Moving Fast and Breaking Things - Security Misconfigurations in Practice
Offered By: USENIX Enigma Conference via YouTube
Course Description
Overview
Explore the human component of security misconfigurations in this 20-minute conference talk from USENIX Enigma 2019. Delve into the operators' perspective on security incidents, focusing on the root causes beyond simple employee negligence. Examine the Equifax data breach as a prime example of severe misconfiguration and its consequences. Investigate factors contributing to security vulnerabilities, including organizational issues, insufficient budgeting, distrust in tools, and lack of quality assurance. Learn about the application of safety sciences to cybersecurity and the importance of incident roleplaying. Gain practical recommendations for reducing the frequency and impact of security misconfigurations based on research findings presented by Kevin Borgolte from Princeton University.
Syllabus
Introduction
Equifax
Security Misconfigurations
Research Goals
Why
Methodology
Demographics
Prevalence
Reasons
Operators dont believe their company is budgeting
Operators dont trust tools
Insufficient Quality Assurance
Security Awareness
Safety Sciences
Incident Roleplaying
Taught by
USENIX Enigma Conference
Related Courses
Computer SecurityStanford University via Coursera Cryptography II
Stanford University via Coursera Malicious Software and its Underground Economy: Two Sides to Every Story
University of London International Programmes via Coursera Building an Information Risk Management Toolkit
University of Washington via Coursera Introduction to Cybersecurity
National Cybersecurity Institute at Excelsior College via Canvas Network