暴徒与窃贼：领导者从艰难一年中汲取的教训.pdf

1、Thugs and Thieves:Ciaran MartinDirector,SANS CISO Network&former head of UK NCSCSANS CYBER LEADERS SUMMIT22 October 2025Lessons for Leaders From A Difficult YearThugs and Thieves:Ciaran MartinDirector,SANS CISO Network&former head of UK NCSCSANS CYBER LEADERS SUMMIT22 October 2025Lessons for Leaders

2、 From A Difficult Year6cyber security is economic security is national securityThemes1.1.Coping With DisruptionCoping With Disruption2.2.Thugs and ThievesThugs and Thieves3.3.AI and innovationAI and innovation9Ask the powerful four cyber questions1.What are our most important assets?2.How can we pro

3、tect them better?3.Who else do we depend on that could bring us down?4.What do we do if we lose access to them?Ciaran Martin(1974-)Dont forget Question 5 is“How can we get rid of you?”The thiefs victim!CYBERATTACK!The thugs victim!CYBERATTACK!a tale of thugs and thievesThere has been a digital secur

4、ity equilibrium.Its uneasy,but its heldComputer systems where human safety is at risk tend to have failsafes(air traffic control)The most dangerous capabilities remain in the hands of only the most capable actors,who tend to have some sense of rationality&escalatory riskIf you can use advanced code

5、for bad you can normally use it for(offsetting)goodDoes it hold in the age of AI?Computer systems where human safety is at risk tend to have failsafes(driverless cars)The most dangerous capabilities remain in the hands of only the most capable actors,who tend to have some sense of rationality&escalatory riskIf you can use advanced code for bad you can normally use it for(offsetting)goodThugs and Thieves:Ciaran MartinDirector,SANS CISO Network&former head of UK NCSCSANS CYBER LEADERS SUMMIT22 October 2025Lessons for Leaders From A Difficult Year