Turn Intel Into Action: CIS Controls and the 2026 Verizon DBIR
Thursday, June 11, 2026 at 1:00 pm EST
The Verizon Data Breach Investigations Report (DBIR) is one of the most trusted sources of cybersecurity threat intelligence in the industry, drawing on real-world data from thousands of incidents and breaches worldwide. Each year, its findings offer organizations a clearer picture of the evolving threat landscape and a sharper sense of where their defenses need to be strongest.
In this webinar, the CIS Controls and Verizon DBIR teams come together to explore key findings from the latest report and examine how the CIS Critical Security Controls (CIS Controls) map directly to the attack patterns, breach pathways, and threat actors driving today's most significant incidents. From system intrusion and social engineering to basic web application attacks, we'll discuss how prioritized, evidence-based safeguards can help organizations of all sizes and sectors reduce risk and strengthen cyber hygiene.
Attendees will also hear from the Multi-State Information Sharing and Analysis Center (MS-ISAC) on how shared threat intelligence from state, local, tribal, and territorial (SLTT) government networks enriches the DBIR's findings, and what those insights mean for defenders across both the public and private sectors.
Join us to learn how to translate the DBIR's data into actionable steps your organization can take today.
You'll walk away with:
- A deeper understanding of the top attack patterns identified in the latest DBIR
- Practical guidance on which CIS Controls Safeguards address the most prevalent threats
- Insights from real-world incident data across government and industry networks
- Strategies for using evidence-based assessments to prioritize your security investments
About Our Presenters
Curt Dukes
Executive Vice President and General Manager, Security Best Practices
Curt Dukes joined CIS as the Executive Vice President and General Manager of the Best Practices and Automation Group in January 2017. The CIS Benchmarks® and CIS Controls® program provides vendor-agnostic, consensus-based best practices to help organizations assess and improve their security. Prior to CIS, he served as the Director, Information Assurance for the National Security Agency, Central Security Service. In that role Curt was responsible for securing systems that handle classified and critical information for military and intelligence activities. Dukes earned a Bachelor’s Degree in Computer Science from the University of Florida, and a Master’s Degree in Computer Science from Johns Hopkins University. He is a 2004 graduate of the Intelligence Community Officer Training Program.
Phyllis Lee
Vice President of Security Best Practices Content Development
Phyllis Lee has over 25 years of experience in information assurance and has performed vulnerability assessments, virtualization research, and worked in security automation. Prior to joining CIS, Lee worked at the National Security Agency (NSA) focusing on the intersection between malware and virtualization, which included collaboration with MIT Lincoln Labs. Lee also participated in a variety of security automation standardization efforts and led the security automation strategy for the NSA Information Assurance Directorate (IAD). She graduated from Johns Hopkins University with a Master of Science in computer science.
Randy Rose
Vice President, Security Operations & Intelligence
Randy has over two decades of experience across state, local, and federal government. He currently leads Security Operations at the Center for Internet Security where he is privileged to oversee the execution of the Security Operations Center, Cyber Threat Intelligence, Multidimensional Threat Intelligence, Cyber Incident Response, and Red Team missions in direct support of the Multi-State ISAC. Previously, he led the largest Joint Military Security Operations Center in Europe and the Intelligence Department for the Navy's Global Cyber Operations Task Force.
Early in his career, he served in the U.S. Air Force and later was New York State’s first local government-focused penetration tester. He moonlights as an adjunct instructor at Siena University and the State University of NY at Albany. He sits on the Board of Directors for two local non-profits helping those in need of housing, food, and trauma services. He loves rock music and is willing to have deep conversations with anyone over his favorite bands.
Phillipe Langlois
Data Breach Investigations Report (DBIR) Author, Verizon
Philippe Langlois is currently working as the lead engineer and author of the Verizon Data Breach Investigations Report (DBIR). Prior to joining Verizon, he worked at CIS leading various data driven projects, such as the CIS Controls and the MS-ISAC Nationwide Cybersecurity Review.