webcast
Continuous Quality, Continuous Security
Mar. 15, 2007
1:00 PM Eastern, 10:00 am Pacific
Speakers:
Borland speaker: Rob Cheng – Director of Development Intelligence Solutions.
Cenzic speaker: Scott Parcel – VP of Engineering.
Duration:
1 hour
When do you address the security of your applications? If you're waiting
until development is complete, it could mean serious consequences for
your business and your customers. In this Webcast, you will learn how you
can detect and eliminate vulnerabilities early in the development
lifecycle, ensuring application security without the high cost of
last-minute rework. You'll see:
- How continuous integration and application security can impact quality
- How to isolate defects with server-based sandboxing
- How to centralize build, test, and security metrics
- A demo showing how Borland® Gauntlet™ and Cenzic Hailstorm®
Enterprise ARC™ work together in a real-time environment to deliver
continuous quality and security Learn how to consistently analyze
applications for vulnerabilities, identify security regressions and
isolate root causes. Understand how to track and isolate security risks
before they impact your applications–and the health of your
business.
REGISTER NOW!
Hack Attacks! - An Insider's View - Hosted by AccessIT
Real World Web Application Attacks and Risk Mitigation
Tuesday, February 27, 2007
12:00 pm Eastern, 9:00 am Pacific
Speakers: Tom Stracener
Duration: 1 hour
Hackers and virus writers have refined their approaches to
exploit new technologies and create increasingly complex and
harmful attacks. Vulnerabilities can be exploited shortly after
they are discovered, leaving information security organizations
with little recourse and leading directly to financial losses,
regulatory compliance issues and customer dissatisfaction. Get
ahead of the game and learn how to protect yourself from the
next generation of attacks!
Who Should Attend: Information Security Managers & Executives, Security Architects, Q.A. professionals, Developers, and Business Owners of applications
REGISTER NOW!
Web Applications Security Webcast
No matter how big you are, but how fast you are – secure your
front door, today!
Feb. 28, 2007
10:00-11:00 AM PST / 1:00-2:00 PM EST
Speakers:
John Weinschenk – President and CEO, Cenzic and Michael Gavin –
Security Strategist, Security Innovation
As new web technologies, like Web 2.0, Web services, and others continue to
evolve and number of application vulnerabilities and attacks continue to
proliferate, enterprises need to start putting measures in place - now! The
presentation will explore the history of web application security, what are
some of the major issues, what solutions are available and what is coming
in the future.
Hack Attacks! - An Insider's View
Real World Web Application Attacks and Risk Mitigation
Speakers: Tom Stracener
Duration: 1 hour
Hackers and virus writers have refined their approaches to
exploit new technologies and create increasingly complex and
harmful attacks. Vulnerabilities can be exploited shortly after
they are discovered, leaving information security organizations
with little recourse and leading directly to financial losses,
regulatory compliance issues and customer dissatisfaction. Get
ahead of the game and learn how to protect yourself from the
next generation of attacks!
Who Should Attend: Information Security Managers & Executives, Security Architects, Q.A. professionals, Developers, and Business Owners of applications
View
Sept. 7, 2006 - Archive>
View
Nov. 15, 2006 - Archive>
Best Practices for Zero Impact Security Testing
Thursday July 27, 2006
1:00 pm Eastern, 10:00 am Pacific
Speakers: Lindsey Vereen -
Editor-in-Chief, Software Test and Performance and Ambarish Malpani,
Vice President of Engineering & CTO of Cenzic, Inc.
Duration: 1 hour
As managers and senior staff, you not only have technical
issues to deal with, but also big-picture issues: the projects are complex,
the timelines are brutal, staffing is lean, and pressure to deliver on time
is immense. On top of everything, you're now being told to "make sure the
software is secure!" This affects development teams, who have to be sure
that they're writing code that meets functional and performance requirements
and is also secure against hackers and Sarbox-style snooping. It also
affects development teams, who are already being squeezed to do all their
testing with not-enough-time-and-not-enough-people, and now have to add
security testing into the mix.
