Every organization, regardless of level of preparation and resources, will have a cybersecurity incident. But if there is an incident, all cybersecurity professionals need to do is patch the vulnerable software, update a firewall or take other cybersecurity steps, right? Far from it! Cybersecurity incidents don’t stay neatly in the CISO domain – they can hit across all organizational domains, including – but not limited to – legal, marketing, branding, human resources, financial, facilities – even physical infrastructure. We, as leaders in the cybersecurity industry, must not only recognize and appreciate the broad organization-wide (and beyond) impacts, but we must war game all viable contingencies with key stakeholders and have playbooks developed pre-incident to respond in a repeatable and comprehensive manner.
Recognize the importance of preparing "left of the incident" and not just "right of the incident."
Understand the breadth and depth a cybersecurity incident has across an organization (including third parties and partners).
Appreciate the tools, processes, procedures and techniques to have ready in advance of an incident, so that they can be rapidly, repeatably and securely implemented after a cybersecurity incident.
CISSP, CEH, PMP, PMI-ACP, SAFe SPC/SA, PRINCE2, AWS-SAA, FinOps CP, NN/g UXC,
Director and Distinguished Digital & Cyber Technologist,
Booz Allen Hamilton
You must be logged in and own this session in order to