CypherCon 2023

Preventing Zero Days, The Mandalorian Way

Anders Norremo & John Hochevar

Abstract:

‘This is the way’ is a mantra used by the Mandalorian people to express their ideals and defend their heritage. In the cybersecurity context, what is ‘the way’ to prevent, detect, and deal with unexpected risks and vulnerabilities in the ChatGPT era?

The number of known exploited vulnerabilities rose by ~80% in 2022 compared to the previous year, according to CISA data, but only a small fraction of organizations remediate in the first month. Headline-grabbing attacks like SolarWinds and Log4j will continue to happen, and serve as reminders that preventing zero days will become significantly more complex in the near future, in part due to the expansion of organizational attack surfaces and rapid advancements in artificial intelligence (AI).
Join us as we step through the Mandalorian Code of Honor and the Six Actions that guide the life of a warrior, and discover how we can apply those principles to defend our organizations from zero days and other unpredictable threats.

Anders Norremo & John Hochevar

Cyber security product aficionado, Florida lover

Anders Norremo is an entrepreneur and company builder. He currently serves as the VP of Third Party Risk Products at BitSight, the standard in security ratings. He previously was the founder and CEO of ThirdPartyTrust, a third-party risk management SaaS, and led the company into a successful merger with BitSight.

Anders has over 15 years of experience in information security and technology. His expertise in identifying trends and building solutions has contributed to solving the industry problem of a vulnerable supply chain, by streamlining risk assessments and security reviews for enterprises and their vendors.

 

 

John Hochevar is an IT Security Manager at American Family Insurance. He is responsible for growing the organization’s IT risk management capabilities. He holds a Bachelor’s degree in management of information systems and a Masters degree in Business Administration from the University of Wisconsin, Milwaukee