We think you have liked this presentation. If you wish to download it, please recommend it to your friends in any social system. Share buttons are a little bit lower. Thank you!
Presentation is loading. Please wait.
Published byCara Bradner
Modified about 1 year ago
Golden Technology Services © 2014 Golden Technology Services _________________________________________________________________________ Cyber Security Threats Overview Carl Hill, President firstname.lastname@example.org www.gtscloud.com email@example.com
_________________________________________________________________________ © 2014 Golden Technology Services Golden Technology Services, Inc. (GTS) is engaged in providing innovative and affordable cyber security, cloud, and resilience and recovery services offerings to large enterprises, small and midsize businesses, and public sector organizations. The objective of this presentation is to: Increase visibility of the cyber threat landscape Increase awareness regarding the risk to Intellectual Property, assets, revenue, and brand/reputation Establish an understanding of the foundation for proper cyber security In summary, GTS understands the cyber security threats landscape, and works our clients to implement complete, hardened security solutions that can evolve to keep pace with the evolving threats landscape. The Golden Edge Deep industry expertise, globally applied. The foundation of our value creation model. Deep industry expertise. Global scale and presence. Extensive network of Operating Executives. And a wealth of industry portfolio data; we call it The Golden Edge. These are the four pillars of Golden Technology Services (GTS) value creation model. By leveraging these core capabilities and resources—Golden has established an overall track record of bringing industry leading technologies, that matter, to our clients. The Golden Edge Deep industry expertise, globally applied. The foundation of our value creation model. Deep industry expertise. Global scale and presence. Extensive network of Operating Executives. And a wealth of industry portfolio data; we call it The Golden Edge. These are the four pillars of Golden Technology Services (GTS) value creation model. By leveraging these core capabilities and resources—Golden has established an overall track record of bringing industry leading technologies, that matter, to our clients. Executive Summary – Presentation Objective 2
_________________________________________________________________________ © 2014 Golden Technology Services The threat landscape is continually evolving….. External threats. With the continual breakdown of the traditional perimeter, external threats now exist within the corporate premises as enterprises have opened themselves to Internet-based commerce and remote users. Internal threats. Once the domain of human error, malicious intent and various forms of propagating malware, internal threats now include advanced persistent threats and the coordinated actions of well funded and determined adversaries. Compliance. Enterprises today are under growing pressure to comply with mandates such as Sarbanes-Oxley, GPG-13, FSA, Garante, HIPAA, FISMA, GLBA, PCI and NERCO—including regulators that can impose financial penalties for nonconformance. As organizations continue to embrace mobility and innovative new technologies, compliance regulations will in turn embrace more sophisticated controls. April 27, 2015 3
_________________________________________________________________________ © 2014 Golden Technology Services Cyber Security attacks must be analyzed to determine the threat level April 27, 2015 4 Source: “IBM Security Services Cyber Security Intelligence Index,” IBM Corp., July, 2013
_________________________________________________________________________ © 2014 Golden Technology Services Virtually all industries experience cyber attacks, but some are “serious targets” April 27, 20155 Source: “IBM Security Services Cyber Security Intelligence Index,” IBM Corp., July, 2013
_________________________________________________________________________ © 2014 Golden Technology Services Malicious code and sustained scans are the most common cyber attacks April 27, 2015 6 Source: “IBM Security Services Cyber Security Intelligence Index,” IBM Corp., July, 2013
_________________________________________________________________________ © 2014 Golden Technology Services “Opportunistic Attacks” are the most frequent type of cyber attack April 27, 20157 Source: “IBM Security Services Cyber Security Intelligence Index,” IBM Corp., July, 2013
_________________________________________________________________________ © 2014 Golden Technology Services Most security breaches occur as the result of human intent or error April 27, 20158 Source: “IBM Security Services Cyber Security Intelligence Index,” IBM Corp., July, 2013
_________________________________________________________________________ © 2014 Golden Technology Services The most important security practices include building a risk-aware culture, and managing and responding to incidents as