Friday 7 May 2021, 3pm-4.30pm (BST)
Our May Academy series looks at how to assess cyber health and risks.
Hackers gain access to systems by exploiting a series of vulnerabilities in their escalation to achieving data theft or destruction. A concept widely known as the ‘kill chain’, it is best represented by a pyramid where the available surface area (or systems) that are exploited at each level narrows on their approach to targeted services, network(s), user rights and behaviours, and ultimately – data. Although there is a greater risk of exploitation at the lower tiers, it is spread out. Yet at higher levels, it is more focused – and has more impact that leads to damage.
This paradigm of cyber risk provides a context for assessing the health of an organisation’s cybersecurity.
In our first of four sessions, we will review the methods of assessing cyber health and identifying common cyber risks from the ‘build’ layer of the pyramid. It will include scripts, demonstrations, data analysis techniques and references useful for collating information.
The rest of the series
Guest chaired by
Glen Hymers Dip CSMP, Cert HE (info), Head of Data Privacy and Compliance, Cabinet Office
Shane Shook, PhD (info), Chief Security Advisor, Secrutiny