In this episode, Lisa Forte discusses with Jaye and John the recent activities of the LockBit ransomware group and the limitations of current disruption efforts. She highlights the need for stronger actions, such as making ransom payments illegal, to combat ransomware attacks effectively.

Lisa also emphasizes the importance of protecting critical data and business services, as well as the challenges of legacy systems and the potential benefits of application transformation.

The discussion concludes with the significance of email and out-of-band communication and the value of running simulations and playbooks for cyber emergencies.

In this conversation, Lisa Forte shares insights on incident response and cybersecurity exercises. She emphasizes the importance of preparing for a real incident by creating playbooks and having pre-drafted communication templates.

Lisa also highlights the significant impact of cybersecurity incidents on individuals and the need for rest and support during such times.

The conversation then delves into the topic of running exercises, including who should be involved and how often they should be conducted. Lisa also discusses the pitfalls of comparing oneself to others and the importance of focusing on personal progress.

The conversation concludes with a lighthearted discussion about Lisa's experiences in Japan and the ongoing debate about pineapple on pizza.

Takeaways

• Current disruption efforts against ransomware groups like LockBit are not enough to create lasting impact.

• Making ransom payments illegal may be necessary to change the ransomware landscape.

• Businesses should focus on protecting critical data and business services, as well as considering alternative processes and redundancy.

• Legacy systems pose challenges and may require application transformation to enhance security.

• Email and out-of-band communication are critical during cyber emergencies.

• Running simulations and playbooks for cyber emergencies can help organizations be better prepared. Prepare for a real incident by creating playbooks and pre-drafting communication templates.

• Cybersecurity incidents have a significant impact on individuals, and support and rest are crucial during these times.

• When running exercises, involve leadership and consider the progressive structure of the exercises.

• Avoid comparing yourself to others and focus on personal progress.

• Embrace cultural differences, such as coffee consumption habits, when traveling.

Follow & Subscribe on all Podcast platforms.

https://link.chtbl.com/XIW5zsAn

What is the Zero Trust Forum about?  It’s about empowering zero trust security professionals with strategies, architecture, and real world journeys to secure the digital future, the right way!

Follow the Zero Trust Forum on LinkedIn www.linkedin.com/company/zero-trust-forum/.

Follow Jaye Tillson on LinkedIn - www.linkedin.com/in/jaye-tillson/

Follow John Spiegel on LinkedIn - www.linkedin.com/in/john-spiegel-2011543/