quickly as possible April 27, 20159 Source: “IBM Security Services Cyber Security Intelligence Index,” IBM Corp., July, 2013
_________________________________________________________________________ © 2014 Golden Technology Services Target Data Breach (SMB HVAC Vendor - 60 employees)? Nationwide retail giant Target is investigating a data breach potentially involving millions of customer credit and debit card records, multiple reliable sources tell KrebsOnSecurity. The sources said the breach appears to have begun on or around Black Friday 2013 — by far the busiest shopping day the year. Data breach affects more than 6,000ata breach affects more than 6,000 December 17, 2013 More than 6,000 current and former employees, vendors and students are being notified that their personal information may have been compromised in a data breach. Phishing email fools university staff, compromises thousands October 25, 2013 Employees fell victim to a phishing email that resulted in them providing account information, subsequently putting thousands at risk. Insecure email puts more than a thousand patients at risk October 07, 2013 An employee sent out an insecure email containing personal information on more than 1,300 patients. Cyber Security breach examples abound… April 27, 201510
_________________________________________________________________________ © 2014 Golden Technology Services Attackers optimize and refine target selection… more than half a billion records* of personally identifiable information (PII) were leaked in 2013 *X-Force Research - 2013 11April 27, 2015
_________________________________________________________________________ © 2014 Golden Technology Services Curiosity Monetary Gain National Security Espionage, Political Activism The sophistication of cyber threats, attackers and motives is rapidly escalating. Motive 1995 – 2005 1 st Decade of the Commercial Internet Revenge Script-kiddies or hackers using tools, web-based “how-to’s” Insiders, using inside information Organized Crime, Hackers and Crackers using sophisticated tools Competitors, Hacktivists Nation-state Actors; Targeted Attacks / Advanced Persistent Threat 2005 – 2015 2 nd Decade of the Commercial Internet Adversary *X-Force Research - 2013 April 27, 201512
_________________________________________________________________________ © 2014 Golden Technology Services Common Threat to Online Channels & Internal Systems: Malware, Phishing 1 JPMorgan: 2012 Online Fraud Report, 2 Gartner: 2290415, 3 Ponemon Institute: 2012 Cost of Cybercrime Report: US Humans will always make mistakes System and application vulnerabilities continue to emerge Malware detection will always lag Three Losing Battles Widespread Fraud $3.4B est lost to online fraud in 2012 1 Advanced Threats and Breaches 85% of breaches go undetected 2 $8.9M average cost of cyber-attacks 3 Two Major Impacts Fraud Scheme Execution Money Loss Data Exfiltration Enterprise Breach Vulnerability Exploit Social Engineering (Phishing) Malware Infection April 27, 201513
_________________________________________________________________________ © 2014 Golden Technology Services Where should you start? These three controls can help you address the top vulnerabilities and begin to reduce risk. Build a risk-aware culture Protect the network & end-points Automate security hygiene & manage incidents with intelligence April 27, 201514
_________________________________________________________________________ © 2014 Golden Technology Services End user didn’t think before clicking Weak password/default password in use Insecure configuration Use of legacy or un-patched hardware or software Lack of basic network security protection/segmentation The top 5 reasons why attacks are possible are all related to system hygiene or user knowledge. 1 2 3 4 5 April 27, 201515
_________________________________________________________________________ © 2014 Golden Technology Services Proper IT Security requires a wide range of focus and capabilities Understanding of Security drivers – threats, standards, regulations, business objectives Security Policy Security Processes Security Metrics – collection and management Security architecture and infrastructure – people, hardware, software, communications, analytics April 27, 201516 DefineCapture AnalyzeMonitor & MeasureAct
_________________________________________________________________________ © 2014 Golden Technology Services The organization drives the Security Model 17April 27, 2015
_________________________________________________________________________ © 2014 Golden Technology Services Each organization’s security model is supported by infrastructure… The Security Products marketplace is a broad and growing one, according to IDC Security Products IAMNetworkEndpointMessagingWebSVMOther AAFirewallAntimalware URL FilteringSIEM W-SSOUTM Server Security AntispamAntimalwarePERM E-SSOIDPSuites Content Filtering FII LAVPN Access & Information Protection Web Application Firewall Policy & Compliance UPSDSM Vulnerability Management April 27, 201518 Acronyms: IAMIdentity & Access