Insider Cyber Theft and Sabotage: How Does It Work and How Can We Stop It?

Presented by

Dawn Cappelli, VP & CISO at Rockwell Automation

About this talk

In the current threat environment – with threat actors like North Korea targeting Sony Pictures and Russian hackers targeting the Ukraine power grid – it is important that organizations consider the potential harm that could result from a malicious insider in the organization. Learn from a series of real life insider attacks why you should be motivated to mitigating this risk in your own organization. Then learn what you can do about it. Insider threats are happening every day, and it’s fairly easy and inexpensive to start building an effective Insider Risk Program if you understand what to do. It takes teamwork and buy-in from the top, but you’ll be amazed at what you can do with technologies you already have in place. And if you already have a program that’s great – you will learn how to mature that program to mitigate the very serious threat of insider cyber sabotage. About the Presenter: Dawn is responsible for Rockwell Automation’s global information security program, using a risk-based approach to ensure the company’s products and infrastructure are secure. Dawn’s team collaborates closely with the product security team, and is also responsible for the insider risk program, behavioral analytics, and document retention. Dawn started at Rockwell Automation in 2013 as their Director of Insider Risk, and was named Vice President and Chief Information Security Officer in 2016. Prior to joining Rockwell, Dawn was Founder and Director of Carnegie Mellon’s CERT Insider Threat Center. Before that she developed software for nuclear power plants for Westinghouse. She is a co-author of the book "The CERT Guide to Insider Threats: How to Prevent, Detect, and Respond to Information Technology Crimes (Theft, Sabotage, Fraud),” and is on the RSA Program Committee and DSAC Leadership Council for Intelligence and Threats.

Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (11)
Subscribers (2208)
As an organization, we aim to inspire confidence in technology professionals that enables innovation through technology. Come join us to learn about the latest in cybersecurity, information assurance, audit, risk and governance from industry experts, and learn more about ISACA certifications and projects.