Decoding Cyber Security & the role of leadership

everybody so I've been where you have all been with being the listening to the last speaker of the day and I know what it stands between you and the prizes in closing in closing ceremonies so I will try to make this as painless as possible and the good news is um in less than an hour we'll be done and we'll be at that stage the bad news is it's going to be an hour before we're at that stage so we're going to talk about uh today uh decoding cyber and Leadership I want to thank besides for the opportunity to be here and James and his team have done a great job over these days I think it's

been a wonderful conference and it's been great to be down here on the island to experience both the conference and the hospitality that we have here what I want to talk to you today in my chat is really about what has happened how did we get to where we are today with cyber security and how really and ultimately the byline story is how have I learned through my life uh really what helped me through everything that I've learned that made me uh able to deal with the cyber security challenges that we did that we have today I say I have two clickers now so hopefully I got the right one there it is so I was a child of the 70s

born in the 60s grew up in the 70s I watched The Flintstones every day I would run home from school watch the have my uh my lunch watch The Flintstones head back to school we look at that now and looking back we say wow what a simplistic life back then we sure we had all these fancy things that they brought us that we imagined dinosaurs and and cars made out of stone and all the celebrities that came on but overall it was a pretty simple life compared to what we have today as a child I joined the Boy Scouts I'm from Canada I joined the Boy Scouts really helped me focus on a lot of

things I learned two things that started my career that I got really excited about one was about learning first aid and how to help people when they were in need and injured and how I could take care of myself if I got lost in the woods the other thing I learned was about computers and the dawn of where computers first showed up was an exciting time very simple but yet as a child exposed to that my first computer that I went out and bought on my own I bought at Radio Shack local electronics store at the time in Canada I put my money together to buy this color computer too and sure I played a lot of

games all eight or 16 bits um but it got me on the path to starting to learn how to code how to write in basic and learn the power of a computer that I could put in some code and with 20 lines I could make this little bar on the screen go from left to right it was amazing my first modem my first connection to the very very early internet was this device that I bought 300 bits per second not 300 megabits per second 300 bits per second I had to unplug my parents phone line they really didn't like that plug it into my computer hook up to a bulletin board that had a dial-up number and then in 12

short minutes I could see a picture when I went to the NASA website or their bulletin board 12 minutes later I was staring at a picture of the Stars it was amazing now we look at it today of course and and the capabilities that we have today but trust me in the 80s this was the way to be um I went into after I went to school got a degree in many things not related to computers but a minor in computer science I became a paramedic long story how that happens but I spent 10 years in Toronto Frontline paramedic helping people working it was also a flight medic many many situations very exciting but harrowing

career and then I jumped out of paramedicine and into I.T and cyber security actually stumbled into cyber security so you think about this the late 90s um different times security really wasn't what it is today and so as mentioned I've worked for many many large organizations through my career uh head of of cyber security Internet Security uh for for the likes of these organizations uh both Canadian and in the U.S and as mentioned now I am retired from the corporate life and run a cyber security firm focusing on small medium businesses and advisory services now one of the very poignant quotes that has carried me through my career is this from Stephen Covey if you read any of his books the

Seven Habits of Highly Effective People one of the things that has always stuck with me is this quote if there's one thing that's certain in business it's uncertainty and I think that really plays for all of us in this room when we think about cyber security because the one thing that we know in cyber security the one thing that I definitely have learned over the years and I'm sure you have too is there's nothing static in cyber security it's always evolving I can very to easily tell you that the challenges the risks the threats that I encountered in 25 years in the business that I encountered early in my career are nothing in comparison to what we see

today and what is happening in the world today so there have been some really some general business trends that have really formulated to where we are in the world today obviously technology is a big one technology has changed so much we are now in what is known as the industrial fourth Revolution or industry 4.0 we've seen drastic changes in supply chain and automation we're seeing robots doing the jobs that humans used to do and warehouses that are manned more by by technology than there are by humans themselves we're seeing loyalty programs and award programs especially in North America consumers love loyalty programs uh who wouldn't want to get free groceries when when we're when when shops at a grocery

store but loyalty programs and the information that we share is very very dangerous and very very large as we talk about how much data is flowing through these loyalty programs we talk about digital payments the explosion of cryptocurrency the world that we live in where you know for most of my year I don't walk around with cash anymore everything is either digital or tap with the credit cards who needs cash um but digital payments come with those risks as well we see e-commerce my goodness it's amazing um especially when you live in a large urban center I can go onto Amazon on a Monday morning and have something delivered to my house four hours later

