Chief Deception Officer
Items to develop notion of deception
Deception will be utilized to create a competitive advantage by reducing our information
security risk without a large increase in technical costs (manpower, equipment and
related service). The deception’s primary goal is to reduce the total cost of ownership for
the firm by lessening security risk through deception techniques and proactive threat data
collection methods. Understanding that internal risk may be as high as external risk is
vital to the gain in competitive advantage.
Deception talking points/actionable tasks
1. Create a proprietary infrastructure and workflow model for information.
Knowledge of the “true entire picture” should be limited to top management
within the organization on a need to know basis. Compliance, monitoring and
investigation controls will be in place that follows this information.
2. Create “profitably deceptive” infrastructure/workflow/policy models, that give
part of the picture and leave “tempting hooks” or curious design flaws that may be
investigated by those with ill intent. Release these models/practices through a
“deception information control office” and monitor/investigate its travel.
3. Employ proactive social engineers whose goal is to interact and mine information
from Information Security defined “potential threats.” Create false infrastructure
models that “open doors” for these threats and monitor their tactics closely to
learn and better equip the true infrastructure and misguide their attempts to attack
4. Separate (as much as possible) the members of deception teams from interaction
with internal or external clients. This allows them to be objective when
developing models and guidelines.
“true entire picture”- the actual practicing network/policies/workflows
“profitable deceptive”- a false item that provides easy monitoring (honeypot) for
“deception information control office”- office that manages false information
“potential threats”- enemy
“open doors” – leaves easily exploitable holes in a structure that can be broken