Management AAAdvanced Authentication W-SSOWeb Single Sign-on E-SSOEnterprise Single Sign-on LALegacy Authorization UPUser Provisioning UTMUnified Threat Management IDPIntrusion Detection & Prevention VPNVirtual Private Network SVMSecurity & Vulnerability Management SIEM Security Intelligence & Event Management PERMProactive Endpoint Risk Management FIIForensics & Incident Investigation SDSMSecurity Device & Systems Management Source: IDC Web Site: http://www.idc.com/getdoc.jsp?containerId=IDC_P261, July 2014http://www.idc.com/getdoc.jsp?containerId=IDC_P261
_________________________________________________________________________ © 2014 Golden Technology Services The Security Products vendor landscape is fragmented, and continually changing due to the evolution of threats and the technology advances to address them April 27, 201519 Security Products Vendors Absolute SoftwareF5KasperskySophos Alcatel-LucentFireEyeLSISourcefire AxwayFortinetMicrosoftSymantec Barracuda NetworksF-SecureNetForensicsTrend Micro Blue CoatGemaltoNetIQTrustwave CA TechnologiesGoogleOracleVericept Check PointHPPalo Alto NetworksVmware CiscoIBMPassLogixWatchGuard DamballaInvinceaProofpointWebroot Dell SecureworksIntel/McAfeeQualysWebsense EntrustInteproIQSafeNetZscalar ESETJuniperSonicWALLWombat Source: IDC Web Site: http://www.idc.com/getdoc.jsp?containerId=IDC_P261, GTS Analysis, July 2014http://www.idc.com/getdoc.jsp?containerId=IDC_P261 Leaders in this market segment include, but are not limited to: Symantec, Intel/McAfee, Cisco, IBM, Check Point, Trend Micro, Juniper Networks, Microsoft, EMC, and Kaspersky Lab.
_________________________________________________________________________ © 2014 Golden Technology Services The IT Services marketplace also offers “Managed Security Services” April 27, 2015 20 IDC defines managed security services as "the around-the-clock remote management or monitoring of IT security functions delivered via remote security operations centers (SOCs), not through personnel onsite." The rise in frequency and complexity of attacks and the need for increasingly sophisticated security solutions have led to a new echelon of MSS that IDC is calling MSS 2.0. A MSSP 2.0 is further "up the stack" than traditional MSSPs which are offering MSS 1.0 services such as basic managed and monitored services (firewalls, intrusion detection services [IDS]/intrusion prevention services [IPS], unified threat management [UTM], IAM, log monitoring, vulnerability scanning, etc.). Traditional MSSPs may also offer advanced services such as DDoS, Web application security, managed SIEM, and managed SOC. MSSPs that are focused on MSS 2.0 deliver basic and advanced traditional MSS plus professional/complementary services. And, they are investing in mobile/BYOD, cloud, threat intelligence/big data, and incident response/forensics. Cloud, mobile/BYOD, and big data are three of four pillars that IDC has identified as top trends in 2014. The fourth pillar, which doesn't factor into this IDC MarketScape, is social media. Social media, however, does impact security, and advanced MSSP capabilities, in our analysis, can help detect, analyze, and protect against threats in the social media arena. Source: “IDC MarketScape: Worldwide Managed Security Services 2014 Vendor Assessment,” IDC Corp., June 2014
_________________________________________________________________________ © 2014 Golden Technology Services Security Technology Stack April 27, 2015 21 GRC Identity, Entitlement, Access Information & Event Mgmt. Cryptography Data Security Application Security Host Security Network Security Physical Security
_________________________________________________________________________ © 2014 Golden Technology Services Let’s look at network security, and its relationships to the stack April 27, 2015 22 Network Security Data SecurityHost Security Identity and Access Application Security Cryptography Security Info & Event Management Interconnected hosts on network Establish secure channel Control hosts on network Send security logs Detect security incidents Key management Crypto offload Monitor and control applications running on network Use identity Retrieve access control Monitor and control data flows on network
_________________________________________________________________________ © 2014 Golden Technology Services Security Intelligence has differentiated levels of capabilities Basic : Organizations employ perimeter protection, which regulates access and feeds manual reporting Proficient: Security is layered into the IT fabric and business operations Optimized: Organizations use predictive and automated security analytics to drive toward security intelligence April 27, 201523
_________________________________________________________________________ © 2014 Golden Technology Services An example of comprehensive cyber security capabilities: IBM Managed Security Services April 27, 201524 Getting to “intelligent security”
_________________________________________________________________________ © 2014 Golden Technology Services Checklist for Compromised