FreeWebinar
BrightTALKLive
Welcome to the RecertHero soft launch!
Submit bugs, feature requests, and feedbackCompTIA · Free
Free continuing-education opportunities that count toward Security+ renewal — vendor webinars, community talks, and free courses. RecertHero estimates the CEU value of every opportunity, so you can plan toward the 50 CEUs Security+ requires every 3 years — without re-keying each entry into CompTIA's portal.
155 results mapped to Security+, soonest first.
Artificial intelligence (AI) is transforming the way cybersecurity vendors and service providers empower their customers to mitigate the risks of today’s evolving threat landscape. Security teams have more ways than ever to work smarter, rather than harder, to detect and block advanced threats, automate response and remediation, and reduce modern attack surfaces. Join Steve Piper, Founder & CEO of CyberEdge (and proud CISSP), as he describes five ways that AI is already improving today’s cybersecurity defenses. This webinar is ideal for cybersecurity professionals keen to leverage AI's transformative power in safeguarding digital assets.
Join us for a deep dive into Systems Security Certified Practitioner (SSCP), the security operations and network security credential from ISC2, creator of the CISSP. As organizations continue to pursue digital transformation initiatives, the threat landscape is always expanding. Yet cybersecurity leadership talent is scarce. That’s where SSCP from ISC2 comes in — to help fill the gap. Once certified, the opportunities for certified professionals are near limitless. The SSCP is ideal for IT administrators, managers, directors and network security professionals responsible for the hands-on operational security of their organization’s critical assets. It shows you have the advanced technical skills and knowledge to implement, monitor and administer IT infrastructure using security best practices, policies and procedures. In this 60-minute live virtual session, you’ll learn: - If SSCP is right for you - How Official ISC2 Training flexes with your learning style - What to expect on exam day - How to become endorsed and maintain your certification - Plus, more! Plus! Get answers to your SSCP questions during the Q&A section. Register now and begin your SSCP certification journey today!
Discover the integrated approach to network security and efficiency in our upcoming webinar, where we unravel the synergy between Security Service Edge (SSE), Software-Defined Wide Area Network (SD-WAN), and Secure Access Service Edge (SASE). This session will illuminate how the convergence of these technologies creates a robust, scalable, and agile framework for businesses navigating the complexities of digital transformation. Join HPE and ISC2 as we discuss practical insights on leveraging SSE and SD-WAN as foundational blocks to transition towards a comprehensive SASE model, ensuring end-to-end security and optimal network performance. This webinar will provide actionable strategies to enhance your business’s security posture and network management in the cloud era.
Generative AI has been in the news since early this year and many organizations are concerned about its use by adversaries in attacks against them. In this session, we’ll look at hype versus reality of the use of GAI by threat actors and where we are likely to see its use in attacks. We will also look at how the security industry is utilizing this technology to improve detection and response against attacks. Join us to hear the discussion with Trend Micro and ISC2!
It is difficult to go anywhere in the security profession these days without the topics of artificial intelligence (AI) and API Security coming up. Like many popular topics, there is quite a bit of buzz and hype which creates quite a bit of fog around the topics. In particular, it can be difficult to understand when AI can add value. How can we know when AI is being leveraged in a useful way to creatively solve problems? AI works best when applied to specific problems and needs to be carefully, strategically, and methodically leveraged in order to tackle certain problems that suit it. While there are many such problems, API security is one such problem that I’ve experienced AI producing good results for. Join F5 and ISC2 April 11, 2024 at 1:00 p.m. Eastern/10:00 a.m. Pacific for a session on applying AI to API Security. We'll also share 10 best practices around API Security that you won’t want to miss!
Hey, LLM, How Much Trouble ?Are We In? Is Generative AI simply the most modern of modern apps? Are we prepared as an industry to safely unlock its potential? Explore the promises and perils of GenAI, including key considerations for visibility and security across highly-connected ecosystems. Dive into real-world examples of how GenAI can go awry through analysis of recent vulnerabilities and attacks on AI-based applications. On January 25, 2024 at 1:00 p.m. Eastern/10:00 a.m. Pacific, join F5 and ISC2 to hear more about: • The business and societal impacts of GenAI • Important considerations for protecting the conduit to AI workloads: app and API interfaces • Top security and safety risks including The OWASP Top 10 for Large Language Model Applications (Disclaimer: this webinar is not generated by AI (but it could be)!)
