11-06, 13:50–14:10 (Canada/Eastern), Twitch
The information security field focuses on preventing unauthorized access, use, disclosure, disruption, modification, inspection, recording, or destruction of information. This is accomplished by securing assets and people, using frameworks and methodologies such as the CIS top 18 and NIST. Hacking a Business Process requires hacking these assets or people first, but the business process still needs to be secured. Financial Processes such as Purchase Order processes, or HR processes such as employee termination, pose a great risk to any organization – if the process is sufficiently manipulated, any theft arising from it becomes much harder to identify.
Lead Penetration Tester at Zyston
15 years of IT experience
7 years in Information Security