Towards Integrated Cyber Preparedness for Alaskans

Presented at ArcticCon 2018, Oct. 4, 2018, 11 a.m. (45 minutes)

This talk is for Alaskan defenders and infrastructure operators who are faced with cyber attack on multiple fronts (spear phishing, ransomware, internationally-scoped cyber warfare, and auditors). We will cover key concepts and resources for integrated cyber preparedness and ecosystem health in the Alaskan context. We will survey the Alaskan cyber attack surface, talk about how to detect our own public-facing vulnerabilities, mitigate impact on (and by) users, and identify high-leverage ways to improve the chances of surviving ransomware - without breaking the bank. There is no silver bullet (but there may be a silver lining). This talk will also be a call to action for improved cyber coordination in the Alaska region, across all sectors.

Presenters:

  • Royce Williams - Tech Solvency
    Royce Williams (@TychoTithonus) has been in Alaskan IT since 1990. He has worked for three ISPs, two financial institutions, one critical infrastructure provider in the energy sector, and even a national retailer. He moved into information security as a dedicated discipline in 2012. Royce's security interests include SSL/TLS auditing, Internet services hardening, regional attack surface, NTP, and reducing incident response times through multi-faceted enterprise device inventory. He is also a password cracking enthusiast, a moderator of the hashcat forums, and a member of Team Hashcat since 2017. He gave a talk on password cracking at BSides Las Vegas that same year. Royce graduated from UAA in 2001 with a BA in Computer Science. He is a member of the ACM, USENIX, the SANS Advisory Board mailing list, and the Alaskan chapter of InfraGard. In his spare time, he is a collector and taxonomist of Alaskan license plates. He lives in Anchorage with his wife and daughter.

Links: