Event: Tech Talk Series: Blurred Lines on Cybersecurity
Date: July 20, 2021 | 1-2pm | Virtual
Can’t see, can’t fight. A simple philosophy for anyone in the cybersecurity world.
Those deep in the space know there is a fractured understanding across the team responsible for the safety, security, and resilience of their enterprise network. Regardless of the vendors and security investments; irrespective of the OT, IT or (I)IOT domains; agnostic of the experience level of the cybersecurity operator; the disconnects that are present between all of these elements are essential to the perception of the defenses that are in place.
All the converging factors have cascading impacts throughout the entire enterprise. From corporate processes straight through to the executive, where poor information, or worse – false information – remains status quo for many of the security teams we have encountered. More insight is vital to being able to interpret the situation on the ground for these frontline operators.
Pulled from a wide range of security events ranging from state-sponsored incident response to a more consolidated look into the threat hunting and threat intelligence capabilities teams that have the ability to synthesize information drawn from each of the deployed agents, applications and appliances, into a single view. This fuller picture draws together the network attack surface present in a more comprehensive and unvarnished look at the systems and increases the capability and capacity those teams have to solve the challenges they face. At a high level:
- within an attack surface analysis platform we can harness the data from SIEM, VMS, EDR, etc,
- analyze this information to build a heat mapped view of the critical flaws,
- investigate the vulnerabilities, and take action or create alerts to make timely effective decisions
This session will walk the audience from genesis of the concepts and development straight through to current real-world interpretation of findings and examples where having “full-spectrum” understanding of the complete security deployment, complete with off the shelf and homegrown scripts, offered a clear picture to the cyber battlefield that the teams were struggling to perceive across multiple fronts.
Joe Cummins is a career cybersecurity professional and entrepreneur who has led CybernetIQ since inception. Over the course of his career, Joe has successfully created and sold a series of software tools focused on solving real-world cybersecurity challenges including TOTEM (Industrial Controls software) FocalRecon (Unmanned Data Storage), as well as other technologies that have been developed under contract to various private and public organizations. Additionally, He has also served as an interim CIO / CISO for other startups in the Ottawa community including, but not limited to, BoldRadius, Zariba Security, Unmanned Systems Centre, and MC2.
In addition to his corporate leadership with CybernetIQ, Joe is an internationally recognized cybersecurity expert. His tours of duty and international projects focused primarily on the performance of risk assessments and cybersecurity audits of multinational control systems. Through these engagements the foundational concepts for CLAW were initially conceived.
Mr. Cummins holds the gold standard of available certifications in his field with OSSTMM certification as an Open Source Penetration Tester, as well as a certification from the Critical Infrastructure Institute professional in critical infrastructure protection, recognized from the Register of Security Engineers and Specialists (RSES). Mr. Cummins is a SANS certified instructor, recognized as the premier training and certification body globally for Cyber Security, and notably has trained individuals within 5I’s, NATO and ASIAPACCOM since 2010.
Mr. Cummins has been academically published author “SMART City Connectivity to Support Municipal and Community Resilience” (2016 – Hay, Philips, Cummins, Miazga) as part of the United for Smart Sustainable Cities (U4SSC) Initiative, the International Telecommunication Union (ITU) and the United Nations Economic Commission for Europe (UNECE).
Under Mr. Cummins’ leadership, CybernetIQ has been invited to present at multiple industry-recognized events and conferences such as BLACK HAT ASIA and is a member of the Mackenzie Institute in Toronto, where he regularly contributes and lectures on national security matters related to cybersecurity and cyber resilience.