Recently Jeffrey Carpenter, the deputy Chief Information Security Officer (CISO) at Accuray was invited to the Open Cyber Security Conference (OCSC), at Auditorio de Tenerife “Adam Martin”, to present the closing keynote speech
What was the purpose of the Open Cyber Security Conference?
The OCSC 2024 was a unique event to celebrate 30 years of international collaboration of cyber security and incident management teams within a global community of trusted practitioners. The aim of the meeting was to focus on future security incident management and how to address the challenges ahead. The majority of people attending the event manage or work in Computer Security Incident Response.
Jeffrey’s closing keynote speech and workshop
Jeffrey’s closing keynote speech included looking back over the past thirty years. And what has been learned as an incident response community, as well as what he has learned from personal experience. The day after the conference Jeffrey delivered a workshop on communication skills for incident responders, teaching alongside his long-time collaborator Don Stikvoort, of the Netherlands.
The workshop was attended by thirty-five cyber security professionals, which was the largest number of attendees in any of the workshops at the conference. The workshop was designed to help technical cybersecurity professionals improve their communication skills when briefing non-technical audiences. It included a series of exercises such as a short executive-level briefing about an incident.
“For me, the best part is talking to people to understand what has changed in incident response, what their challenges are, and new things they have learned. Two things I hear a lot more about is the impact of artificial intelligence on incident response, and the increased aggressiveness of adversaries perpetrating ransomware.”
Three reasons why it is important to attend these events?
- To learn from the experiences of others, including the issues people are currently having and how they have addressed them
- Give advice and help others overcome problems
- Address common challenges faced in the industry
About Jeffrey
Jeffrey brings to Accuray more than thirty-five years of dedication to improving the state of information security in roles such as incident responder, product security officer, information security officer and leader. He currently is the deputy CISO at Accuray. As deputy CISO, Jeffrey has enterprise security and product security responsibilities.
He worked for almost two decades at the CERT® Coordination Center, located at Carnegie Mellon University’s Software Engineering Institute, as an incident response analyst and technical manager. He oversaw applied research and operational analysis with a focus on incidents, software vulnerabilities, network monitoring, malicious code, vulnerability discovery, and secure coding.
Jeffrey has presented in various forums and served on Forum of Incident Response and Security Teams (FIRST) committees and working groups. Jeffrey was the Secureworks Senior Director of Incident Response Consulting and Threat Intelligence. Just before joining SecureWorks, Jeffrey was a product security and information security officer in the healthcare division at Royal Philips.
In 2021, Jeffrey was inducted into the Incident Response Hall of Fame by the Forum of Incident Response and Security Teams (FIRST). In his spare time, Jeffrey responds to other kinds of incidents as a volunteer firefighter and fire police officer. He has been an administrative officer at his fire company for most of his service, serving as recording secretary, president, and vice president.
