Realistic Security: Counter Advanced Threats With Basic Controls
January 16, 2018
1:00–2:00 p.m. ET
Organizations direct immense effort into advanced security solutions, only to be undone time and again by basic attacks. Why do organizations struggle, and usually fail, to secure themselves when the market is flooded with highly sophisticated tools all contending to be “the solution to advanced threats”? The answer is straightforward but unpleasant. Most organizations simply are not ready for “advanced solutions” because they have not properly implemented basic solutions. In many cases the boring, grinding, annoying basic solutions will do more good for an organization, but it is just so much easier to write a check and pretend that you can buy security. In this session, we will walk through real-world data breaches from the last few years and discuss what simple (and elementary) solutions would have prevented these attacks.
In this session, participants will learn:
- The standard flow of how attackers work.
- How removing simple attacks significantly reduces the population of attackers that are skilled enough to actually breach your organization.
- The most common basic controls that, when implemented correctly, give you the best “bang for your buck” for protecting your network.
Course Duration: 1 hour
CPEs Available: 1
Knowledge Level: Basic
Field of Study: Information Technology
Advance Preparation: None
Delivery Method: Internet Group Live
National Leader, Security and Privacy Services, RSM US LLP
Daimon Geopfert specializes in penetration testing, vulnerability and risk management, security monitoring, incident response, digital forensics and investigations, and compliance frameworks within heavily regulated industries. Daimon has over 20 years of experience in a wide array of information security disciplines. He serves RSM’s national leader for the security and privacy practice, responsible for the development of the firm’s overall strategy related to security and privacy services and applicable methodologies, tool kits and engagement documentation.