Kristin Demoranville

Well, you look at CrowdStrike and Microsoft, right? showed us that there was one pillar that everything was standing on. And as soon as that Jenga peg flew out, that was it. And we are one hairpin away from that at all times. I don't think people will realize how fragile the system is. And I don't want our adversaries to figure that out. You know what I mean? That's not what we want.

Well, you look at CrowdStrike and Microsoft, right? showed us that there was one pillar that everything was standing on. And as soon as that Jenga peg flew out, that was it. And we are one hairpin away from that at all times. I don't think people will realize how fragile the system is. And I don't want our adversaries to figure that out. You know what I mean? That's not what we want.

Because as soon as that happens, then we're in big trouble. And unfortunately, CrowdStrike and Microsoft showed that to us And of course, it's got all of us going, bleh, but also at the same time, we've been saying this. So it's not an I told you so, it's a I didn't want to have to say that moment, you know.

Because as soon as that happens, then we're in big trouble. And unfortunately, CrowdStrike and Microsoft showed that to us And of course, it's got all of us going, bleh, but also at the same time, we've been saying this. So it's not an I told you so, it's a I didn't want to have to say that moment, you know.

I think the thing that's hard is watching security incidents are going to happen. It's not a it's not a if it's a one thing. And over the, you know, the long term couple decades of my career, I have seen way too many that could have been averted. And it all comes down to how are you risk averse? Are you a risk positive? Like, what are you going to do?

I think the thing that's hard is watching security incidents are going to happen. It's not a it's not a if it's a one thing. And over the, you know, the long term couple decades of my career, I have seen way too many that could have been averted. And it all comes down to how are you risk averse? Are you a risk positive? Like, what are you going to do?

And that's what bothers me about the food and ag industry. And I know I've talked about it with both of you offline and online is how many people need to die or how bad does this need to get before people actually start taking a real look at this and dealing with the risk rather than, oh, something happened. So here's a ton of money and we're just gonna fix the problem now.

And that's what bothers me about the food and ag industry. And I know I've talked about it with both of you offline and online is how many people need to die or how bad does this need to get before people actually start taking a real look at this and dealing with the risk rather than, oh, something happened. So here's a ton of money and we're just gonna fix the problem now.

Why didn't we fix the problem before? It's so ridiculous. It's like the house is on fire, but yet we're still spraying more oil on it. Like, what are we doing?

Why didn't we fix the problem before? It's so ridiculous. It's like the house is on fire, but yet we're still spraying more oil on it. Like, what are we doing?

We need some champion companies and some champion countries, I think.

We need some champion companies and some champion countries, I think.

You know, you both are talking, we're talking around it, so let's just talk about it. We talked about it on the panel too, but the concept of doing nothing as a high cost. So what are some ways that we can calculate and communicate this cost effectively to justify cybersecurity investment in the food industry?

You know, you both are talking, we're talking around it, so let's just talk about it. We talked about it on the panel too, but the concept of doing nothing as a high cost. So what are some ways that we can calculate and communicate this cost effectively to justify cybersecurity investment in the food industry?

And we can even take this one step further as how do we tie this into the work that the three of us are doing to push forward, to have those champion moments, to make people realize. And I realize that a lot of times it's grassroots and it's one-on-one and we have to get in front of individuals all the time. But the awareness work that we do is super important.

And we can even take this one step further as how do we tie this into the work that the three of us are doing to push forward, to have those champion moments, to make people realize. And I realize that a lot of times it's grassroots and it's one-on-one and we have to get in front of individuals all the time. But the awareness work that we do is super important.

So Darren, I'm going to have you start because I know the cost of doing nothing has been on top of mind for you.

So Darren, I'm going to have you start because I know the cost of doing nothing has been on top of mind for you.

It already has. I mean, chief information security officers are being hauled into committee meetings in front of Congress and having to explain why something happened. It will happen with CrowdStrike and Microsoft. I think it's already started. I mean, Delta's suing them now. So there's a lot... of accountability that has to be taken.

It already has. I mean, chief information security officers are being hauled into committee meetings in front of Congress and having to explain why something happened. It will happen with CrowdStrike and Microsoft. I think it's already started. I mean, Delta's suing them now. So there's a lot... of accountability that has to be taken.