Session sponsored by:
The most damaging information security attacks often use low-tech social-engineering methods to trick users into sharing sensitive information. For such an important class of critical security controls, it is surprisingly rare to formally configure and manage the human layer beyond ad-hoc techniques based on incomplete information.
This session explores ways to safely use some of the methods employed by attackers to provide actionable metrics to proactively measure, manage, and improve the effectiveness of the last line of defense.
About Mark Chapman (CFE, CISSP, CISM, CRISC)
Mark Chapman (CFE, CISSP, CISM, CRISC) is the President of PhishLine and has spent the majority of his 20+ year career leading in the development of cutting-edge solutions in the areas of risk management, information security, and social engineering. Mark has extensive experience addressing security concerns for enterprise customers who keep him closely connected to the information security community and the challenges within.