We understand these problems-and YOU'RE NOT ALONE! In this Web seminar, we
will show you how to incorporate "Zero Impact Security Testing" best
practices into your software development lifecycle, using specific
techniques on your own and with external services that cost less than you
think and will help more than you could imagine. You'll be able to keep on
delivering what you're already delivering, plus the security testing
that's needed, within the timeline. By applying these techniques,
you'll alleviate the need to push back deadlines, hire more testers or
developers, cut requirements or sacrifice product quality to meet your new
security objectives-because we know you can't!
Who Should Attend: Information Security professionals, Development and QA
Executives, Development Managers who have some QA oversight and
responsibility, QA Managers, Senior Developers and QA Staff.
View Archive >
How Much Is Security Really Worth?
Tuesday, July 11th, 2006
10:00 am, Pacific Daylight Time
Speakers: Charles Kolodgy of IDC and John
Weinschenk, President and CEO of Cenzic, Inc.
Duration: 1 hour
Since web front ends are everywhere and hack attacks are consistently rising, we are being exposed to greater risk and liability as each day passes. As security professionals whose collective necks are on the line to protect corporate assets and reputations, we must make a concerted effort to stay one step ahead of the bad guys. Separate, specific security measures are a must! These measures should provide assurance, detection, prevention and correction. Security should be an integral part of the software development life cycle.
Featured speakers Charles Kolodgy and John Weinschenk will look at the ROI achieved by eliminating false positives and the technology needed to do so. Additionally they will discuss some of the critical vulnerabilities often ignored or overlooked by companies today and
pinpoint some of the real-time costs of being caught off guard.
Do you really want to take chances with web app security?
You'll also learn about the common web attacks and how to protect yourselves against them.
View Archive
Government IT Security Policy - Are your Web applications vulnerable?
Tuesday, June 27th, 2006
8:00 am, Pacific Daylight Time
Speakers: Tom Stracener
Duration: 1 hour
Though the past several years have witnessed the development of a number of solutions in response to the compounding increases in risk, exposure, and liability, each approach has drawbacks that make it difficult for security executives and QA professionals to determine how to best protect their systems. In this presentation, Tom Stracener will discuss the rise of application vulnerabilities and offer his opinion on the critical role of systematic assessment and remediation of these vulnerabilities across enterprise applications.
You'll also learn about the common web attacks and how to protect yourselves against them.
View Archive >
Web Application Attacks: Covert, Growing and Real
Tuesday, April 18th, 2006
10:00 am, Pacific Standard Time
Speakers: Neil MacDonald - Gartner - VP Distinguished Analyst - Stamford, CT
John Weinschenk - Cenzic - President and CEO - Santa Clara, CA
Featured analyst Neil MacDonald of Gartner estimates that 90 percent of externally accessible applications today are front-ended by a Web server, and two-thirds of those production Web servers have exploitable vulnerabilities that enable attacks against the underlying servers and services.
- Why is Application Security in the spotlight?
- Why do you need to secure your applications?
- What solutions should you use to secure your applications?
- Where is the market headed and how are we going to get there?
Featured speakers Neil MacDonald and John Weinschenk will explore the importance of application security, trends, and various alternatives for protecting your web-enabled applications. This exciting session will also cover some of the specific critical attacks that are common and not addressed by most corporations. This lively discussion will be followed by a question and answer session in which we invite the audience to pose questions about their concerns and issues.
View Archive >
Are Your Web Applications Secure? Think Again!
Tuesday, April 11th, 2006
11:00 am, Pacific Standard Time
Speakers: Jerry Murphy, Lead Analyst for Robert Frances Group, and John Weinschenk, President and CEO of Cenzic, Inc.
The threat from hackers and other breaches in application security is a fact of life for you and other security professionals; and though finding vulnerabilities fast and adapting to increasing government regulations is the name of the game, just keeping up can leave you behind. Without installing more hardware or software; we'll show you how to:
- Maximize resources with the right tools
- Protect sensitive data and maintain corporate reputation
- Identify problems quickly and reduce outsourcing
- Regularly assess web application security strength
- Comply with regulatory standards
- Get the results you need to fix your applications!
