A Logo

Feel free to include my content in your page via my
RSS feed

Help Irongeek.com pay for
bandwidth and research equipment:

Search Irongeek.com:

Affiliates:
Irongeek Button
Social-engineer-training Button

Help Irongeek.com pay for bandwidth and research equipment:

paypalpixle


 Rooting out evil: defend your data center like the Secret Service protects the President - Nathaniel Gleicher NolaCon 2017 (Hacking Illustrated Series InfoSec Tutorial Videos)

Rooting out evil: defend your data center like the Secret Service protects the President
Nathaniel Gleicher
@illumio

Intruders spent more than a year inside the DNC and six months inside OPM. The 2013 Yahoo hack wasn?t discovered until stolen data appeared for sale in 2016. Everything we know about security suggests that while intruders have the advantage at the perimeter (they only have to be right once to get in), that balance should flip once they get inside (where every move could expose them). But they seem to have an advantage even once they get inside. We?ve spent years trying to defending the interior, but until we solve this puzzle, all the defense in depth in the world won?t help. Jumping the wrought iron fence surrounding the White House is easy, but hiding inside is almost impossible. The Secret Service solves an analogous challenge by focusing on understanding and controlling the environment that they defend. Today, this approach may seem too difficult given the dynamism and complexity of the network, but without knowledge and control, attackers will continue to have an advantage both at the perimeter and once they get inside. This talk will examine how the Secret Service defends the President, how their approach can improve cybersecurity, and what we need to do to get there.

Nathaniel Gleicher is the Head of Cybersecurity Strategy at Illumio, and is trained as a computer scientist and a lawyer. Nathaniel is a regular speaker at leading industry events, and his writing has appeared in industry publications, the popular press, and academic journals. Prior to Illumio, Nathaniel investigated and prosecuted domestic and international cybercrime at the U.S. Department of Justice and served as Director for Cybersecurity Policy on the National Security Council at the White House. He has also taught computer programming, designed and developed custom e-commerce and database solutions, and built and secured computer networks.

Recorded at NolaCon 2017

Back to NolaCon 2017 video list

Printable version of this article

15 most recent posts on Irongeek.com:


If you would like to republish one of the articles from this site on your webpage or print journal please contact IronGeek.

Copyright 2016, IronGeek
Louisville / Kentuckiana Information Security Enthusiast