Presentation is loading. Please wait.

Presentation is loading. Please wait.

Lessons From The Defensive Security Podcast

Published bySheena Collins Modified over 6 years ago

Similar presentations

Presentation on theme: "Lessons From The Defensive Security Podcast"— Presentation transcript:

1 Lessons From The Defensive Security Podcast
@maliciouslink

2 I’m Jerry Bell Work @ IBM – I speak for myself only
DefensiveSecuirty.org @maliciouslink

3 Those who cannot remember the past are condemned to repeat it. - George Santayana

4

5 I study how data breaches happen and talk about them on a podcast

6 Many opportunities to learn

7 As defenders, we have limited budget, limited time

8 As defenders, we have limited budget, limited time
We must efficiently prioritize

9 There are many good industry reports that help explain breaches

10 Most reports segment breaches by attack type or motives of the adversary

11 Reports are helpful… But they do not explain what to fix.

12 What I’ve learned

13 Our people are the key to security

14 Our people are the key to security
Let me explain…

15 Security researchers have grown adept at manipulating media coverage of vulnerabilities they found

16 The concept of “least privilege” is not well understood or implemented

17 Example: NotPetya

18 Supply chain is a significant emerging threat

19 Example: NotPetya, Target

20 IT architectures and software are more a form of individual artistic expression than principled engineering

21 Hackers only have to be right once… Defenders have to be right every time.

22 Attacks shift away from what no longer works to what does work

23

24 Attack techniques and tools are getting more complicated

25 Attack techniques and tools are getting more complicated
But opportunistic attacks still work very well

26 The industry endlessly debates end-user security training

27 The industry endlessly debates end-user security training
But rarely about training the people designing our IT systems

28 The debate about end user training is a red herring

29 Business leaders have little idea how much risk they are accepting

30 Our IT tools are being used against us

31 Cloud and automation create dramatic opportunities to mitigate risk… and also creates new risks

32 Indicators that a breach was underway are usually obvious… But only during forensic analysis

33 The entry point in nearly all breaches seems obvious… After the breach happened

34 Organizations are judged on their handling of a breach… Possibly more than having the breach

35 Organizations will have difficulty meeting breach reporting timeframes of new regulations

36 Security is a people problem… …and the problem start with IT and Security staff.

37 THANK YOU! @maliciouslink

Download ppt "Lessons From The Defensive Security Podcast"

Similar presentations

The Whole/Hole of Security Public (DoD) v. Corporate Carl Bourland US Army Judge Advocate Generals Corps.

The Whole/Hole of Security Public (DoD) v. Corporate Carl Bourland US Army Judge Advocate Generals Corps.
Engineering Secure Software. The Power of Source Code  White box testing Testers have intimate knowledge of the specifications, design, Often done by.

Engineering Secure Software. The Power of Source Code  White box testing Testers have intimate knowledge of the specifications, design, Often done by.
1Copyright © 2005 InfoGard Laboratories Proprietary 2005 Physical Security Conference Physical Security 101 Tom Caddy September 26, 2005.

1Copyright © 2005 InfoGard Laboratories Proprietary 2005 Physical Security Conference Physical Security 101 Tom Caddy September 26, 2005.
Lecture 2 Page 1 CS 236, Spring 2008 Security Principles and Policies CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Spring, 2008.

Lecture 2 Page 1 CS 236, Spring 2008 Security Principles and Policies CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Spring, 2008.
AppSec USA 2014 Denver, Colorado Threat Modeling Made Interactive! Eunsuk Kang Software Design Group CSAIL, MIT.

AppSec USA 2014 Denver, Colorado Threat Modeling Made Interactive! Eunsuk Kang Software Design Group CSAIL, MIT.
SELECTING AND IMPLEMENTING VULNERABILITY SCANNER FOR FUN AND PROFIT by Tim Jett and Mike Townes.

SELECTING AND IMPLEMENTING VULNERABILITY SCANNER FOR FUN AND PROFIT by Tim Jett and Mike Townes.
Security Offering. Cyber Security Solutions 2 Assessment Analysis & Planning Design & Architecture Development & Implementation O&M Critical Infrastructure.

Security Offering. Cyber Security Solutions 2 Assessment Analysis & Planning Design & Architecture Development & Implementation O&M Critical Infrastructure.
Security Awareness Challenges of Security No single simple solution to protecting computers and securing information Different types of attacks Difficulties.

Security Awareness Challenges of Security No single simple solution to protecting computers and securing information Different types of attacks Difficulties.
Cedes.ba The art of security What is not security (what years of pen testing have shown us)

Cedes.ba The art of security What is not security (what years of pen testing have shown us)
1. 2 3 “Those who cannot remember the past are condemned to repeat it. ” George Santayana Life of Reason, 1905.

“Those who cannot remember the past are condemned to repeat it. ” George Santayana Life of Reason, 1905.
Vulnerability-Specific Execution Filtering (VSEF) for Exploit Prevention on Commodity Software Authors: James Newsome, James Newsome, David Brumley, David.

Vulnerability-Specific Execution Filtering (VSEF) for Exploit Prevention on Commodity Software Authors: James Newsome, James Newsome, David Brumley, David.
Communication Skills with Friends & Family

Communication Skills with Friends & Family
Chapter 4.  Can technology alone provide the best security for your organization?

Chapter 4.  Can technology alone provide the best security for your organization?
Copyright © 2011 - The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation.

Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation.
11 Canal Center Plaza, Alexandria, VA 22314 T 800.663.7138 F 703.684.5189 www.robbinsgioia.com Enterprise Computing Conference (ECC) Workshop Alma R. Cole,

11 Canal Center Plaza, Alexandria, VA T F Enterprise Computing Conference (ECC) Workshop Alma R. Cole,
 Protect customers with more secure software  Reduce the number of vulnerabilities  Reduce the severity of vulnerabilities  Address compliance requirements.

 Protect customers with more secure software  Reduce the number of vulnerabilities  Reduce the severity of vulnerabilities  Address compliance requirements.
Copyright © 2011 - The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation.

Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation.
Adam L. Jacobs, CISSP Principal Program Manager, Oracle 15/16 November 2005 Why is Commercial Software So Vulnerable (and How Can We Fix It)?

Adam L. Jacobs, CISSP Principal Program Manager, Oracle 15/16 November 2005 Why is Commercial Software So Vulnerable (and How Can We Fix It)?
Security Awareness Challenges of Securing Information No single simple solution to protecting computers and securing information Different types of attacks.

Security Awareness Challenges of Securing Information No single simple solution to protecting computers and securing information Different types of attacks.
Data Integrity Lesson 12. Skills Matrix Maintaining Data Integrity Maintaining data integrity is your most important responsibility. –Performing backups.

Data Integrity Lesson 12. Skills Matrix Maintaining Data Integrity Maintaining data integrity is your most important responsibility. –Performing backups.

Similar presentations

Ads by Google