InfoSec Hamilton Monthly Meetup for October 2025

6:30 - doors open
7pm - Hunting the Ghost in the Shell - Case studies of Insider Risk w/ Don Mallory
7:45 - intermission
8pm - continue talk / social time
9pm - wrap up

Session description:
Hunting the Ghost in the Shell - Case studies of Insider Risk

An exploration of real-world case studies of the truly human problem, whether it is a compromised account, intentional misuse, or accidental damage, risky insiders hide under the guise of legitimate business operations.
——
Some people believe that perimeter defences are stronger than ever and external threats are well understood. With the hard crunchy exterior, many organizations trust the safety of their often flat open network where the most elusive adversary resides.

Trusted access becomes a vector for harm, whether intentional or accidental. This talk explores the nuanced and often hidden world of insider risk through a series of case studies. Using Microsoft Purview Insider Risk Management as the potential platform for detection, investigation, and risk mitigation, we will explore the contextual signals such as data exfiltration patterns, anomalous access behaviours, and privilege misuse to show where the tool succeeds, but also where it fails at each stage.

Attendees will gain insights into building a risk-aware culture, aligning compliance and security teams, and designing systems that detect the ghost before it strikes.

Your speaker:
Don Mallory (LinkedIn) has over 30 years of experience in enterprise IT, primarily in critical infrastructure, specializing in operations, data storage, disaster recovery, and security for critical infrastructure. Professionally, Don is a Senior Security Analyst in the healthcare sector. He is a co-author of “Applied Data Security Strategy - A Leader’s Guide”, and has been involved in various volunteer activities including C3X, Hak4Kidz Toronto, the Hamilton Infosec Meetup, and the Latow Photographer's Guild at the Art Gallery of Burlington, where he teaches traditional wet darkroom photography.

Your co-hosts:
Todd Dow (linkedin) is a Technical Security Solutions Architect at Cisco. He is also a writer, speaker and founder of InfoSec Hamilton. Todd has over 20 years of experience in the cybersecurity field performing penetration tests, providing security architecture and compliance consulting and creating, developing and leading high performing security teams – this included working as the CISO at two organizations: First Ontario Credit Union and ArcelorMittal Dofasco. Todd maintains CISSP, CISA and PMP credentials and he has also earned an Hon BA in Philosophy and Religious Studies from the University of Toronto.

Don Mallory (LinkedIn) has over 30 years of experience in enterprise IT, primarily in critical infrastructure, specializing in operations, data storage, disaster recovery, and security for critical infrastructure. Professionally, Don is a Senior Security Analyst in the healthcare sector. He is a co-author of “Applied Data Security Strategy - A Leader’s Guide”, and has been involved in various volunteer activities including C3X, Hak4Kidz Toronto, the Hamilton Infosec Meetup, and the Latow Photographer's Guild at the Art Gallery of Burlington, where he teaches traditional wet darkroom photography.