Cybersecurity for your business might seem straightforward but it's actually composed of many moving parts. This talk will show you the areas that every business needs to address and will provide you with security controls to cover them all.

It will start with important behind-the-scenes areas that must be addressed first (like passwords, device security, and training), will move on to common outward-facing risk areas (including email, website, and network security), and will finish with a brief look at more advanced areas to work on once the fundamentals are covered.

Part 1:

• Behind-the-scenes security
• Threats: Phishing, ransomware, etc.
• Passwords, password managers
• Two-factor authentication (2FA/MFA)
• Device security [hardening]
• Data backup
• User awareness training

Part 2:

• Outward-facing security
• Email security
• Phone security
• Network security for devices and routers
• Website security
• Cloud storage and other services security

Part 3:

• Next-level security
• Governance, policies, risk management, frameworks, etc.

Garland SHARRATT,

was Security Architect and GRC Specialist at Hootsuite in Vancouver until he (very happily) moved in 2018 to Kelowna, where he is now a consultant in cybersecurity / information security and resilience.

His career has spanned multiple business and technical roles in the fields of telecommunications, voice and video over ATM and IP, SaaS-based services, software, and information security.

Garland has lived and worked in Canada, the U.S., and the U.K., holds a BASc in Electrical Engineering and an MBA, and a Certified Information Security Manager (CISM) certification.