Infosecurity Europe, running 23-25 April at the London Earls Court Exhibition Centre, is expected to attract more than 10,000 infosec delegates, 350 exhibitors, and numerous bank chief information security officers (CISOs) such as Michael Paisley at Santander, and risk and security equivalents at Citi, Bank of America Merrill Lynch, Co-operative Bank and the Bank of England, reports Neil Ainger in this preview. The intention is to provide a discussion forum to share best practice about fighting data breaches, hack attacks and other infosec threats that face the FS sector and corporations and organisations worldwide.
The 2013 Infosecurity Europe trade show is being held against a constantly-changing threat landscape, with the Mandiant report recently showing the extent of Chinese military involvement in some government level attacks and an ever-increasing threat from cybercriminals that want to monetise their personal data breaches and frauds, using new platforms such as mobile banking and enhanced social engineering tools. Many of these new scams will be discussed at the show and Chris Potter, a partner at PricewaterhouseCoopers (PwC) will put some figures against the latest attacks when he unveils the ‘2013 Cyber Security Breaches Survey’ at 2pm in the keynote theatre on Tuesday 23 April.
There will also be a panel discussion later on that afternoon at 3-4pm entitled ‘CISO skills: Surviving and thriving in the new information security paradigm’, with prestigious panellists such as Simon Riggs, SVP, regional informational security officer EMEA, Bank of America Merrill Lynch and Paul Swarbrick, CISO at the UK NATS air traffic control centre.
The next day will feature a keynote interview with David Smith, deputy commissioner and director of data protection, at the UK Information Commissioner's Office (ICO) on Wednesday 24 April at 11.15am looking at the latest regulation in the data privacy and infosec arena. [For full details of all the keynotes, business and technology seminars, educational sessions, and security and technology workshops at the show please click HERE].
Against a complex background where malware, spear phishing, man-in-the-browser attacks and other new threat vectors are constantly being developed there will also be many presentations dedicated towards what the financial services (FS) sector can do to fight the cybercriminals.
The show provides delegates with opportunities to hear analysis, end-user experience, strategic advice and predictions from leading industry experts about the key security issues that should be at the top of their agenda over the next year.
A selection of just some of the ethical hackers, one-time password (OTP) security token vendors, consultants, anti-fraud software vendors and other exhibitors who will be packing the halls at Infosec Europe 2013, displaying their wares and advertising their financial services and other projects with partners over the last year, is listed below. A full listing is accessible by clicking HERE.
3M, Stand E92: The vendor will mostly be focusing on its 3M visual privacy solutions for the mobile professional but there will also be the key findings from a new ‘Visual Privacy Productivity Study’, conducted by The Ponemon Institute, on stand that purports to show companies can lose more than data as remote and mobile working increases, with 50% of employees stating they are less productive when their visual privacy is at risk in public places.
Accellion Inc, Stand E42: Accellion will unveil its first enterprise-grade, secure all-in-one mobile office suite at infosec 2013, enabling users to securely create, edit, view and share Microsoft Office documents on mobile devices. The ability to create, edit and share content securely on mobile devices, without the risk of data leaks is paramount to supporting a mobilised workforce and this tool seeks to assist this aim.
Alienvault, Stand K68: AlienVault provides many financial institutions (FI), especially those with limited staff and budget, but no less a need for security with a outsourced alternative in its Unified Security Management platform. With all of the essential security controls already built-in and working together, and a price point that doesn’t break the bank, claims the vendor, AlienVault helps FIs achieve rapid security visibility, meet the most stringent compliance requirements, and stay ahead of threats.
Bit9, Stand H42: Bit9, a trust-based security vendor and the only company to stop Flame, Gauss and the malware behind the RSA breach, will exhibit at stand H42. Bit9 stops advanced threats that evade antivirus by combining real-time sensors, continuous monitoring, cloud-based software reputation services, and policy-based application control and whitelisting. It recently announced new threat detection and forensics capabilities, and advanced threat indicators, which it will showcase on stand.
Cyber-Ark Software, Stand E50: Privileged accounts, including shared, administrative, default and hardcoded passwords, are critical attack points found throughout an organisation’s IT infrastructure and are exploited in virtually every advanced cyber-attack. In order to help organisations easily identify security risks by scanning and analysing privileged accounts, Cyber-Ark has recently introduced its Discovery and Audit (DNA) tool. DNA is a standalone solution that exposes the magnitude of a privileged account security problem, providing organisations with a comprehensive overview of the risk to their networks. This is particularly important for FIs due to the highly sensitive information held by these organisations.
Imperva, Stand F39: Imperva seeks to protect high value applications and data from theft, insider abuse, and fraud. Imperva SecureSphere helps many financial companies secure their website and more importantly the confidential data they hold to ensure it does not get into the wrong hands. It provides comprehensive, integrated application security and data security to prevent data breaches, streamline regulatory compliance and establish a repeatable process for data risk management.
Lacoon Security, Stand L92: The Lacoon Secure Mobile Gateway (SMG) is a new product launch at Infosec 2013 and aims to provide enterprises with complete protection against emerging threats to mobile devices. The multi-layered protection is effective against known attacks such as mobile Advanced Persistent Threats (APTs), mobile malware and Wi-Fi man-in-the-middle (MitM) attacks. It supports both Android and iOS devices.
nCircle, Stand J85: nCircle Benchmark is a service that delivers security and compliance scorecards, security metrics and industry benchmarks for measuring an organisation’s security levels. The service is the first publicly available benchmark service enabling performance measurement and comparison of an organisation’s vulnerability management, patch management, configuration auditing, identity and access management, anti-virus and endpoint protection programs against industry benchmarks that are continuously updated by the organisations themselves. At Infosec this year, nCircle will be revealing the results on their recent benchmarks, explaining which industries are the most forward-thing in terms of IT security.
Trusteer, Stand G95: At Infosecurity Europe, Trusteer will be releasing research on advanced malware attacks and will launch in Europe their new APEX technology that protects enterprises against advanced malware attacks, APTs and data breaches. Trusteer Apex prevents the biggest security problem facing FIs and others today – namely, the exploitation of zero-day or unpatched application vulnerabilities in widely deployed endpoint applications, such as web browsers, Adobe Acrobat, Flash, Java and Microsoft Office. The product stops advanced targeted attacks and APTs that are initiated using malicious web pages, spear-phishing emails, and weaponised documents to exploit these vulnerabilities.
Webroot Services, Stand D60: Webroot, a leader in delivering Internet security as a service, will announce a new mobile security study at Infosecurity Europe 2013 in London. The report exposes that the popular trend of allowing employees to use their smartphones and tablets at work is causing a significant drain on IT resources while at the same time putting corporate data at risk. Webroot will also demonstrate its SecureAnywhere solutions that protect against online threats with powerful cloud-based security intelligence, keeping you safe and able to connect from anywhere.
• Bobsguide will be reporting from the Infosecurity Europe 2013 show, running 23-25 April. Look out for the subsequent show blog report.