Post by Ethan Daniel

I attended the ISACA London Chapter Conference at Stamford Bridge as an ISACA Scholar. The topic: Engineering Resilience. Walking in, I thought resilience was about technical controls. Walking out I realise it's about people, process and visibility. 𝗪𝗵𝗮𝘁 𝗜 𝗹𝗲𝗮𝗿𝗻𝗲𝗱:  • The ‘human element’ remains the top attack vector. Phishing accounts for 85% of cyber attacks.  • AI is elevating cybersecurity (real-time threat detection, automated responses), but adversarial AI is evolving just as fast.  • During incident recovery, you have 3 personas at play: clients, business leadership and tech teams. Recognising their different concerns reduces friction during a live breach  • Real world examples: KTA243 compromise gave an attacker access to 11 SaaS platforms in 8 hours. The recovery used a “follow the sun” model 𝗢𝗻𝗲 𝗾𝘂𝗼𝘁𝗲 𝗜 𝘄𝗼𝗻’𝘁 𝗳𝗼𝗿𝗴𝗲𝘁: “You won’t fail because you were attacked, you’ll fail because you didn’t know you were exposed.” Thank you to Ameet Jugnauth, Yetunde Adesiyan, Chris Dimitriadis, Milena Maneva, and the ISACA London Chapter team. Also great to see the work of Magnet Forensics, Kroll and Crowe. Already applying these lessons to my projects and wider studies. #ISACAScholar #CyberResilience #AIsecurity #DFIR #RoyalHolloway