The term “alert fatigue” is pretty familiar in the information security community, but there’s also a different kind of fatigue that infosec professionals grapple with at any major security conference across the country.
Be it the RSA Conference, Black Hat, or MISTI’s own InfoSec World, droves of vendors fill up expo halls to tout their latest and greatest technological achievements. That’s all fine and dandy, but from a security manager’s point of view, it can be incredibly exhausting to be bombarded by security companies that, nearly all, claim to solve all of your problems.
Expo hall fatigue is a real thing for infosec pros, and by not taking the right approach before entering the maze of bright lights and logos, it could result in a costly mistake. Before even stepping foot into the expo hall, it’s important to get yourself organized, says Mike Spanbauer, vice president of security test and advisory at NSS Labs.
“Folks that are in the trenches, actually deploying these technologies, can get overwhelmed by the number of both logos on the floor, but also information and messages,” Spanbauer told Infosec Insider in a recent video interview at Black Hat 2017 in Las Vegas, Nevada. “At the root of it, it really comes down to the use case and doing a bit of homework before you get to the show. Trying to do this on the fly is very difficult.”
In this exclusive video interview with Infosec Insider, Spanbauer discusses the topic in-depth, but also provides some helpful tips to security professionals when it comes to vetting security technology.