SecureWorld is all about collaboration and peer to peer knowledge sharing.
And now, let the knowledge sharing continue...remotely.
Here is the SecureWorld Bay Area live blog, coming to you from the Santa Clara Convention Center.
8:57a.m. - There is a buzz in the room. Lots of conversations already going here.
9:30a.m. - Laz (Demetrios Lazarikos), three time CISO, kicks off the opening keynote on building and nurturing a modern cybersecurity program. Here are three traits, he says, of modern cybersecurity leaders:
- Curious and life learner
- Critical thinker
- Patient and able to influence
10:30a.m. - Conference break, lots of energy, lots of conversations between cybersecurity practitioners and sponsoring vendors.
11:15a.m. - Megan Bell is talking GDPR.
She's been working with regulated data for more than 15 years. This is an eye opening and very interactive session.
She says every business needs to do a Data Protection Impact Assessment. Otherwise you are making assumptions about whether GDPR pertains to you.
It doesn't matter if you're the creator, processor or user of PII of European citizens. She says the entire data food chain has responsibility.
1:15p.m. - We just finished the lunch keynote with Michael Duff, Stanford University's CISO. He had planned to speak all along on a topic that's suddenly getting national play: your Social Security Number is no longer an authenticator.
"Your Social Security Number has been shared between you and companies and organizations, it has been shared between organizations. And now the Equifax breach is the nail in the coffin. Social Security numbers are no longer a reliable way to authenticate anyone."
He's proposing we look at technologies that allow authentication to be done without the secret authenticator being revealed.
"Once you have to reveal your secret authenticator to someone, then it's no longer a secret."
More to come...