Successfully reported this slideshow.
Your SlideShare is downloading. ×

Breach Fixation: How Breaches Distort Reality And How We Should Respond- John Dickson, Principal at Denim Group, Ltd

Sep. 21, 2016
0 likes 1,437 views
Ad
Ad
Ad
Ad
Ad
Ad
Ad
Ad
Ad
Ad
Ad
Upcoming SlideShare
EVOLVE to demand. demand to evolve by Igor Volovich
EVOLVE to demand. demand to evolve by Igor Volovich
Loading in …3
×

Check these out next

Backups and Disaster Recovery for Nonprofits
Community IT Innovators
CRI Cyber Board Briefing
OCTF Industry Engagement
Not-For-Profit Cybersecurity and Privacy Disrupters During COVID-19
Citrin Cooperman
Be Angry - why CEOs should join the coalition against cyber crime
Kevin Duffey
IT Security for Nonprofits
Community IT Innovators
The Security Director's Practical Guide to Cyber Security
Kevin Duffey
Social Engineering the CEO
Kevin Duffey
TRU Snacks Webinar Series - Navigating Cybersecurity Risk in the Age of COVID-19
Citrin Cooperman
1 of 24 Ad

Breach Fixation: How Breaches Distort Reality And How We Should Respond- John Dickson, Principal at Denim Group, Ltd

Sep. 21, 2016
0 likes 1,437 views

Download to read offline

Technology

John Dickson is an internationally recognized security leader, entrepreneur and Principal at Denim Group, Ltd. He has nearly 20 years hands-on experience in intrusion detection, network security and application security in the commercial, public and military sectors. As a Denim Group Principal, he helps executives and Chief Security Officers (CSO’s) of Fortune 500 companies and government organizations launch and expand their critical application security initiatives. His leadership has been instrumental in Denim Group being honored by Inc. Magazine as one of the fastest growing companies in the industry for five years in a row.

John Dickson is an internationally recognized security leader, entrepreneur and Principal at Denim Group, Ltd. He has nearly 20 years hands-on experience in intrusion detection, network security and application security in the commercial, public and military sectors. As a Denim Group Principal, he helps executives and Chief Security Officers (CSO’s) of Fortune 500 companies and government organizations launch and expand their critical application security initiatives. His leadership has been instrumental in Denim Group being honored by Inc. Magazine as one of the fastest growing companies in the industry for five years in a row.

Technology
Advertisement

Recommended

EVOLVE to demand. demand to evolve by Igor Volovich
EC-Council
1.4k views
15 slides
The Cloud 9 - Threat & Solutions 2016 by Bobby Dominguez
EC-Council
1.7k views
24 slides
FireEye Cyber Defense Summit 2016 Now What - Before & After The Breach
FireEye, Inc.
3.2k views
15 slides
Shift Toward Dynamic Cyber Resilience
Darren Argyle
336 views
28 slides
Strategies for cyber resilience - Everyone has a Role
Kevin Duffey
472 views
17 slides
CEOs leading Recovery from Cyber Attack
Kevin Duffey
1.2k views
24 slides
Cyber Recovery - Legal Toolkit
Kevin Duffey
229 views
18 slides
Mark Villinski - Top 10 Tips for Educating Employees about Cybersecurity
centralohioissa
835 views
47 slides
Advertisement

More Related Content

Slideshows for you (20)

Backups and Disaster Recovery for Nonprofits
Community IT Innovators
1.1k views
CRI Cyber Board Briefing
OCTF Industry Engagement
5.4k views
Not-For-Profit Cybersecurity and Privacy Disrupters During COVID-19
Citrin Cooperman
396 views
Be Angry - why CEOs should join the coalition against cyber crime
Kevin Duffey
267 views
IT Security for Nonprofits
Community IT Innovators
1.1k views
The Security Director's Practical Guide to Cyber Security
Kevin Duffey
446 views
Social Engineering the CEO
Kevin Duffey
323 views
TRU Snacks Webinar Series - Navigating Cybersecurity Risk in the Age of COVID-19
Citrin Cooperman
307 views
The Board and Cyber Security
FireEye, Inc.
10.5k views
C-Suite Snacks Webinar Series : Under Attack - Preparing Your Company in the ...
Citrin Cooperman
148 views
A Manifesto for Cyber Resilience
Symantec
3.7k views
Talking To The Board: How To Improve Your Board's Cyber Security Literacy – U...
Tripwire
892 views
Cyber Heroes of tomorrow's world
Kevin Duffey
267 views
MCG Cybersecurity Webinar Series - Risk Management
William McBorrough
94 views
Cybersecurity In The Cognitive Era: Priming Your Digital Immune System
IBM Security
651 views
Cyber-risk Oversight Handbook for Corporate Boards
Cheffley White
224 views
A Hacker's Playground - Cyber Risks During COVID-19
Citrin Cooperman
252 views
Journey to cyber resilience
Andrew Bycroft
910 views
Gartner Security & Risk Management Summit Brochure
trunko
2.2k views
Data Breach Crisis Control – How to Communicate When You’re in the Hot Seat
Resilient Systems
956 views
Backups and Disaster Recovery for Nonprofits
Community IT Innovators
1.1k views
30 slides
CRI Cyber Board Briefing
OCTF Industry Engagement
5.4k views
83 slides
Not-For-Profit Cybersecurity and Privacy Disrupters During COVID-19
Citrin Cooperman
396 views
38 slides
Be Angry - why CEOs should join the coalition against cyber crime
Kevin Duffey
267 views
10 slides
IT Security for Nonprofits
Community IT Innovators
1.1k views
40 slides
The Security Director's Practical Guide to Cyber Security
Kevin Duffey
446 views
23 slides

