Rooting out evil: defend your data center like the Secret Service protects the President

Presented at NolaCon 2017, May 19, 2017, 5 p.m. (Unknown duration)

Intruders spent more than a year inside the DNC and six months inside OPM. The 2013 Yahoo hack wasn’t discovered until stolen data appeared for sale in 2016. Everything we know about security suggests that while intruders have the advantage at the perimeter (they only have to be right once to get in), that balance should flip once they get inside (where every move could expose them). But they seem to have an advantage even once they get inside. We’ve spent years trying to defending the interior, but until we solve this puzzle, all the defense in depth in the world won’t help.

Jumping the wrought iron fence surrounding the White House is easy, but hiding inside is almost impossible. The Secret Service solves an analogous challenge by focusing on understanding and controlling the environment that they defend. Today, this approach may seem too difficult given the dynamism and complexity of the network, but without knowledge and control, attackers will continue to have an advantage both at the perimeter and once they get inside. This talk will examine how the Secret Service defends the President, how their approach can improve cybersecurity, and what we need to do to get there.


Presenters:

  • Nathaniel Gleicher
    Nathaniel Gleicher is the Head of Cybersecurity Strategy at Illumio, and is trained as a computer scientist and a lawyer. Nathaniel is a regular speaker at leading industry events, and his writing has appeared in industry publications, the popular press, and academic journals. Prior to Illumio, Nathaniel investigated and prosecuted domestic and international cybercrime at the U.S. Department of Justice and served as Director for Cybersecurity Policy on the National Security Council at the White House. He has also taught computer programming, designed and developed custom e-commerce and database solutions, and built and secured computer networks. Twitter: @illumio

Links: