Free

ISACA Auckland Lunchtime Event - August 2019

Event Information

Share this event

Date and Time

Location

Location

EY

2 Takutai Square

Britomart

Auckland, 1010

New Zealand

View Map

Event description

Description

Dear members,

Our next regular event for August will be held on Wednesday, 21 August 2019 at EY (Auckland).

Presentation Topic: Role of security operations in incident survivability

A brutal view of incident response holds that the most important priorities during a cyber-incident are organisational survival closely followed by minimisation of risk to the organisation during an incident. This framing of what is at stake during incident response becomes especially stark when we consider environments with significant industrial control and automation assets.

This talk will focus on the TTPs of incident response. TTPs are the nitty gritty of how we build monitoring, incident response teams and team practices and are key determinants of organisational survival during a cyber incident.

The key is to ensure continuity and integrity of operations in the face of ongoing cyberattack. Specifically, the defensive aim of mature teams is to prevent an attacker from achieving their objectives at all times. This can take several forms:

  1. Minimise attacker dwell time to the point where attackers are incapable of achieving their objectives (rapid detection and response)

  2. Limit lateral movement of attackers on the network (segmentation, authentication and authorisation)

  3. Prevent re-entry into the network after closure of an incident (architectural and practical improvements)

  4. Gather enough intelligence to understand attacker objectives, motivation and capability (threat modelling and threat intelligence)

Practical implementation of these objectives in a high stakes IT and OT environment requires robust security operations. The talk will also outline some of the aspects of robust security operations and a pathway for getting there.


Speaker: Hinne Hettema

Hinne Hettema is a security leader who focuses on security tactics: practical incident response alongside the day to day practice of developing, tooling and exercising organisational security operation centres. His strengths are in SOC enablement, intelligence and incident response, as well as intelligence driven security operations and security architecture.

In a previous role, he led the security operations at the University of Auckland and has also worked as a security architect. He has experience working in security operations in both ICT and ICS environments, setting and driving strategy and incident response. He studied Theoretical Chemistry (PhD 1993) and Philosophy (PhD 2012). As a theoretical chemist, he played with the supercomputers of the time. His first computer was hacked in 1991, after which he developed an enduring interest in cyber security.

Hinne is also an international speaker and trainer, a liaison member of first.org and the vice chair of the NZITF. He is also a blogger for APNIC, and maintains a security blog on his LinkedIn page.

We hope you will be able to join us for this event! Details are listed below:

 Date: 21 August 2019 (Wednesday)

Time:  12:30pm to 01:00pm (Lunch)

01:00pm to 01:45pm (Presentation)

Venue:  EY Building, 2 Takutai Square, Britomart, Auckland 1010

Please register through Eventbrite by 6pm on Monday, 19 August 2019.

Kind regards,

Kyle Peh
Secretary
ISACA Auckland Chapter

Share with friends

Date and Time

Location

EY

2 Takutai Square

Britomart

Auckland, 1010

New Zealand

View Map

Save This Event

Event Saved