Navigating the cloud security landscape is no walk in the park. It requires professionals like you to not only tackle traditional security threats, such as managing data access and mitigating vendor risks, but also confront virtualization risks and tackle issues unique to the cloud. With more and more programs and information relying on the cloud, maintaining robust security can feel like an uphill battle. Unsure where to start? We've got you covered! Join KnowBe4 and ISC2 on February 1 at 1:00 p.m. Eastern / 10:00 a.m. Pacific as we walk you through the ins and outs of cloud security. In this webinar we will share: - How to approach your organization’s cloud security and threat landscape - Real-world examples of cloud security breaches and their ripple effects - The risks of vendor-stored user data and strategies to prepare your organization for such threats - How to best protect yourself against today's top hacks and vulnerabilities both on and off the cloud Don’t miss this webinar to learn about the most popular and successful threats against cloud environments and what you can do to best protect yourself against them.
It’s become more and more evident to organizations that new-school security awareness training is an absolute requirement for managing the ongoing problem of social engineering. But how do you develop a program that will strengthen your human defense layer without doubling your workload or costing an arm and a leg? Join KnowBe4 and ISC2 October 3, 2023 at 1:00 p.m./10:00 a.m. Eastern as we discuss key measures that will help you make an informed security awareness decision for your organization. You’ll gain insight into: • Current threat landscape and what to watch out for • Critical components and considerations to make your program successful from the start • Importance of a new-school security awareness program to better train your users • Why strengthening your human layer is your best line of defense Find out now how you can not only check the box on security awareness training, but develop sustainable, meaningful change in your organization's security posture and culture.
The human factor remains a gateway for cybercriminals as phishing and ransomware attacks continue to increase. Cases like those of Uber and Rockstar Games have also shown how cybercriminals are evolving at a rapid pace, exploiting human psychology and our emotions - and hacking our brains. But how do attackers use behavioral science specifically against us? What can we do to protect those around us? On November 2, 2023 at 1:00 p.m. Eastern/ 10:00 a.m. Pacific, So Safe and ISC2 take a look at social engineering innovations in 2023 to learn more about the latest strategies cybercriminals are using.
New to the security industry? Or thinking about transitioning into an information security role? If so, this webinar is for you. Join Steve Piper, Founder & CEO of CyberEdge (and proud CISSP), as he provides a one-hour ‘crash course’ on the entire security industry, including: - Size and growth of the security industry - Useful vocabulary terms and buzz words - Five types of cyberthreat actors - Modern cyberthreats and tactics - Categories of security defenses - Common security job roles - Security industry ecosystem
The security winds are rapidly shifting from "trust but verify" models to ones that assume that every activity is insecure until proven otherwise. In an age of high-profile security attacks, increasingly sophisticated phishing schemes, and ransomware threats run amok, organizations of all shapes and sizes are urgently seeking new ways to protect their workforce, their finances, their reputations, and their business operations. On September 26, 2023 at 1:00 p.m. Eastern/ 10:00 a.m. Pacific, hear how security and networking teams today are avoiding the latest attacks and nullify exploits by choosing the right cloud-delivered technologies that enforce zero trust for global secure access. In this session you will hear: • Why organizations around the globe are prioritizing the implementation of a SASE framework, specifically with SSE • How SSE can enforce zero trust access to help protect access to Private apps, SaaS apps, and the open internet, all in a single solution.
The ransomware scourge continues to plague the cybersecurity industry. To help ensure you and your company are better prepared, we will share insights and lessons learned from ransomware case studies. In this session, on September 12, 2023 at 1:00 p.m./ 10:00 a.m. Pacific IANS and (ISC)2 will lead you through: • What went right (and wrong) in these examples and how best to incorporate that experience into your defenses and program • Threat actor behavior and how to take advantage of their internal processes to thwart them • TTPs used in various ransomware operations • Alert monitoring – from investigating to remediating • The reality and best practices around backups and recovery
Microsoft 365 is a mission critical tool for organizations facilitating global collaboration, remote work, and cloud computing. While Microsoft provides native email security capabilities via Exchange Online Protection (EOP) and through additional security tools like Microsoft Defender for Office 365, organizations needs to augment these defenses in order to protect against modern sophisticated email threats such as business email compromise (BEC), advanced phishing, and account takeover. With over 88% of productivity software market share, Microsoft is the primary target of choice for threat actors. In 2022, cyber criminals sent more than 30 million messages that abused the Microsoft brand and products. On September 21, 2023 at 1:00 p.m. Eastern/10:00 a.m. Pacific join Proofpoint and ISC2 for a live webinar with threat experts and learn how to break the attack chain and stop advanced email threats. Join the webinar to hear: • Why threat actors are targeting your Microsoft 365 environment • Why industry analysts recommend supplementing native Microsoft 365 capabilities • What key areas you need to augment in your Microsoft 365 platform • Best practices for strengthening your Microsoft 365 security.
