Keynote: My Lessons from the Uber Case

Security

A cybersecurity expert shares valuable lessons learned from the Uber breach, including the importance of effective crisis communication, data security prioritization, and industry-regulator collaboration.

Key takeaways
  • It’s crucial to have a different and better relationship with the communications team during a crisis, as they play a significant role in shaping public opinion.
  • Companies should not prioritize profits over data security and should take steps to prevent data breaches.
  • The government and industry need to work together to develop effective regulations for data security.
  • Transparency is essential in the face of a crisis, and companies should be open with the government and communicate clearly with the public.
  • Bounty programs can be effective in identifying vulnerabilities and can help companies build trust with the public.
  • The role of a CISO is not just to focus on security, but also to communicate with the board and top management.
  • Regulation by enforcement is important, as it can lead to stronger security measures.
  • Companies should prioritize employee safety and well-being, just like they would with clients.
  • Government agencies need to work together to develop a cohesive data security strategy.
  • Personal relationships and reputation are key in the field of data security.
  • The company should take responsibility for the mistakes made by their employees and should prioritize employee education and training.
  • Bounty programs can also be a way for companies to build trust with the public.
  • The role of a CISO is to advise and guide the company in its security decisions.
  • Building agreements with other companies can help prevent future data breaches.
  • The government should take a more active role in enforcing data security regulations.
  • Data security is everyone’s responsibility, and companies should prioritize employee safety and well-being.
  • The government should develop a cohesive data security strategy and work with the industry to develop effective regulations.
  • Companies should prioritize transparency in the face of a crisis and communicate clearly with the public.
  • Personal relationships and reputation are key in the field of data security.
  • The company should take responsibility for the mistakes made by their employees and should prioritize employee education and training.
  • Bounty programs can help companies identify vulnerabilities and build trust with the public.
  • The role of a CISO is to advise and guide the company in its security decisions.
  • Building agreements with other companies can help prevent future data breaches.

More talks

The Power of We Creating Communities That Drive Global Success

SAINTCON 2016 - Sam Mclane - Changing the Economics of Security Operations

Techniques to avoid common LLM pitfalls by Mete Atamel

AI Factories at Scale | Thomas Schmidt, Applied AI Stage

Philip Blair - Dealing With Names and Addresses Around the World | PyData Amsterdam 2024

The challenges and opportunities of Global regulation | Crossing Borders Panel at Futurist 2023

What We've Learned from Scanning 10K+ Kubernetes Clusters by Rotem Refael

Tanat Lokejaroenlarb - Observability to Resolution: The Journey Through a Production K8s Incident