I can order groceries and somebody will go pick them and bring them to my door that's fantastic who needs to ever leave their house um but e-commerce is everywhere e-commerce it's all driven by the internet and our abilities to use technology and then we have things like data data analytics data data data there is so much data out there we have um data um that we don't even know exists about ourselves and everything else that is spread everywhere and in fact 92 percent or over 92 percent of all the data that is collected has been collected in the last few years alone we rely heavily on data and it is that data that is getting

a lot of organizations and consumers into trouble and then we have of course cognitive Technologies AI my goodness you can't go anywhere now without talking about chat gbt and everything else that goes with it the the emerging the explosion of artificial intelligence is really changing not only the way we do we handle our lives but the way as cyber security people not only makes our lives easier but it also makes it more difficult at the same time so the fourth Industrial Revolution quick video I want to show I'm sure many of you know what it is but let's take a quick look at this video [Music] thank you [Music]

[Music] thank you foreign [Music]

[Music] so the numbers are staggering now it is predicted that a mere five six years ago there were already 10 billion devices hooked to the internet that number has already been figured to already have doubled in the in this Gantt few years um between 2017 and now and that number exponentially they figure is going to grow over the next couple they say that there are there is a device connected to the internet for every single person on Earth and that number expected to get even bigger and the amount of traffic that is flowing around the world uh is in words that I can't that I'm not even used to saying on a regular basis like zettabytes

The Staggering thing that I find that's really weird but you know you think about it they figure that almost everything in one day will be connected to the internet and we're already seeing that iot Internet of Things there's so many things that are connected to the internet my house alone has 43 devices connected to my Wi-Fi and no I do not have a server Farm in my basement we're seeing appliances now it's getting more and more difficult to buy a refrigerator that doesn't have some connectivity and we're even seeing tags and RFID embedded into clothing that we buy today to help us help us with our exercises and staying fit truly there is a lot of data out there

data is the new oil so back in the 70s everything was about oil it was the commodity to have but now it's data we are buying data selling data it is in good places it is in bad places um but it is a value to so so many and so it has become extremely important for all of us to be protecting it and to be working with that we're seeing Electronics connectivity we've mentioned everywhere we go we are looking at data and connectivity that we from a cyber security lens have a responsibility for you know almost 100 years ago Nikola Tesla so he was the inventor of the electric motor and AC current alternating current this was his quote

back in 1926. basically when Wireless is applied all things will be able to do be simplified and a man will be able to carry Wireless in his vest pocket okay we don't wear vests like we used to but you get the gist there already was a prediction of what was going to happen um and and quite honestly it's amazing but it's frightening at the same time chat gbt wow Our Lives as practitioners and security is going to benefit from the likes of chat gbt and other AI it's going to help us do better at finding malware it's going to help us better at being alerted and notifying and determining the effects of things but of course you know

there's always a bad side you know we're going to see new malware new coding new abilities that are going to be wreaking havoc on us and our organizations that we're going to have to deal with we're going to see more and more attacks on Robotics and the automation side you imagine all those robots that exist all are run by software and all it takes is an attacker to go in and manipulate the code and we end up in a scenario where we might have inaccuracies deficiencies loss of control loss of functionality uneven data exfiltration fun fact Amazon the largest um company running robotics they have a fleet of 200 000 robots in their data centers

worldwide and if you've ever seen them they're they're primarily those little squares that go under the big stacks of that the pickers have lift them up move them around 200 000 all following a predefined line getting from point A to point B but just last year they introduced ones that don't work that way anymore and are able to work independently and figure their way out autonomous we call it we've seen the rise and the predictability of quantum Computing it's coming those amazing new computers are coming um but they're going to potentially wreck some havoc on what we have to deal with and in our world you know we think about cryptography now it you know we'll

always have the camps to say no our current encryption is quantum resistant but is it really time will tell if that's truly the case and of course we don't even have to go into the effects of cryptocurrency anything that involves encryption and what it could mean we see criminals monetizing their ability to manipulate through through their threats and through their exploits including um you know taking over computers for crypto mining which yes still exists um despite the ups and downs of cryptocurrency as it is today so really you know we we we're you know as a child I thought we lived in a world of Simplicity with The Flintstones now as I work within cyber security I think

