"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?
"Cyber" security - all good, no need to worry?

Check these out next

Internet safety and cyber bulling final
Internet safety and cyber bulling final
Karen Brooks
Cyber crime and cyber security
Cyber crime and cyber security
jyoti_lakhani
Cyber security presentation
Cyber security presentation
Bijay Bhandari
Cybercrime.ppt
Cybercrime.ppt
Aeman Khan
Cyber crime and security ppt
Cyber crime and security ppt
Lipsita Behera
Cybercrime presentation
Cybercrime presentation
Rajat Jain
15 Years of Web Security: The Rebellious Teenage Years
15 Years of Web Security: The Rebellious Teenage Years
Jeremiah Grossman
Managing Corporate Information Security Risk in Financial Institutions
Managing Corporate Information Security Risk in Financial Institutions
Mark Curphey
1 of 68

"Cyber" security - all good, no need to worry?

Dec. 12, 2013
Download to read offline
Technology
Business
Iftach Ian Amit
Security Practitioner / Hacker at Amazon

Recommended

CrunchScoring: predicting future startup winners with machine learning and Cr...CrunchScoring: predicting future startup winners with machine learning and Cr...
CrunchScoring: predicting future startup winners with machine learning and Cr...Exacaster1.2K views7 slides
Big Data for Good by Jill DycheBig Data for Good by Jill Dyche
Big Data for Good by Jill DycheData Con LA271 views27 slides
Don't Forget the 'H' in HR: Ethics, Trust & People AnalyticsDon't Forget the 'H' in HR: Ethics, Trust & People Analytics
Don't Forget the 'H' in HR: Ethics, Trust & People AnalyticsDavid Green9.2K views23 slides
Exacaster crunchscore presentaitonExacaster crunchscore presentaiton
Exacaster crunchscore presentaitonRiku Seppälä660 views7 slides
People Analytics - Are we behind in Europe?People Analytics - Are we behind in Europe?
People Analytics - Are we behind in Europe?David Green7.6K views16 slides
People Analytics: Market Trends & InnovationsPeople Analytics: Market Trends & Innovations
People Analytics: Market Trends & InnovationsDavid Green600 views15 slides

More Related Content

Viewers also liked(6)

Internet safety and cyber bulling finalInternet safety and cyber bulling final
Internet safety and cyber bulling final
Karen Brooks9.2K views
Cyber crime and cyber securityCyber crime and cyber security
Cyber crime and cyber security
jyoti_lakhani5.8K views
Cyber security presentationCyber security presentation
Cyber security presentation
Bijay Bhandari440.4K views
Cybercrime.pptCybercrime.ppt
Cybercrime.ppt
Aeman Khan709.7K views
Cyber crime and security pptCyber crime and security ppt
Cyber crime and security ppt
Lipsita Behera559.6K views
Cybercrime presentationCybercrime presentation
Cybercrime presentation
Rajat Jain145.7K views

Similar to "Cyber" security - all good, no need to worry?(20)

15 Years of Web Security: The Rebellious Teenage Years15 Years of Web Security: The Rebellious Teenage Years
15 Years of Web Security: The Rebellious Teenage Years
Jeremiah Grossman6.2K views
Managing Corporate Information Security Risk in Financial InstitutionsManaging Corporate Information Security Risk in Financial Institutions
Managing Corporate Information Security Risk in Financial Institutions
Mark Curphey1.4K views
DevSecOps: A New Hope for Security in CI/CDDevSecOps: A New Hope for Security in CI/CD
DevSecOps: A New Hope for Security in CI/CD
Franklin Mosley688 views
Epikdave datapreso-2011Epikdave datapreso-2011
Epikdave datapreso-2011
epikdave281 views
15 Years of Web Security: The Rebellious Teenage Years15 Years of Web Security: The Rebellious Teenage Years
15 Years of Web Security: The Rebellious Teenage Years
Jeremiah Grossman2.6K views
Vodqa why cybersecurityVodqa why cybersecurity
Vodqa why cybersecurity
Dileep Bellamkonda103 views
BIG DEAL: CYBER SECURITY AND SMALL BUSINESSBIG DEAL: CYBER SECURITY AND SMALL BUSINESS
BIG DEAL: CYBER SECURITY AND SMALL BUSINESS
Andrew Goldsmith540 views
The Internet Is a Dog-Eat-Dog World, and Your App Is Clad in Milk-Bone UnderwearThe Internet Is a Dog-Eat-Dog World, and Your App Is Clad in Milk-Bone Underwear
The Internet Is a Dog-Eat-Dog World, and Your App Is Clad in Milk-Bone Underwear
Bob Wall418 views
Productivity 3.0Productivity 3.0
Productivity 3.0
The Lorenzi Group 314 views
Overcoming Cyber AttacksOvercoming Cyber Attacks
Overcoming Cyber Attacks
Inuit AB478 views
STKI Summit 1/2021 - REUTSTKI Summit 1/2021 - REUT
STKI Summit 1/2021 - REUT
Reut Shefer-Bar, MBA130 views
Cyber Security in a Fully Mobile WorldCyber Security in a Fully Mobile World
Cyber Security in a Fully Mobile World
University of Hertfordshire168 views
Cybersecurity and Healthcare - HIMSS 2018 SurveyCybersecurity and Healthcare - HIMSS 2018 Survey
Cybersecurity and Healthcare - HIMSS 2018 Survey
Imperva10.1K views
AI for FinanceAI for Finance
AI for Finance
Dr. Kim (Kyllesbech Larsen)237 views
Internet of thingsInternet of things
Internet of things
Patrice Kerremans823 views
2014 State of Backup for SMBs2014 State of Backup for SMBs
2014 State of Backup for SMBs
Carbonite732 views
What does it take to engage employees and customers?What does it take to engage employees and customers?
What does it take to engage employees and customers?
John Mancini2.5K views
SecureWorld - Communicating With Your CFOSecureWorld - Communicating With Your CFO
SecureWorld - Communicating With Your CFO
Gene Kim1.5K views
Cyber_security_survey201415_2Cyber_security_survey201415_2
Cyber_security_survey201415_2
Stephanie Crates337 views
eBook: State of Data Backup for SMBseBook: State of Data Backup for SMBs
eBook: State of Data Backup for SMBs
Carbonite512 views

