Takeaways from GAM 2018: Internal Audit Embraces Cybersecurity
March 21, 2018, Nick Son, Vice President, Cyber Risk Services, Coalfire
Last week, the Institute of Internal Auditors (IIA) held its 2018 Global Audit Management Conference at the Aria Resort in Las Vegas. With over 1,700 attendees, this was the most well-attended event in the history of the conference. Coalfire was one of the sponsors, and we were delighted to meet with so many forward-thinking audit executives and practitioners.
Cybersecurity Incident Response: Three Lessons from Uber’s Story
December 15, 2017, Doug Hudson, Senior Director, Cyber Risk Advisory, Coalfire
The recent news regarding the Uber breach has captured the attention of both the public and legislators. It seems that Uber’s security team discovered a breach, paid a ransom, and didn’t report the matter to company leaders, law enforcement, personnel, or customers.
Ransomware Response: To Pay or Not to pay
April 17, 2017, Doug Hudson, Senior Director, Cyber Risk Advisory, Coalfire
Recently, I was speaking with a CISO friend of mine and he mentioned that his company suffered a breach. I asked if it was a ransomware attack, and sadly, that was the case. Malware had infected nearly every connected computer. Clearly there was a breakdown in protective controls, but I’ll get to that in another post. Digging deeper, I inquired if the amount was under $2,000. Another “yes”. Reported to the FBI….” yes” again!