Jeff Foresman
Resultant - Vice President of Security
Tampa, Florida, United States
Actions
Jeff Foresman is an experienced professional with 30 years of experience in assisting organizations in building successful security programs and responding to cyberattacks. He currently serves as the Vice President of Security at Resultant. Prior to this, he held key leadership positions with Rapid7, Optiv, Verizon Business, and the PCI Security Standards Council. Jeff is also the founder of Pondurance, a startup security consulting and managed services business. He has a vast experience in developing risk management programs and building security operations centers for major corporations, retailers, hospitals, and financial services organizations.
Area of Expertise
Topics
Can we really detect and stop a cyber-attack? A look into today’s security operations centers.
Today's cyber-attacks are becoming more sophisticated and are initiated by well-funded criminal organizations that have advanced tools and experienced hackers. The question is, can we effectively compete with these adversaries? This presentation aims first to discuss the different types of attacks we face today and then review how our detection solutions align with these attacks. We will also delve into common prevention controls and examine approaches to respond to attacks. We will take a closer look at how corporations and MDR providers have traditionally designed SOC operations and explore some new approaches as well. We will finally offer recommendations to improve our ability to prevent, detect, and respond to today’s cyber-attacks.
Stop Auditing & Start Surviving: Build Security Programs from Real Breaches
Security leaders are frequently given a clear directive: “make us compliant.” Frameworks and regulations are valuable, but many compliance-first programs end up optimized for documentation rather than for the cybersecurity breach patterns that are affecting organizations. These programs overlook issues such as identity compromise, targeted social engineering, business email compromise, exposed edge systems, misconfiguration, and third-party vendor pathways. The result is predictable: audits pass while attackers still find the shortest path to business impact.
This session presents a cybersecurity breach-informed method for building security programs “outside-in.” We’ll start with current breach statistics to identify the most common attack trends and the pathways attackers repeatedly use to gain access and cause impact. From there, you will learn how to turn those trends into a focused program roadmap: define the loss scenarios that matter most to your organization, pinpoint the failure points that allow an intrusion to become an incident, and prioritize the capabilities that will disrupt those paths. The emphasis is on measurable outcomes: reducing the likelihood of compromise, limiting fraud and data exposure, tightening access controls, and strengthening cyber resilience, rather than building a program optimized solely for documentation or audits.
Attendees will learn a practical translation model that maps cybersecurity breach patterns to failure points, capabilities, initiatives, and metrics. They will understand how to use this model to prioritize work for the quickest risk reduction within the first 90 days and to build maturity over 12 months. Participants will also gain a straightforward method for reporting progress in business terms, aligning stakeholders on priorities, and avoiding spending efforts that only enhance compliance without significantly lowering cybersecurity breach risk.
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top