When it comes to a specialist conference, it is not only the lecturers' quality that matters but it is also important to exchange experiences with other participants who are in similar positions and deal with similar issues. IT-Defense offers a clear framework to discuss security issues and topics with other participating security experts.
Participants can discuss their own problems and other profound issues in small groups. For this purpose, IT-Defense lecturers serve as moderators; however, it is also possible to form individual groups on specific subjects.
Simultaneous round-table discussions will be available on Friday, February 4, 2022.
Social Engineering & Security Awareness - Jayson E. Street
In this roundtable, Jayson Street will be covering an aspect of Social Engineering & Security Awareness not often discussed.
He will be covering how Red Teams have taken their role to such an aggressive level it affects the security of the company negatively not by the compromise but the aftermath they leave behind.
He will discuss how Blue Teams have taken this attitude and instead of refuting it they have adopted this mentality with their own employees and have created a hostile workforce rife with potential insider threats. That may not have been there before they engaged in their programs of 'education'.
Jayson Street will also discuss possible solutions to these two serious issues as well as the powerful and positive results that the Red Team can have with losing. He explains how this works in a way to give the company the best assessment/engagement you have to offer. He also discusses the benefits that companies received with this approach. This is not theoretical but his standard operating procedures when conducting a Security Awareness engagement.
Jayson Street also explains how companies can employ a security awareness program that will actually promote involvement from your employees and make it an incentive to be security aware. He explains a process that he developed called the "Three E's Educate - Empower - Enforce". With this process your employees become active and willing resources in your company's defenses. Instead of being unwilling victims of it and a possible compromise.
There will then be open discussions to talk amongst the group on ways these solutions can be employed at their company and how.
The new guidelines of the EU initiative for trustworthy AI and the recommendations for the necessary technical and organizational measures made by the supervisory authorities are presented and critically questioned in an introductory talk. Starting from four topic blocks, the participants of the round table will discuss the requirements for risk assessment as well as for ensuring transparency and the rights of persons affected; in addition, approaches for the controllability of AI based systems are presented. The speakers will question the proposed measures, which in many areas are not effective, and explain the challenges operators and users of AI based systems are confronted with when they want to ensure a legally compliant operation.
Big Game Hunting – Volker Kozok
Following the lecture, further examples and aspects will be presented in this round table and then discussed in detail.