1. InfoconDB
  2. Black Hat
  3. Black Hat USA 2022
  4. The Cyber Safety Review Board: Studying Incidents to Drive Systemic Change

The Cyber Safety Review Board: Studying Incidents to Drive Systemic Change

Presented at Black Hat USA 2022, Aug. 10, 2022, 1:30 p.m. (40 minutes)

Join Rob Silvers (DHS Undersecretary for Policy and Chair of the Cyber Safety Review Board) and Heather Adkins (Deputy Chair and Vice President, Security Engineering, Google) for a discussion about the Cyber Safety Review Board’s inaugural review of the Log4j vulnerability. Rob and Heather will talk about key report findings, how industry and government can implement the recommendations, and how the Board is changing the cyber ecosystem.


Presenters:

  • Jeff Moss / The Dark Tangent - Former Chief Security Officer and VP at ICANN, Founder of Black Hat and DEF CON Conferences, U.S. Department of Homeland Security Advisory Council   as Jeff Moss
    <div>Mr. Moss advises companies on security issues, both, electronic and physical, as well as speaking globally on the topic. He sits on several advisory boards helping enterprises make informed decisions on cyber risks.</div> <div>&nbsp;</div> <div>In April 2011 Mr. Moss was appointed as the Chief Security Officer for the Internet Corporation for Assigned Names and Numbers (ICANN), a non-profit whose responsibilities include coordinating and ensuring the security, stability and resiliency of the Internet's unique global identifiers as well as maintaining the root zone of the Internet. This position involved managing the IT security of the ICANN networks and information systems, the physical security of ICANN facilities and meetings, and ensuring that ICANN meets its security and resiliency commitments to the multi stake holder community that oversees ICANN. This position involved extensive international travel and coordination with governments, law enforcement, and operational security communities in support of discussions around Internet Governance and security. Mr. Moss left this position at the end of 2013.</div> <div>&nbsp;</div> <div>Moss is the founder and creator of both the Black Hat Briefings and DEF CON, two of the most influential information security conferences in the world, attracting over ten thousand people from around the world to learn the latest in security technology from those researchers who create it. DEF CON just had its 21st anniversary.</div> <div>&nbsp;</div> <div>Prior to creating Black Hat Briefings, Jeff was a director at Secure Computing Corporation where he helped establish their Professional Services Department in the United States, Asia, and Australia. His primary work was security assessments of large multi-national corporations. Jeff has also worked for Ernst &amp; Young, LLP in their Information System Security division. Because of this unique background Jeff is uniquely qualified with his ability to bridge the gap between the underground researcher community and law enforcement, between the worlds of pure research and the responsible application of disclosure.</div> <div>&nbsp;</div> <div>Jeff is currently a member of the U.S. Department of Homeland Security Advisory Council (HSAC), providing advice and recommendations to the Secretary of the Department of Homeland Security on matters related to homeland security. Jeff is a life member of the Council on Foreign Relations, which is an independent, nonpartisan membership organization, think tank, and publisher.</div> <div>&nbsp;</div> <div>In 2013, Jeff was appointed as a Nonresident Senior Fellow at the Atlantic Council, associated with the Cyber Statecraft Initiative, within the Brent Scowcroft Center on International Security.</div> <div>&nbsp;</div> <div>In 2014, Jeff joined the Georgetown University School of Law School Cybersecurity Advisory Committee.</div> <div>&nbsp;</div> <div>Jeff is active in the World Economic Forum, and recently became a member of the Cyber Security Global Agenda Council for 2014-2016.</div> <div>&nbsp;</div> <div>ICSA President's Award for Public Service, 2011.</div>
  • Heather Adkins - Vice President of Security Engineering, Google
    Heather Adkins is a cybersecurity expert with over 20 years of industry experience. As a founding member of the Google Security Team, Heather has built a global organization responsible for maintaining the safety and security of the company&rsquo;s infrastructure. She developed Google&rsquo;s first programs for security assurance, which have evolved to address an ever-changing threat landscape. She helps set Google-wide strategy for protecting its infrastructure and users, and has led the response to significant security incidents such as Operation Aurora.<br />Heather has spent her career uplifting security for the world beyond her role at Google. In 2016 she volunteered to respond to threats facing the US Presidential election. In 2017 she joined the Harvard Belfer Center&rsquo;s bi-partisan Defending Digital Democracy initiative, focusing on security playbooks and training for campaigns and election officials.<br />Heather has briefed the National Academy of Sciences on the topics of breach recovery, incident response, insider risks and building modern safe computing environments. She has also presented in forums such as the RSA security conference, lectured at Universities like the Politecnico di Milano, and briefed executives and security teams of Fortune 500 companies. She is currently a strategic advisor for the Silverado Policy Accelerator.<br />Heather is a co-author of Building Secure and Reliable Systems (O&rsquo;Reilly, 2020) This book reflects her mantra that we need to have security-by-default, for everyone.<br />In her spare time Heather studies early medieval European history and is passionate about saving wild Elephant populations.
  • Robert Silvers - Undersecretary for Policy, Department of Homeland Security
    Robert Silvers was confirmed by the Senate as the Under Secretary for Policy on August 5, 2021. He is responsible for driving policy and implementation plans across all of DHS&rsquo;s missions, including counterterrorism; cybersecurity, infrastructure security, and resilience; border security and immigration; international affairs; and trade and economic security.&nbsp;<br />Mr. Silvers previously served in the Department of Homeland Security during the Obama-Biden Administration as Assistant Secretary for Cyber Policy. In that role he oversaw private sector engagement, federal government incident response, and diplomatic outreach pertaining to cybersecurity and emerging technology. Mr. Silvers also previously served as DHS&rsquo;s Deputy Chief of Staff, managing execution of policy and operational priorities across the entire Department.&nbsp;<br />Prior to his appointment, Mr. Silvers was a partner at the law firm Paul Hastings LLP, where his practice focused on cybersecurity and data privacy, government security review of foreign investments, and investigations and litigation at the intersection of law and national security. After graduating law school, he clerked for Judge Kim McLane Wardlaw of the U.S. Court of Appeals for the Ninth Circuit.&nbsp;<br />Mr. Silvers holds a J.D. from New York University School of Law and a B.A. from the University of Pennsylvania. He taught as an adjunct professor in the M.S. in Cybersecurity Risk and Strategy Program co-offered by the NYU Law School and NYU Tandon School of Engineering. A New York City native, Mr. Silvers lives in Washington, D.C. with his wife and their two children. &nbsp;

Links:

Similar Presentations: