Stanley Parret
Addressing the Cyber Security Skills Gap with Managed Defense
Andy SmithManager of Cybersecurity Operations at Sallie Mae
Sanjeev SahCISO at Medical University
of South Carolina
Stanley ParretPrincipal Consultant
FireEye Managed Defense
©2019 FireEye©2019 FireEye
§ The shortage of cyber security workers continues to be a major concern. Unfilled cybersecurity jobs are expected to reach 1.8 million by 2022, up 20% from 1.5 million in 2015, according to the Center for Cyber Safety and Education. It’s also difficult and costly to find, hire, train and retain security experts to protect against threats 24x7x365.
§ Join Stanley Parret, Principal Consultant for FireEye Managed Defense, along with Andy Smith, Manager of Cybersecurity Operations at Sallie Mae and Sanjeev Sah, CISO at Medical University of South Carolina, to hear real world examples of how enterprises are using Managed Defense to protect more with less, in order to meet this challenge head on!
Introduction
2
©2019 FireEye©2019 FireEye
Today:§ Principal Consultant with FireEye Managed Defense§ Specialties: Incident response and Penetration Testing
Before FireEye: § Consultant, Foreground Security§ Cyber Attack Operator, United States Air Force (10 years)
My Cyber Security Philosophy:§ Information security more than just a career path§ Passionate about solving the latest cyber security problems for customers§ Love the challenge of keeping pace with attacker ingenuity, resourcefulness
“Innovate or Die”3
Your Presenter: Stanley Parrat
The Cyber Security Skills Gap
©2019 FireEye©2019 FireEye5
The Most Pressing Issue in Cyber Security
3.5munfilled jobs by 20211
Growing at 400kjobs per year
326k Computer Science Graduates annually
(US, India, EU)2
≈$150 bnFrustrated Security Operations Spend
1 CSO Online June 8, 20172 National Center for Education Statistics , OECD, Statista.com
©2019 FireEye©2019 FireEye
Impact on the CISO
6
Hard to hire,train, retain
Many gaps, limited headcount
Untested Teams
Increased business exposure
Management Overhead
Career Risk
3.5munfilled jobs by 2021
?
©2019 FireEye©2019 FireEye
The Gap’s Effect on Security Teams
7
©2019 FireEye©2019 FireEye
Effects of the Skills Gap
8
IncreasedWorkload
Less Time forCritical Tasks
High Rateof Burnout
Increasein Breaches
The Skills Needed to Address the Gap
©2019 FireEye©2019 FireEye
FireEye Helps Organizations Address the Gap
11
FireEye Managed Defense
FireEye Managed Defense is a managed detection and response
(MDR) service that leverages the full power of FireEye to relentlessly protect
our customers from impactful cyber attacks.
©2019 FireEye©2019 FireEye12
Addressing the Gap with Managed Defense
We comprehensively hunt for hidden attacker activity
HUNTING
We know more about cyber-attacks than anyone else
INTEL
We identify the most critical alerts that
must be responded to immediately
PRIORITIZATION
We investigate thoroughly (answers)
and guide your response
RESPONSE
©2019 FireEye©2019 FireEye13
Global Team – Over 1000 Strong
Front Line Delivery Analysts,
Hunters, Consultants~ 100 strongGlobal Intel
Collections & Research
~ 60 strong
Global Intel Analysts
~ 50 strong
Malware Reverse
Engineering~ 40 strong
FireEye Labs
~ 100 strong
Customer Support
~ 170 strong
Mandiant Consulting
~ 350 strong
Managed Defense &
Engineering ~ 120 strong
Innovation & Custom
Engineering~ 25 strong
Advanced Practice & Tech
Advisory~ 22 strong
Managed Defense is more than Front Line Analysts. It is Hunters, and Threat Assessment Managers, Incident Responders, Researchers - all of whom are supported by teams of expert support groups, technical best practices, and operational processes that allow us to scale in ways that our customers need most.
4 Cyber Threat Operations Centers
AnalystsRapid
Response Hunters
MD Consultants Service TransitionManagers
FireSide Chat: Addressing the Gap
presenter photo
presenter photo
Andy SmithManager of Cybersecurity Operations at Sallie Mae
Sanjeev SahCISO at Medical University
of South Carolina
©2019 FireEye©2019 FireEye
Questions?
16