Similar to Breach Fixation: How Breaches Distort Reality And How We Should Respond- John Dickson, Principal at Denim Group, Ltd (20)

IDC Best Practices in Private Sector Cyber Security
inside-BigData.com
879 views
Defending Threats Beyond DDoS Attacks: Featuring Guest Speaker from IDC
Cloudflare
1.6k views
The Great Disruption No One Planned For: COVID-19
Emile Sayegh
311 views
NATO Cyber Security Conference: Creating IT-Security Start-Ups
Benjamin Rohé
2.1k views
SMi Group's 5th annual Oil & Gas Cyber Security 2015
Dale Butler
335 views
Breaking down the cyber security framework closing critical it security gaps
IBM Security
4.6k views
Cyber Security at CTX15, London
John Palfreyman
798 views
Outpost24 webinar - Why asset discovery is the missing link to enterprise vul...
Outpost24
44 views
Trustwave: 7 Experts on Transforming Your Threat Detection & Response Strategy
Mighty Guides, Inc.
235 views
Let's TOC: Navigate the Cybersecurity Conversation with Dominique Singer
SaraPia5
32 views
4th Digital Finance Forum, Simon Brady
Starttech Ventures
932 views
AusCERT 2016 - An Unlikely Romance: The Current State of Bug Bounties
Casey Ellis
19 views
Carbon Black: Keys to Shutting Down Attacks
Mighty Guides, Inc.
156 views
Carbon Black: 32 Security Experts on Changing Endpoint Security
Mighty Guides, Inc.
1.2k views
2019 10-22 axio - taking control of cyber risk - grid-seccon
Axio
381 views
Ivanti Webinar - How to Win Budget and Influence Non-InfoSec Stakeholders
Ivanti
25 views
Best_of_Breed_3-24-2015_How_to_Achieve_ABAC_Today copy
Stephanie McVitty
293 views
Investing in Digital Threat Intelligence Management to Protect Your Assets ou...
Enterprise Management Associates
322 views
Understanding Your Attack Surface and Detecting & Mitigating External Threats
Ulf Mattsson
861 views
Must Know Cyber Security Stats of 2016
DWP Information Architects Inc.
536 views
IDC Best Practices in Private Sector Cyber Security
inside-BigData.com
879 views
18 slides
Defending Threats Beyond DDoS Attacks: Featuring Guest Speaker from IDC
Cloudflare
1.6k views
35 slides
The Great Disruption No One Planned For: COVID-19
Emile Sayegh
311 views
42 slides
NATO Cyber Security Conference: Creating IT-Security Start-Ups
Benjamin Rohé
2.1k views
33 slides
SMi Group's 5th annual Oil & Gas Cyber Security 2015
Dale Butler
335 views
6 slides
Breaking down the cyber security framework closing critical it security gaps
IBM Security
4.6k views
30 slides
Advertisement

More from EC-Council (20)

