Gå frakoblet med Player FM -appen!
Sam Sam Ransomware Attack Leads To Indictment Of Two Iranian Nationals
Manage episode 272911308 series 2794744
In this episode of the podcast I chat with Robert Renzulli, the CISO for the Port of San Diego.
Because of where it is located, they have some unique challenges. They are on an international border, connected to an international airport, a military base, where the Navy SEALs train, and various other things.
They are also a public entity in a state with some unique privacy laws and concerns. We discuss a number of topics including a recent Sam Sam ransomware incident they had that was disclosed to the public and led to an indictment of two Iranian Nationals.
He basically gave a master class on incident response from technical to communication to legal and many of the other things that people don't often take into consideration during an incident.
Some things I took away:
- When dealing with an incident, first call your General Counsel, then your Cyber Insurance company.
- The port used the NIMS Fema Incident Management System.
- Communication is a really big issue during an incident, especially if it is publicly disclosed:
We discussed hiring, internships, and where Robert finds people to work in security:
"I've found a lot of my best analysts were baristas at Starbucks, or worked as bouncers. It doesn't matter the background, it's the drive, it's the motivation, it's the constantly wanting to learn"We end up talking about what technology will be key and understanding that it's not necessarily the tech, but the DATA that is critical and how important it is to understand your data, what it is, and how to manage and secure it.
"Emerging technology is going to be all about how you move the data around, how do you protect the data, and how do you control who has access to the data, and what device the data actually lands on."You can find the SynAckFinAck Podcast wherever you listen to your podcasts. If you like what you hear, please pop over to iTunes and give a review, subscribe to and share the podcast. Thank you for listening!
36 episoder
Manage episode 272911308 series 2794744
In this episode of the podcast I chat with Robert Renzulli, the CISO for the Port of San Diego.
Because of where it is located, they have some unique challenges. They are on an international border, connected to an international airport, a military base, where the Navy SEALs train, and various other things.
They are also a public entity in a state with some unique privacy laws and concerns. We discuss a number of topics including a recent Sam Sam ransomware incident they had that was disclosed to the public and led to an indictment of two Iranian Nationals.
He basically gave a master class on incident response from technical to communication to legal and many of the other things that people don't often take into consideration during an incident.
Some things I took away:
- When dealing with an incident, first call your General Counsel, then your Cyber Insurance company.
- The port used the NIMS Fema Incident Management System.
- Communication is a really big issue during an incident, especially if it is publicly disclosed:
We discussed hiring, internships, and where Robert finds people to work in security:
"I've found a lot of my best analysts were baristas at Starbucks, or worked as bouncers. It doesn't matter the background, it's the drive, it's the motivation, it's the constantly wanting to learn"We end up talking about what technology will be key and understanding that it's not necessarily the tech, but the DATA that is critical and how important it is to understand your data, what it is, and how to manage and secure it.
"Emerging technology is going to be all about how you move the data around, how do you protect the data, and how do you control who has access to the data, and what device the data actually lands on."You can find the SynAckFinAck Podcast wherever you listen to your podcasts. If you like what you hear, please pop over to iTunes and give a review, subscribe to and share the podcast. Thank you for listening!
36 episoder
Semua episode
×1 Marvin Wheeler on Merging MDR with Artificial Intelligence 30:08
1 Data Encryption In Cyber Security with Jon McLachlan 33:03
1 Cyber Fraud Detection to Financial Startup 42:41
1 Using Artifical Intelligence to Analyze and Secure IoT Data 34:22
1 What skills are most important for cybersecurity professionals? 29:40
1 Introduction to Securing Operational Technology 33:20
1 Networking Fundamentals for Cybersecurity 25:53
1 The importance of writing to advance your career 29:49
1 Navy Intelligence Officer to Cybersecurity CEO 19:37
1 Dark web and information intelligence monitoring 27:21
1 Finding long term success in security and why you should learn jiu-jitsu 34:54
1 What's it like to be a security architect at a Fortune 500 company? 33:36
Velkommen til Player FM!
Player FM scanner netter for høykvalitets podcaster som du kan nyte nå. Det er den beste podcastappen og fungerer på Android, iPhone og internett. Registrer deg for å synkronisere abonnement på flere enheter.