Senior Cyber Advisor, LLNL
Lee Neely is a senior IT and security professional at LLNL with over 35 years of extensive experience with a wide variety of technology and applications from point implementations to enterprise solutions. He teaches cyber security courses, and holds several security certifications including GMOB, GPEN, GWAPT, GAWN, GPYC, GEVA, GCPN, GSLC, CISSP, CISA, CISM and CRISC. He is an ISSA International Director, President of the Boise ISSA Chapter, Member of the SANS NewsBites Editorial Board, and Security Weekly podcast host. You can keep up with Lee @lelandneely
When considering convergence of physical and logical security I get distracted as my employer has things which will never merge like armed security forces. (anti) helicopter wires, seat teams, physical DMZ etc. Used to be we could count on doors, guards and gates as a primary control.
The truth is, cyber has had to take over from physical as speed and variety of what's accessible has increased 100 fold. We seem to be determined to put everything online and accessible without considering if we should or how it's mitigated. No more are systems all in our facilities, nor only used from secure locations.
Let's delve into what I've seen in 40 years of security at a national lab and how it maps to the rest of the world.
We are so focused externally we forget what the insider is doing, except we train them regularly on phishing/attachment security, and sometimes reminding them coffee shop wifi is "bad."
We will delve into Insiders, outsiders, casual to nation states, the threats are all over, the challenge to discuss is how to protect, detect and respond to these across the board.