Here is the verbatim discussion:
Days was not so much there outside and then try to compromise systems so interestingly what has happened is the same thing today is being done by the nation state actors they're just looking for that window of small opportunity and whenever that opportunity is there they would like to grab it right the same is true for ransomware guys so the adversary is doing this continuously in terms of looking for that one single opportunity for a few minutes or few hours as well as the number of changes that's happening is also at that same frequency right the release frequency people do release every day what I call the human element so they'll get in through fishing or social engineering you know they'll convince you knock on the door and and you know try to figure out a way to get into your your organization and it's really just a it's typically an outside in view you know it's like if I was an attacker how would I break into this house how would they how would I break into your infrastructure it helps identify those weak points so you can address it and sometimes it ends up being um areas where you know it might be on email security because of fishing or social engineering it might be just uh security awareness training and leveling up your people in terms of being aware of these types of scenarios and then it might be um actionable advice as I go along and um the number one piece of advice that I have to organization s is uh to uh fully Embrace horizontally and vertically throughout your organization and and it goes above and beyond just your own four walls to have the right mindset that you will eventually be breached so do you see that mindset I mean do you see and you have worked with both the smbs and the large Enterprises do you see that mindset today and that's a very important mindset like accepting that there will those breaches huh I see it more now than I have I ever have in the past two decades but it's not anywhere near where uh it needs to be and unfortunately um the root cause of a lot of what exists today is um it's nimi it's not in my backyard so it's not going to happen to me it's going to happen to somebody else and it's not until it's someone that's close to them so if they're in the industry let say they're in retail and um they're the biggest competitor.
Highlights:
Speakers:
Bikash Barai is credited for several innovations in the domain of Network Security and Anti-Spam Technologies and has multiple patents in USPTO. Fortune recognized Bikash among India’s Top 40 Business Leaders under the age of 40 (Fortune 40-under-40).Bikash is also an active speaker and has spoken at various forums like TiE, RSA Conference USA, TEDx etc.
Earlier he founded iViZ an IDG Ventures-backed company that was later acquired by Cigital and now Synopsys. iViZ was the first company in the world to take Ethical Hacking (or Penetration Testing) to the cloud.
Comments