we live more in the world of the Jetsons The Jetsons by the way came out in the 60s it was set in a date in the future obviously 20 86. so still 60 years where we are today but 60 years ago this show came on I was just taking notes on how many things I'm sure some of you have seen the Jetsons how many things that are already here that were in the TV show and I just jotted down a couple of them the mobile phone video conferencing connected treadmills online shopping virtual Health Care and of course robots particularly robots that clean your house so all of these and this is just a few all of these were imagined by creators

of a cartoon 60 years ago and here we are with these things true don't have the flying saucers yet but they're coming they're coming and you know they are in fact it feels like yes it's great that we're in The Jetsons but it really feels like we're in the world of uh the Terminator and the rise of the Machines with all the move up we have with all the capabilities with machine learning and artificial intelligence I don't know how many of you were fans of the Terminator show I found it amazing but it was the ability of the machines to learn It ultimately LED them to taking over the world kind of a frightening ideas that exists as it is

so cyber security all of these things I've just talked about have created this very growing industry it's called cyber security what all of us are in and if we really Define it and it's been defined here by the national cyber security Center in the UK the protection of devices services and networks and the information on them from theft and damage so we learn as we as we become cyber professionals we learn about people processing technology we learn how all of those have a role in our ability to protect and and defend our organizations to which we we have a responsibility but we know that that world isn't perfect um despite you know people and the

process in technology we have technology that sometimes we don't use it properly we know that there's technology put in place to protect the organizations that maybe have not been fought through or really designed um with the true picture in mind not Photoshop by the way um and then we know from a process in technology state that we can build processes we can tell people what to do but we all know what the weakest link is out there it's not us um people bypass the capabilities that we have not once but twice just in case you couldn't read it twice take over a physical security capability that we put in to protect and just that action by one

person removes all the security that's behind it and we all know all it takes is one click so going back as I said I entered into cyber security in the late 90s before Y2K I kind of got on board where everyone was like don't talk to us we're busy with Y2K um but I can tell you in the late 90s early 2000s the emergence of the internet came and I can tell you having the internet in the turn of the century was really a really neat thing some people think the internet is a good thing the most powerful educational tool the world has ever known [Music] it's preserving our history making sure that in the future we never forget the

past [Music] when disaster struck Asia the volume of Aid donated by Ordinary People through websites outweighed that of their own governments the internet is a place that is free of State regulation censorship and control the only place where freedom of speech truly exists Orwell was wrong it is not the state that holds all the power It Is Us some people think the internet is a good thing [Music] what do you think so just in context this was a commercial in the UK put out by AOL if you all remember of course I aged myself so many times back in Canada we would get these discs all the time in the mail CDs you'd put in your computer and allowed you to

connect any consumer to connect it would keep coming though they would come and they come you could only use so many coasters and frisbees AOL put out this commercial to try to help people understand how great the internet was and the internet was great I mean even as a early person in my role I started my cyber career uh in a finance company uh where there was no security I wasn't even doing security at the time um they they held on to investment funds for parents they ran a fund that you parents could put in money and make sure that they had college fund basically for their children uh they had at the time uh 700 million dollars Canadian

um in assets and all stored in a database and I remember going to talk to the the dbas and they were showing me this thing like oh look here see this is this person has this much money and you know this person they look at this account it's very large and here's you by the way and I'm like oh well you know what if that's wrong they're like oh we just can go in and change the numbers and a I thought hey this is really cool um but then it was like whoa this is this is wrong and I went so I went to go talk to to the CEO and I was coming up

and I said hey by the way I was in there and I really think we need to do something or not that we don't trust the dbas but um you know I don't think that's a good thing therein launched my career in cyber security Michael do something about that so that's how I started in cyber security uh from there I went and I worked at a very large oil and gas firm there were two of us for a company with I think we had 12 000 employees um but security was so simple there one person was responsible for access management they handled password resets on the network and they dealt with uh you know resetting and setting up and

terminating accounts my job was on the network security side and that's what we called it back then by the way there were so many names I.T security network security I worked for Help Desk somehow once in a while uh worked for for the legal department worked for uh the I.T obviously um but that was the function of the job my job was on the network security side and I had to try to make sure that antivirus software was running on people's machines now you have to understand for those that aren't as aged as I am that back in the 2000s not everyone had a laptop let alone a computer and very very few people had internet

