BlueHat Oct 23 Day 1 Keynote: John Lambert

In this week’s special episode, we bring you the BlueHat Oct 23, day 1 keynote delivered by John Lambert, Microsoft Corporate Vice President and Security Fellow. In his BlueHat Oct day 1 keynote, John discusses the importance of incidents in the security field, strategies for finding security incidents, and the importance of looking beyond traditional defense measures to discover attackers and traces outside of one's network. John introduces the idea of "hunting until closure," which involves systematically investigating various attacker actions to learn more about their activities. He also mentions the concept of "time travel breach detection," which uses historical logs to trace and identify previous attacker actions. 
 
 
In This Episode You Will Learn:    
 

The importance of security incidents in shaping the cybersecurity field 

Why logs and telemetry data in cybersecurity are essential when tracking attacker actions 

How valuable mutual respect is in the security community 

 
Some Questions We Ask:    
 

How do escalating conflicts within teams affect productivity? 

What role did trust and collaboration play in responding to the SolarWinds incident? 

Why must the security community work together to protect customers? 

 
Resources:  
View John Lambert on LinkedIn  
View Wendy Zenone on LinkedIn 
View Nic Fillingham on LinkedIn 
Related Microsoft Podcasts:                 


Afternoon Cyber Tea with Ann Johnson 


Uncovering Hidden Risks    


Security Unlocked     


Security Unlocked: CISO Series with Bret Arsenault 


Secure the Job: Breaking into Security 

   
Discover and follow other Microsoft podcasts at microsoft.com/podcasts  

Hosted on Acast. See acast.com/privacy for more information.