CyberOm - Hacking the Wellness Code in a Chaotic Cyber World
EC-Council
699 views
Cloud Security Architecture - a different approach
EC-Council
201 views
Phases of Incident Response
EC-Council
200 views
Weaponizing OSINT – Hacker Halted 2019 – Michael James
EC-Council
549 views
Hacking Your Career – Hacker Halted 2019 – Keith Turpin
EC-Council
220 views
Hacking Diversity – Hacker Halted . 2019 – Marcelle Lee
EC-Council
194 views
Cloud Proxy Technology – Hacker Halted 2019 – Jeff Silver
EC-Council
215 views
DNS – Strategies for Reducing Data Leakage & Protecting Online Privacy – Hack...
EC-Council
215 views
Data in cars can be creepy – Hacker Halted 2019 – Andrea Amico
EC-Council
171 views
Breaking Smart [Bank] Statements – Hacker Halted 2019 – Manuel Nader
EC-Council
193 views
Are your cloud servers under attack?– Hacker Halted 2019 – Brian Hileman
EC-Council
148 views
War Game: Ransomware – Global CISO Forum 2019
EC-Council
107 views
How to become a Security Behavior Alchemist – Global CISO Forum 2019 – Perry ...
EC-Council
87 views
Introduction to FAIR Risk Methodology – Global CISO Forum 2019 – Donna Gall...
EC-Council
665 views
Alexa is a snitch! Hacker Halted 2019 - Wes Widner
EC-Council
81 views
Hacker Halted 2018: Don't Panic! Big Data Analytics vs. Law Enforcement
EC-Council
339 views
Hacker Halted 2018: HACKING TRILLIAN: A 42-STEP SOLUTION TO EXPLOIT POST-VOGA...
EC-Council
213 views
Hacker Halted 2018: Breaking the Bad News: How to Prevent Your IR Messages fr...
EC-Council
130 views
Hacker Halted 2018: From CTF to CVE – How Application of Concepts and Persist...
EC-Council
271 views
Hacker Halted 2018: SE vs Predator: Using Social Engineering in ways I never ...
EC-Council
114 views
CyberOm - Hacking the Wellness Code in a Chaotic Cyber World
EC-Council
699 views
23 slides
Cloud Security Architecture - a different approach
EC-Council
201 views
32 slides
Phases of Incident Response
EC-Council
200 views
16 slides
Weaponizing OSINT – Hacker Halted 2019 – Michael James
EC-Council
549 views
32 slides
Hacking Your Career – Hacker Halted 2019 – Keith Turpin
EC-Council
220 views
19 slides
Hacking Diversity – Hacker Halted . 2019 – Marcelle Lee
EC-Council
194 views
32 slides

Recently uploaded (20)

Chapter01.ppt
SangeethaVal
0 views
Computer-Workstation-Ergonomics.pptx
MarkLeonardDBarriata
0 views
liquid dosage form.pptx
HebaYassin10
3 views
Borel Products catalogue 2023
Borel Swiss
0 views
Gurney · SlidesCarnival.pptx
yakotalordea
4 views
All in one Street light- S6 Spec-YIBAI.pdf
Guangdong Yibai Optotech Co.,Ltd
0 views
Importance of Robots in Mechatronics
SprayTechDevelopers
6 views
NIO-Grizly.pdf
Mohit Kumar
2 views
InstrumentTransformer.pdf
Tamil365356
0 views
feature extura.pptx
yakotalordea
3 views
Developing a customer data platform
TredenceAnalytics
0 views
html project real estate.pdf
VivekBaghel30
0 views
How a Revamped Data Analytics Approach Can Mitigate Healthcare Disparities.pdf
TredenceAnalytics
0 views
5G Basic Call Flows.pdf
IbrahimSayed61
3 views
Securing your Software Delivery Pipelines with a slight shift to the left.
Melissa Kaulfuss
0 views
Diseño de Algoritmos Paralelos
KelvinSnchezRosario
7 views
HDL.pptx
Abdulrahman181781
2 views
PLM System Integration with SAP S4HANA.pdf
DeepikaBv4
0 views
aadesh presentation.pptx
XyzAnc
0 views
Datasheet-Elegant-Series-high-bay-light-180lm.pdf
Guangdong Yibai Optotech Co.,Ltd
0 views
Chapter01.ppt
SangeethaVal
0 views
26 slides
Computer-Workstation-Ergonomics.pptx
MarkLeonardDBarriata
0 views
15 slides
liquid dosage form.pptx
HebaYassin10
3 views
23 slides
Borel Products catalogue 2023
Borel Swiss
0 views
24 slides
Gurney · SlidesCarnival.pptx
yakotalordea
4 views
38 slides
All in one Street light- S6 Spec-YIBAI.pdf
Guangdong Yibai Optotech Co.,Ltd
0 views
5 slides
Advertisement

Breach Fixation: How Breaches Distort Reality And How We Should Respond- John Dickson, Principal at Denim Group, Ltd

