RSA 2019 & Better
It’s time for another crazy and hectic #RSAC week. I’ve seen indications of attendance over 50,000 with over 700 vendors. I’ve been seeing the sights, from advertising-laden buses and cars, big-name cybersecurity companies’ temporary billboards and storefronts, and I am excited to see the buzz of the expo hall today.
This year’s theme is Better. Here’s the “Better(s)” I’m thinking about:
Better: Wear comfortable shoes because it’s a packed schedule with lots of standing and walking.
Better Not: Have wasted time packing workout clothes. Experience suggests the probability of being used is zero.
Better: Get an umbrella because it’s raining, and it looks like that’s going to continue.
Better: Get ready to hear a lot about themes like IoT, Third Party Risk, Cloud.
Better Not: Expect to hear fewer companies talking about Artificial Intelligence and Machine Learning despite clear fatigue here.
The Cybersecurity Better(s)
Now in all seriousness, here’s the real “Better(s)” I’m thinking about when it comes to RSA and cybersecurity in general.
Better: Double down on focusing on nailing cyber hygiene basics like knowing what assets you have, what is connected to your network, identifying vulnerabilities, patching systems, and prioritizing risk.
Better: Look to expand your use of threat intelligence because the intelligence you’re getting in your existing security controls isn’t adequate. Cybersecurity today requires a broader view of intelligence with a need to utilize threat intelligence from a range of sources including commercial, open source, government, and industry.
Better: Collaborate with industry peers to gain access and share threat intelligence around what is happening in your industry. ISACs and ISAOs are a great way to do this.
Better: Increase your focus on finding ways to add more automation into your security operations because it’s the only way you will be able to scale your scarce human capital.
If you are at RSA and want to chat about some of these “Better(s),” stop by the Bandura Cyber booth, Booth S 3428. I’ll be there most of the day (with a break to talk about threat intelligence at Webroot’s booth (Booth S 927) at 4:35pm PT on Tuesday).