Jonathan Reiber is a writer and security strategist based in Oakland, California. From serving in senior positions in the Department of Defense in Barack Obama’s administration to leading cybersecurity strategy for companies in Silicon Valley, his work focuses on building resilience to socio-political disruptions. He advises governments and organizations on the risks of digitization—from online extremism to influence operations to cybersecurity—and the political, policy, and technical solutions required to mitigate them.
A former Chief Strategy Officer for Cyber Policy in the Office of the Secretary of Defense, Jonathan has served as Special Assistant and Speechwriter to the United States’ Deputy Secretary of Defense, Dr. Ashton B. Carter, and previously as Special Assistant to the United States' Principal Deputy Under Secretary of Defense for Policy, Dr. James N. Miller. In both positions he focused his work on foreign and defense policy, strategy, Middle East and Asia-Pacific affairs, and cybersecurity. He campaigned full-time for Barack Obama in 2007-2008.
Prior to U.S. government service, he worked for the United Nations Peacekeeping Mission in Sudan, as a Research Manager at a geological intelligence firm, and as a political and communications advisor to the Episcopal Church. He is a graduate of Middlebury College, where he studied religion and creative writing, and The Fletcher School of Law and Diplomacy, where he studied International Security Policy and U.S. Diplomatic History and served as Editor-in-Chief of The Fletcher Forum of World Affairs.
Healthcare and public health organizations are under threat and expected to spend a cumulative $125 billion on cybersecurity from 2020 to 2025. But they will reap little return on this investment if the security controls they employ fail. And they do. What's worse, they fail silently so that breaches keep occurring, even when security leaders are confident that their organizations are protected. Verizon estimates that 82 percent of enterprise breaches should have been stopped by existing security controls but weren't, and the healthcare sector ranks among the highest in the rate of severe security flaws. CISOs are under pressure to pinpoint silent failures and deliver risk assessment and mitigation data that is accurate, comprehensive, and current. It’s only possible if they know what security controls they have in place and how effective they are at detecting and preventing real-world attacks. To improve cybersecurity effectiveness, security teams are transitioning to a threat-informed defense strategy with the MITRE ATT&CK framework, a purple team construct of red and blue teams, and an automated testing platform combined into an engine of optimization.
In this talk, author and former DoD Chief Strategy Officer for Cyber Policy Jonathan Reiber will:
- outline the evolution of threat-informed defense,
- discuss the value of MITRE ATT&CK and purple team operations, and
- show security teams how to move forward towards cybersecurity effectiveness.
Participants will leave with:
- a clear plan for how to affect change in their organizations and
- deliver results to safeguard our most important data.