Welcome to sababa [talks]!

On Wednesdays some time after lunch we are used to talk about cybersecurity from different perspectives.
We call guest speakers working for various security vendors, internal colleagues, partners and just friends to look at how diverse companies are, and therefore, how challenging it can be to find the right security solution.

During every session we pick up a security technology, training, or service, and learn why it is useful and how it works. We also highlight how this technology can empower a Security Operations Center (SOC).

- Live demo during each session
- Giveaways to guests

Pick up the topic, register now, and see you next Wednesday!

Next webinars



Registration Link

10/11/2021 16.00-17.00 GMT+1

Sababa Security Solution Portfolio

24/11/2021 16.00-17.00 GMT+1

Cybersecurity Essentials

15/12/2021 16.00-17.00 GMT+1

Sababa Threat Intelligence

Virtual CISO and the Real Problems He Handles
with Riccardo Sepe (Sababa Security) Why does a company need a Virtual CISO? Good cybersecurity execution requires strategic vision and proper planning, based on the insights on modern attacks used by cyber criminals and benchmarking with the reference industry. It also needs the latest best cybersecurity practices to set up right protection mechanisms to improve your security posture and resilience. Learn how a Virtual CISO can help your team from this webinar.

Security Is Nothing Without Control
with Olga Orlova, Alfonso Danese and Marco Pasetto (Sababa Security) While companies grow, their infrastructures get more and more complex. As a result, an average company may gain a few security technologies, including firewall, endpoint protection, proxy, network security and more. While the technologies can be properly configured, up and running, and the security policies, passwords, and user administration rights properly managed, the IT and OT networks can still be exposed to security breaches, if nobody is monitoring their security systems.
During the session you will learn, what is a “yellow zone” and why it is a perfect place for a cyber-attack to incubate. You will discover, that the security technologies you are already using, can be enough to protect your company, and find out how you can boost their effectiveness with 24x7x365 security monitoring.

Automotive Cybersecurity: Hacking IoT Systems from Remote
with Omar Morando (Sababa Security) and Giuseppe Faranda (Drivesec) Cyber security, and therefore the resilience to digital attacks, of IoT systems and in general of connected systems, is the enabling element for any network-based and digital ecosystem. The European legislator has started working on regulations for the certification of the security requirements of IoT systems. The automotive sector is the first one to adopt legislation (UN regulation 155) which establishes safety requirements valid for the approval of cars.
The best way to check the level of resilience is the use of penetration tests carried out by specialized personnel. The system that will be described aims to make the penetration tests of IoT systems more agile, monitorable and effective thanks to the "remote control of the testbed", that is, through a platform that brings together supply and demand, supporting the execution of tests without the need for physical access to devices.

MFA: Protect and Simplify Access to Remote Applications
with Leonardo Antichi (Sababa Security) Manuel Minzoni and Romain Breysse (inWebo) Now more than ever, Software-as-a-Service (SaaS) applications not only enable communication and collaboration, but are also a lifeline for remote workers and help organizations efficiently manage internal operations and innovate quickly to keep up with the competition and provide value for consumers.
Proper security and management of the SaaS applications is an essential part of a comprehensive cybersecurity strategy, therefore, using Multi-Factor Authentication (MFA) becomes an excellent way to promote employee mobility and productivity. Find out how inWebo MFA helps companies around the world to face the challenge of a digital transformation: increasingly sophisticated cyber-attacks, smartworking, and data protection in the Cloud.

When It Comes to Cybersecurity, Education is Critical
with Olga Orlova (Sababa Security) and Dasha Diaz (itrainsec) If you understand that knowledge on cybersecurity is important for your company’s human resource resilience, you are on the right track. Security awareness platforms address most of the topics and introduce common security skills and daily habits to non-IT teams. But how do you train your CEO and C-level management, who are attacked 4 times more often and ingeniously? Or how do you upgrade your IT professionals, that may need additional knowledge and practice in Threat Intelligence, or OT security for industrial environments?
Learn from the live streaming with the CEO of itrainsec - our partners that brings advanced cybersecurity training programs to Italian enterprises and security partners. Delivered by recognized trainers from Google, VirusTotal, Skyscanner, DeNexus and others, they can practically upskill and inspire your key cybersecurity stakeholders.