access it was the privilege of the few you had to be CEO or someone important in the company or work in sales uh to have internet access but nonetheless I had a job this was my biggest fear every day when I came to that I would come in and log in to uh the brand new marketing website and somebody overnight had gone in and cracked it and broken in or had left some really horrible message denouncing something and laying claim with some funny face that would laugh at me uh that was my job and trust me I took it very seriously um but you know our problems back then were all based in I.T all we ever did was

deal with it at an I.T level and it never got to leadership they had they never knew what was going on we would have a virus outbreak on 100 machines the CEO probably never ever knew about it we always contained it within but look at the world today right we are seeing cyber attacks increasing year over year over year we're seeing phishing attacks skyrocketing and you know we are in a world now where there's so much impact in in the news all the time we see large corporations everywhere uh being impacted by cyber attacks and cyber breaches we are seeing impacts even here on the island uh where worrisome no matter how small you are we are seeing uh threats

every day we are seeing uh emergence of denial of service attacks and attacks on our infrastructure attacks on our supply chain heck attacks on our our aquariums at a casino in Las Vegas how dare they by the way thirty five thousand dollars they got out of this um but then you know from a leadership perspective we're seeing a lot of outcomes as well we're seeing organizations uh befalling to to large cyber breaches we're seeing CEOs and Senior leadership um ending up losing their jobs because of the size and the veracity of the attacks that are happening it really is a perfect storm where all of this stuff is happening now the sophistication the capabilities of the

threats are ever evolving it really is a cat and mouse game for all of us um and I gotta tell you there are some really really smart threat actors out there uh that know a lot of stuff we are seeing teams that are overwhelmed uh in their capabilities and their Technologies we have shortages of cyber staff they're saying now there are over 5 million people globally working directly in cyber security like all of you five million that's great because a few years ago it was under three the problem is is that there are three million vacancies in cyber security globally today there are not enough people working at it I can tell you when I when I entered

into cyber security there was no training there was no school to go to there was no dedicated degree program about security so we've come a long way but we have so much further to go and we have increasing impacts and costs we seeing sophistication getting larger and larger the costs to deal with it going higher and higher close to five billion dollars now on average for ransomware attacks and we're seeing cyber security be a multi-trillion dollar industry between the money that is made and the money we spend or our organizations spend to protect us it really is a world for leaders of organizations to understand now unlike what they did when I first started the

ramifications and the impacts of what cyber security means to their company the financial toll that it can take the reputational toll and of course the Share value we have uh we're up in Canada uh and right before Christmas one of our top three grocery chains had a Cyber attack um they were able to recover within a couple weeks 32 million dollars it costs them to recover from somebody clicking on a phishing email um it is not a cheap world that organizations have to deal with and of course the reputational hit from that as well is quite large we see really as practitioners then in a world and as Leaders where you know we struggle to really understand or to help

our organization understand what they need to do how to do it and they really need the leadership both at the company level and at the security level to be able to understand what to do how to do it how to deal with these challenges like missing people or or lack of of uh availability of Staff or budget restraints Etc it really is a world now where the internet maybe isn't the good thing that it once was some people think the internet is a Bad Thing somewhere your identity can be stolen your home invaded and you're saving wrong without anyone setting foot inside your door it is one of the most dangerous weapons ever created a way for the unhinged to spread evil

free of supervision or censorship a place for mankind to exercise its darkest desires an open market where you can purchase anything you want [Music] Orwell was right the internet has taken us to a place where everything we do is watched monitored and processed without us ever realized some people think the internet is a bad thing what do you think so I probably forgot to mention that AOL also put another commercial out also warning people about the internet and I wish they would do that today we're not seeing it nearly as as well as we do we have a great representative here on the island teaching us about cyber safety but let me tell you over the many years leading

up to now that didn't exist in consumers especially really don't know what is ahead so as Leaders as practitioners with insecurity we really need to understand how to tackle this we Face the challenges of budget restraints we Face the challenges of these increased attacks we Face the challenges of new technology that it's very hard to keep up with how how as Leaders can we manage that well I told you I was a boy scout I told you how I loved learning and got into computers one thing that taught me another thing that taught me when I was a boy scout was the 12 rules of being a Boy Scout and we had to learn these

because it was kind of like the guidebook the the rules that we had to strive towards in order to be a good scout and a good role model and representative to society can we turn that though and learn on how that can help us be better cyber leaders and I think it can so let's take a look at some of these first off the first rule of of being a scout and cyber leader is that we have to be trustworthy we have to tell the truth keep promises people depend on you and that is the reality as csos As Leaders within cyber security we are always in a role of trust we are the base that people come to when there

