Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Books! Google isn't the only source of information

133 views

Published on

A presentation at the Jisc security conference 2019 by William Macleod, senior cyber security specialist, University of Strathclyde.

Published in: Technology
  • Be the first to comment

  • Be the first to like this

Books! Google isn't the only source of information

  1. 1. Books! Google isn't the only source of information William Macleod, University of Strathclyde
  2. 2. Books! Google isn't the only source of information Agenda • Why • A data-driven computer defence (Roger A Grimes) • Securing DevOps (Julien Vehent) • Social engineer (Iain Sutherland) 2 Books! Google isn't the only source of information
  3. 3. Why? 3 Books! Google isn't the only source of information I review books! Shameless Plug
  4. 4. A data-driven computer defence Roger A. Grimes • Author 10 books • Worked at McAfee • Worked at Microsoft • CPA, CISSP, CISA, CISM, CEH, MSCE, ETC, ETC 4 Books! Google isn't the only source of information
  5. 5. 5 A data-driven computer defence Books! Google isn't the only source of information
  6. 6. A data-driven computer defence “What are our top successful threats.”
  7. 7. A data-driven computer defence We need to: • Understand our organisation • Identify the question(s) to ask • Identify the data we need • Collect that data • Investigate (ask more questions and maybe identify more data to collect) • Analyse • Communicate the findings 7 Books! Google isn't the only source of information
  8. 8. A data-driven computer defence When I joined Strathclyde I did • None of that 8 Books! Google isn't the only source of information
  9. 9. A data-driven computer defence If you have no data, you can assume your biggest threat is from • Patch management • Social engineering 9 Books! Google isn't the only source of information
  10. 10. A data-driven computer defence Learn to ask the right question • Are we asking the right questions? • Do we have the right data to answer the question? • Be prepared to change both the questions and the answers as the situation requires 10 Books! Google isn't the only source of information
  11. 11. A data-driven computer defence What are our top successful threats? • "Everyone from the CEO to the food service employees should know the answer” 11 Books! Google isn't the only source of information
  12. 12. A data-driven computer defence Take Away's • Investigation and root cause analysis is so important • Ask the right questions • Gather the required data • Measure the correct indicators • Be prepared to change • Decisions based on data are defensible 12 Books! Google isn't the only source of information Buy this book!
  13. 13. Securing devOps Julien Vehent • Engineering Manager - Firefox Operations Security 13 Books! Google isn't the only source of information
  14. 14. Securing devOps The problem with Dev / Ops / Sec 14 Books! Google isn't the only source of information • "When the company's focus is directed outwards to its customers, security teams direct their focus inward" • "One wants to increase the value of the organisation, the other wants to protect its existing value" • "Each side is pressured to ignore the others and focus on its own achievements" • "I've never encountered dev or ops teams that didn’t care about security but I have met many frustrated with the interaction and goal disconnects”
  15. 15. Securing devOps Dev / Ops /Sec 15 Books! Google isn't the only source of information • Continuous integration • Continuous delivery • Continuous security
  16. 16. Securing devOps 16 Books! Google isn't the only source of information
  17. 17. Securing devOps Ops 17 Books! Google isn't the only source of information • Automated • Script based • Ensure each deployment is standard • Detect drift and reset
  18. 18. Securing devOps Dev 18 Books! Google isn't the only source of information • Develop small standalone snippets • Check in to a repository • Do some automated testing • Peer code review prior to release
  19. 19. Securing devOps Other great things about this book 19 Books! Google isn't the only source of information • Has code examples • Walks through the entire process with some open source tools • Suitable to give to your developers
  20. 20. Securing devOps Other great things about this book 20 Books! Google isn't the only source of information • Chapter 10 - a case study in incident response • Chapter 11 - risk management
  21. 21. Securing devOps Take away's • This book: - Gave me confidence to talk to the developers - Gave me the right angle to get developer buy in - Allowed me to find out they are doing some checks already - Allowed us to identify some security tests that could be implemented right now - Allowed us to write our "Development and DevOps Security Standards" 21 Books! Google isn't the only source of information
  22. 22. Social engineer Iain Sutherland • Fiction • Short story (86 pages) 22 Books! Google isn't the only source of information
  23. 23. Books! Google isn't the only source of information Books • A Data-Driven Computer Defence - Help you with your strategy • Securing DevOps - Help you with engaging with developers • Social Engineer - Awareness for senior management 23 Books! Google isn't the only source of information
  24. 24. Thank you customerservices@jisc.ac.uk jisc.ac.uk William Macleod University of Strathclyde

×