This talk aims to help practitioners and organizations alike improve resilience by taking the holistic approach to understanding our critical human, machine, and information assets, then augmenting organizational resilience by looking beyond (though not ignoring) our IT assets and the traditional IPDRR methodology. We’ll also examine some practical means to automate information gathering and intel-distilling processes, so that we’re not creating a tonne of extra work for your staff, who are likely overworked as it is. By the end of the session, we will have examined a few new methods for gathering OSINT about our suppliers and service providers, maintaining situational awareness with regards to employee activity, incident response readiness, and integrating that information into our normal IPDRR workflow. To sum it up, when securing our organization and ensuring business resilience, we need to channel our inner Dirk Gently. This talk aims to help us do just that, and continuously examine the fundamental interconnectedness of all things.
