Presented at
Black Hat USA 2017,
July 27, 2017, 9:45 a.m.
(50 minutes)
<span>For years, the cybersecurity industry has struggled with how to measure the cyber-readiness of an organization. While it is certainly a valid exercise to benchmark a cybersecurity program against a framework, such as NIST, these paper-work efforts articulate the </span><strong>maturity. </strong><span>To truly test the effectiveness of an organization’s detect and response capabilities to a cyberattack, it’s necessary to provide a sparring partner. This session will discuss the process of cycling the SOC and IR team through a realistic adversary simulation (from a prepared red team), and then observing the organization’s response, from the eyes of an experienced blue team.</span>
Presenters:
-
Justin Harvey
- Managing Director, Global Incident Response Lead, Accenture
More than 20 years of information security experience and technical knowledge has established Justin Harvey as a trusted cyber threat security advisor to executives and government leaders at some of the world's largest commercial and government organizations. His work with major global entities has taken him across Asia to lead large-scale incident response efforts in the wake of targeted attacks, to the Middle East to advise enterprises and ministries of defense on threat intelligence and persistent threats, and to Australia to direct security operations.
At Accenture, Justin is the global lead for the FusionX Incident Response Practice; providing security thought leadership, acts as a strategic advisor on cyberespionage, cyberwar and cybercrime to our global client base, and serves as executive sponsor for research initiatives within Accenture Security. Prior to joining Accenture, Justin was the CTO of Fidelis Cybersecurity after spending time as the vice president and CTO of Global Solutions at FireEye. Prior, at Mandiant, he worked with industry executives, thought leaders, analysts and partners to influence the company's industry position, shape product direction and develop strategic partnerships.
Previously, as Chief Solutions Strategist with HP Enterprise Security, Justin provided strategic consulting to C-level management at leading companies. At CPSG Partners Consulting, a U.S.-based systems integrator, Justin led the western U.S. region in delivering large-scale security projects to Fortune 100 companies. Earlier in his career, Justin provided network and system security expertise at GTE Internetworking (now Verizon), DIGEX, Sun Microsystems, Excite@Home and other organizations.
In 2015, Justin testified before the United States Senate Judiciary Committee's Subcommittee on Privacy, Technology and the Law on the topic of data brokerage firms and consumer data security.
Justin regularly speaks at industry conferences. As a sought-after expert on data breaches, cyberespionage and cybercrime, Justin provides commentary to top-tier online, print and broadcast news outlets, including ABC News, BBC News, Newsweek, The Guardian, Politico, eWeek, CSO, Financial Times, The New York Times, U.S. News & World Report, Federal Computer Week, Reuters and the Associated Press.
Justin is a Certified Information Systems Security Professional (CISSP) and received advanced SCADA Red Team/Blue Team Training for critical infrastructure threats, attacks and response from the U.S. Department of Homeland Security.
Links:
Similar Presentations: