Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Devil's Bargain: Sacrificing Strategic Investments to Fund Today's Problems


Published on

Phil Quade, CISO, Fortinet

Security Transformation Summit 2019

Published in: Government & Nonprofit
  • Login to see the comments

Devil's Bargain: Sacrificing Strategic Investments to Fund Today's Problems

  1. 1. Devil’s Bargain: Sacrificing Investments to Fund Today’s Problems Phil Quade Chief Information Security Officer December 3, 2019
  2. 2. 2 Fortinet Privileged & Confidential Famous False Choices Rock Hard place Great taste Less filling Privacy Security Meet today’s needs Prepare for tomorrow
  3. 3. 3 Fortinet Privileged & Confidential Strategic Cybersecurity Innovation Agile Governance InternetGovernance GlobalRisks Inform ation Technology International S ecurity Financial and M onetary System s Illicit Economy Banking and Capital Markets Human Rights Digital Economy and Society Fourth Industrial Revolution Social Media Autom otiveE lectronics Supply Chain and Transport Cities and Urbanization Internetof Things Drones Corruption B lockchain Values Nuclear Security Insurance andAsset Management Retail, ConsumerGoods andLifestyle 3DPrinting Justiceand Legal Infrastructure Global Governance Digital Communications Electricity Aviation Travel and Tourism Long-term InvestingInfrastructure and Development BehaviouralSciences Geo- economics Space R ussian Federation United Kingdom UnitedStates Geopolitics Civic Participation Cyber War Systemic Risk and Resilience Critical Infrastructure Protection Cybercrime New Norms of Collaboration Cyber Privacy Security of Things Technology and the Law Cyber security Source: World Economic Forum Guardian of the 4th Industrial Revolution
  4. 4. 4 Fortinet Privileged & Confidential Tactical/Urgent Cybersecurity • Data breaches • Cloud migration • Workforce gaps • IoT • Privacy • Complexity management • Supply chain • Insider threat • Public-private sharing • Election integrity • Critical infrastructure protection • EDR • DLP • IAM • MDM • PAM • MFA • Standard configurations • Training • Visibility • Monitoring • Policy Near-Term Operational Needs
  5. 5. Science
  6. 6. 6 Fortinet Privileged & Confidential The Lesson? Learn from History Cosmic Big Bang (Space) Fundamental forces: Matter, Gravity, Time Digital Big Bang (Cyberspace) Fundamental forces: Speed, Connectivity Cybersecurity Fundamental forces: Speed, Connectivity
  7. 7. Strategy Pay attention to fundamentals, take actions that are cumulative, and that build on a larger construct
  8. 8. 8 Fortinet Privileged & Confidential Elementary à Advanced Cybersecurity Advanced Strategies Failure Recovery Visibility Inspection (SSL, Sandbox) Fundamental Strategies Access Control Segmentation Cryptography High-Order Dimensions Complexity Management Human Frailty Privacy Elementary Shortfalls Authentication Training Patching Speed & Connectivity
  9. 9. Fortinet’s Implementation
  10. 10. 10 Fortinet Privileged & Confidential 10 | FortiGuardLabs | Cyb er Threat Alliance – CTA | Gov ernmentEntities&CERTs | N SE Programs | Fortinet Acade m y SECURITY FABRIC DATA End User Fortinet is doing its part EDUCATIONECOSYSTEMTECHNOLOGY Time is the Ultimate Test for a Vision
  11. 11. 11 Fortinet Privileged & Confidential 2019: Fortinet Vision Convinces the Toughest 7 9 7 4 3 2 2 0 4 2 *Recognition based on Security, WAN and Wired & WLAN Markets Vendor 1 Vendor 2 Vendor 3 Vendor 4
  12. 12. 12 Fortinet Privileged & Confidential Short List Leverage convergence (rather than fight/fear it) § Security + networking: SD- WAN; NOC-SOC; Access & security § Cyber + Physical: IT-OT; IoT-5G § Network + Cloud: Hybrid-cloud (speed + agility) § People + Machines: Synergy Segment, segment, segment § Prevents breaches, minimizes their scope, eases recover § With agility § With low overhead (i.e., without complexity) Authenticate § Take no chances with privileged accounts Automate § Better security § Reduce complexity § Better leverage Cap-Ex to reduce Op-Ex Ruthlessly drive toward architectures built on speed and integration § Better security § Future proof Speed & Integration Authentication & Automation Segmentation3 Use Convergence
  13. 13. 13 Fortinet Privileged & Confidential 13 • Make tactical decisions consistent with a larger strategy • No devil’s bargains • Optimize around the ‘fundamental forces’ • Speed and Integration • Look at Broad, Integrated, Automated solutions • Solves today’s problems, prepares you for the future Reject False Choices