Derek Johnson will be covering Matt Tait's keynote and another session on major supply chain attacks over the past year and how they're changing best practices in DFIR. Supply chain attacks and software interdependence are creating an existential crisis for the cybersecurity industry
XDR, automation and the growing need to solve the problem of Death by Security Alerts that make things like XDR and SIEM impractical for all but a handful of companies right now.
He will also talk about the SolarWinds lawsuit, because this week they just submitted their formal response in court, and it gets at an issue that I think is becoming more and more important: what if any legal standards or liability threshold should there be when companies with bad security practices get breached?
Finally, we will check in with Derek about what his thoughts are of his first experience at BlackHat!