Strengthening security in a post-incident world |
Abstract
Should we accept cyber attacks as an expected occurrence nowadays? Yes. Accepting that reality allows us to appropriately prioritise preparing our defenses and responses to attacks. At PageUp we invest heavily in security, we have a very active Information Security Governance Committee and a robust security incident response plan in place, yet we still experienced a security incident. We learned a lot during this time, and I want to take this opportunity to share some key lessons with my peers. This will help us as an industry to educate and protect each other against future attacks. In this talk, I’ll discuss my firsthand experience of a security incident, and take you through how this is now informing security optimisations in our organisation going forward. |