What mechanisms do effective security teams have in place in the event of a breach? How do you communicate that one has happened? On this episode, Steve speaks with Dave Damato, CSO of Gemini, about all the cogs that start turning once a breach has been detected. Dave and Steve even do a roleplay of how an organization could respond publicly.
When is a Breach over?
In his experience, Dave suggests that it takes 2-4 years for the company to completely return to normal. For the first year, the team must manage the crisis. The second year is spent instrumenting new systems and getting used to them. However, the memory can last as long as litigation is involved.
Dave and Steve also hit on topics like:
- The planning that goes into an incident response plan
- Branding and communication around security incidents
- Evolving control mechanisms and,
More about David Damato
David Damato is Gemini’s Chief Security Officer (CSO), where he leads a security program with a tradition of building and pioneering world-class security solutions to secure the future of money. Prior to joining Gemini, Damato served as Chief Security Officer at Tanium, where he was responsible for building and leading a team that engineered unique security solutions to help protect government agencies, Fortune 500 companies, and banks around the world. He was also an early member of the leadership team at Mandiant, a premier cybersecurity firm that was later acquired by FireEye. He has also held roles at PricewaterhouseCoopers and Raytheon.