Detect & Respond: Ten Common Pitfalls

Information about Detect & Respond: Ten Common Pitfalls

Published on August 27, 2019

Author: FrodeHommedal

Source: slideshare.net

Content

1. Detect & Respond Frode Hommedal Technical Director PwC.no/Cyber ISF – August 2019 10 common pit that will sabotage the effectiveness of your security program

2. Frode Hommedal – PwC.no/Cyber When designing a strategy for detection and response there are numerous pitfalls you can fall into. This presentation will highlight some of them. [Based on my own experience and discussions with peers] DateDetect & Respond: 10 common pitfalls 2

3. Frode Hommedal – PwC.no/Cyber If you fall into too many of these, your security program will likely be ineffective at protecting your organization from internal and external threats.

4. Frode Hommedal – PwC.no/Cyber #whoami Technical analyst turned strategic advisor within the field of detection and response and … security. Detect & Respond: 10 common pitfalls

5. Frode Hommedal – PwC.no/Cyber Risk comes from not knowing what you're doing.– Warren Buffett Pitfall #1 Guessing risk, not basing it on asset valuation and threat and vulnerability assessments. Detect & Respond: 10 common pitfalls

6. Frode Hommedal – PwC.no/Cyber Strategy without tactics is the longest route to victory, tactics without strategy is the noise before defeat. – Sun Tzu Pitfall #2 Not creating an actual security strategy. Detect & Respond: 10 common pitfalls

7. Frode Hommedal – PwC.no/Cyber I learned that focus is key. Not just in your running a company, but in your personal life as well. – Tim Cook Pitfall #3 Not clearly defining the scope and mission of your SOC and CSIRT. Detect & Respond: 10 common pitfalls

8. Frode Hommedal – PwC.no/Cyber The only thing that you absolutely have to know, is the location of the library.–Albert Einstein Pitfall #4 Not investing in centralized logging. Detect & Respond: 10 common pitfalls

9. Frode Hommedal – PwC.no/Cyber Information is a source of learning. But unless it is organized, processed, and available to the right people in a format for decision making, it is a burden, not a benefit. – William Pollard Pitfall #5 Not continuously investing in data quality. Detect & Respond: 10 common pitfalls

10. Frode Hommedal – PwC.no/Cyber You can use all the quantitative data you can get, but you still have to distrust it and use your own intelligence and judgment. – Alvin Toffler Pitfall #6 Blindly trusting that vendor detection logic will discover your threats. Detect & Respond: 10 common pitfalls

11. Frode Hommedal – PwC.no/Cyber Efficiency is the foundation for survival. Effectiveness is the foundation for success. – John C. Maxwell Pitfall #7 Not integrating all your security solutions in one centralized cockpit. Detect & Respond: 10 common pitfalls

12. Frode Hommedal – PwC.no/Cyber Learning is not attained by chance, it must be sought for with ardor and attended to with diligence. – Abigail Adams Pitfall #8 Failing to take the necessary time to seek out available knowledge. Detect & Respond: 10 common pitfalls

13. Frode Hommedal – PwC.no/Cyber No one can whistle a symphony. It takes a whole orchestra to play it. – H.E. Luccock Pitfall #9 Not systematically learn from the insigths offered by your SOC and CSIRT. Detect & Respond: 10 common pitfalls

14. Frode Hommedal – PwC.no/Cyber Defenders think in lists. Attackers think in graphs. As long as this is true, attackers win. – John Lambert Pitfall #10 Not thinking in terms of dependencies. Detect & Respond: 10 common pitfalls

15. pwc.no/Cyber Thank you Frode Hommedal Technical Director ISF – August 2019 [email protected] Feel free to reach out if you have any questions or comments.

#whoami presentations

Zer 0 no zer(0 day)   dragon jar
25. 09. 2020
0 views

Zer 0 no zer(0 day) dragon jar

Related presentations


Other presentations created by FrodeHommedal