Managing security within a cloud-native development pipeline requires reimagining traditional security rituals. With hybrid and multi-cloud deployments as well as different container runtimes, orchestration platforms, and technology stacks, getting it right requires more than tooling. We must understand how our teams build software and consume telemetry gleaned through operations. Securing the pipeline from developer tools to production infrastructure requires a continuous approach to security, by shifting left and shifting right too.
As more organizations have strengthened their cyber risk management, adversaries have shifted focus to third party ecosystems that historically have weaker defenses. To better manage these challenges, Delta Dental of California has built an adaptable third party risk assurance capability. It uses an innovative approach that tailors rigor and frequency of testing based on the impact and nature of each business relationship. It also incorporates threat intelligence to efficiently allocate valuable talent. Join us to learn how to apply these principles within your organization.
Artificial Intelligence (AI) and Machine Learning (ML) have become the buzz words for Cyber Security. Everyone is talking about them, as if they are magic black boxes. In this talk, we are going to white-box ML to some extent to understand what is possible with the current generalization of technology in particular for the cyber security field. Furthermore, we will dive into one important example, how we can use Graph ML to better “connecting the dots” and to link multiple individual suspicious activities to understand the big picture of attacks.
Supervisory Special Agent, Cyber Squad, FBI San Francisco
Sponsored by: Abnormal Security
Location: ISSA booth on the show floor
The San Francisco Bay ISSA and Silicon Valley ISSA chapters have teamed up with Cymatic (https://cymatic.io) and Cowbell Cyber (https://cowbell.insure/) to provide an amazing RSA Happy Hour. The event will take place from 6pm - 9pm on Tuesday February 25th. The location of the event will be at Buena Vida! 860 Folsom St, San Francisco, CA 94107. RSVP is required.
Your chapter is hosting a live podcast! Co-hosted by the creator of the CISO/Security Vendor Relationship Series, David Spark, and Mike Johnson, former CISO of Lyft, this show has quickly become very popular receiving rave reviews from fellow InfoSec professionals.
David and Mike's guest for this special recording is Peter Liebert, former CISO for the State of California, and now an independent consultant and commander, cyber operations, California State Guard.
Podcasts - CISO/Security Vendor Relationship Podcast and Series - CISO Series The CISO/Security Vendor Relationship Podcast aims to enlighten and educate listeners on improving security buyer and seller relationships. Whether you’re a buyer, user, or seller of security products, this show is for you. At 30 minutes, this weekly program challenges the co-hosts, guests, and listeners to critique, share true stories, and reveal in hypothetical scenarios.