Beyondtrust

Live Webinars, Webcasts and Podcasts

Our security experts have compiled a plethora of resources together to help you get more value out
of BeyondTrust products and solutions.

Receive CPE Credit when you attend our live webinars

Join us for our live webinars, where you will hear about the latest security issues from industry experts concerning both privileged account management and vulnerability management.

CPE Credit Qualification: Many of our webinars qualify as CPE credit. Please provide your (ISC)2 ID certificate number when you register for the webinar and your CPEs will automatically be added to your (ISC)2 account within 4-6 weeks.

Meet Our Experts

Dave  Shackleford

Dave Shackleford

SANS Instructor, Founder at Voodoo Security

Dave Shackleford is the owner and principal consultant of Voodoo Security and a SANS analyst, senior instructor, and course author. He has consulted with hundreds of organizations in the areas of security, regulatory compliance, and network architecture and engineering, and is a VMware vExpert with extensive experience designing and configuring secure virtualized infrastructures. He has previously worked as CSO for Configuresoft, CTO for the Center for Internet Security, and as a security architect, analyst, and manager for several Fortune 500 companies.

Darren Mar-Elia

Darren Mar-Elia

Group Policy MVP and Contributing Editor at Windows IT Pro Magazine

Darren Mar-Elia is the CTO and Founder of SDM Software, a Microsoft systems management solutions company. Darren has 30 years of IT and Software experience in the Microsoft technology area, including serving as a Director of Infrastructure at Charles Schwab, IT Architect at Autodesk, CTO of Windows Management Solutions at Quest Software, and Senior Director of Product Engineering at DesktopStandard. He has provided architecture and engineering for solutions ranging from private cloud to virtual desktop to network engineering. He has been a Microsoft MVP in Group Policy technology for the last 11 years, and has written and spoken on Windows Server, Active Directory, Group Policy and PowerShell topics around the world. He has been a Contributing Editor for Windows IT Pro Magazine since 1997. He has written or contributed to 13 books on Windows and enterprise networking topics. Darren also speaks frequently at industry conferences on Windows infrastructure topics.

Paula Januszkiewicz

Paula Januszkiewicz

Security MVP, CEO at CQURE

Paula Januszkiewicz, CEO CQURE, penetration tester and mentor of CQURE Academy. Paula is also an Enterprise Security MVP and trainer (MCT) and Microsoft Security Trusted Advisor. She is also a top speaker at many well-?known conferences including TechEd North America, TechEd Europe, TechEd Middle East, RSA, TechDays, CyberCrime, etc., and is often rated as number-?one speaker. Paula is engaged as a keynote speaker for security related events and she writes articles on Windows Security. Her company CQURE has now 3 locations New York, Dubai and Warsaw. Paula has conducted hundreds of IT security audits and penetration tests, including those for governmental organizations, she is a renowned security consultant. Her distinct specialization is related to Microsoft security solutions in which she holds multiple Microsoft certifications, besides being familiar with and possessing certifications in other related technologies and operating systems. Paula is passionate about sharing her knowledge with others. In private, she enjoys researching new technologies, which she converts to authored trainings. She wrote a book about Threat Management Gateway 2010, and is working on her next book. She has access to a source code of Windows! Every year she makes over 200 flights (2013 -? 248) to gain more and more experience, provides penetration tests and consults Customers about how to secure their infrastructures. Her favorite saying is: "I have a tool for that!"

Randy Franklin Smith

Randy Franklin Smith

Security Expert

Randy Franklin Smith is an internationally recognized expert on the security and control of Windows and Active Directory security who specializes in Windows and Active Directory security. He performs security reviews for clients ranging from small, privately held firms to Fortune 500 companies, national, and international organizations. Randy is the publisher of UltimateWindowsSecurity.com and founder and CEO of LOGbinder software.

Eric Cole

Eric Cole

SANS Instructor

Dr. Cole is an industry-recognized security expert with over 20 years of hands-on experience. Dr. Cole has experience in information technology with a focus on helping customers focus on the right areas of security by building out a dynamic defense. Dr. Cole has a master's degree in computer science from NYIT and a doctorate from Pace University with a concentration in information security. He served as CTO of McAfee and Chief Scientist for Lockheed Martin. Dr. Cole is the author of several books, including Advanced Persistent Threat, Hackers Beware, Hiding in Plain Sight, Network Security Bible 2nd Edition, and Insider Threat. He is the inventor of over 20 patents and is a researcher, writer, and speaker. He is also a member of the Commission on Cyber Security for the 44th President and several executive advisory boards. Dr. Cole is the founder and an executive leader at Secure Anchor Consulting where he provides leading-edge cyber security consulting services, expert witness work, and leads research and development initiatives to advance the state-of-the-art in information systems security. Dr. Cole was the lone inductee into the InfoSec European Hall of Fame in 2014. Dr. Cole is actively involved with the SANS Technology Institute (STI) and is a SANS faculty Fellow and course author who works with students, teaches, and develops and maintains courseware.

