Episode 438: Andy Powell on Lessons Learned from a Major Cyber Attack
Andy Powell of AP Moller Maersk discusses lesson learned from a major cyber attack. SE Radio host Priyanka Raghavan spoke with Andy about the 2017 Not Petya cyber attack and the company’s recovery efforts, including how digital forensics helped in finding root causes; how “ways of working” changed, such as introducing secure by design and studying threat types and good testing processes; as well as his thoughts on zero trust networks and the use of machine learning to help detect future threats. The show ends with parting advice on good practices to follow to recover from cyber attacks.
Related Links
- Wired article on the attack
- Andy’s talk at Black Hat London
- Steps to Prevent a Cyber Attack
- Episode 288 – DevSecOps
- Episode 385 – Evan Gilman and Doug Barth on Zero Trust Networks
- Episode 395 – Katharine Jarmul on Security and Privacy in Machine Learning
SE Radio theme music: “Broken Reality” by Kevin MacLeod (incompetech.com)
Licensed under Creative Commons: By Attribution 3.0
Podcast: Play in new window | Download
Tags: cyber threats, cyber-attack, cybersecurity, devsecops, IEEE Computer Society, podcast, recovery, resilience, SE-Radio, secure by design, threat hunters, zero-trust