A copy of the slides I delivered at the inaugural BANG event in Sydney to a highly receptive audience of talented individuals from the resilience, business continuity, cybersecurity, and risk professions.

1. The cyber resilient enterprise
Andrew Bycroft, Cyber Resilience Strategist and CEO, The Security Artist

9. Risk to your business
Risk to cybercriminals
Increased number of targets
Increased perception of success
Increased reward for success
Decreased barrier to entry
Decreased fear of attribution

11. resiliencecyber

12. He was just found
dead in a training
facility locker room.
Shot in the head.
Was it fatal?Yes. How fatal?Completely.
© Columbia Pictures 2006

16. Your business relies upon assets, if not discovered and classified
expose vulnerabilities, if not discovered and remediated
to threats, if not predicted and prevented
that lead to attacks, if not detected and responded to
which cause breaches, if not confirmed and recovered from
resulting in impactsto the resiliency of your business

17. Company
Community
Cosmos
Your
company
Partners, Customers, Suppliers
Partners/customers/suppliers of
partners/customers/suppliers

18. Digital
Physical
Social
Company
Community
Cosmos

19. Design
ImplementationOperation
Management
Company
Community
Cosmos

20. Political
Economic
SocialTechnological
Environmental
Legal
Company
Community
Cosmos

21. Access
Copy
TheftModification
Disruption
Destruction
Company
Community
Cosmos

22. Confidentiality
Integrity
Availability
Company
Community
Cosmos

23. Operational
Physical
PersonalLegal
Reputational
Financial
Company
Community
Cosmos

25. Assets Vulnerabilities Threats Attacks Breaches Impacts
• Email servers
• Software
• Cables
• Racks
• Power supplies
• Network
infrastructure
• Internet
connection
• Email admins
• Sales team
• ISP infrastructure
• ISP admins
• Tape backup
server
• Tape
• Single supplier of
networks
• Single supplier of
power
• OS buffer
overflow
• Perishable tape
• Only one email
admin
• Overworked
network admins
• Tape backups not
tested
• One sales team
member is a
gambler
• Malware
• Spam
• Environmental
• Brownouts
• Power loss
• Network
disruption
• DDoS
• Illness
• Cyber attackers
recruiting mules
• ISP goes out of
business
• Social engineering
• Cyber espionage
• Sabotage
• Staff absence
• Insider abuse
• Inside misuse
• Destruction of key
sites
• Data loss
• Unavailability of
key resources
• Unavailability of
key sites
• Loss of
productivity
• Loss of contracts
• Loss of clients
• Loss of prospects
• Loss of revenue
• Bad publicity
• Legal action
• Share price drop
Start with a business process – sales

26. Assets Vulnerabilities Threats Attacks Breaches Impacts
• Storage servers
• Food
technologists
• Quality control
staff
• Network
infrastructure
• Internet
connection
• Google
infrastructure
• Google admins
• Dropbox
infrastructure
• Dropbox admins
• Power
infrastructure
• Unpatched file
server
• Poor passwords
• Untrained users
• Poor screening
processes
• Misconfigured
firewall
• Phishing
• Malware
• Targeted attack
• Compromise of
cloud storage
(Google Drive and
Dropbox)
• Theft of biscuit
recipes
• Theft of customer
contact details
• Theft of credit
card details
• Insider threat
• Sabotage
• IP theft
• Customer data
loss
• Modification of
recipe programs
• Loss of contracts
• Loss of clients
• Loss of prospects
• Loss of revenue
• Bad publicity
• Legal action
• Product recall
Start with a dollar value – $1M

27. Questions?
Andrew Bycroft, Cyber Resilience Strategist and CEO, The Security Artist