Cyber Security Dr Sally Ernst

#CYBERSECURITY: #MANAGEMENTSCIENCE AND #INNOVATION

@DrSallyErnst

UK and Australian #CyberSecurityNetworks

1

@DrSallyErnst

#CyberSecurity: a #ManagementScience and

#Innovation lens on #ForensicAccounting as

an approach to #CyberDefenses Effectiveness

TIME & COST

#CyberDefenses

Effectiveness $Loss

to us

$Value to

#CyberCriminals

= +

3

$Loss

to others

=

n

What

information

do you

have?

Where is it?

Is there an offline backup?

4

CYBERSECURITY IS

INNOVATION #CyberSecurityNetworks #CyberInnovation

#DisruptingCybercrime 5

THE GOTCHA!

• Access to do and see

what you can do and

see

• Bypassing traditional

security controls

6

MALWARE

• Is just software

• Like any software, it has

to:

• get to us

• run

7

Driveby Phishing

External Media

8

PUT AN EXTRA STEP

IN the process #2Factor #Breathe #Verify

9

#ASDTOP4

• Keep software up-to-

date

• Prevent other software

running

• Limit administrator

access

• and what people can

do and see

10

Know what to do

Monitor

Test 11

ROBUST OPEN STANDARDS eg. #NIST #NoT #SmartCities #Quantum #ISO #Blockchain #OWASP #PCI DSS

12

13

SOME SAMPLE

SCENARIOS For illustrative purposes only

#DISRUPTINGCYBERCRI

ME Communication and Collaboration

#CyberInnovation

DIGITAL HEALTH increased value retained by us

16

–Oxford Dictionary

“Herd Immunity: “General immunity to a pathogen in a population based on the acquired immunity to it by a

high proportion of members over time.”

17

18

REFERENCES AND

READING • #ASDTop4 Link: http://www.asd.gov.au/infosec/top-mitigations/top-4-strategies-

explained.htm

• Gotcha! Link: https://www.amazon.com/GOTCHA-Little-Black-Safer-

xperience/dp/1613398085

• NIST Link: http://csrc.nist.gov/

• OWASP Link: https://www.owasp.org

• ISO Link: http://www.iso.org/iso/home/standards/management-standards/iso27001.htm

• Digital Built Environment Link: http://www.siba.com.au/getattachment/Advocacy/Advocacy-

Requests/The-Use-of-Smart-ICT-in-the-Planning-Design-and-Us/DigitalBuiltEnvironment-

SpatialConstructionInformationV2-151120.pdf

• *4th Forensic Accounting Teaching and Research Conference 2016 Bond University

https://bond.edu.au/about-bond/university/4th-forensic-accounting-teaching-and-research-

symposium 19

http://www.asd.gov.au/infosec/top-mitigations/top-4-strategies-explained.htm









https://www.amazon.com/GOTCHA-Little-Black-Safer-xperience/dp/1613398085









http://csrc.nist.gov/

https://www.owasp.org

http://www.iso.org/iso/home/standards/management-standards/iso27001.htm




http://www.siba.com.au/getattachment/Advocacy/Advocacy-Requests/The-Use-of-Smart-ICT-in-the-Planning-Design-and-Us/DigitalBuiltEnvironment-SpatialConstructionInformationV2-151120.pdf



























https://bond.edu.au/about-bond/university/4th-forensic-accounting-teaching-and-research-symposium















20

Presentations & Public Speaking

Cyber Security Dr Sally Ernst