[3-25-22] “Hacking Prioritization” – Super Cyber Friday

Please join us on Friday, March 25th, 2022 for Super Cyber Friday.

Our topic of discussion will be “Hacking Prioritization: An hour of critical thinking about which security holes need to be filled, and which ones don’t.”

REGISTER For 3-25-33 Super Cyber Friday.

Joining me for this discussion will be:

Got feedback? Join the conversation on LinkedIn.

In preparation for our discussion, think about the following:

  • It’s estimated that 60 to 70 percent of reported vulnerabilities can be ignored. How is that known? Why can we ignore them? And how do we go about figuring out the 30-40 percent we can’t ignore?
  • What’s the value of tracking the latest attacks? One post on reddit argued that events like Black Hat, which are focused on telling you the latest and greatest threats, are useless to most security programs. The redditor said that the threats you were concerned about before Black Hat are probably going to be the same ones you’re going to be concerned about after Black Hat.
  • What are some good techniques to building prioritization in your security program?
  • What are some evidence-based variables to track? 
  • What’s the hardest part about prioritization?
  • Do organizations suffer from prioritization drift? They start out well intentioned but then shift into low impact activities just because they’re easier and you feel like you’re doing something.

Super Cyber Friday starts at 1 PM Eastern/10 AM Pacific. At the end of the hour [2 PM Eastern/11 AM Pacific] we’ll switch gears to our meetup where everyone will get a chance to chat face to face.

HUGE thanks to our sponsor Kenna Security

Kenna Security, now part of Cisco, is the pioneer of risk-based management. The Kenna Security Platform enables organizations to work cross-functionally to determine and remediate cyber risks. It leverages machine learning and data science to track and predict real-world exploitations, empowering security teams to focus on what matters most.

ALSO…

  • Best bad ideas get first responses in “Department of YES” or “Beat the Bad Idea”.
  • The BEST bad idea wins an award and a really awesome CISO Series jacket. Also, if you register early by the Tuesday (5pm PT) of that week’s video chat, you will be entered into a raffle where one lucky register will win a jacket (Winners must be US residents. Repeat winners get a $25 Amazon gift card).

Super Cyber Fridays are open discussions where all viewers and listeners are welcome to become participants. Before the scheduled event, connect your webcam and microphone (avoid Bluetooth) and test your equipment here. During the discussion, if you have a question or comment, let it be known in the chat room and our producer will do his best to get as many of you into the conversation. We look forward to you joining us.

David Spark
David Spark is the founder of CISO Series where he produces and co-hosts many of the shows. Spark is a veteran tech journalist having appeared in dozens of media outlets for almost three decades.