Bishop Fox to Present at 2023 BSides Atlanta

Date:
October 14, 2023
Location:
KSU Center, Atlanta
BSides Atlanta 2022 logo on black background.

Bishop Fox is proud to present at the 2023 BSides Atlanta conference. Red Team security consultant, Ryan Basden, will speak to how purple teaming activities can demonstrate substantial ROI and provide multiple ways to protect against emerging threats. Actionable examples will be presented of how purple teams can establish measurable security baselines, validate security investments, provide blueprints for organizational strategies, and improve evidence-based communication with leadership and stakeholders.

For more details, visit BSides Atlanta website.

"From Checkbox to Checkmate: Winning the Game for Security Budgets"

For many, IT security is still perceived as a sometimes-helpful nuisance, but an all-the-time cost center.

The most common exception is in compliance, often disproportionately handled by IT staff due to the technical evidence gathering requirements. And it’s hard for security staff to argue the case, since you can draw a direct line from compliance reports to revenue. A clean SOC 2 report or PCI DSS certification can determine the outcome of multi-million-dollar deals. The same cannot usually be said for a clean vulnerability assessment, penetration test, or red team report (much less a not clean one).

So how can security professionals compete with compliance for budgets, and how can IT professionals garner buy-in and internal support from executives and decision makers so they can affect organizational change and improvement?

This session will cover how purple teaming activities can elevate an organization beyond exception management in revenue-generating deals, to providing multiple mechanisms for demonstrating substantial ROI, and quantifiably protecting existing and future revenues. I will detail actionable approaches – with real world examples – that showcase how purple team exercises can accomplish the following:

  • Establishing measurable security baselines and resilience across companies and supply chains
  • Validating the efficacy of security investments and identifying potential areas for greater efficiency.
  • Providing a blueprint for organizational advancement and agility via penetration tests and red teams
  • Evidence-based ROI communication to leadership and stakeholders
  • Demonstrable and continuous protection against headline grabbing, and investor rattling, emerging threats

Ready to get started? We can help.

Contact Us

This site uses cookies to provide you with a great user experience. By continuing to use our website, you consent to the use of cookies. To find out more about the cookies we use, please see our Privacy Policy.