Shehzad Mirza is the Director of Operations for Global Cyber Alliance (GCA), a not-for-profit organization whose mission is to eliminate cyber risks around the globe. Prior to joining GCA, Shehzad was a manager in the Advisory Services practice, as part of the security monitoring group, of Ernst & Young LLP. He also served as Senior Director of Security Operations at the Center for Internet Security (CIS), an internationally recognized not-for-profit organization that provides cybersecurity services and support to state, local, tribal, and territorial governments throughout the United States.  He was responsible for managing the security operations, which included a 24×7 security operations center (SOC) consisting of security analysts and Intel analysts providing cybersecurity and detection/notification services to all state and local governments across the United States for the Multi-State Information-Sharing and Analysis Center (MS-ISAC). Shehzad started his career in cybersecurity as a consultant with Symantec working and managing a 24×7 security operations center (SOC) for the State of New York.  He started as an analyst and within four years managed the SOC.  Over time, the SOC was responsible for monitoring members of the MS-ISAC.


June 16 – 1:30 – 2:30 pm

DMARC in a Nutshell

An estimated 91% of all cyberattacks begin with a phishing email. But there are steps you can take to significantly reduce your risk. DMARC is considered the industry standard for email authentication to prevent attacks from malicious third parties sending harmful email using a counterfeit address. DMARC, which stands for Domain-based Message Authentication, Reporting & Conformance, stops email impersonation. By implementing DMARC, you lower the odds of your domains being spoofed and used for phishing attacks against others. By NOT implementing any form of DMARC policy, you are exposing your recipients to possible phishing attacks and leaving your organization vulnerable to being spoofed. This can result in expensive cleanups, embarrassing loss of reputation and weakened defenses.

In this technical presentation, we will demonstrate how DMARC works and the steps needed to implement DMARC policy. We will also discuss the return on investment of using DMARC, as evidenced by the more than 5,700 organizations globally that have already realized more than $19M overall in estimated financial benefits through DMARC implementation.