2023-10-14 –, Room 300
Ransomware is no longer the leading method cyber criminals use to infiltrate an organization. Cyber crime organizations have shifted to sophisticated phishing campaign and backdoor deployment to gain control of your IT infrastructure and access to your most important data. By adopting the long standing cybersecurity practice of defense in depth, storage systems can be the last line of defense that gives organizations a chance to recover their operations. In this proposal, we'll be looking at the best practices to ensure you have the harden process and systems to be cyber resilient. We'll explore the basic security such as multi-factor authentication, two person integrity, role and object-based authentication to the more advance immutable storage, quantum safe encryption of data at rest and the emerging ransom activity detection in file and block storage.
Nat has 20+ years of cybersecurity experience across Identity, Endpoint, Network, SIEM, Data, OT, and DevSecOps in both products and services. He is currently a part of the IBM Storage CTO office driving cyber resiliency across IBM Storage portfolio. In his previous roles, he built security development teams across Americas, Asia, and EMEA for IBM Security and X-Force Consulting. Nat is a well-regarded senior leader and hands-on subject matter expert in Cyber Range industry known for driving unprecedented results within competitive, emerging industries. He built first commercial immersive cyber range in Cambridge, MA and first cyber range on wheels for EMEA market. As a Cyber Range Consulting practice leader, Nat drove the business development and partnership based on IBM experience in the cyber range business since 2016.
His project won 2019 Edison Award and 2019 InAVation Award for Control Room of the Year by leading team to create world’s 1st cyber tactical operation center, X-Force Cyber Tactical Operations Center (C-TOC).
In addition to his technical contribution, Nat also led workforce development for IBM Security through university relationships, early professional recruiting, and external cybersecurity competitions.