Peter Stegeman
Ethical Hacker, Pentester at Achmea, Speaker
Actions
Ethical Hacker, Pentester at Achmea, Speaker
Software Developer with an actuarial/insurance mathematics background. I've always had a fascination with hacking. Making software and hardware do things other than what they were built for is the most amazing thing there is!
When it became clear that you could legally make money through (ethical) hacking, I started working as a pentester at Achmea. The best job I've ever had!
In addition, I give presentations and workshops at Company’s with the aim of improving the Security Awareness among employees. I do this in the form of demonstrating low-threshold hacks. I show how simple it sometimes can be to enter companies and buildings through social engineering and once inside how systems of that company can be hacked.
Links
Area of Expertise
How do you know the level of Cyber Security of an external (Cloud) supplier?
How do you know the level of Cyber Security of an external (Cloud) supplier?
Letting an Ethical Hacker perform a pentest on a delivered service seems enough, right? But the unknown danger often comes from unexpected angles......
(Cloud) services from external suppliers; something that Achmea has a lot to do with. These suppliers often meet all kinds of security requirements such as ISO-27001, NEN standards, annual audits and pentests that they have performed themselves. And they also neatly sign the Achmea Security Agreement in which they solemnly promise that they have everything in order in terms of security.
So that sounds good! Because Achmea does trusts these services with its (customer) data, the crown jewels of Achmea.
But can you, as a consumer of a (cloud) service, rely on all this paper-based security that the provider is only too happy to show off?
.....Hackers laugh about it.....
During this presentation, it will be explained where the unknown danger lies when purchasing a (Cloud)service from an external supplier. A practical example will also be discussed, where things almost went wrong in the past at Achmea.
By the end, you will understand that you cannot blindly rely on the paper-based security that a supplier offers you. As a purchaser of a service, you remain responsible for the data processed, and you will need to convince yourself in other ways that the delivered service is truly secure.
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top