Join us for this live webinar where we’ll tell you all about newly enhanced ISC2 Online Self-Paced Certified in Cybersecurity (CC) Training with AI-driven adaptive learning. Find out how this dynamic experience pinpoints areas that require focus and guides you through every stage of your personalized exam prep. You’ll study smarter, not harder and go into the CC exam with confidence. You’ll learn: - Why it makes training more efficient busy professionals - What makes it a more efficient route to exam readiness - How artificial intelligence tailors learning to your needs - And much more Wednesday April 24, 2024 at 1pm ET Save your spot now.
Ever wonder what Policy-Based Access Control (PBAC) is? Why is Policy-Based Access Control Crucial to the Modern Business and how PBAC overcomes the management and scalability challenges of RBAC and ABAC? In this webinar, you will gain a clearer understanding of how PBAC differs from traditional access control models and learn how to use effective policies to protect sensitive data and ensure regulatory compliance. Whether you are an IT professional, an IAM expert, a security architect, or a decision-maker responsible for safeguarding critical information assets, this webinar hosted by PlainID will provide you with practical insights and best practices to enhance your organization's access control strategy.
To protect users from email fraud, Google, Yahoo and Apple are implementing new rules that could block all unauthenticated customer emails from the inbox or send them directly to the SPAM folder. The requirements will take effect as early as February 2024. Are you ready? Join Proofpoint and ISC2 on February 8, 2024 at 1:00 p.m. Eastern/10:00 a.m. Pacific to learn how to meet the new email authentication requirements, ensure the deliverability of your critical emails, and safeguard your brand and your business from email fraud.
Identity and access management has been a pillar in security for decades now; it has emerged, changed, and evolved many times over as the problems it solved grew larger and more complex. Identity governance, identity providers, and authorization platforms are all required to deliver a secure identity practice. Authorization, like every piece of identity, enables the modern business, reduces risk, tightens security, and protects access to your digital assets. Join PlainID and ISC2 to hear a discussion where speakers dive into the project and business drivers they see that require centralized authorization. his talk will help you: · Distinguish how IGA (Identity Governance and Administration) and IAM (Identity Access Management) tools control access through RBAC and ABAC approaches · Learn how Policy-based Access Control (PBAC) compares with previous methods · Understand the growing importance of authorization in today's threat and compliance landscape and how it protects digital assets.
Inadequate authentication measures leave your digital identity vulnerable to cybercriminals. Tools like multi-factor authentication, biometrics, passwords, PINs, and tokens are all more vulnerable to attacks and social engineering than you realize. And one wrong move leaves you and your organization powerless in the face of cyber threats. On April 2, 2024 at 1:00 pm Eastern/10:00 a.m. Pacific KnowBe4 and ISC2 take you through the ins and outs of authentication. We will also: - Take a deep dive into the authentication process and why strong authentication is vital to your organization’s security - Provide detailed explanations of authentication vulnerabilities for biometrics, MFA, passwords, and more - Show real-world examples of man-in-the-middle attacks, MFA bypasses, rogue recoveries and others - Share how to empower your end users to become your best last line of defense Your digital identity is the gateway to your organization's most valuable assets. Watch this webinar now to learn how to keep your fortress secure!
Changes in how we design, build, run and secure information systems have also changed how we look at authentication and access control. The emerging concept of identity is transforming the ways that humans and non-human actors alike make use of data and compute power. At the same time, the emergence of identity as a focus for organizations also means that it has become a focus for attackers. To assess the ways that old and new attacks are targeting digital identities, F5 Labs is presenting findings from our 2023 Identity Threat Report: The Unpatchables. On September 19, 2023 at 1:00 p.m. Eastern/10:00 a.m. Pacific this session will focus on credential stuffing. This will be the first of two sessions. We will quantify its prevalence, explore targeting trends such as attackers’ choice of industries and endpoints, and outline credential stuffing tactics, techniques and procedures (TTPs). We will also take a deeper look into some case studies, with a particular focus on the differences between basic and sophisticated attacks. This talk will also assess the stolen credentials supply chain before focusing on mitigation strategies for combating credential stuffing.
