Software Supply Chains, Insider Threats and Zero Trust

From insider threats and software supply chain attacks to the cybercrime ecosystem and cyber resilience strategies – our recent HP Wolf Security CISO roundtable covered a lot of ground.

To reflect on the challenges and opportunities facing cybersecurity teams, we brought together industry leading CISOs and cybersecurity experts to discuss developments in the threat landscape and key industry trends. Joining our panel was Deneen DeFiore, Vice President and CISO at United Airlines, and Kurt John, Chief Cybersecurity Officer at Siemens USA, Joanna Burkey, CISO at HP Inc. and Dr Ian Pratt, Global Head of Security for Personal Systems at HP Inc. The discussion was moderated by Ed Amoroso, CEO of TAGCyber. 

Here's some of the panel highlights:

One of the key trends highlighted by the panel was the impact of software supply chain attacks. As Joanna Burkey explains, this has completely changed the attacker and victim relationship from one-to-one to one-to-many:

• Joanna Burkey, CISO at HP, on one-to-many attacks

Another growing risk, identified by Kurt John, is the evolution of insider threats. Attackers are compromising start-ups and making direct approaches to security employees to deploy malicious software:

• Kurt John, Chief Cybersecurity Officer at Siemens USA, on cybersecurity threats

Despite these threats, there are also opportunities. As Deneen DeFiore explains, cybersecurity teams can look to rethink their strategies and drive greater cyber resilience, built upon the principles of Zero Trust:

• Deneen DeFiore, Vice President and CISO at United Airlines, on Zero Trust

Adopting Zero Trust principles can help organizations keep one step ahead of common attack vectors such as email, malicious links and downloads. Because as Ian Pratt explains, end users continue to be a weak one, and one that attackers will continue to exploit:

•  Ian Pratt, Global Head of Security for Personal Systems at HP, on cybercrime organizations

To hear more from our panel on these topics and much more check out our event playback, available here