Zero Trust: "If you hit this sign, you will hit that bridge"
with Hedi Marcassoli (Sababa Security) and Dr. Chase Cunningham (Ericom Software) Cybersecurity is at an inflection point. For over 3 decades we have watched as trillions of dollars and billions of man hours have been spent trying to solve an "unsolvable" problem. A problem where the bad guy is the winner and where the adversary is always one step ahead of the defender. It's time to change that. In this session Dr. Chase Cunningham (AKA Dr Zero Trust) will break down the reality of the issues that we face in cybersecurity and provide key insights into not only how but why we should work more effectively to adapt our approach to one of strategy over technology to win. We have a choice, change direction, and go beyond the problem, or continue and face calamity, there is no other alternative.

Sababa Awareness: MSSP-readiness and other news
with Giovanni Bertella and Virginia Puleo (Sababa Security) and Riccardo Fona (Fragma Security) Every day managed service providers (MSPs/MSSPs) support multiple companies in their cybersecurity activities. These include upskilling of the non-IT users of small and midsize organizations in security awareness and healthly cybersecurity behaviour. Learn about Sababa Awareness platform and its training modules and watch the solution demo, including the centralized MSSP dashboard to manage multiple clients. Hear about the solution usage experience from the first hands, as we invite our partner from Fragma Security to share his success story of working with us.

Managed Endpoint Detection and Response with Sababa MDR
with Alessio Aceti and Matteo Oliveri (Sababa Security) and Giuseppe Coppola (Sangfor) Sababa MDR provides managed detection and response to SMB organizations, thanks to the EDR technologies by Sangfor combined with our own SOC expertise and threat management capabilities. During the session you will learn about the Sababa MDR use case scenarios and see how to manage the solution on the client side as well as on the behalf of an MSSP.

The State of Industrial Cybersecurity In Italy
with Alessio Aceti (Sababa Security) and Paola Girdinio (Start 4.0 Competence Center) During the session you will learn what drives industrial cybersecurity in Italy today and what are the current and upcoming strategic projects of the Start 4.0 Competence Center. You will also hear an expert opinion on the state of resilience of critical infrastructures.

Dissecting SolarFlare and How to Detect Future Supply Chain Compromises
with Hedi Marcassoli (Sababa Security), Vittorio Veronesi and Claire Loffler (Vectra) In December 2020 it was revealed that SolarWinds Orion, a popular network management platform, suffered a supply chain compromise. In the weeks that followed 18,000 organizations learned that they were infected by the malicious update, and numerous other vendors had been compromised. In this webinar, we will dissect the supply chain attack, discuss the progression of SolarFlare and how it evaded detection for so long and review strategies to detect future supply chain infections.

Digital risks 2021: how to identify and mitigate new types of scam
with Olga Orlova (Sababa Security), Giulio Vada and Dmitriy Tiunkin (Group-IB) Fraudulent schemes targeting brands online are constantly evolving, both in terms of social engineering tactics and technology. Nowadays, targeted advertising, traffic generation, and personalized content are not just tools for digital marketing but also weapons that fraudsters use to profit off your brand. Join webinar to learn about fake accounts and payment pages, malicious emails and data leaks, and how to properly protect yourself against them.

Extending Security into the Airspace
with Hedi Marcassoli (Sababa Security) and Markus Trostel (Dedrone) Drones are widely used and not always for good. Attacks on critical infrastructures, spying on private objects, unauthorized video recording at public events can harm enterprises, brands, individuals, and environment. Join the webinar on cyber-physical security, that extends into the airspace. During the session you will learn why no site is immune to drone attacks and why traditional security is helpless against drones, how to assess your perimeter for cyber-physical threats, and how to protect against drone intrusion.

