David Estlick, CISO of Chipotle Mexican Grill joined James Christiansen, vice president and CSO of cloud security transformation at Netskope, to speak about managing corporate expectation post breach.
Jack McCarthy, CIO of the New Jersey Judiciary Court System, was on the golf course last March when he received a call from Jersey’s chief justice saying the courts would be shut down due to the pandemic. This immediately kicked off a sweeping business continuity and work-from-home initiative that emphasized user and data security.
If successful, the goal could mean greater partnership between government and industry, addressing decades of contracting morass that stilted sharing of information about vulnerabilities.
A recent survey found that most development teams, 81%, knowingly pushed flawed code live, and 20% senior of managers even admitted to committing this practice often.
Ahead of his session at the RSA Conference, SC Media spoke to Bernard Brantley, CISO at Corelight, as well as Carraig Stanwyck, H&R Block’s manager of global security operations, to understand the potential benefit of open source expertise.
The situation still unfolding with Colonial demonstrates the distinct vulnerabilities that face any organization with network sprawl, as multiple, often unique points of potential failure must be properly hardened.
Researchers said that the last few years saw malware authors adopting newer coding languages at a more rapid pace.
Tim Brown’s familiarity with the internal environment and attack investigation potentially means less time to ramp up company’s Secure by Design initiative. But there could be some drawbacks to hiring from within as well.
SEGs and sandbox rules are designed to spot them, and employees are trained to distrust them, so attackers are taking an alternate approach.
Interactive modules educate employees on phishing, social engineering, securely working from home, and more. And it all comes with a dose of nostalgia.
