Verifiable Security—beyond penetration testing towards a resilient enterprise
Speaker: Rafal Los, HP
An unfortunate number of enterprise security leaders find out that their technical defenses, policies, and procedures have failed them at the worst possible time - in the heat of an incident. Failing at the hands of your enemy - whether that enemy is system failure, poor change management, or a determined hacker - is never acceptable, but what can we do about it? This talk introduces IT leaders to actively validating defenses and incident response by going well beyond attack simulations or penetration testing. By following 4 manageable steps an enterprise security leader can not only validate their true security posture, but also increase enterprise resiliency to failure.