Speaker:
Ron Ross, Fellow, National Institute of Standards and Technology (NIST)

The Advanced Persistent Threat (APT) is extremely dangerous to the national and economic security. To address this reality in the 21st century, the one-dimensional protection strategy focused solely on perimeter-based defenses must be transitioned to a new multidimensional, defense-in-depth protection strategy that includes three, mutually supportive and reinforcing concepts: (1) penetration resistant architectures; (2) damage limiting operations; and (3) system designs that support cyber resiliency and survivability.

A promising concept that can support a multidimensional protection strategy is Zero Trust Architectures.

Attend this session to learn more about:

• Multidimensional protection strategies
• NIST's view of zero trust
• The role of zero trust in this new defensive strategy

Speaker:
Shoen Yih Yum, Director, Cyber Security Programme Centre, Cyber Security Agency of Singapore

The uncertainty caused by COVID-19 has heightened cybersecurity risks for enterprises who need to address the new normal and take appropriate measures to protect their organization and workforce while working remotely. This disruption in business operations has expanded the attack surface.

The key note discusses the changing threat landscape of the country owing to the widespread of COVID-19 pandemic and how enterprises are grappling with the situation and leveraging new concepts such as "zero trust" in protecting their virtual environment.

Speaker:
Karunanand Menon, Senior Sales Engineer, APAC - Sales Engineering, Okta

The "zero trust" security model emphasizes that enterprises should have a "trusted" internal network and an "untrusted" external network. The increasing adoption of mobile and cloud technologies and the COVID-19 pandemic, which has led to a shift to a remote workforce, show that we can no longer have a perimeter-centric view of security. Instead, we need to securely enable access for the various stakeholders regardless of their location, device or network.

Identity and access management is essential to a zero trust strategy. People are the new perimeter, with identity the critical component to establishing a secure environment.

This session addresses:

• The shifts in the security landscape that paved the way for zero trust;
• How the zero trust ecosystem will look;
• Building an effective zero trust program and architecture.

The COVID-19 pandemic has made the boundaries limitless. What was once a finite and defensible space is now a boundless territory - a vast, sprawling footprint of devices, apps, appliances, servers, networks, clouds, and users. For cybercriminals and threat actors, it has opened up a plethora of opportunities as the attack surface has expanded.

The expanding hyper distributed era has created unprecedented exposure points that you're your environment more vulnerable to threats and attacks. There is a need to see everything in real-time with continuous monitoring and use technologies that help detect threats anomalies in real-time.

This session discusses:

• Technologies that help Identifying the risks in real-time;
• Implementing a boundless security model;
• Leveraging threat intelligence and machine learning.

Speaker:
Lenka Fibikova, Security Transformation Lead-Enterprise Access Management, Standard Chartered Bank

The COVID-19 pandemic has shown that large-scale remote working is feasible. Many predict workforce location flexibility will remain important long after the health crisis is over. But that will require much broader implementation of "zero trust" concepts to ensure that our organizations and their most valuable assets stay secure. This session addresses how location-based authentication can help support continuous authentication. It will also discuss whether full user tracing is needed to gain sufficient confidence about who is using the organization's resources, and how location-based authentication can improve security even on premises. And it will outline how to set up an effective access control strategy.

The session offers insights on:

• Continuous authentication for a zero trust approach;
• Key security tenets of zero trust;
• Creating an effective access control strategy

Speaker:
Baljit Singh Dhillon, Head-Cybersecurity Strategy and Architecture, Axiata Group Malaysia

The biggest challenge for practitioners today is to enable greater flexibility for a remote workforce while being fully compliant and secure. The "zero trust" model can play a critical role, but implementing it is a daunting task, and there's no "one size fits all" approach to making the transition to a zero trust architecture. This session provides a practical approach to adopting zero trust, outlining the strategy, the possibilities for leveraging existing investments and the need for new investments.

The session discusses:

• Progress toward adopting the zero trust model;
• Limiting exposure of sensitive data in light of the remote workforce and targeted attacks and new cybercrime scams;
• Meeting stringent regulatory requirements for critical data while also devising a plan for boundary-less security.

