DevSecCon London 2018: Lessons from the legion (the DevSecCon London Remix)

DevSecCon London 2018: Lessons from the legion (the DevSecCon London Remix)
Nick Drage – Path Dependence – @SonOfSunTzu Lessons From The Legion Nick Drage Path Dependence Limited DevSecCon - 19 Oct 18 V 4.11 - 19Oct
LONDON 18-19 OCT 2018 Lessons From the Legion ( The DevSecCon Remix ) NICK DRAGE
Nick Drage – Path Dependence – @SonOfSunTzu
LONDON 18-19 OCT 2018 Lessons From the Legion ( The DevSecCon Remix ) NICK DRAGE
Nick Drage – Path Dependence – @SonOfSunTzu I have a question
Nick Drage – Path Dependence – @SonOfSunTzu You’ll Have Questions... ● Available afterwards ● Contact details at the end ● All references blogged ● All media – owner’s copyright ● If no credit, probably Pixabay
Nick Drage – Path Dependence – @SonOfSunTzu Tactics ● System Administrators ● Developers ● Security Operations
Nick Drage – Path Dependence – @SonOfSunTzu How do we learn and train
Nick Drage – Path Dependence – @SonOfSunTzu Matt Wiebe - a lonely robot - https://www.flickr.com/photos/mattwieve/29221303838 CC2.0
Nick Drage – Path Dependence – @SonOfSunTzu BreachLevelIndex.com
Nick Drage – Path Dependence – @SonOfSunTzu BreachLevelIndex.com
Nick Drage – Path Dependence – @SonOfSunTzu What’s wrong with Golf? ● Nothing wrong with golf ● … or training for golf ● … if you’re going to play golf. Image: Costume SuperCentre
Nick Drage – Path Dependence – @SonOfSunTzuhttps://www.competitivedge.com/catalog/all-sports
Nick Drage – Path Dependence – @SonOfSunTzu TRIZ ● Russian - “Theory of Inventive Problem Solving” ● Characteristics of problems ● Patterns in solutions ● A sufficient level of abstraction ● Use other’s solutions
Nick Drage – Path Dependence – @SonOfSunTzu By Oxford Creativity - Own work, CC BY-SA 4.0 https://commons.wikimedia.org/w/index.php?curid=40358248
Nick Drage – Path Dependence – @SonOfSunTzu Strategic Inflection Point
Nick Drage – Path Dependence – @SonOfSunTzu Jump the s-curve
Nick Drage – Path Dependence – @SonOfSunTzu So ...
Nick Drage – Path Dependence – @SonOfSunTzu ● Utterly incomprehensible from outside ● Complex ● Team games ● Highly specialised – By situation – Attack or Defend ● Fight over territory ● Offensive or defensive playbooks
Nick Drage – Path Dependence – @SonOfSunTzuhttps://media.defense.gov/
Nick Drage – Path Dependence – @SonOfSunTzu ● Get screenshot about 14 seconds in to https://www.youtube.com/watch?v=f1ZK7T5dezI
Nick Drage – Path Dependence – @SonOfSunTzu Seattle Seahawks’ Defense – 2011 to 2017 ● Sherman - CornerBack ● Thomas – Free Safety ● Chancellor – Strong Safety ● Everyone
Nick Drage – Path Dependence – @SonOfSunTzu 2012-2015 ● Fewest points allowed 2012, 2013, 2014, 2015 – NFL Record Image: ESPN
Nick Drage – Path Dependence – @SonOfSunTzu 2012-2015 ● Lead the league – Fewest Passing Yards Allowed ● Lead the league – Fewest First Downs ● 2nd Quarterback Pressures ● 4th Rushing Yards per carry ● 6th in takeways ● Always high in DVOA ranking
Nick Drage – Path Dependence – @SonOfSunTzu LESSON – “shift left” your conflict
