Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Archc0n 2016 - Doctor's Orders: Cybersecurity programs need an intervention

Archc0n 2016 - Doctor's Orders: Cybersecurity programs need an intervention

We don’t need to read Threatbutt’s "2016 Danger Zone Incident Report" to understand that we are getting our asses handed to us. To make matters worse, pundits shout down from their ivory towers that breached organizations should have “done the basics.” Doctors prescribe the basics as well: maintain a healthy weight, eat fruits and vegetables, and exercise five times a week. Does that mean these basics are easy for us to do? No of course not. In this keynote, Rick will use personal health analogies to explain why our cyber security programs are in desperate need of an intervention and what we can do about it.

F0c9efd79ff9ea97a28f8552fae3b645?s=128

Rick Holland

August 26, 2016
Tweet

Transcript

  1. 1 Doctor's Orders: Cybersecurity programs need an intervention Rick Holland

    VP Strategy – Digital Shadows @rickhholland
  2. None
  3. 3 “I’m prepping to survive an EMP detonation that will

    wipe out our nation’s transportation system.”
  4. 4 Prepare for lifestyle diseases instead? 1.  Heart disease 2. 

    Stroke 3.  Type 2 diabetes
  5. 5 Doctor’s orders

  6. 6 Regular exercise

  7. 7 120 over 80

  8. 8 Limit alcohol intake

  9. 9 Quit smoking

  10. 10 Reduce stress

  11. 11 Just do the “basics”

  12. 12

  13. 13

  14. 14

  15. 15 Better living through chemistry!

  16. 16

  17. 17 We are destined for the hover chair!

  18. 18 The modern enterprise

  19. 19

  20. 20 “Expense in Depth”

  21. 21 Indicators of Exhaustion There’s too many of them!

  22. 22 Just do the “basics”

  23. 23

  24. 24 People who live in glass houses shouldn't throw stones

  25. 25

  26. 26

  27. 27 ¯\_(ツ)_/¯ @rickhholland

  28. 28 “Strength does not come from winning. Your struggles develop

    your strengths. When you go through hardships and decide not to surrender, that is strength.”
  29. 29

  30. 30

  31. 31 Bring the kid with you, everywhere

  32. 32

  33. 33 Salt free spices

  34. 34 Today’s enterprise

  35. 35 Doctor’s orders

  36. 36 Mayo Clinic 1.  Treatments and drugs 2.  Lifestyle 3. 

    Alternative medicine 4.  Coping and support
  37. 37 1) Treatments and drugs

  38. 38 This doesn’t exist

  39. 39

  40. 40 The global deception technology market will generate revenue over

    $1 billion by 2020 Source: Technavio market research company
  41. 41 2017 priority list 1.  Deception technology 2.  Machine learning

    (whatever that means) 3.  Multi factor authentication on public facing services 4.  Remove local admin rights from all users 5.  Recruiting
  42. 42 2017 priority list 1.  Deception technology 2.  Machine learning

    (whatever that means) 3.  Multi factor authentication on public facing services 4.  Remove local admin rights from all users 5.  Recruiting
  43. 43 “Expense in Depth”

  44. 44 How should you prioritize investment in your program?

  45. 45 “The first thing I'm doing is I'm catching the

    sight lines and looking for an exit.”
  46. 46 2) Lifestyle

  47. 47 Finally getting proactive

  48. 48 We need to be proactive in other areas @rickhholland

  49. 49 The CISO needs help @rickhholland

  50. 50

  51. 51

  52. 52 The Hand of the CISO @rickhholland

  53. 53 The Hand of the CISO ‣  Organizations need a

    dedicated strategy function ‣  Unencumbered by operational responsibilities (fire drills)
  54. 54 Strategy function ‣  Embed with functional roles within the

    organization ‣  Optimize people, process and technology ‣  Facilitate an incubator program
  55. 55

  56. 56 Do you know what your business has planned for

    2017? @rickhholland
  57. 57 How will you need to defend it? @rickhholland

  58. 58 The Hand of the CISO can focus on lines

    of business to translate their security needs. @rickhholland
  59. 59 @rickhholland Reviewing your 10-K?

  60. 60 3) Alternative medicine

  61. 61 Avoid mainstream thought

  62. 62 How do we compare against our peers? @rickhholland

  63. 63 What if your entire vertical is terrible?

  64. 64 How much of your budget is dedicated to security?

    @rickhholland
  65. 65 How much of your budget is dedicated to security?

    @rickhholland
  66. 66 Are we maximizing our existing budget? @rickhholland

  67. 67 4) Coping and support

  68. 68 Limit, don’t eliminate alcohol intake

  69. 69 Share more than just atomic indicators +

  70. 70 Let’s not end up here

  71. 71 These problems won’t fix themselves “I've never done this

    before either, and I ain't starting now. You brought 'er here, that means you give her the shot.”
  72. 72 Be the agent of change

  73. 73 Next week 1.  Find out what your organization’s 2017

    plans are 2.  Find a way to be proactive within your circle of control 3.  Moratorium on investment, assess capabilities 4.  Try some burnt ends
  74. 74 @rickhholland https://speakerdeck.com/rick_holland Thank you!