Key Learning Points
- Understand the cultural change that is happening
- Understand how this change alters the problem of insider threats
- Design a security program that appeals and engages Millennials as well as all the generations
Level:Intermediate
By 2025 members of the Millennial generation will comprise 75% of the global workforce. Like it or not, Millennials are changing the workplace, along with information security.
Furthermore, it really does not matter how many security appliances you buy, policies you publish, or internationally accepted frameworks you follow, if a single trusted employee can bypass all of it. The insider threat is not exclusively a technical challenge, but also a human challenge.
For the past year, Anitian studied the impact Millennials will have on information security and insider threats. While this tectonic demographic shift has many threats, it also presents an opportunity to mature information security into the future.
In this presentation, security veteran Andrew Plato will discuss the challenge of insider threats and how to build a Next Generation Security Program. As both a security practitioner and business leader, Mr. Plato has a unique perspective on building engaged workforces. Specifically, we will address how to craft a security program that appeals to a younger generation, who naturally likes to share and collaborate.
About Andrew Plato
Andrew Plato, CISSP, CISM, QSA
In 1995 while working at Microsoft, Andrew executed the first known instance of a SQL Injection attack against an early e-commerce site. When he demonstrated this attack to the developers, they dismissed the issue as irrelevant. Intrigued, Andrew left Microsoft to found Anitian, an information security intelligence firm.
Today, Anitian is one of the most trusted names in security intelligence with clients worldwide. Anitian has a mission to Build Great Security Leaders. For the past 20 years, Andrew and Anitian have consistently executed on this mission with innovative, pragmatic answers to the most vexing security, compliance, and risk challenges.
Andrew’s career encompasses nearly every dimension of information security. He has participated in thousands of security projects, written hundreds of articles, and advised hundreds of C-level executives. Being a both a business owner and security practitioner allows Andrew to bring a unique perspective to any discussion regarding security, technology, and governance.
Andrew is well-known for delivering entertaining presentations that challenge conventional thinking and deliver practical answers to complex IT security challenges.