Overview
Explore
Labs
Services
Events
Partners
What's popular
Security Priorities for 2025
In this report, our security experts outline four key areas to focus on in 2025
CrowdStrike Proving Ground Lab
WWT's ATC CrowdStrike Proving Ground Lab exists to showcase the CrowdStrike Falcon platform's web UI and ability to alert on, and prevent, breaches using cloud data and machine learning.
Hour of Cyber
Hour of Cyber is a private thought-leadership event hosted monthly for security leaders to
connect with WWT experts and executive advisors.
Next-Generation Firewall (NGFW)
This learning series will explore Next-Generation Firewalls (NGFW), which are advanced network security devices that combine traditional firewall capabilities with additional features such as intrusion prevention, application awareness and control, and advanced threat protection. These firewalls go beyond the capabilities of traditional firewalls by providing deeper inspection of network traffic and more granular control over applications and user activities.
Understanding Salt Typhoon: Why Security Leaders Should Take Notice
Salt Typhoon, a Chinese state-sponsored cyber espionage campaign, has targeted critical U.S. telecommunications infrastructure, exposing vulnerabilities and compromising sensitive data. This sophisticated operation underscores the urgent need for robust cybersecurity measures and heightened awareness among security leaders to protect against evolving threats.
What's new
Understanding North Korea's Cyber Tactics
In this episode of the Privileged Exec podcast, Matt Berry interviews Steve Stone, SVP of Threat Discovery and Response at SentinelOne. They discuss Steve's military background, leadership style, mentorship, cybersecurity skills shortage, AI's evolving role, and fostering innovation through collaboration between experienced and younger professionals.
Five Considerations for Successful Identity and Access Management Architecture
Discover the five considerations needed to effectively incorporate Identity and Access Management (IAM) into your business.
How Palo Alto Networks is Revolutionizing Security Operations with XSIAM
Cortex XSIAM revolutionizes cybersecurity by integrating AI, automation, and comprehensive visibility into a unified platform. Experience an autonomous SOC that empowers teams to focus on strategic threat hunting and proactive protection.
Resetting the Foundation: Visibility, Control and Real-Time Action with Tanium
In today's fast-paced digital world, IT security and operations have become increasingly complex. However, there's a growing need to return to the fundamentals, emphasizing simplicity and focusing on what truly matters. This blog will explore the key areas where IT security and operations can benefit from getting back to basics.
Understanding the DPRK Remote Worker Threat
North Korean cyber operatives are increasingly sophisticated, using AI-enhanced deception and exploiting privileged roles to infiltrate global enterprises. This article explores their evolving tactics, critical vulnerabilities, and strategies to bolster cybersecurity defenses against these advanced persistent threats.
A CTO's Primer on Breach & Attack Simulation: Part 3 - Solution Comparison
Explore the cutting-edge advancements in breach and attack simulation (BAS) by AttackIQ and Mandiant Security Validation. Discover how AttackIQ's Informed Defense Architecture and Mandiant's intelligence-led approach, powered by Google Cloud, are revolutionizing security validation and empowering organizations to stay ahead of evolving cyber threats.
A CTO's Primer on Breach & Attack Simulation: Part 2 - Common Challenges
Breach and attack simulation (BAS) is vital for proactive security validation, yet faces distinct challenges in on-premise, cloud and hybrid environments. This report explores these challenges, including high costs, scalability issues, dynamic infrastructures and integration complexities, highlighting the need for tailored BAS approaches to ensure robust security across diverse infrastructures.
A CTO's Primer on Breach & Attack Simulation: Part 1 - Market Landscape
Breach and attack simulation (BAS) tools are revolutionizing cybersecurity by automating threat testing. While tools like AttackIQ and Mandiant Security Validation lead the market, organizations must prioritize their unique needs over flashy features. This article explores how to select the right BAS solution to align with strategic goals and optimize security.
Partner POV | Role-based views for every security team
Empowerment and speed for security teams without losing unified cloud context.