While the concept of 'zero trust' is not new among enterprises, however, the recent events, the modern workplace has changed radically in recent months with the balance tipped from an onsite to a remote workforce almost overnight. While corporate strategies around the perimeter security using new technologies have driven good business outcomes, this "new normal" of working from home has thrown up new security risks through an expansion of the attack surface. The biggest question: How can security leaders avoid being obstacles and become catalysts for change and deliver business value using the "zero trust" architecture?

This session discusses:

• How digitizing all business processes is increasing security risks;
• Is the current 'zero trust' security architecture able to protect systems against rising Cyber risks?
• Assessing how new security architectures and technologies can address the complexities.

Cloud transformation is inevitable, even though traditional network security solutions are being retrofitted for "cloud" usage, security is getting in the way of a great mobile experience and the adoption of zero trust strategies. With most employees working at home during the COVID-19 pandemic, it's more important than ever for businesses to ensure that their cloud-party providers have adequate business continuity plans in place to ensure uninterrupted service. A Zero Trust model ensures that security and access decisions are dynamically enforced based on identity, device, and user context and enable cloud service providers to deploy effective security strategies.

• Why transforming to the cloud calls for zero trust network access (ZTNA) services
• Building the modern architectures that align to 'zero trust';
• Balancing third-party risk and security.

COVID-19, as you all know is driving new technological demands for enterprises as businesses are dealing with the needs of a sudden, remote workforce and increasingly embracing mobile, cloud, and edge computing. Against this, Zero Trust principals for information security have become one of the main cybersecurity frameworks organizations refer to when developing their security architecture. Beyond the potential, beyond the hype, zero trust is a strategy that organizations of all sectors and sizes are employing today. It is said that using zero trust platform requires redefining access control and security strategies.

The panel discusses:

• Use cases for zero trust and redefining access control strategies;
• Challenges to expect;
• Metrics of success.

Speaker:
Ron Ross, Fellow, National Institute of Standards and Technology (NIST)

The Advanced Persistent Threat (APT) is extremely dangerous to the national and economic security. To address this reality in the 21st century, the one-dimensional protection strategy focused solely on perimeter-based defenses must be transitioned to a new multidimensional, defense-in-depth protection strategy that includes three, mutually supportive and reinforcing concepts: (1) penetration resistant architectures; (2) damage limiting operations; and (3) system designs that support cyber resiliency and survivability.

A promising concept that can support a multidimensional protection strategy is Zero Trust Architectures.

Attend this session to learn more about:

• Multidimensional protection strategies
• NIST's view of zero trust
• The role of zero trust in this new defensive strategy

Speaker:
Shoen Yih Yum, Director, Cyber Security Programme Centre, Cyber Security Agency of Singapore

The uncertainty caused by COVID-19 has heightened cybersecurity risks for enterprises who need to address the new normal and take appropriate measures to protect their organization and workforce while working remotely. This disruption in business operations has expanded the attack surface.

The key note discusses the changing threat landscape of the country owing to the widespread of COVID-19 pandemic and how enterprises are grappling with the situation and leveraging new concepts such as "zero trust" in protecting their virtual environment.

Speaker:
Karunanand Menon, Senior Sales Engineer, APAC - Sales Engineering, Okta

The "zero trust" security model emphasizes that enterprises should have a "trusted" internal network and an "untrusted" external network. The increasing adoption of mobile and cloud technologies and the COVID-19 pandemic, which has led to a shift to a remote workforce, show that we can no longer have a perimeter-centric view of security. Instead, we need to securely enable access for the various stakeholders regardless of their location, device or network.

Identity and access management is essential to a zero trust strategy. People are the new perimeter, with identity the critical component to establishing a secure environment.

This session addresses:

• The shifts in the security landscape that paved the way for zero trust;
• How the zero trust ecosystem will look;
• Building an effective zero trust program and architecture.

