Explore a thought-provoking webcast featuring cybersecurity experts Anton Chuvakin, Ann Johnson, and John Pescatore as they delve into the evolution of information security. Trace the industry's journey from its origins in securing information to the current focus on cybersecurity and network protection. Discover how advancements in identity management and encryption are shifting attention back to data security. Gain insights into addressing modern challenges in securing sensitive information, including discussions on reusable passwords, strong authentication, and the role of encryption. Learn about the importance of board involvement, operational security tools, and risk-based decision-making. Examine the concept of security as a collaborative effort, the significance of tabletop exercises, and the complexities of data protection in cloud environments. Engage with expert opinions on topics such as threat modeling, key management, regulatory frameworks like CMMC and GDPR, and the effectiveness of two-factor authentication and privileged access management.
Remember When We Used to Call It "Information Security"? Let's Go Back to That
Overview
Syllabus
Introduction
History of Information Security
Reusable Passwords
Strong Authentication and Encryption
Board of Directors
What Works
The Bottom Line
RSA Security
Operationalizing Security Tools
Security is a Risk Decision
Security isnt an Island
tabletop exercises
Data is key
Encryption
Encrypting
Why Encryption is Bad
Threat Model
Hold Your Own Key
You Use Cloud
You Use Public Cloud
Control
Audience Question
First Place to Look
Risk Register Framework
Whats the best tool set
Thoughts on CMMC
Thoughts on GDPR
The maturity model
Jury is still out
Twofactor authentication encryption
Admin privileged
Closeout
Outro
Taught by
RSA Conference