  1. 1. BREACH FIXATION HOW BREACHES DISTORT REALITY AND HOW WE SHOULD RESPOND
  2. 2. MY BACKGROUND • 20+ Year Security Professional • Denim Group Principal • MBA Strategy Guy • ISSA Distinguished Fellow • Security Conference Speaker • Dark Reading Columnist • Twitter: @johnbdickson
  3. 3. DENIM GROUP | COMPANY BACKGROUND • Trusted advisor on all matters of software risk • External application & network assessments • Web, mobile, and cloud • Software development lifecycle development (SDLC) consulting • Network and infrastructure where applications reside • Secure development services: • Secure application development & remediation • Managed security services • Developed ThreadFix
  4. 4. ANYBODY REMEMBER THIS GUY? 4
  5. 5. HIS NEW HOME 5
  6. 6. WHY IS THIS IMPORTANT? 6 The day security became important to business executives
  7. 7. BREACH FIXATION OVERVIEW 7 • What is Breach Fixation? • How Does Breach Fixation Manifest Itself? • How you can Use Breach Fixation to Your Advantage
  8. 8. BREACH FIXATION OVERVIEW 8
  9. 9. BREACH FIXATION 9 • A phenomena created by media fixation on breach stories • Breach Fixation distorts reality by putting most of the focus on external activities that we don’t control… • At the expense of internal security activities that we do • Affects strategy and resource allocation in a potentially negative way • Takes focus away from addressing the root cause while treating the symptom
  10. 10. WHAT DRIVES MEDIA CONSUMPTION? 10
  11. 11. BREACH FIXATION 11 • Does anyone know the top security stories consumed by readers of the major security publications?
  12. 12. A RUBBERNECKING CULTURE? 12
  13. 13. WHAT’S HOT IN SECURITY 13 • Breaches • APT & Zero Days • External Threats • Cyberwar • Russians, Chinese, Iranians, oh my! • Finding Vulnerabilities
  14. 14. WHAT’S NOT… 14 • Internal Security Practices • Coding Standards • Patch Management • User Awareness • Actually Fixing Vulnerabilities
  15. 15. WHAT DOES THAT CREATE? 15 • A Situation Where Basic Security Blocking & Tackling Remains Problematic • Window of Exposure of Application Vulnerabilities Remains Egregious • Well-known Security Weaknesses Continue to be an Avenue of Approach for Attackers • Outside the largest and most sophisticated organizations, security only covers a subset of the enterprise
  16. 16. WHAT DOES THAT CREATE? 16 • A Situation Where External Threats Might Distract Security Focus • Whipsawed by #ToD (Threat of the Day) or #YABS (Yet Another Breach Story) • “Incumbent Spend” around FW, Endpoint, AV, dwarf other areas • Focus on latest outwardly-focuses security “shiny rock” technologies as panaceas
  17. 17. THE RISK? 17 • Returning to a FUD Culture…
  18. 18. EXAMPLES OF IMPACT 18 • Press DDoS on speaker by the entire media • Gartner: By 2020, 60% of enterprise information security budgets will be allocated for rapid detection and response approaches, up from less than 20% in 2015. • EY: A Shift to “Active Defense” and its implications • A cautionary tale: State of Texas Public Utilities Commission war story
  19. 19. HOW CAN YOU ADDRESS BREACH FIXATION 19 • Recognize Breach Fixation When a Layperson (e.g., “Executive”) References it. • The First Step to Recovery is Admitting you have a Problem!
  20. 20. HOW CAN YOU ADDRESS BREACH FIXATION 20 • Constantly Quantify Internal Security Posture • Measure, measure, measure
  21. 21. HOW TO USE BREACH FIXATION TO YOUR ADVANTAGE 21 • Use the Positive Force from the Attack Side & Map to Your Strategy
  22. 22. OTHER STRATEGIES USE BREACH FIXATION… 22
  23. 23. WRAP UP 23 • Breach Fixation distorts reality by putting most of the focus on external security activities that we don’t control at the expense of internal security that we do. • Sophisticated security practitioners understand how Breach Fixation can help or hurt them, if not managed • Once recognized, there are several basic strategies that one can use to take advantage of Breach Fixation
  24. 24. QUESTIONS AND ANSWERS John B. Dickson, CISSP @johnbdickson

Editor's Notes

  • Have done a tremendous amount of mobile testing for our clients, including Fortune 500 and sensitive
    Have assessed MDM systems
    And made recommendation to sensitive .gov and .mil clients surrounding application testing
  • TJX hacker Albert Gonzalez was sentenced to 20 years and a day
  • The Leavenworth Federal Maximum Security Prison, Leavenworth, Kansas!
  • - More and more sensational stories.. Press doesn’t understand – or want to understand – the very hard business of security in an organization
    Now front and center to popular and business press – consumed by executives and boards of directors
    Vendor marketing campaigns also add to the hype
  • Share Dark Reading click-through stories
  • But is critically important….
  • Sources:
    WhiteHat Security 2015 Website Security Statistics Report
    Veracode 2015 State of Software Security
    Verizone 2015 Data Breach Investigations Report

    Eye is not on the prize! Security posture built on buying the shiny object….security ADHD – limited patience and or dilligence to do what’s necessary to reduce risk.
  • Sources:
    WhiteHat Security 2015 Website Security Statistics Report
    Veracode 2015 State of Software Security
    Verizone 2015 Data Breach Investigations Report
  • Texas PUC moved its two cybersecurity staff working on Smart Meter security to the State’s Emergency Operations Center. No backfill
    Source: "Shift Cybersecurity Investment to Detection and Response,” Ayal Tirosh & Paul E. Proctor, Gartner, January 2016.
    Source: “Global Information Security Survey 2015” EY

×