2. Cyber Security Industry
u Cyber incidents targeting businesses nearly doubled
from 82,000 in 2016 to 159,700 in 2017 — Online Trust
Alliance, 2018
u In 2017 organizations around the world spent about $90
billion on cybersecurity – Gartner
u Worldwide spending on cybersecurity is predicted to top
$1 trillion for the five-year period from 2017 to 2021,
according to the Cybersecurity Market Report
(Cybersecurity Ventures)
3. About Reflex
u It’s a mobile software platform to ensure CISO’s can do
their jobs, which is to ensure that the incident response
plans run as effectively and smoothly as possible.
u Created by Craig Brown, with the input from many other
very experienced CISO’s.
4. The founder: Craig Brown, MBA
Industry Certifications
CISSP - Certified Information Systems Security Professional
CISM - Certified Information Security Manager
CGEIT - Certified in the Governance of Enterprise IT
GHIH Gold - GIAC Certified Incident Handler
7. Reflex – Definition/What is It?
u Missing tool to help CISO’s run ‘Incident Response Plans’
effectively from start to finish
u Reflex™ is like a GPS that directs Incident Response
participants through the Incident Response process.
u Reflex works as a proxy for the CISO.
8. Key Point 1 – Addresses Common
Problems
u 1. Staff don’t have a copy of the Incident Response plan.
u 2. Staff Don’t have an updated contact list
9. u 3. The incident involves the corporate intranet
u 4. Response leaders are making decisions based on invalid
assumptions
Key Point 1 – Addresses Common
Problems
10. Key Point 2 – Eliminates
Communication Inefficiencies
u 1. Emailing and texting is inefficient and creates problems.
• Built in messaging functionality
u 2. No “lessons learned” analysis.
• Virtual forums
11. Key Point 3 – Increases Speed of
Response
u IBM & the Ponemon Institute Study.
u Kaspersky incident in Moscow.
12. Key Point 4 – Improves Incident
Response Plan Testing
u Reflex allows incident simulation and removes the need for
Table-Top exercises.
u Provides capability of “practice runs” 24/7.
u Provides regulatory proof that minimum annual test was
conducted.
u Eliminates the chance of audit findings regarding testing.
CISO don’t need to falsify attestations.
13. Keypoint 5 – Archived Data
u All data is archived.
u Incident Response Proof.
14. Key Point 6 – Consulting Business
u Cross selling
u “White Labeling”.
15. Reflex’s Value Added
1. Minimizes problems which often lead to ‘incident response
plan’ failure.
2. Allows the CISO and the corresponding members of each plan
to communicate much more effectively.
3. Decreases the response time, and by default decreases the
economic impact of the incident significantly.
4. Ensures ‘incident response plans’ can be tested easily.
5. Provides ongoing utility by archiving the data in a very
organized manner, so that future incidents can be avoided.
6. Reflex can help Prosegur become a leader among Information
Security service providers and consultants.