Derek A. Smith

Derek A. Smith

Director of Cybersecurity Initiatives

Derek A. Smith is an expert at cybersecurity, cyber forensics, healthcare IT, SCADA security, physical security, investigations, organizational leadership and training. He is currently the Director of Cybersecurity Initiatives for the National Cybersecurity Institute at Excelsior College, responsible to perform complex duties relating to the development and coordination of cyber initiatives at NCI. Formerly, he has worked for a number of IT companies including Computer Sciences Corporation and Booz Allen Hamilton. Derek spent 18 years as a special agent for various government agencies and the military. He has also taught business and IT courses at several universities for over 20 years. Derek has served in the US Navy, Air Force and Army for a total of 24 years. He completed an MBA, MS in IT Information Assurance, Masters in IT Project Management, and a BS in Education.

Dr. Mansur  Hasib

Dr. Mansur Hasib

CISSP, PMP, CPHIMS

Dr. Mansur Hasib is the only cybersecurity and health information technology professional in the world with 12 years experience as Chief Information Officer, a Doctor of Science in Cybersecurity, and the prestigious CISSP, PMP, and CPHIMS certifications. A global thought leader, Dr. Hasib has led technology and cybersecurity strategy for almost 30 years in healthcare, education, biotechnology, and energy. He is a frequent speaker at local, national, and international conferences.

Jeremy Moskowitz

Jeremy Moskowitz

MCSE, MCSA, and Group Policy MVP

Jeremy Moskowitz, MCSE, MCSA, and Group Policy MVP runs www.GPanswers.com to answer tough Group Policy questions. He is also the Founder of PolicyPak Software (www.PolicyPak.com), which creates software to manage applications and user environments using your existing Group Policy, you systems management infrastructure or via the cloud. He has authored the most popular book bestselling book on Windows desktop management: Group Policy: Management, Troubleshooting and Security (www.GPanswers.com/book). Since becoming one of the world's first MCSEs, he has performed Active Directory, Group Policy and Windows infrastructure planning and implementation for some of the nation's largest organizations. Jeremy is a sought-after speaker and training for his Group Policy and Active Directory knowledge. He has spoken at Microsoft TechEd (USA and Europe), REDMOND Magazine?s TechMentor, Windows IT Pro Magazine?s Windows Connections, and others. Get in contact with Jeremy to speak at your company by visiting www.GPanswers.com. Learn more about PolicyPak at www.PolicyPak.com.

Russell Smith

Russell Smith

Security Expert, IT consultant

Russell Smith specializes in the management and security of Microsoft-based IT systems. In addition to being a Contributing Editor at the Petri IT Knowledgebase, Russell blogs for Netwrix, and is an instructor at Pluralsight. Russell has more than 13 years of experience in IT, and has written a book on Windows security, co-authored one for Microsoft?s Official Academic Course (MOAC) series, and was a regular contributor at Windows IT Professional magazine.

Larry Brock

Larry Brock

Principal, Brock Cyber Security Consulting, LLC

Mr. Brock is the principal at Brock Cyber Security Consulting, LLC. His primary focus is to help companies improve their capabilities to protect, detect and respond to attacks on their intellectual property from both insider and advanced cyber threats. Previously and for more than 11 years, he was the Global Chief Information Security Officer at DuPont. Prior to this role, he has work in other Information Technology Positions, Marketing, and Research & Development at DuPont and as a Security Officer within the USAF. Within DuPont IT, he was the CIO of the Nylon Flooring business unit. He has also led the development and implementation of several large systems including; manufacturing product control, materials management, engineering maintenance, quality management, and data warehouse systems. While working in the Corporate IT group, he led the migration to open-based systems for both networking and computing. In DuPont Research & Development, Mr. Brock led the development and deployment of imaging based systems, including a patented system to electronically move radiographs between hospitals and remote physicians. He served as an Information Security Officer within the U.S. Air Force and assigned to the National Security Agency (NSA). He served on active duty at the NSA for 4 years and then in a reserve capacity for 26 years. Mr. Brock has BS and MS degrees in Electrical Engineering and is a Certified Information Security Manager, CISM.

Todd  Bell

Todd Bell

Chief Information Security Officer

Kevin Johnson

Kevin Johnson

CEO of Secure Ideas

Kevin Johnson is the CEO of Secure Ideas and an IANS faculty member. He has written and taught course for SANS, OWASP, Blackhat and Derbycon as well as leads a number of open source projects. He presents and speaks across the country.

