YoVDO

Moving Fast and Breaking Things - Security Misconfigurations in Practice

Offered By: USENIX Enigma Conference via YouTube

Tags

Cybersecurity Courses Quality Assurance Courses Security Awareness Courses Incident Analysis Courses Organizational Security Courses

Course Description

Overview

Explore the human component of security misconfigurations in this 20-minute conference talk from USENIX Enigma 2019. Delve into the operators' perspective on security incidents, focusing on the root causes beyond simple employee negligence. Examine the Equifax data breach as a prime example of severe misconfiguration and its consequences. Investigate factors contributing to security vulnerabilities, including organizational issues, insufficient budgeting, distrust in tools, and lack of quality assurance. Learn about the application of safety sciences to cybersecurity and the importance of incident roleplaying. Gain practical recommendations for reducing the frequency and impact of security misconfigurations based on research findings presented by Kevin Borgolte from Princeton University.

Syllabus

Introduction
Equifax
Security Misconfigurations
Research Goals
Why
Methodology
Demographics
Prevalence
Reasons
Operators dont believe their company is budgeting
Operators dont trust tools
Insufficient Quality Assurance
Security Awareness
Safety Sciences
Incident Roleplaying


Taught by

USENIX Enigma Conference

Related Courses

Incident Detection and Response: The Big Picture
Pluralsight Integrated safety, health and environmental management: An introduction
The Open University via OpenLearn Threat Intel Analysis of Ukrainians Power Grid Hack
YouTube A Year in the Wild - Fighting Malware at the Corporate Level
Security BSides San Francisco via YouTube Tales from the VOID - The Scary Truth about Incident Metrics
USENIX via YouTube