10 years of SOC - live interview with Enrico Orlandi
with Olga Orlova (Sababa Security) and Enrico Orlandi (HWG) Join the exclusive interview with the CEO of one of the biggest Italian SOCs Enrico Orlandi. During the session you will learn how an Italian company managed to become the SOC of 15+ central banks around the globe, what are the SOC competences and why it is so difficult to keep SOC internally. You will also earn how to differentiate a mature SOC from a young one.

Active Directory Hardening - Time to Clean Up the Mess
with Olga Orlova and Riccardo Sepe (Sababa Security) Active Directory (AD) is used by over 90% of companies worldwide. Therefore, it is one of the most common targets during cyber-attacks. For example, NotPetya malware, which spread through Active Directory in 2017, caused approximately $10 billion damage globally. During the webinar you will learn what are the indicators to understand it is time for AD hardening, and what you can do to prevent cyber-attacks through AD.

Penetration Testing: How Strong Is Your Cyber Defense?
with Alessio Aceti and Riccardo Sepe (Sababa Security) You do not have to wait for a real cyber-attack to check how strong your security is. Instead, you can be proactive and evaluate the existing security mechanisms of your IT and OT networks, applications, and other areas. During the webinar you will learn what is the best time to evaluate the existing security measures, what areas can be subject to pentest, and what is the process.

Is Your Company Cyber Safe? - Find Out with Security Assessment
with Alessio Aceti and Riccardo Sepe (Sababa Security) Whether your company is going to extend its IT network, revamp its OT infrastructure, or improve in any other way, Security Assessment should be the first step on the way of change. During the webinar you will find out what is Security Assessment and what companies need it, learn about the methodology and some practical aspects of the process, and understand how it helps to find the vulnerabilities unique for your organization and define the associated security risks.

Incident Response - Start the New Year with the Cybersecurity Emergency Plan
with Alessio Aceti (Sababa Security) Security incidents happen anyway. However, the severity of the security incident disruption depends on how well prepared the attacked company is. Sababa Incident Response is a complex set of measures aimed to prepare the company for a security emergency scenario and restore its normal operation disrupted by a cyber security incident as quickly as possible. To make it possible, ideally companies need to act in advance and have their cyber security emergency plan all set before any critical situation happens.

ICS Security - Where to Start?
with Riccardo Sepe (Sababa Security), Omar Morando, and Vladimir Dashchenko (Denexus/itrainsec) Industrial objects are neither isolated, nor air gapped anymore. Instead they are a part of a bigger infrastructure, where OT and IT networks, public areas, and even home offices can be interconnected. As a result, OT networks are vulnerable to the same threats, including cyber, physical, and cyber-physical. During the webinar you will get a deeper understanding of those threats and learn the difference between security approaches applied for IT and OT environments. You will also get the vision on the steps required to ensure cyber safety of the industrial objects across Energy, Transportation, Water Utility, Manufacturing, and other industrial domains facing the challenges introduced by the 4th Industrial Revolution.

with Alessio Aceti (Sababa Security) and Rebecca Lennartz (VMRay) How do you deal with suspicious files? One option is to block and forget about them. The other one is to allow their execution and monitor what happens next. The newest Sandboxing solution allows to explore any suspicious files in a safe isolated environment, while the analyzed software does not even realize that it is running within a sandbox. During this session Sababa Security and VMRay will talk about the Sandboxing based on an agentless hypervisor approach, that is both very fast and scalable for the companies of different sizes and maturity.

Managed Detection and Response
with Alessio Aceti (Sababa Security) and Marco Barbieri (Sangfor Technologies) Traditional methods and effects of killing virus based on virus feature database are facing challenges. On the one hand, the detection and killing of new viruses has the features of passiveness and hindsight. On the other hand, due to the limited number of local virus signature database, the increased number cannot keep up with the speed of mutation of known virus samples. Therefore, antivirus basically relies on cloud detection and killing, which will lead to its detection ability drops sharply in an isolated network environment. During the webinar you will learn how intelligent detection provides insights into the nature of cyber threats, how to locate the infected endpoints and contain known and unknown cyber threats on time, and how enterprises can benefit from the EDR integration into their own or Sababa SOC and what additional value they can gain.
Sababa Security