Microsoft on CISOs: Thriving Community Means Stronger Security

Microsoft on CISOs: Thriving Community Means Stronger Security

August 8, 2024 at 02:12PM

Ann Johnson and Sherrod DeGrippo presented at Black Hat on “Security in the Age of AI.” They tackled the recent CrowdStrike outage and highlighted the community’s response. Microsoft’s focus on collaborating with customers and peers, particularly in combating threat actors like Scattered Spider, was emphasized. The discussion emphasized the importance of technology like AI while also highlighting the human element in cybersecurity.

Key Takeaways from the Meeting Notes:

1. CrowdStrike Outage Fallout:
– Microsoft experienced a significant outage due to a CrowdStrike fault sensory configuration update, resulting in monetary losses of approximately $5.4 billion.
– Ann Johnson described the incident, emphasizing the industry’s resilience and the collective efforts to resolve the issues, renewing her faith in collaboration and community support.

2. Collaboration and Intelligence Sharing:
– Microsoft’s Threat Intelligence Center (MSTIC) collaborates closely with customers and external entities to share intelligence and combat threats.
– The company is actively involved in combating threat actors and ransomware events, working with law enforcement and industry peers to defend against malicious activities.

3. Embracing AI Technology:
– While acknowledging the potential for threat actors to exploit AI for their advantage, Johnson emphasized the importance of defenders leveraging technology, including AI, to enhance effectiveness and reduce burnout, ensuring a balanced approach between technology and human involvement.

Overall, the meeting highlighted the significance of community collaboration, the resilience of industry professionals, and the proactive use of technology to empower cyber defenders while maintaining a focus on the human aspect of cybersecurity.

Full Article