Treating Attackers as Innovators

Join WaterISAC Champion Keystrike for this deep dive on the everchanging security landscape.

The security landscape has changed. When we focused on controls and monitoring on the perimeter, our attackers shifted to users. When we added SSO and MFA to protect and isolate our users from critical systems, our attacks shifted to workstations. When we added EDR and PAM to protect the workstations, attackers moved to sessions. What we thought was Zero Trust is a series of good controls mixed with reasonable practices mixed with bad assumptions.

In this session, we’ll tear apart each of the controls, practices, and assumptions and reassemble them in a new way that makes sense and protects our users, networks, and critical systems from beginning to end.