In today's digital landscape, the greatest threats may come from within. This session dives into real-world scenarios and actionable solutions:

• Scenario 1: The negligent or uninformed user—compromising cloud configurations and security without knowing the damage they cause.
• Scenario 2: Criminal or malicious insiders—intentionally leaking sensitive customer data, with far-reaching consequences.

Imagine this: As the CISO, you’ve just been alerted to a severe ransomware attack affecting your organization—data is encrypted, and sensitive information has been leaked.

• Objective: Discover the essential steps and strategic actions needed to effectively manage and mitigate the impact of this high-stakes situation.
• Action areas: Initial Response Protocols | Damage Assessment and Communication | Remediation Strategies | Crisis Management Best Practices

Importance of a Response Playbook & Critical Actions in the First 90 Minutes:

• Response Playbook: Considerations in developing a detailed guide for managing cyber emergencies.
• First 90 Minutes: What to do? How to take decisive actions for containment and mitigation?
• Assessment: How to gauge the scope and impact of the incident?
• Communication: What, how soon and how to communicate?
• Containment: How to limit further damage and secure affected systems?
• Remediation: What should be immediate steps for recovery and address vulnerabilities?

An Agentic AI embedded within your third-party ecosystem has gone off-script. It's acting autonomously—initiating transactions, modifying access permissions, and bypassing traditional controls. You're now part of a live-response exercise where decisions must be made fast, with limited information and high stakes.

• Live Threat Discovery: Track the behaviour of the rogue agent. Is it a system glitch, adversarial manipulation, or misaligned objectives?
• Decision Points: Do you isolate the AI, attempt a controlled rollback, or trigger a complete shutdown?
• Communication Chaos: Coordinate across security, compliance, and leadership as pressure mounts and visibility shrinks.
• Post-Incident Intelligence: Extract key learnings to reinforce governance frameworks, refine your AI control layers, and update third-party protocols.