is an issue when there is a threat when there is something that we have to worry about and trust is the pillar to that and we have to use that trust in order to help us do a good job and help us build the confidence within the organization a Boy Scout and a cyber leader has to be loyal show you care about your family friends school and Country okay that's fair enough um but as csos we can translate that really into you know we need to bring support we need to show our ability to our friends our colleagues our employees our organizations that we are there to help them and we are there to support them as they grow

their business we are not a gatekeeper we are there to help build Boy Scouts have to be helpful we have to volunteer we have to help others without expecting reward okay that's what volunteering is all about absolutely but we have to think of that as Leaders to go beyond our Towers we have to work beyond the how does this impact me when something happens and we have to understand that we have to be out there within the organization and giving them a hand we have to be friendly we have to not be The Gatekeepers I can tell you I went through phases of my career or my job was to say no no no no anytime they

wanted something no can't have it they go darn it okay I also went through a part of my career where I said no and they said well I didn't ask um those aren't the models anymore we have to work together with people to in order to succeed in cyber security we have to be courteous always use manners I think that goes without saying uh treat others as we treat ourselves we want to be kind never harm or kill any living thing without good reason okay I think that's a pretty straightforward model for being a CSO we don't kill okay we may kill a process that is affecting a machine but we don't kill or harm

Boy Scouts need to be obedient they need to follow the rules obey the laws of the community and we have to adhere to that right we have a job to do we have to stay within the lines sometimes it feels hard I know all the times in my career that you know we would get an attack and man I just wanted to turn around and attack them back right just counter-offensive uh security um not always the best model to do but we have to stay within the lines we have to be cheerful always look confident and positive trust me when you have are faced with a a threat or a Cyber attack everyone's looking at you

you know that they are all looking to see how you deal with it you have to stay confident you have to be prepared and ready that not throw your arms in the air say man we're pooched we have to be the leaders when it comes to things like cyber attacks foreign we have to be Thrifty okay so this is good not be wasteful for a Boy Scout it means of course saving your rations but for a cyber and and csos it's really about understanding we don't have unlimited budgets I don't think I ever had an unlimited budget in my career I think the closest I had was going from the there is no money to okay if you

help explain what you need maybe we can give it to you um so we have to realize that is csos that we do have to be somewhat Thrifty but we have to spend the money in the right ways not by the shiny new object but understand what the needs are for organization as Leaders what can we do with the resources and the funds that we have in order to best protect our organizations and the information that's within it and we have to be brave okay we have to face those difficult situations as I mentioned everyone looks to you when there's a cyber breach uh you have to lead by example and finally we've got to keep clean

uh help helping home our job is to keep our companies safe so Deloitte put out this many years ago to kind of show the four faces of a CSO if you think about it as leaders and aspiring leaders all of these are very key things that we have to to follow we have to be a guardian we of course we have to protect the assets we are the representative within our organizations that is tasked with and paid to protect that business so that will always be there but how do we do that well we have to be a strategist we have to help work with the business to build a strategy we can't just wing it as we

go through our our careers we have to really have a mindful of what needs to be done how I'm going to get there we have to be an advisor to the business we have to help them understand where security fits in their road maps we have to help them understand that security isn't a a crossing guard or a border stop but it still needs them to work with us in order to accomplish what they want to do but at the same time do it in a safe way and of course we have to be a technologist Technologies out there we can't be good cyber leaders without Technologies I can be a very practical cyber leader and have a lot of process

and hire some great people but without that technology it's going to be very difficult so trust trust is something I've mentioned a lot it really is the fundamental piece that we all need to be considering when we work trust really is that peace that represents what we know who we are and helps us Define who do we trust why should people trust us and really what is built into our ability to to use trust as a model to help protect our organizations when I was a paramedic as I mentioned I worked on the front lines um typically two people um in in a in a vehicle like this um there were a lot of times where I

would go to some very serious scenes or some very sick people and family members uh patients would trust me they had to trust me I was the possible person that potentially could keep them alive if they were injured or if they were seriously sick but I had a partner I had to trust my partner but I learned through my career that even though there were two of us working in an ambulance there were many many people around us I wasn't the only person working that could help the situation or help this sick or injured person I had firefighters by my side I had police officers protecting the scene I had other paramedics that were working

