BEGIN:VCALENDAR VERSION:2.0 PRODID:researchseminars.org CALSCALE:GREGORIAN X-WR-CALNAME:researchseminars.org BEGIN:VEVENT SUMMARY:Ian Thornton-Trump DTSTART:20210714T140000Z DTEND:20210714T150000Z DTSTAMP:20260423T021342Z UID:UK-SPS/7 DESCRIPTION:Title: T he Eight Principles of Security Leadership: An insider’s view of SolarWi nds & Supply Chain Failure\nby Ian Thornton-Trump as part of UK Securi ty and Privacy Seminar Series\n\n\nAbstract\nIn 2017\, I failed to save a 5 billion dollar company from getting ravaged by Russian and Chinese Advan ced Persistent Threat actors from a series of attacks that may have starte d in 2019. The repercussions of the SolarWinds “hack” as it has been c haracterised has generated a lot of attention – mainstream media up to and including three US government house committees: Intelligence\, Homelan d Security & Reform and Oversight. After four years of introspection I mai ntain the attack – even though it was conducted by nation state actors f unded with millions of dollars and nearly unlimited resources – could ha ve been thwarted. Although we characterise “security” into three domai ns of people\, process & technology there is a need to unite these domains into an organization imperative. I discovered that without security leade rship in place to unite people\, process & technology in common purpose th e three domains become silos. It is within these silos that threat actors exploit organizations and dwell within organizations undetected. In this p resentation I present Eight Principles of Security Leadership and discuss candidly how they could have been applied to prevent catastrophe for an or ganization like SolarWinds.\n LOCATION:https://researchseminars.org/talk/UK-SPS/7/ END:VEVENT END:VCALENDAR