SINET's annual ITSEF conference wraps up today in Silicon Valley. The first day's sessions covered the state of the cybersecurity industry, as expected. Some accounts of the proceedings appear below; we'll have more out over the next few days. An expert panel on the future of cryptography this morning looks especially promising.
But some preliminary observations are worth making. It seems clear that deception technologies are beginning to assume an important role in security architectures. Executives whose companies have used them showed a surprising unanimity: deception is effective and affordable. The Internet-of-things, of course, is a matter of considerable concern, especially the industrial Internet-of-things, where a general failure to secure levels zero and one render national infrastructures disturbingly vulnerable to catastrophic disruption. The current regulatory environment, especially GDPR and recent consent decrees obtained by the US Federal Trade Commission, has effectively made businesses responsible, fairly or unfairly, like it or not, for their customers' endpoints. Businesses would do well to come to grips with this new reality.
And the cybersecurity market itself has changed. Vendors find that the CISOs they wish to sell to aren't so available. They've gone into occultation. You won't find those CISOs, SINET CEO Robert Rodriguez said, walking the floor of RSA in the old approachable way. They've secluded themselves in hotel suites, and Rodriguez thinks tone-deaf vendor marketing is responsible. No one, as he put it, wants to be approached by "some guy on roller skates wearing a gorilla suit," a comment with which one must reluctantly agree. So before you strap on those skates and say step right up, friend, take some time to listen and understand what the customer might actually want, and need.
We'll be onsite again today with news from the conference. Follow @theCyberWire for live tweets from ITSEF.