Securing your organization’s cyber activity is no longer enough. Contracting with vendors solves many business challenges, but it also creates cyber vulnerabilities. Hackers not only know this; they are exploiting it. Join this session to discuss your supply chain cybersecurity challenges with other attendees and develop a draft implementation plan for applying what you learn within your organization. We will review current trends (e.g. 22% annual growth in cyber incidents involving partners) and recent attacks/breaches that have originated via supply chain partners (e.g. Target, Home Depot, OPM, DoD). We will also explore supplier selection practices that can enhance supply chain cybersecurity.
The facilitators will provide a 2×2 Supply Chain Cybersecurity Strategy Matrix to help you prioritize resource allocation in your on-going management of threats in a diverse range of vendors. High and low partner access vs high and low cyber maturity provide four distinct quadrants and clearly position supply chain partners from lowest to highest threat risk. You will examine each quadrant and explore practices for monitoring and collaborating with, as well as defending against your many supply chain partners.
- Discuss your supply chain cybersecurity challenges and learn from others'
- Explore best practices for monitoring, collaborating with and defending against your partners
- Draft an implementation plan for enhancing your company's supply chain cybersecurity
- Review current trends that motivate supply chain cybersecurity. Review supply selection practices for cybersecurity impact.
About Jamison Day
Jamison M. Day is a decision science Ph.D. dedicated to improving information sharing among people and organizations. He was selected as 1 of 5 members nation-wide to serve on a supply chain security team for the U.S. director of national intelligence. His interactive analytics products have helped Microsoft and the Department of Homeland Security reduce business processes from days and hours to mere seconds.
Dr. Day has presented his work at venues including the White House, National Science Foundation, Federal Emergency Management Agency and U.S. Northern Command. Academic affiliations have included the University of Denver, Louisiana State University, the University of Houston and Indiana University. He has written 20 articles appearing in academic journals and practitioner outlets including Decision Sciences Journal, Journal of the Association for Information Systems and Journal of Supply Chain Management.
About Allan Thomson
As LookingGlass CTO, Allan Thomson has significant experience across network, security and distributed systems technologies. Thomson leads technical strategy, architecture and product development across all LookingGlass threat defense product lines including threat intelligence platforms and threat mitigation platforms.
He is also a co-chair of OASIS STIX/TAXII Cyber Threat Intelligence Interoperability sub-committee and recognized as OASIS Distinguished Contributor in 2017.
Prior to LookingGlass, Thomson served as principal engineer at Cisco Systems, Inc., where he led the software architecture and design of the company’s cyber threat defense system and platform exchange grid. He was responsible for overall systems management and security telemetry collection/aggregation and distributed threat analysis/intelligence services in multi-tenant public and private cloud deployments.