Presented at
Black Hat USA 2022,
Aug. 10, 2022, 9 a.m.
(60 minutes).
For twenty-five years, the InfoSec community and industry have been gathering here in the desert. For twenty-five years, we have chipped away at underlying insecurities in the technologies we use every day with new vulnerability research and adversary insights. For twenty-five years we’ve seen vendors and software firms roll out new products and protections. With the last twenty-five years as prologue and as we look forward to the next twenty-five years, we have to ask ourselves: are we on the right track? <br> <br>We certainly aren’t set up for success, given society’s insatiable and almost pathological need to connect everything. We’re constantly serving up more attack surface to the bad guys and always cleaning up after business decisions that we know will drive bad security outcomes. All the while factors out of our hands – namely global market realities and shifting geopolitical dynamics – wreck nearly overnight carefully orchestrated business plans and national strategies. The last few years of geopolitical chaos and autocratic retrenchment might look like the good ol’ days by the end of the 2020s.<br> <br>This talk will work through today’s risk trends and what they mean for tomorrow’s network defenders, suggesting along the way the needed shifts in both mindset and action to successfully deliver better outcomes while recognizing that we’re going to be forever operating in a contested information environment. To rip off a Mitch Hedberg joke (RIP), maybe over the next twenty-five years we can build a safer, more resilient technological future where systems and infrastructure behave more like escalators: when they break, they turn into stairs.
Presenters:
-
Chris Krebs
- Founding Partner, Krebs Stamos Group
Chris Krebs is a Founding Partner of the Krebs Stamos Group, founded in 2020 alongside Alex Stamos. He is the Newmark Senior Fellow in Cybersecurity at the Aspen Institute where Chris is the Co-Chair of the Aspen Institute’s Cybersecurity Working Group, and previously Co-Chaired the Aspen Commission on Information Disorder. Chris was the first director of the U.S. Cybersecurity and Infrastructure Security Agency (CISA), leading the nation’s civilian cyber defense and business resilience and risk management efforts. Prior to his recent government service, he led Microsoft’s U.S. cybersecurity policy efforts, also previously contributing to key national cyber initiatives including the NIST Cybersecurity Framework. Chris is a CBS News Contributing expert, a Resident Scholar with the University of Virginia Center for Politics, and a Non-Resident Senior Fellow at the Harvard Kennedy School Belfer Center Cybersecurity Project. He serves on the Advisory Boards of several companies including SentinelOne and Rubrik. Mr. Krebs holds a bachelor’s degree in environmental sciences from the University of Virginia and a J.D. from the Antonin Scalia Law School at George Mason University.
Links:
Similar Presentations: