In this week's episode of the Future of Cyber Risk podcast, David speaks to Nat Prakongpan, VP of Product at Cyberbit (formerly of IBM at the time of recording). They discuss the need for business resiliency in security programs, and why you shouldn't just focus on preventing an attack but on recovery after an attack as well. They also talk about why security teams need to practice their incident response so it becomes muscle memory, the importance of making backups quantum-safe, and the growing need for detection and response in storage systems.

Topics discussed:

• How Nat's career in cybersecurity began after being the target of an attack, and what he learned from 18 years at IBM.

• The importance of business resiliency and the blind spots that many organizations have when it comes to attack surface management and knowing their assets.

• Why security teams need to be like firefighters and develop their muscle memory for incident response.

• How IBM approaches internal training on security, including annual training and role-based education.

• Why organizations need to have a plan for both preventing attacks and for recovery after an attack.

• The importance of keeping your backups quantum-safe for the future of computing.

• The need for detection and response capabilities in storage systems to prevent compromise or attack.