More from Iftach Ian Amit(20)

Cyber Risk Quantification - CyberTLVCyber Risk Quantification - CyberTLV
Cyber Risk Quantification - CyberTLV
Iftach Ian Amit261 views
Devsecops at CimpressDevsecops at Cimpress
Devsecops at Cimpress
Iftach Ian Amit273 views
BSidesTLV Closing KeynoteBSidesTLV Closing Keynote
BSidesTLV Closing Keynote
Iftach Ian Amit923 views
Social Media Risk MetricsSocial Media Risk Metrics
Social Media Risk Metrics
Iftach Ian Amit1.7K views
ISTS12 KeynoteISTS12 Keynote
ISTS12 Keynote
Iftach Ian Amit2K views
From your Pocket to your Heart and BackFrom your Pocket to your Heart and Back
From your Pocket to your Heart and Back
Iftach Ian Amit862 views
Painting a Company Red and BluePainting a Company Red and Blue
Painting a Company Red and Blue
Iftach Ian Amit2.3K views
Armorizing applicationsArmorizing applications
Armorizing applications
Iftach Ian Amit906 views
Seeing Red In Your Future?Seeing Red In Your Future?
Seeing Red In Your Future?
Iftach Ian Amit4.3K views
Hacking cyber-iamitHacking cyber-iamit
Hacking cyber-iamit
Iftach Ian Amit666 views
Passwords good badugly181212-2Passwords good badugly181212-2
Passwords good badugly181212-2
Iftach Ian Amit1.3K views
BitcoinBitcoin
Bitcoin
Iftach Ian Amit2.2K views
Sexy defenseSexy defense
Sexy defense
Iftach Ian Amit2.4K views
Cyber stateCyber state
Cyber state
Iftach Ian Amit690 views
Advanced Data Exfiltration - the way Q would have done itAdvanced Data Exfiltration - the way Q would have done it
Advanced Data Exfiltration - the way Q would have done it
Iftach Ian Amit7.4K views
Infecting Python BytecodeInfecting Python Bytecode
Infecting Python Bytecode
Iftach Ian Amit2.1K views
Exploiting Second lifeExploiting Second life
Exploiting Second life
Iftach Ian Amit1.6K views
Dtmf phreakingDtmf phreaking
Dtmf phreaking
Iftach Ian Amit514 views
Cheating in Computer GamesCheating in Computer Games
Cheating in Computer Games
Iftach Ian Amit985 views
Telecommunication basics dc9723Telecommunication basics dc9723
Telecommunication basics dc9723
Iftach Ian Amit717 views

Recently uploaded(20)

