Archc0n 2016 - Doctor's Orders: Cybersecurity programs need an intervention

Transcript

1. 1 Doctor's Orders: Cybersecurity programs need an intervention Rick Holland

   VP Strategy – Digital Shadows @rickhholland
2. None

3. 3 “I’m prepping to survive an EMP detonation that will

   wipe out our nation’s transportation system.”

4. 4 Prepare for lifestyle diseases instead? 1.  Heart disease 2. 

   Stroke 3.  Type 2 diabetes

5. 5 Doctor’s orders

6. 6 Regular exercise

7. 7 120 over 80

8. 8 Limit alcohol intake

9. 9 Quit smoking

10. 10 Reduce stress

11. 11 Just do the “basics”

12. 12

13. 13

14. 14

15. 15 Better living through chemistry!

16. 16

17. 17 We are destined for the hover chair!

18. 18 The modern enterprise

19. 19

20. 20 “Expense in Depth”

21. 21 Indicators of Exhaustion There’s too many of them!

22. 22 Just do the “basics”

23. 23

24. 24 People who live in glass houses shouldn't throw stones

25. 25

26. 26

27. 27 ¯\_(ツ)_/¯ @rickhholland

28. 28 “Strength does not come from winning. Your struggles develop

    your strengths. When you go through hardships and decide not to surrender, that is strength.”

29. 29

30. 30

31. 31 Bring the kid with you, everywhere

32. 32

33. 33 Salt free spices

34. 34 Today’s enterprise

35. 35 Doctor’s orders

36. 36 Mayo Clinic 1.  Treatments and drugs 2.  Lifestyle 3. 

    Alternative medicine 4.  Coping and support

37. 37 1) Treatments and drugs

38. 38 This doesn’t exist

39. 39

40. 40 The global deception technology market will generate revenue over

    $1 billion by 2020 Source: Technavio market research company

41. 41 2017 priority list 1.  Deception technology 2.  Machine learning

    (whatever that means) 3.  Multi factor authentication on public facing services 4.  Remove local admin rights from all users 5.  Recruiting

42. 42 2017 priority list 1.  Deception technology 2.  Machine learning

    (whatever that means) 3.  Multi factor authentication on public facing services 4.  Remove local admin rights from all users 5.  Recruiting

43. 43 “Expense in Depth”

44. 44 How should you prioritize investment in your program?

45. 45 “The first thing I'm doing is I'm catching the

    sight lines and looking for an exit.”

46. 46 2) Lifestyle

47. 47 Finally getting proactive

48. 48 We need to be proactive in other areas @rickhholland

49. 49 The CISO needs help @rickhholland

50. 50

51. 51

52. 52 The Hand of the CISO @rickhholland

53. 53 The Hand of the CISO ‣  Organizations need a

    dedicated strategy function ‣  Unencumbered by operational responsibilities (fire drills)

54. 54 Strategy function ‣  Embed with functional roles within the

    organization ‣  Optimize people, process and technology ‣  Facilitate an incubator program

55. 55

56. 56 Do you know what your business has planned for

    2017? @rickhholland

57. 57 How will you need to defend it? @rickhholland

58. 58 The Hand of the CISO can focus on lines

    of business to translate their security needs. @rickhholland

59. 59 @rickhholland Reviewing your 10-K?

60. 60 3) Alternative medicine

61. 61 Avoid mainstream thought

62. 62 How do we compare against our peers? @rickhholland

63. 63 What if your entire vertical is terrible?

64. 64 How much of your budget is dedicated to security?

    @rickhholland

65. 65 How much of your budget is dedicated to security?

    @rickhholland

66. 66 Are we maximizing our existing budget? @rickhholland

67. 67 4) Coping and support

68. 68 Limit, don’t eliminate alcohol intake

69. 69 Share more than just atomic indicators +

70. 70 Let’s not end up here

71. 71 These problems won’t fix themselves “I've never done this

    before either, and I ain't starting now. You brought 'er here, that means you give her the shot.”

72. 72 Be the agent of change

73. 73 Next week 1.  Find out what your organization’s 2017

    plans are 2.  Find a way to be proactive within your circle of control 3.  Moratorium on investment, assess capabilities 4.  Try some burnt ends

74. 74 @rickhholland https://speakerdeck.com/rick_holland Thank you!