Nick Drage – Path Dependence – @SonOfSunTzu Practice is everything
Nick Drage – Path Dependence – @SonOfSunTzu The Caffrey Triangle
Nick Drage – Path Dependence – @SonOfSunTzu Image:FrasierScott
Nick Drage – Path Dependence – @SonOfSunTzu The Base of Sand Problem
Nick Drage – Path Dependence – @SonOfSunTzu Footnote 3 “Battle outcomes have historically borne no relationship to the raw force ratio... ...what matters is the ratio of effective forces” ( emphasis mine )
Nick Drage – Path Dependence – @SonOfSunTzu LESSON – Eliminate the big play
Nick Drage – Path Dependence – @SonOfSunTzu NIST – five core functions https://medium.com/@TechTieu/cyber-security-framework-66aa07c1b7a5
Nick Drage – Path Dependence – @SonOfSunTzu Drive chart Wikipedia:ByRunfellow-Ownwork,derivedfromFile:AmFBfield.svgby userXyzzyn,CCBY-SA3.0,https://commons.wikimedia.org/w/index.php? curid=22524383 +3
Nick Drage – Path Dependence – @SonOfSunTzu Sounil Yu - matrix
Nick Drage – Path Dependence – @SonOfSunTzu Sounil Yu - right of boom
Nick Drage – Path Dependence – @SonOfSunTzu Sounil Yu - right of boom
Nick Drage – Path Dependence – @SonOfSunTzu As we’re meant to be resilient now http://csd.ncb.mu/English/Pages/Presentations/Mauritius%20Event%20Dec2013v1%20Symantec.pdf
Nick Drage – Path Dependence – @SonOfSunTzu NCSC - “Cyber resilience - nothing to sneeze at”
Nick Drage – Path Dependence – @SonOfSunTzu Blog - Black Swan Security
Nick Drage – Path Dependence – @SonOfSunTzu OODA: Observe – Orient – Decide - Act
Nick Drage – Path Dependence – @SonOfSunTzu Image:MarkSkillen
Nick Drage – Path Dependence – @SonOfSunTzu LESSON – out hit your opponent The evidence of history is that soft factors: command-control processes, tactics, and strategy, are first-order determinants of both deterrence and war outcomes ( emphasis mine )
Nick Drage – Path Dependence – @SonOfSunTzu Bartle’s Taxonomy of Player Types
Nick Drage – Path Dependence – @SonOfSunTzuImage: Yan Cui
Nick Drage – Path Dependence – @SonOfSunTzuITHare.com
Nick Drage – Path Dependence – @SonOfSunTzu Image:MeadowEllis
Nick Drage – Path Dependence – @SonOfSunTzu Image:DevSecCon
Nick Drage – Path Dependence – @SonOfSunTzu CHANGE CONTROL?
Nick Drage – Path Dependence – @SonOfSunTzuhttps://gds.blog.gov.uk/2015/07/10/you-cant-be-half-agile/
Nick Drage – Path Dependence – @SonOfSunTzu ● Get screenshot about 14 seconds in to https://www.youtube.com/watch?v=f1ZK7T5dezI
Nick Drage – Path Dependence – @SonOfSunTzu LESSONS ● Use others’ lessons ● Practice Is Everything ● Eliminate the Big Play ● Out Hit Your Opponent ● Or try to Golf our way through American Football...
LONDON 18-19 OCT 2018 [Nick Drage nickd@pathdependence.co.uk blog.sonofsuntzu.org.uk @SonofSunTzu]
Nick Drage – Path Dependence – @SonOfSunTzu BREAK BREAK BREAK

DevSecCon London 2018: Lessons from the legion (the DevSecCon London Remix)

Check these out next

DevSecCon London 2018: Lessons from the legion (the DevSecCon London Remix)

Recomendados

Mais conteúdo relacionado

Mais de DevSecCon(20)

Último(20)

DevSecCon London 2018: Lessons from the legion (the DevSecCon London Remix)