Fab library construction protocol.pdfFab library construction protocol.pdf
Fab library construction protocol.pdf
AliceChang700 views
Dual Wall Insulated EBXL Cables for Electric Locomotive by Rohit Damodaran Dual Wall Insulated EBXL Cables for Electric Locomotive by Rohit Damodaran
Dual Wall Insulated EBXL Cables for Electric Locomotive by Rohit Damodaran
Karupaswamy10 views
State of PrintCSS - MarkupUK 2023.pdfState of PrintCSS - MarkupUK 2023.pdf
State of PrintCSS - MarkupUK 2023.pdf
Andreas Jung0 views
DNN Community Newsletter: An In-Person Review of Recent Open-Source ActivityDNN Community Newsletter: An In-Person Review of Recent Open-Source Activity
DNN Community Newsletter: An In-Person Review of Recent Open-Source Activity
Will Strohl0 views
Web Performance OptimizationWeb Performance Optimization
Web Performance Optimization
Livares Technologies Pvt Ltd0 views
SAUTER certified buildings.pptxSAUTER certified buildings.pptx
SAUTER certified buildings.pptx
GraziellaCathleen4 views
Global Sustainable Masterbatch Market.pdfGlobal Sustainable Masterbatch Market.pdf
Global Sustainable Masterbatch Market.pdf
Mohit BISResearch0 views
ISO 27001 How to accelerate the implementation.pdfISO 27001 How to accelerate the implementation.pdf
ISO 27001 How to accelerate the implementation.pdf
Andrey Prozorov, CISM, CIPP/E, CDPSE. LA 270010 views
Ga4 Recommended ecommerce events.pdfGa4 Recommended ecommerce events.pdf
Ga4 Recommended ecommerce events.pdf
Codilar Technologies0 views
5c_BigData_Hadoop_HDFS.PPTX5c_BigData_Hadoop_HDFS.PPTX
5c_BigData_Hadoop_HDFS.PPTX
Miguel7208440 views
Perform Mensuration and Calculation PPT.pptxPerform Mensuration and Calculation PPT.pptx
Perform Mensuration and Calculation PPT.pptx
PauloAngeles42 views
Promoting-Digital-Citizenship.pptxPromoting-Digital-Citizenship.pptx
Promoting-Digital-Citizenship.pptx
AnaMarie1306380 views
Build an LLM-powered application using LangChain.pdfBuild an LLM-powered application using LangChain.pdf
Build an LLM-powered application using LangChain.pdf
StephenAmell40 views
SYN: Ultra-Scale
Software Evolution Comprehension [ICPC 2023]SYN: Ultra-Scale
Software Evolution Comprehension [ICPC 2023]
SYN: Ultra-Scale
Software Evolution Comprehension [ICPC 2023]
Roberto Minelli0 views
ImmortalGameDeck.pdfImmortalGameDeck.pdf
ImmortalGameDeck.pdf
Jun-You Liu0 views
901721_ch1.ppt901721_ch1.ppt
901721_ch1.ppt
ThnhNguynVn970 views
computers.pptxcomputers.pptx
computers.pptx
JiyaAli350 views
WordPress Coding StandardsWordPress Coding Standards
WordPress Coding Standards
Jonathan Bossenger0 views
HELIOS Digital FTTA.pptxHELIOS Digital FTTA.pptx
HELIOS Digital FTTA.pptx
Stanley Zou0 views
Migrating to the Cloud - From Preparation to Operation copy.pdfMigrating to the Cloud - From Preparation to Operation copy.pdf
Migrating to the Cloud - From Preparation to Operation copy.pdf
Symptai Consulting Limited2 views

"Cyber" security - all good, no need to worry?

  1. "Cyber" security - all good, no need to worry? Ian Amit Director of Services, IOActive
  2. ¡Hola
  3. Source: datalossdb.org
  4. Incidents by Business Type - All Time Biz Gov Med Source: datalossdb.org Edu
  5. Incidents by Business Type - All Time 52% Biz Gov Med Source: datalossdb.org Edu
  6. Incidents by Business Type - All Time 52% 18% Biz Gov Med Source: datalossdb.org Edu
  7. Incidents by Business Type - All Time 16% 52% 18% Biz Gov Med Source: datalossdb.org Edu
  8. Incidents by Business Type - All Time 14% 16% 52% 18% Biz Gov Med Source: datalossdb.org Edu
  9. Source: datalossdb.org
  10. Incidents by Vector - All Time Outside Inside Inside - Accidental Inside - Malicious Source: datalossdb.org Unknown
  11. Incidents by Vector - All Time 57% Outside Inside Inside - Accidental Inside - Malicious Source: datalossdb.org Unknown
  12. Incidents by Vector - All Time 57% 20% Outside Inside Inside - Accidental Inside - Malicious Source: datalossdb.org Unknown
  13. Incidents by Vector - All Time 10% 57% 20% Outside Inside Inside - Accidental Inside - Malicious Source: datalossdb.org Unknown
  14. Incidents by Vector - All Time 7% 10% 57% 20% Outside Inside Inside - Accidental Inside - Malicious Source: datalossdb.org Unknown
  15. Incidents by Vector - All Time 7% 6% 10% 57% 20% Outside Inside Inside - Accidental Inside - Malicious Source: datalossdb.org Unknown
  16. DataLossDB.org Incidents Over Time 1800 1621 1350 1091 1048 900 829 775 728 695 644 450 157 43 0 2004 2005 2006 2007 2008 2009 2010 2011 2012 2013
  17. Problem ✓
  18. Problem ✓ Solution?
  19. What would CISO do?
  20. What would CISO do?
  21. WTF?
  22. RISK MANAGEMENT
  23. We need to get back to BASICS
  24. insert crowd pic here
  25. Prioritize ! Based on risk, impact, potential cost, and cost of remediation
  26. Summary 1. Stop throwing money on products 2. Identify assets, processes, technology, threats. 3. Assess your current posture. Identify gaps. 4. Address gaps based on priority and relevance. Consider cost (of impact, of fixing). 5. Test effectiveness. 6. Back to 2.
  27. REMEMBER! • You are not fighting off pentesters. 
 You are fighting off actual adversaries. • You are not fighting off auditors. 
 You keep your organization working. • You are not fighting off regulators. 
 You are trying to keep yourself out of jail.
  28. Thank You! ¡gracias Ian Amit Director of Services, IOActive ian.amit@ioactive.com Twitter: @iiamit