Here are five of the best moments from “Hacking the Insider Risk Summit: An hour of critical thinking about creating a security aware culture.”
Our guests for this discussion were:
- Joe Payne (@paynejoe), president and CEO, Code42
- Masha Sedova (@ModMasha), president, Elevate Security
Got feedback? Join the conversation on LinkedIn.
HUGE thanks to our sponsor Code42
Best Bad Ideas
Congrats to Jason Keirstead, Distinguished Engineer & Chief Technical Officer of Threat Management, IBM for winning this week’s Best Bad Idea.
Other honorable mentions go to:
“Fire the majority of your workforce to minimize the possibility of insider risk.” – Bryn Ossa, Customer Success Manager, Elevate Security
“Employees laptop cameras are loaded with indelible ink. Anytime they violate an insider policy it sprays them in the face.” – Dutch Schwartz, principal security specialist, AWS
“Don’t have risk policies in place so that people can’t violate them” – Bryn Ossa, Customer Success Manager, Elevate Security
“One-time-use devices. Draft up a document, throw your computer away, get another one.” – Bryn Ossa, Customer Success Manager, Elevate Security
“Have surveillance tools configured and ready to deploy ahead of time. There is a lot of trial and error and you don’t want to be doing that when someone needs to be ‘looked at’ more closely.” – Mike Wilkes, CISO, SecurityScorecard
Quotes from the chat room
“Another issue I see in the wild that is a real problem is how Dropbox will be the *preferred* solution at once company, then the employee leaves that company and goes to another where say, OneDrive is the preferred solution and Dropbox is flagged as a risk. This confuses people from my experience. Multiply this out by the dozens of SaaS tools that people use in their daily jobs.” – Jason Keirstead, Distinguished Engineer & Chief Technical Officer of Threat Management, IBM