BSides Oslo 2019

May 23rd, 2019 at MESH

Barbarians in the Throne Room

Time: 09:10
Length: 45 minutes

Defenders often worry about the intangible security problems. Defenders can best protect the enterprise by focusing on the fundamentals. Too often issues such as patching or system configuration failures lead to system compromise. These along with issues such as SQL injection are preventable problems. Defenders can best protect their digital assets by first understanding the sheer magnitude of the impact a data breach can have on an enterprise.

In this talk Dave will review his findings from analyzing hundreds of data breach disclosures as it pertains to what went wrong, including updates for 2018.

Speaker:

Dave Lewis

Dave Lewis has twenty five years of industry experience. He has extensive experience in IT security operations and management including a decade dealing with critical infrastructure. Lewis is a Global Advisory CISO for Duo Security (now Cisco). He is the founder of the security site Liquidmatrix Security Digest and cohost of the Liquidmatrix podcast. Lewis writes columns for Forbes, Daily Swig and several other publications.