What kind of work goes into implementing secure services? Service providers have to comply to the law, protect their users, worry about reputation, need to deal with vulnerability management, patch management and above all: business continuity. Researchers and attackers target the infrastructure for their own gain and suppliers have their own go-to-market drive which limits the amount of QA on their products. Various services are build upon existing or new foundations. They have to comply to the same company wide policies, like the security policy.
In this talk I will give an insight on what goes into the technical analyses, generic preventative measures and provide example on how to use a technical oriented company wide policy to your advantage.
#DeviceSecurity #NetworkSecurity #Politics