Infosec is a game of 3D speed chess, and we're on the board moving faster and faster every day. So why does it feel like we're pawns on the sidelines, suiting-up and picking teams? Today's defenders need to design and architect systems that operate in real-time at internet scale, but that also protect millions of customers, transactions, endpoints, and actions on any given day. As scale and complexity grow exponentially, manual intervention must be the exception and not the expectation. At the same time security strategy must include the economic angle: how to balance the needs of users with the capabilities of incentivized bad actors. Many systems are turning to new design-driven approaches, infused with data and ML/AI, to help drive defenses optimized for the human factor directly into the fabric of their platform.
In this talk we'll explore the technology and economics that are crucial to our success, as well as the path security must take to meet the challenges of our new normal: dynamic social systems with large threat surfaces, expanding complexity, invisible interdependencies, and unpredictable attackers.