I JUST PRESENTED AT THE 8TH DEPARTMENT OF JUSTICE CYBERSECURITY SYMPOSIUM IN WASHINGTON D.C. WE HAD A HUGE TURNOUT WITH OVER 500 ATTENDEES FROM THE DOJ AND VARIOUS GOVERNMENT AGENCIES.
The DOJ did a great job organizing the event and bringing in some real superstar attendees from the federal government. Presentations covered a wide range of topics from Coordinating a Unified National Cybersecurity Effort to Moving from Awareness to Action. Talks were delivered by the FBI, DHS, DOJ, NIST, DOT…and me :)
I talked extensively about SIP – Security Instrumentation Platforms. We covered what it means to use the Verodin SIP to move beyond the myopic approach of some continuous security testing approaches and move beyond assumption-based security to leverage the foundational nature of Verodin’s SIP to continuously validate that your security controls, your people, and your processes are operating efficiently and effectively. Verodin helps you prove it with quantitative, evidence-based results, reporting, and metrics.
Some Verodin SIP capabilities that really resonated with attendees included:
- Safe attack execution (don’t break my stuff)
- Multiple Verodin Actor types across network, cloud, and endpoints (validate all my security stuff)
- The use of “real” attacks – not simulations or interpretations (because bad guys use real attacks)
- An Open Content Platform to use attacks from Verodin, threat intelligence, organizational packet captures, third-party PCAP databases, ISACs, and many others (we want to add our own attacks in minutes and don’t want to wait for you)
- The ability to deploy, integrate, and learn Verodin in hours (which includes a break for tacos)
The Verodin solution is powerful, yet simple to use, and the message is equally simple. Verodin’s SIP provides the first business platform to measure, manage and improve cybersecurity effectiveness.
The entire Verodin team is looking forward to another great event at the DOJ in 2018.