Hands-On Lab Workshop: LLM Security
In this event, you will gain the knowledge and tools to identify, mitigate, and prevent security risks, strengthening the reliability and security of your AI systems. WWT's Prompt Injection and Training Data Poisoning labs help users understand and defend against two major LLM security threats. The Prompt Injection Lab demonstrates how attackers manipulate LLMs with deceptive inputs to extract sensitive data or execute unintended actions, while the Training Data Poisoning Lab explores how corrupting training or retrieval data can introduce biases , vulnerabilities, or backdoors.
A Practitioner's Guide: SOC of the Future
Is the future here? Can we build a scalable, agile foundation that leverages robust data management and pipelines to enable real-time alerting? Can it leverage AI-augmentation and automated responses to proactively detect and mitigate threats? I think we may be close...
Securing AI Transformation with WWT's Jim Kavanaugh and Cisco's Jeetu Patel
As AI adoption accelerates across industries, businesses face unprecedented challenges in securing their AI-driven transformations. In this exclusive fireside chat, Cisco EVP and Chief Product Officer Jeetu Patel and WWT Co-founder and CEO Jim Kavanaugh discuss the latest breakthroughs in AI security and how enterprises can more confidently innovate while safeguarding their AI applications.
Jeetu and Jim will also explore the global landscape and its impact on the future of enterprise AI; provide practical guidance on how to craft an AI strategy that balances the need for speed with the necessity of caution; and talk about emerging AI solutions and how they can integrate into your IT strategy.
Hour of Cyber: Security Operations
As cyber threats grow in complexity, a resilient, high-performance Security Operations Center (SOC) is essential. Explore the core functions of security operations while examining the technologies shaping modern SOCs. Learn how AI, machine learning and high-performance computing improve detection speed, automate response and strengthen security posture.
Hour of Cyber: Platform Optimization
In an era of increasing complexity, platform optimization has emerged as a strategic approach to enhance operational efficiency and security. By unifying multiple functions into a single platform, organizations can simplify management, improve threat detection and achieve significant cost savings. Explore the benefits of enhanced visibility, reduced security complexity and operational agility.
A Practitioner's Guide: Detections within Security Operations
The analytics engine, sometimes referred to as a detection engine, is the core of a modern security operations center (SOC), generating high-fidelity alerts and adding context so responders can quickly identify and act on threats. In this article we discuss the evolution of security operations detections, and the major players in the space.
Partner POV | Assessing Misconfigurations at Scale with Falcon Exposure Management
Misconfigurations often fly under the radar, but overlooking these risks can open the door to adversaries. Learn how to simplify configuration management for large environments.
Partner POV | Solving for Exponential Data Growth in Next-Gen SIEM
We dive into the ability of next-gen SIEM systems to address the common problem of rapid data growth in the first blog of a new series, "What Makes Next-Gen SIEM Next-Gen?"
SailPoint Lab
The purpose of this lab is to help you develop proficiency in navigating and configuring features within the SailPoint admin console. In this lab environment, you will gain hands-on experience with essential SailPoint and IGA-related tasks. You will get hands-on with features such as Access Request, RBAC, Certifications, and Search Query.
Healthcare Technology Insights for 2025
The unprecedented speed at which regulatory and political changes are announced by our new federal administration is requiring healthcare executives to find balance between strengthening their core business and catching up with the AI train that has taken most industries by storm. The endless opportunities made possible by AI for reinventing healthcare are offset by the risks associated with increasing cyber threats and workforce challenges. Collectively, this promises to make 2025 a year like no other.
SIEM Overload to Smart Security: The Power of Data Pipeline and Modern Storage
Traditional SIEMs have long been treated as massive log repositories, leading to skyrocketing costs and visibility gaps. Data pipeline management changes the game — optimizing log ingestion, enriching security data, and reducing SIEM costs without sacrificing detection capabilities. Learn how modern data pipelines, security data lakes and AI-driven analytics are transforming SOC efficiency and redefining how organizations manage security telemetry.