What Lurks in the Shadow

Presented at BSidesLV 2015, Aug. 5, 2015, 5 p.m. (25 minutes)

What Lurks in the Shadow: Addressing the Growing Security Risk of Shadow IT & Shadow Data Welcome to the Mordor of security, where the eye of BYOD reigns supreme, and the proliferation of easy-to-use devices is creating an unprecedented level of end user entitlement. A little knowledge has become a very dangerous thing by letting people "help themselves" to data and network access. This is the world of Shadow Data/Shadow IT, where rules are known but not observed; where risks are taken regardless of known consequences; and where "keep it secret" definitely does not keep IT safe. What happens when users or employees take it upon themselves to decide what tech they want to use and how they want to implement it? As the IoT proliferates, and human nature takes its course, we cannot out-engineer human failings and susceptibility. Because that device, and the freedom to use it as the user sees fit, override anything we currently put in place.

Presenters:

• Cheryl Biswas / 3ncr1pt3d   as Cheryl Biswas
  Cheryl Biswas is Assistant Chief Security Officer and InfoSec analyst, researcher and writer with JIG Technologies in Toronto, Canada. She handles communications; researches and delivers InfoSec briefings; and advises on Disaster Recovery and security processes for clients. She loves her role and works to bridge the gap between those in tech and those who aren't.

Links:

• https://bsideslv2015.sched.com/event/3v07/what-lurks-in-the-shadow
• https://infocon.org/cons/Security BSides/BSides Las Vegas/BSides Las Vegas 2015/What Lurks in the Shadow Cheryl Biswas.mp4

Similar Presentations:

• DerbyCon 9.0 Finish Line (2019) / Shadow IT in the Cloud
• Texas Cyber Summit 2019 / BT-1050 Shining a Light on Shadow IT in the Cloud
• Black Hat USA 2017 / The Shadow Brokers – Cyber Fear Game-Changers