![]() And so, their case was about me being held personally responsible for the company’s approach to communication. In fact, I hadn’t seen a lot of the documents. “The government, the FTC in my case, felt that my company wasn’t sufficiently transparent, and they sought to hold me personally accountable for that, even though it wasn’t my job to be the communicator of our security posture or answer any of their questions. ![]() The discouragement to pursue security leadership roles can also come from the Security and Exchange Commission’s (SEC) allegations against SolarWinds CISO Tim Brown and the company, in general, of misleading investors about its cybersecurity practices. Sullivan said that CISO’s personal liability to an organization’s safety has many security professionals rethinking the risk of following the career path. ![]() Sullivan’s keynote at Black Hat Europe 2023 recounted his experience of the case, wherein his perception of the role of what a security executive constitutes has changed. ![]() Sullivan’s conviction, which is being appealed, was followed by a relatively lenient sentencing to three years in probation, 200 hours of community service, and a $50,000 fine instead of prosecutors’ demand for 15 months in prison. Sullivan was, after all, convicted not for the reason that a data breach happened at Uber, which compromised the data of 50 million people, but for being found guilty of hiding it and obstructing FTC’s investigation. The biggest takeaway from the Federal Trade Commission’s (FTC) case against former Facebook and Uber CSO and current Ukraine Friends CEO Joe Sullivan is to have transparency on cybersecurity. Thoughts of a convicted cybersecurity leader On phishing, which is one of the most initial access methods employed by attackers, Whitehouse said, “I don’t have the answer to resolving this huge and hard problem, but I wanted to insist on that in front of the hundreds of cybersecurity professionals who came from around the world for. Speaking with Infosecurity Magazine, Whitehouse said, “I said that seatbelts are not a premium feature, and we should no longer tolerate vendors who sell them as such.” He also urged software vendors to stop treating security as a premium. One of the most essential factors in eliminating or reducing costs, Whitehouse said, is that cybersecurity vendors need to remove upcharges, whether they are on-premise or software-as-a-service products and services, and increase transparency on vulnerability disclosures and more. To do that, organizations need to eliminate the costs of shoring up cyber defenses. In today’s asymmetric cybersecurity scenario, don’t be afraid to do the unexpected to ensure threat actors feel the repercussions of carrying out an attack. Whitehouse’s message? Don’t be afraid to adopt an approach that stumps attackers. Cybersecurity and Infrastructure Security Agency (CISA) and Victor Zhora, deputy chairman and chief digital transformation officer of the State Service of Special Communication and Information Protection of Ukraine, took the stage as keynote speakers. National Cyber Security Centre, part of the U.K.’s intelligence agency Government Communications Headquarters (GCHQ), as the keynote speaker alongside Joe Sullivan, CEO of Ukraine Friend.Īt Black Hat USA 2023, Jen Easterly, director of the U.S. The keynotesīlack Hat Europe 2023 featured Ollie Whitehouse, CTO of the U.K. As Black Hat concludes its final event of the year in Europe, not counting the full-day virtual event Cybersecurity Outlook 2024, let us look at some of the important takeaways from the cybersecurity conference. Still, it serves as a great avenue where attendees can soak into all things cybersecurity before heading into the following calendar year. The European edition of the renowned Black Hat Briefings series of annual conferences may not attract as many eyeballs as the one held in the United States in the summer every year. Hundreds of cybersecurity professionals converged in London this week for Black Hat Europe 2023, which concluded on Thursday, December 7, 2023. Check out the important takeaways from Black Hat Europe 2023.Researchers presented some interesting cybersecurity findings at the year’s final Black Hat cybersecurity event as keynote speakers shared valuable insights into the cybersecurity industry from a technical and professional standpoint.Black Hat Europe 2023 wrapped up on Thursday this week.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |