https://www.youtube.com/watch?v=bSSt6owsYlI
I SURVIVED ROCK AND ROLL!
Can You Survive Security Incident Escalation?
I GREW up in the music business. Both of my parents were engineers and I got into building and breaking things by the age of 6. My father produced Peter, Paul & Mary, Bob Dylan slept on our couch and while Ella drank, Louis Armstrong taught me how to play the trumpet. We had our own recording studio at home where I worked after school for years. This is a really fun preso as it maps my first career over 30 years in the security biz and how it applies to Epic Fails with Security Incident Reporting & Escalation.
1. I Survived Rock’n’Roll
“A Primer in
Analogue Network Security”
How Stevie Wonder, Bob Marley, jimi hendrix & Liza Minnelli
prepared Me For Security
Winn Schwartau
www.TheSecurityAwarenessCompany.com
2. I Do Awareness:
I Used to Do Analogue Rock
Realizations for Security
We teach success not failure.
Digital is NOT Binary
Analogue Still Rules (Or Should)
You Can’t Fix It in the Mix (Music or People)
I know all about Feedback! Security Doesn’t.
Some Ways to Rethink Security
(Some you may think are odd…but they work!)
I Have Had to Respond to Some Incredible Incidents
25. Stevie Wonder:
Security Take Aways
Fast Incident Response is Critical!
Cyber is Physical.
Power is GOD!
Have a Backup. DR Plan. Exercise it. Again.
Plan for double faults.
Think Confocal Infrastructural Vulnerability
When the IT hits the fan…ask for forgiveness, not permission.
Let the crazy guy try something crazy. What do you have to lose
when 100,000 people start to riot?
30. Liza Minneli:
Security Take Aways
Sync
Policy, AD, AS, Mobile, Backup, DR, etc.
Compliance, Policy, Testing?
Cross NWs
Time/Date-Event Stamps (time changes globally!)
Can U Go Manual Synchronization Mode?
Develop test & override
Develop skills
Have the manual tools in a kit
Test the process
Regularly
36. Charlie Daniels:
Security Take Aways
Architect for Graceful Degradation
A Graceful Backup is Better Than None
Rehearse Mission Critical Mode
For what you can
Mentally for those impossible situations
Develop “What Can Go Wrongggggggg List”
Risk/Cost Analysis
Train for Skills in live!
Exercise skills
37. The Reality of Remotes:
Take Aways
“You know, it’s always
something.”
Murphy has a tent city here.
One backup is not enough.
Always, always, have Plan-B
and Plan-C ready to go!
Overstaff.
41. Studio R-1
Security Take-Aways
Time is Money: In the studio or the network!
Reliable, tested, fixed systems can fail, too!
Disaster Recovery
Graceful Degradation Part 2
Have a backup… Always!
Get very creative when the IT hits the fan.
42. Other Lessons
Live From the
Lone Star Café
Hank Williams Jr.
Bill Haley and the Comets
MSG NYC
BT Express
NYC Blackout
43. SYSTEMS
Massive Complex Networks
Hard to Visualize in One Go
It’s a Way of Thinking
Some call it Strategic
Easier to Spot Potentials for Failure
Complexity Breeds Insecurity
54. Adding TBS to Protection Process
Protection
Process
Reaction Channel
Start Clock
Stop Clock
If T > x, then R
Process Request
Process Approval
Process Stopped?
55. Time Based Take Aways
Time is the under-utilized security metric
Feedback is a Time-Function
f(t)
Incident Response is all about time
And saving money, image, etc.
We don’t use Feedback in security
Without feedback = Runaway Conditions
Resonance can be your friend… or your enemy
62. Digital Isn’t Binary Take Aways
Incident Response:
Calculate Risk with TBS
Measure Your NWs Incident Response Capability
Humans are Analog… not Digital
Parse by time division
Security isn’t always Yes/No?
Learn to Average/Curve
Approximation Anxiety?
Apply spectrums for behavior
63. Final Rant
Teach Failure
More Hands-On Engineering
Architect for Failure
Think Strategically
Learn Systems
Inter-Disciplinarianism
Practice Incident Response