CLICK HERE TO DOWNLOAD THIS IMAGE & COLOR IT IN!Inside: Microsoft’s Ann Johnson lays out what too many orgs get wrong about resilience, CrowdStrike shows how they’ve rebuilt after last summer’s outage, and we spotlight a podcast worth your time (and not just because it sounds like something Asa would binge).
Recording your tabletops can be a tricky proposition.
On one hand, we (and by we I mean Asa) make it extremely fast and easy to get value from your exercise. That’s the idea, you want your exercise to be instantly valuable and to use tabletops as a way to improve incident response.
On the other hand, there’s a legal risk if you record your tabletop and it's later discovered in a lawsuit that you uncovered a risk or vulnerability in your exercise that you didn’t mitigate.
In an ideal world, you address these risks, mitigate them, and close the gaps. But we all know this is far from the reality of how things get prioritized at most orgs. So, there is always a chance that something recorded can come back to haunt you down the road.
If you want to see more on how we’re approaching this, check out the build chronicle below. We’d love to hear any thoughts, stories, or feedback in this area. It’s an important one.
Your allies in IR,
Rob & Scout
Being proactive, not reactive, is the best strategy for true cyber resilience. But don’t just take our word for it—discover essential insights from Microsoft’s Deputy Chief Information Security Officer for Customer Security, Ann Johnson.
In this episode, Johnson reveals the two most common pitfalls that can leave even well-prepared organizations vulnerable when it counts. And which major tool can enhance your ability to respond faster (when used correctly). Listen for More
Do you remember what happend on July 19th, 2024? For healthcare providers, airlines, banks, and government agencies worldwide, it was a day that tested their resilience to the core. When CrowdStrike unintentionally deployed a flawed update across global systems, critical operations ground to a halt and chaos ensued.
Now, CrowdStrike invites you to go behind the scenes as they address what went wrong, spotlight the improvements they’ve made since, and share how they’re building a future where such disruptions are a thing of the past! Read All About It
Talks and workshops galore! Klaus A., Co-Founder behind BSides København and KbhSec, is bringing a fresh perspective to Hacker Summer Camp this year, demonstrating how DnD-inspired gamification can supercharge your security training.
You’ll have multiple opportunities to catch Klaus in action at The Diana Initiative, Security BSides Las Vegas, and Malware Village (World Cyber Health) at DEF CON. Click the link below for the complete schedule. Get More Info
Cyber threats aren’t slowing down—and neither are the people working to stop them. Resilience: Voices in Cyber Security is a podcast where cybersecurity pros get honest about what’s working, what’s changing, and what keeps them up at night.
Hosted by Yonatan Lipschitz, a cybersecurity leader with deep experience in incident response, the podcast features conversations with security professionals across the industry. Each episode explores practical strategies, emerging challenges, and how teams are handling the pressure behind the scenes. Explore the Episodes
Built by our killer engineer, Megh!
Tabletops deal with highly sensitive information. Apart from the legal risk discussed in Table Talk above, we strive to let our customers control how their sensitive data is handled.
We’ve implemented data retention controls for our admins at the organizational level. You can set retention for your:
We recommend you set your recordings to be purged from our platform after 30 days (or less). As for reports — we hope you’ll keep those longer — so you can see your progress and track your program. You also have “this is AI created” deniability on your side for the reports.
Let’s not be handcuffed by the legal risks and get the most out of our exercise programs.
Cheers,
Rob & Scout
If your resilience plan hasn’t been updated since Office Space was in theaters, now’s your sign. Between Microsoft’s callout on cross-functional planning and CrowdStrike’s rebuild tour, there’s no shortage of ideas worth stealing.
About Ally Security
Ally is here to support facilitators, which in turn creates a virtuous cycle where exercises take less time, provide more value, are run more frequently, and can make every organization can be better prepared.
The unexpected wins. The client curveballs. The chaos you couldn’t have scripted if you tried. Dear Asa is your space to share the stories that don’t make it into the official post-incident report. Script, submit, and enjoy a chance to be featured or quoted in an upcoming post.