with us and when we got to the hospital there'd be a team ready if necessary to take over and continue that level of trust there never really was a time in the grand scheme where um I was alone and that was trust then that I would transfer from the patients trusting me to me then trusting others uh to be able to fulfill those things and that stuck with me as I entered into my cyber security world we have to trust people we have to understand who to trust and who not to trust in our journey so the last couple points I want to make today is really to help decode what have I ultimately learned in my career that has

helped me succeed in not only being a a great practitioner in cyber security but it's helped me fundamentally help the organizations based on on um all the pieces that I learned through my career so first off we have to embed cyber into the fabric of our business process we can't just do things like cyber awareness or cyber training we can't just go out and buy a new firewall we have to have a mindset and a fabric and a culture where cyber security goes from just doing things to being cyber okay we need our organizations not to check the box when we come by with the need to take their annual cyber security training we need them to be part of it and so as

a CSO we kind of look at a few different models first off and always will be there is the Tactical model right best efforts something happens we're being slammed by an attack or or a denial of service attack we have to be somewhat tactical we have to deal with it the problem is there right now um We As Leaders want to have a model of Champions we talked about it we're never alone you're never alone so we have to work to build those Champions with us we have to trust others within our organization obviously our team if we have one but cyber security isn't just about yourself and the team directly around you it is about those within the

organization and so we have to build Champions within our companies to help us accomplish that we have to embed security and security minded people in we have to build leaders and we heard about it in the in the panel uh right before me we can't sit there waiting for that perfect person to come to us to be able to uh be that perfect analyst that we want to hire a they're probably already spoken for and B we might not be able to afford them we have to find our cyber leaders from within we have to bring Talent train them on the job they may not be the perfect fit but everyone has a bit of cyber security

capability within them and we have to utilize that capability whether it be internally or people that are great to have in our organization um but maybe aren't the perfect ideal candidate and we have to be leaders of participation we have to be leaders that are not afraid to roll up our sleeves not be afraid to get engaged and do things ourself I was very much an operational CSO yes I put my coding days behind me and no I wasn't the guy you know analyzing all the logs on the firewall but I learned that I couldn't just be a tactical leader I had to be an operational one as well we have to educate our Workforce we have

to not only educate our team but educate obviously the whole company everybody has to learn about cyber security uh and learning never ends it's not a one and done I I this past January I went back to school I'm going to get a master's degree in law in in Cyber Law um you never are too old or too late in your careers to learn that knowledge and that message resonates and it helps as a leader for you to you know ensure that your Workforce as I said and your company is learning in the right direction we need to share the strategies uh that we want in our visions of what we want to do with the company we don't want to

keep it nestled in our own little corner we want to have a mission we want to have a road map and we want to share that with the organization not only our own leaders uh but with senior leaders and with the board and I would get in front of boards many times explaining the whys the hows the when's and the what ifs okay you need to be able to have that strategy and figure out it can change I can tell you I've wrote many many five-year road maps that I struggle to get out of year two before it was already uh old and needed to be changed and top priorities were crossed out and new ones were put in but you still have

to work on that we have to build a risk intelligent culture we have to think about risk it isn't all about whack-a-mole and stopping something that happens here we have to understand the risk to an organization what will happen if our website goes down what will happen if our our customers and our company cannot procure uh things online because that's our whole business model what if our data is stolen from us so we have to understand what that risk is and we have to ensure that the leaders understand that as well and finally we have to be a a company that just doesn't work on reactivity we have to be moving from a reactive company to a proactive company

training educating putting in the tools being prepared having a plan and ultimately we want to be a resilient company that's where we want to be we want to be resilient so we can reduce the likelihood and reduce the risk so in closing are we in the world of the rise of the Machines in Judgment Day just like in Terminator maybe one day we are today we're not uh we'll talk in 10 years and see where we are but as Leaders we need to take some of those qualities qualities that I've learned that I'm sharing with you today to help us be better at what we do in our own jobs uh better at helping our

organizations and being prepared to do what we need to do in order to follow that definition of what cyber security is all about you know trust is uh Eric Schmidt who was the chairman of Google many years ago came up with this quote in a networked World trust is the most important currency I totally agree you know we have to be trusted ourselves as Leaders we have to trust others we have to decide who we don't trust in this world but so much of it hinges around making those determinations of where that trust should be and not be and we have to not be afraid to put out that trust where we need to and and be prepared to deal with

the issues that come from from a breach of trust from a lack of trust and from over Trust and that's it thanks very much [Applause] no questions no awesome see we got on time people are ready for closing ceremonies and the next steps thank you very much [Applause]