Building a Global Cyber Fusion Center
What does it take to build an incident response function in the enterprise environment, with global mission – and from scratch? Lessons learned and sharing of experience with building the PwC global Threat Management function in the EMEA Cyber Fusion Center (CFC) in Prague, Czech Republic.
The session will cover the important aspects of decision making between in-house and outsourced model of service delivery, challenges coming from the enterprise scope of the mission and the transformation in time, including necessary pivots and changes in direction in the process. Critical context of the overall security transformation initiative will be provided only in the minimum necessary measures to demonstrate the path from early days of the project into the current state of operations and improvement of the CFC.
Technology agnostic, the main focus will be on the strategic concepts and their transition into reality from a process design, team building and change perspective. The principle of Global – Regional – Territory will be explained, including the implication for global team cooperation, delivery and continuous 24/7 operations as well as onboarding individual PwC member firms to the service.
Finally, we will together look into the competing ideas of strictly modular and hierarchical traditional Security Operations Center (SOC) and the threat driven unified approach integrating the individual Threat Management features of Incident Response, Threat Intelligence and Vulnerability Management into one cohesive team on a mission – making a case why the latter was selected for the transformation in PwC and what does that mean for the future evolution. The target audience of enterprise CISOs, CIOs and cyber security leaders in strategic decision-making roles, as well as people in charge of building out, operating or improving their company’s security operations centers will get the most out of this presentation – others from the wider cyber security field are welcome as well.
Petr Špiřík
Global cyber security director and the EMEA Head of Threat Management - former security engineer, SOC architect, threat intelligence lead and regional CISO.
Responsible for the build, transformation and operations of the global cyber security services delivered to all PwC member firms in the EMEA region, following the Global - Regional – Territory design. Integrating Threat Intelligence, Incident Response & Vulnerability Management into one unified portfolio provided from a Cyber Fusion Center in Prague, Czech Republic.
Passionate about privacy, cyber security education and cross-disciplinary mashups.
Certified CISSP, CRISC, CIPP/E, GCIH and ISO 27001 Lead Auditor.
Phone: +420 737 215 220
E-mail: