SUFFOLK SECURITY SOCIAL

BEHAVIOURAL AI CLOUD EMAIL SECURITY

The Enemy in Your Inbox: Outsmarting Modern Email Attacks

"In this fast-paced 10-minute tale, we unpack the anatomy of a real-world, email-based attack that highlights the rise of increasingly sophisticated inbound threats and the growing trend of attackers impersonating trusted vendors. We'll break down how modern threats are slipping past legacy defences, and how AI-powered protection could have stopped the attack in it's tracks. It's a story of close calls, crafty attackers, and even smarter solutions.

What you'll learn:

• How email-based threats are evolving beyond traditional detection, with a focus on vendor impersonation and advanced social engineering
• Why AI and behavioural analysis are now essential to modern cybersecurity strategies
• The real-world impact: how Abnormal Security's platform would have proactively detected and prevented the attack."

24/7 Managed Detection Response (MDR) Services

Monster Hunting in the Digital Night: Defend, Detect, Survive

"Join us for a chilling, interactive Choose Your Own Cybersecurity Adventure, where each decision could bring you one step closer to the monsters hiding in the IT closet. As the strategic decision maker, you'll guide an unfortunate security analyst and backup engineer through a BYOD policy that has awakened the Shadow IT vampire. Will your choices save them from his grasp, or will they fall victim to the darkness?

Fortunately, you have the opportunity to learn how N-Able Managed Detection and Response along with Cove Data Protection and Unified Endpoint Management can stand as your ever-vigilant monster hunter, spotting dangers before they strike and giving your business the resilience to survive what goes bump in the digital night."

Fly-Direct Web Security & CASB Neural

Fly-Direct: Cutting Out the Stopover in Secure Web Access

"The way we work has changed forever, but legacy secure web gateways haven’t kept up. Remote and hybrid users are still being forced to "stopover" at data centres, suffering slow performance, outages, and unnecessary exposure of sensitive traffic.

In this session, Aidan Power of dope.security will walk through how the Fly Direct model eliminates the stopover altogether, performing full SWG functionality directly on the endpoint. You’ll learn how organisations are replacing clunky, legacy proxies with a sleek, endpoint-native approach that delivers faster performance, higher reliability, and stronger privacy for distributed teams.

What you’ll learn:

• Why traditional secure web gateways break down in hybrid and remote work environments.

• How dope.security’s Fly Direct model works, including SSL inspection, URL filtering, and cloud app controls - all enforced locally on Mac and Windows devices.

• Real-world customer results showing performance boosts, fewer outages, and simpler deployments.

• How design thinking and user-centric engineering can make cybersecurity seamless, not stressful."

Managed Phishing & User Awareness Service

Beyond the Click: Understanding and Articulating Human Risk

"I’m excited to be hosting a session at this quarter’s Suffolk Security Social where I’ll be lifting the lid on how we run our Managed Phishing Service - and why technical tools alone aren’t enough to protect your business from human-driven attacks.

At Spear Shield, we’ve delivered hundreds of simulated phishing campaigns across multiple sectors, giving us unique insight into user behaviour, risk patterns, and what actually works when it comes to raising awareness. In this session, I’ll share:

• Real-world campaign results and the red flags users most often miss.
• How to shift from ‘click-shaming’ to meaningful, culture-building training.
• Why quarterly simulations are far more effective than annual tick-box exercises.
• How to use phishing data to inform smarter, targeted user education.

Whether you’re a security lead, IT manager, or business owner, you’ll walk away with practical strategies to reduce risk, improve engagement, and transform your people into your strongest line of defence."

CLOUD BACK-UP AND DISASTER RECOVERY

Because Backups alone aren't enough

"Join me at the upcoming Suffolk Security Social as I explore why traditional backups aren’t enough to keep your business running when disaster strikes.

From ransomware attacks to accidental deletions and hardware failures, data loss isn’t a matter of if, but when. In this session, I’ll show you how Cove Backup and Disaster Recovery delivers more than just a safety net - it provides a fast, reliable way to restore critical systems and minimise downtime, whether you’re recovering a single file or an entire environment.

We’ll look at:

• Why offsite, immutable backups are your best defence against ransomware

• How Cove reduces recovery time from days to minutes

• Real-world recovery scenarios and lessons learned

• Strategies for testing and proving your DR plan

If you want to strengthen your resilience and ensure you can recover quickly from any incident, let's chat."

DMARC EMAIL DOMAIN SECURITY

From Vulnerable to Verified

"This October at Portman Road, I’ll be joining the Spear Shield team to unpack one of the most overlooked security gaps in business today - email domain impersonation.

In this session, you’ll learn how attackers exploit unsecured domains to send fraudulent emails that appear to come from your organisation, damaging your brand and tricking your customers, suppliers, and staff. I’ll show you how Sendmarc helps businesses implement and enforce DMARC, SPF, and DKIM, moving from zero protection to full compliance in weeks, not months.

We’ll cover:

• How domain spoofing works - and why it’s so effective

• The business and reputational impact of leaving DMARC unenforced

• A step-by-step path to protecting your domain and brand reputation

• Real results from UK organisations that have closed this gap

If you send email, you have an email impersonation risk - and this session will show you exactly how to fix it."

VULNERABILITY MANAGEMENT

Cyber Essentials and Beyond: Continuous Security with CyberSmart CSVM

"At this year’s Suffolk Security Social, I’ll be taking you through how small and mid-sized organisations can achieve and maintain compliance with Cyber Essentials — and why annual certifications alone aren’t enough to stay secure.

In this session, we’ll explore how CyberSmart’s Continuous Security & Vulnerability Management (CSVM) platform helps you identify risks, remediate them, and prove compliance every single day of the year. From unmanaged devices to out-of-date software and unpatched vulnerabilities, we’ll show you how to close the gaps attackers love to exploit.

We’ll cover:

• Common pitfalls in Cyber Essentials audits and how to avoid them

• How CSVM automates compliance monitoring and reporting

• Real-world examples of businesses strengthening security posture year-round

• Why continuous visibility is critical for both compliance and cyber resilience

If you want to stop treating Cyber Essentials as a once-a-year tick-box exercise and start embedding it into your daily operations, this session is for you."

TO BE CONFIRMED

Announced Soon

TO BE CONFIRMED

Announced Soon

TO BE CONFIRMED

Announced Soon

TO BE CONFIRMED

Announced Soon