Changes in how we build, run and secure information systems have also changed how we look at authentication and access control. The emerging concept of identity is transforming the ways that humans and non-human actors alike make use of data and compute power. At the same time, organizations’ focus on identity also means that it has become a focus for attackers. To assess the ways that old and new attacks are targeting digital identities, F5 Labs is presenting findings from our 2023 Identity Threat Report: The Unpatchables. In a follow-up to the September session on credential stuffing, this talk will focus on phishing and multi-factor authentication bypass techniques. As phishing has grown over the last several years, its tools and tactics have transformed. We will identify which organizations are most targeted and explore recent developments that make it harder to spot and trickier to mitigate, using a combination of Dark Web intelligence and quantitative methods. This talk on October 19, 2023 at 1:00 p.m. Eastern/10:00 a.m. Pacific will cover recent developments in attacker approaches to circumvent multi-factor authentication, what these developments mean for defenders, and which forms of MFA are able to resist the new approaches.
In the world of cybersecurity defenses, the only constant is change. More than 3,500 cybersecurity vendors are continuously innovating, finding new ways to mitigate risks and secure modern computing environments. Join Steve Piper, Founder & CEO of CyberEdge (and proud CISSP), as he reviews five emerging cybersecurity defenses, including: - SaaS security posture management (SSPM) - Cloud-native application protection platform (CNAPP) - Cloud infrastructure entitlement management (CIEM) - Identity threat detection and response (ITDR) - Passwordless authentication
APIs make the world go round. 58% of dynamic HTTP traffic on the Cloudflare network is API-related. Security and IT leaders have to balance securing their APIs and their customers’ sensitive data, without slowing down innovation while maintaining customer trust. On November 28, 2023 at 1:00 p.m. Eastern/10:00 a.m. Pacific join us as Cloudflare and ISC2 discuss the best practices to automate your API security with a focus on small security teams. In this webinar, you will: * Explore today’s complex API ecosystem of new APIs, diverse users, and sophisticated attackers * Experience the problems with patchwork and DIY approaches to API security * See an example of optimal API security workflow * Observe ways an API security tool enables you to automate your API security processes * Simplify compliance with ever growing requirements: PCI, HIPAA, FHIR, Open Banking Initiative, Financial Data Exchange etc.
Colonial Pipeline, CNA Financial, JBS Foods, Garmin, and Travelex. All victimized by high-profile ransomware attacks. All paid ransoms. Did these companies do the right thing by paying ransoms to accelerate data and system recovery? Or are they merely funding the ransomware industry and prompting even more attacks? Join Steve Piper, Founder & CEO of CyberEdge (and proud CISSP), as he reviews key findings from CyberEdge’s 2024 Cyberthreat Defense Report. In this webinar, Steve will: - Examine disturbing ransomware trends, by country and by industry - Evaluate key factors that go into deciding whether to pay ransoms - Outline ways to be prepared for a successful ransomware attack - Review technologies to help give security teams the upper hand
Denial of service (DoS) attacks more than doubled in 2023 compared with previous years. Attack size, frequency, and sophistication, have all increased which suggests that DDoS is far from being a solved problem. Gobal geopolitical tensions rose dramatically during 2023 and, by no coincidence, so too did the quantity and ferocity of DDoS attacks. After a small but steady decline in denial-of-service attacks during 2022 and prior, 2023 saw an explosion of incidents many of which can be directly linked to political events and growing hacktivism. While many DDoS attacks are short lived inconveniences, many organizations and countries face persistent bombardment and increasingly sophisticated attacks. It begs the question: do organizations accurately evaluate the risk posed by DDoS attacks? Join F5 and ISC2 July 11, 2024 at 1:00 p.m. Eastern/10:00 a.m. Pacific as we discuss the findings from F5 Labs' annual DDoS report. Join this threat research driven webinar to ... -Understand how and why DDoS attacks have grown, and the tools and techniques used by threat actors -Explore the differences between regions and industries to understand how and why some are more targeted that others -Learn about effective mitigation strategies and the questions you should be asking of your DDoS protection solution
ImportantRecertHero is an independent aggregator. Credit estimates are guidance only — always verify with your certifying body.