The COVID-19 pandemic has made the boundaries limitless. What was once a finite and defensible space is now a boundless territory - a vast, sprawling footprint of devices, apps, appliances, servers, networks, clouds, and users. For cybercriminals and threat actors, it has opened up a plethora of opportunities as the attack surface has expanded.

The expanding hyper distributed era has created unprecedented exposure points that you're your environment more vulnerable to threats and attacks. There is a need to see everything in real-time with continuous monitoring and use technologies that help detect threats anomalies in real-time.

This session discusses:

• Technologies that help Identifying the risks in real-time;
• Implementing a boundless security model;
• Leveraging threat intelligence and machine learning.

Speaker:
Lenka Fibikova, Security Transformation Lead-Enterprise Access Management, Standard Chartered Bank

The COVID-19 pandemic has shown that large-scale remote working is feasible. Many predict workforce location flexibility will remain important long after the health crisis is over. But that will require much broader implementation of "zero trust" concepts to ensure that our organizations and their most valuable assets stay secure. This session addresses how location-based authentication can help support continuous authentication. It will also discuss whether full user tracing is needed to gain sufficient confidence about who is using the organization's resources, and how location-based authentication can improve security even on premises. And it will outline how to set up an effective access control strategy.

The session offers insights on:

• Continuous authentication for a zero trust approach;
• Key security tenets of zero trust;
• Creating an effective access control strategy

Speaker:
Baljit Singh Dhillon, Head-Cybersecurity Strategy and Architecture, Axiata Group Malaysia

The biggest challenge for practitioners today is to enable greater flexibility for a remote workforce while being fully compliant and secure. The "zero trust" model can play a critical role, but implementing it is a daunting task, and there's no "one size fits all" approach to making the transition to a zero trust architecture. This session provides a practical approach to adopting zero trust, outlining the strategy, the possibilities for leveraging existing investments and the need for new investments.

The session discusses:

• Progress toward adopting the zero trust model;
• Limiting exposure of sensitive data in light of the remote workforce and targeted attacks and new cybercrime scams;
• Meeting stringent regulatory requirements for critical data while also devising a plan for boundary-less security.

While the concept of 'zero trust' is not new among enterprises, however, the recent events, the modern workplace has changed radically in recent months with the balance tipped from an onsite to a remote workforce almost overnight. While corporate strategies around the perimeter security using new technologies have driven good business outcomes, this "new normal" of working from home has thrown up new security risks through an expansion of the attack surface. The biggest question: How can security leaders avoid being obstacles and become catalysts for change and deliver business value using the "zero trust" architecture?

This session discusses:

• How digitizing all business processes is increasing security risks;
• Is the current 'zero trust' security architecture able to protect systems against rising Cyber risks?
• Assessing how new security architectures and technologies can address the complexities.

Cloud transformation is inevitable, even though traditional network security solutions are being retrofitted for "cloud" usage, security is getting in the way of a great mobile experience and the adoption of zero trust strategies. With most employees working at home during the COVID-19 pandemic, it's more important than ever for businesses to ensure that their cloud-party providers have adequate business continuity plans in place to ensure uninterrupted service. A Zero Trust model ensures that security and access decisions are dynamically enforced based on identity, device, and user context and enable cloud service providers to deploy effective security strategies.

• Why transforming to the cloud calls for zero trust network access (ZTNA) services
• Building the modern architectures that align to 'zero trust';
• Balancing third-party risk and security.

COVID-19, as you all know is driving new technological demands for enterprises as businesses are dealing with the needs of a sudden, remote workforce and increasingly embracing mobile, cloud, and edge computing. Against this, Zero Trust principals for information security have become one of the main cybersecurity frameworks organizations refer to when developing their security architecture. Beyond the potential, beyond the hype, zero trust is a strategy that organizations of all sectors and sizes are employing today. It is said that using zero trust platform requires redefining access control and security strategies.

The panel discusses:

• Use cases for zero trust and redefining access control strategies;
• Challenges to expect;
• Metrics of success.