View Archive >
The Web Application Security Threat
e-Session will take place on Tuesday Mar. 21 at 11am EST.
Find Out If Your Web Applications Allow Hackers to Access Your Databases
Speakers:
John Weinschenk, President & CEO of Cenzic; Former VP of the Enterprise Services Group at VeriSign
Patrick Harding, CTO, Ping Identity; Former VP and the Security Architect (Enterprise Architecture Division) at Fidelity Investments
Ken Salchow, Jr., MCSE, CCNP, C|EH, CCE, CISSP Security Architect, F5 Networks
Hackers' abilities have evolved - instead of exploiting network security flaws, hackers are walking right through the front door. According to Gartner, three-quarters of today's successful system hacks are exploits of vulnerabilities in customer-facing Web applications. Firewalls and IPS systems will not stop such attacks because hackers using the Web application layer are not seen as intruders. Web applications are open by nature so that enterprises can conduct business. However, this openness allows hackers to exploit vulnerabilities and attack databases that store sensitive customer and corporate information. In this session we will discuss the rise of application vulnerabilities and the critical role of systematic assessment and remediation of these vulnerabilities across the enterprise's highly critical applications. Register >
Hackers are invited right through your perimeter-are your web applications secure?
Tuesday, March 7, 2006
Speakers: Pete Lindstrom , Research Director, Spire Security
John Weinschenk, President and CEO, Cenzic
Security has traditionally been viewed as an issue to be handled by the operating system or at the network layer. While security systems might be easier to deploy and manage at these layers, many current and future security problems are better addressed directly in the software applications running on these systems.
Register now for this FREE, live TechWebcast and join a discussion featuring security experts, on Tuesday, March 7th, at 2pm ET/11am PT, to take an in-depth look at the range of advances in web application security, including examples of new program inspection and enforcement solutions. These products and services can provide a level of security safeguards beyond that offered by traditional approaches and do so without requiring any changes to existing application infrastructures or user behaviors. Register >
Application Security Hackinar - Session Management Attacks
Thursday, January 19, 2006
11:00 am, Pacific Standard Time (GMT -08:00, San Francisco)
Speaker: Tom Stracner, Sr. Research Engineer
Duration: 45 minutes
Hacker tools and tactics are constantly racing ahead of security measures, leaving security executives and their teams struggling just to keep up. Quit chasing security threats and learn how to protect yourself from the next generation of attacks. More >
Application Security Hackinar - Web Application Worms
Tuesday, December 13, 2005
Speaker: Tom Stracener, Sr. Research Engineer
Duration: 43 minutes
Hackers are on the move, what are YOU doing to keep up? Hacker tools and tactics are constantly racing ahead of security measures, leaving security executives and their teams struggling just to keep up. Quit chasing security threats and learn how to protect yourself from the next generation of attacks. At the Cenzic Application Security 'Hackinar' you'll learn what hackers know-and what they don't-so you can safeguard your web applications. More >
Application Security - How Hackers Hack Your Web Applications and How You Can Protect Your Company
Thursday, November 3, 2005
Speaker: Tom Stracner, Sr. Research Engineer
Duration: 45 minutes
Hackers are on the move, what are YOU doing to keep up? Hacker tools and tactics are constantly racing ahead of security measures, leaving security executives and their teams struggling just to keep up. Quit chasing security threats and learn how to protect yourself from the next generation of attacks. At the Cenzic Application Security 'Hackinar' you'll learn what hackers know-and what they don't-so you can safeguard your web applications. More >
CSI/Secure Enterprise Editorial Perspectives TechWebCast- Common Attacks Against Web Applications and Web Services
Tuesday, September 13, 2005
Speaker: John Weinschenk , President and CEO, Cenzic
Monty McDougal, Senior Security Engineer, Raytheon Intelligence and Information Systems
Duration: 1 hour
More >
|