May 26 10 AM PT / 1 PM ET

A Security Horror Story: Macabre Tales of Vulnerability Management Gone Awry

With Dave Shackleford, SANS Instructor
May 26, 10:00 AM PT / 1:00 PM ET

There's just no excuse for it anymore. We're in 2015, people - vulnerability management should be at the bottom of the Infosec Hierarchy of Needs, yet way too many organizations are treating this incredibly important pillar of a security program like an afterthought. As a security consultant, Dave Shackleford spends his time in other people's data centers and offices, trying desperately to help organizations improve the state of their information assurance programs. Sometimes he succeeds. Sometimes...things go sideways.

This webinar will examine those stories of failure. Why are organizations failing at seemingly simple tasks? Why do basic vulnerability management practices somehow turn into Sisyphus rolling a stone uphill? What can happen when the whole thing breaks down terribly?! Join us in this fun and informative webinar, where Dave will expose the deepest, darkest secrets of vulnerability management failure, and explore how we may be able to learn from these stories and start improving vulnerability management for the long run.

Register Now
June 03 10 AM PT / 1 PM ET

Managing Least Privilege on Multiple Linux/UNIX Systems with a Unified sudo Policy

With Randy Franklin Smith, Security Expert
June 3, 10:00 AM PT / 1:00 PM ET

In previous webinars we've shown you how to stop using root and implement least privilege for Linux and UNIX with sudo, as well as, how to use sudo logging to establish an audit trail and enforce accountability for privileged users.

But what if you have multiple Linux and/or Unix systems? Sudo management can quickly become onerous and unwieldy if you try to manage a different sudoers file on each system. The good news is that sudo supports multiple systems and Randy Franklin Smith will show you how in this webinar.

You will learn how to define common policies for all systems, how to lump similar systems into groups and assign additional specific sudo rules to those groups of systems, and even how to implement exception policies for individual systems. Sudo allows you to do all of this in a single sudoers file shared between all systems.

So then how do you distribute that one sudeors file to each system and how do you know it's valid and secure? We'll dive into all of those details and more. We'll even talk about how sudo can integrate with LDAP directories.

Then Paul Harper will briefly show you how BeyondTrust's PowerBroker for UNIX and Linux takes you beyond sudo and makes securely managing your entire *nix environment a breeze.

This will be an interesting and technical session, so come with questions!

Register Now
June 10 10 AM PT / 1 PM ET

Some Memories Never Fade: Techniques for Extracting Juicy Information (like Passwords!) from an OS's Memory

With Paula Januszkiewicz, Security Expert
June 10, 10:00 AM PT / 1:00 PM ET

For hobbyists, working with an operating system's memory can be useful to troubleshoot and understand exactly how certain solutions work. Just as it is crucial to understand an operating system's internals and security aspects, it is equally critical to understand what's in the operating system's memory.

This valuable content contains evidence of user's actions, hacker's tasks, malicious code behaviors, and the eternal history of what happened on a system. Acquiring and analyzing physical memory as done by forensics professionals is a skill crucial to understanding how an operating system works or worked during the incident.

Join Security Expert, Paula Januszkiewicz who will explain and of course demo the techniques for memory acquisition, secrets to obtaining the juicy data, and how to find someone's memory dump! This session is expected to be very intense with practical takeaways.

Register Now
June 18 10 AM PT / 1 PM ET

Prevent Pass-the-Hash Attacks by Securing Local Windows Administrators with LAPS

With Russell Smith, IT Security Expert
June 18, 10:00 AM PT / 1:00 PM ET

Join Windows & IT Security Expert, Russell Smith in this upcoming webinar where he will show you how to configure Microsoft's free Local Administrator Password Solution (LAPS) tool to secure local administrator accounts. Organizations often use the same password for local administrator accounts across all devices, leaving them vulnerable to Pass-the-Hash (PtH) attacks, which can result in sensitive domain credentials being exposed. LAPS automates regular changes of local administrator passwords, and securely stores passwords in Active Directory (AD).

By the end of the session, you will understand:

  • The problems associated with managing local administrator passwords.
  • How hackers use PtH attacks, and leverage local administrator accounts to move laterally across networks undetected.
  • How to install LAPS on a management device, and deploy the Group Policy Client Side Extension (CSE) to managed devices.
  • Configure Group Policy to automatically update and store local administrator passwords in Active Directory, and how to retrieve the passwords.
Register Now
June 25 10 AM PT / 1 PM ET

After Years of Trying (and Sometimes Failing) What We’ve Learned about Privileged Account Management

With Garrett Bekker, Senior Analyst at 451 Research
June 25, 10:00 AM PT / 1:00 PM ET

The privileged access management (PAM) market has been around for years, though with attackers increasingly targeting privileged accounts to get at valuable resources, interest in PAM has reached new heights.

In this webinar, Garrett Bekker, Senior Analyst at 451 Research, will provide a historical overview of the PAM market, where it’s been for the past 15 years, where it’s headed, and also look at some recent high-profile breaches and how privilege escalation was a key ingredient. We will also examine some of the PAM vendors in the marketplace, different PAM architectures, and how PAM can fit within your existing IAM and overall threat protection strategies.

Register Now