Setting Scope Expectations With Your Offensive Security Service Providers – Chris McCurdy – CFH #1
Companies must communicate clear expectations when contracting with pentesters, red teams and vulnerability hunters in order to set key ground rules for what data and systems can be accessed, what’s off limits and who is responsible if something breaks. Of course, if you set too many restrictions and parameters, then how do you really know if you’re safe from malicious hackers, who of course don’t play by the rules?
Plus: We Speak Geek, a weekly segment where our guest shares what they geek out about!
Gallery Images
Guest
Chris McCurdy, Vice President Worldwide at IBM Security, has more than 25 years in the IT Consulting Services industry and has been with IBM Security since 2006, through the acquisition of Internet Security Systems. McCurdy has extensive experience working with large enterprise and government clients around the world. His focus is to help clients reduce cyber risk, support compliance, and drive overall security maturity.
Before joining IBM, McCurdy was a Managing Consultant at several consulting firms, including Andersen, International Network Services, and Lucent Technologies. He was also a former CIO at a large retail automotive group located across the United States. McCurdy holds a BBA in Information Systems from Baylor University.
Hosts