Accounts - What should a firm do after it discovers that a customer’s account has been compromised? * This checklist is not exhaustive, and a firm may need to take other steps depending on the nature/cause of the intrusion, business model, customer base, the threats, and the law. – Monitor, limit, or temporarily suspend activity in the account until the situation is resolved. – Alert others in the firm (including the firm’s Legal and Compliance Department, if applicable) to be mindful of unusual activity in other customer accounts. Should consider designating in advance a specific individual or department to serve as a central contact for questions about the intrusion. – Identify, if possible, the root cause of the intrusion (e.g., the firm’s system was compromised, the individual account was hacked, the customer was the victim of identity theft) and determine whether the intrusion is isolated to one account. – Contact the SEC and your FINRA Coordinator. In the event of an account intrusion, have the following information readily available if possible:FINRA Coordinator Date(s) and time(s) of activity IP addresses used to access the account Security or securities involved (name and symbol) Time and date of the activity Customer account affected by the activity, including name and account number Whether the customer has been or will be reimbursed and by whom If appropriate, contact law enforcement agencies, such as the FBI or, if the U.S. mail is involved, the United States Postal Inspector. Contact the firm’s relevant state regulatory authorities. If the firm has not already done so, contact the customer and, if appropriate, change the password and/or account number. For more information, view ways a firm can help a customer that has been the victim of identity theft. help a customer that has been the victim of identity theft Determine whether any unauthorized person has gained or potentially has gained access to an account holder’s personally identifiable information and, if so, whether the firm must provide a specific type of notification to the customer or others under state law regarding the loss of the customer’s information. Some states may require notice to the State Attorney General or other state law enforcement agencies in addition to customer notification. Determine whether the firm should file a Suspicious Activity Report (SAR) under the federal anti-money laundering provisions April 27, 201525
_________________________________________________________________________ © 2014 Golden Technology Services Summary The number of “bad actors” and the sophistication of cyber security threats is continually increasing The effects of cyber security attacks on businesses and governments are increasing in impact and cost An understanding of threats to your enterprise, and of your current security capabilities and gaps that must be filled, is imperative Become familiar with security standards, regulations, available capabilities and infrastructure NOW to meet your enterprise objectives, and to protect your stakeholders’ interests April 27, 201526
_________________________________________________________________________ © 2014 Golden Technology Services Additional Information
_________________________________________________________________________ © 2014 Golden Technology Services Our Mission is Simple – We are focused on Value Creation for our Clients. We are the Trusted Advisor to our Clients and Partners. GTS is a privately held business technology services company. GTS is a diverse, minority-owned company We have two principal goals: 1.Helping clients to become more innovative, efficient, and competitive through the application of business insight and IT cloud solutions. 2.To develop and leverage an ecosystem of Vendors, Alliance and Business Partners who bring best-in-class Information technologies and services to the markets and clients we serve. Our commitment: To be the Trusted Advisor to our and Clients and Partners. How GTS Creates Client Value The GTS Competitive Advantage is our global experience and accomplishment, our cloud knowledge and specialization, our multi-vendor certifications, our broker services, and most importantly, our network of people and partner ecosystem model. Our focus is on the client. Our focus is the client’s business challenges. GTS is missioned to help clients solve IT and business problems through consulting and the use of advanced information and cloud-delivered technologies. GTS offers a base portfolio of cloud services that enable clients to optimize their IT environments, thereby driving efficiency, flexibility, and productivity into their business operations, while reducing costs. GOLDEN TECHNOLOGY SERVICES, Inc. (GTS) 28April 27, 2015
_________________________________________________________________________ © 2014 Golden Technology Services GTS Executive Biographies Carl Hill is CEO for Golden Technology Services. With over three decades of marketing and sales experience in the IT industry, Mr. Hill brings a unique perspective to any project or engagement when it comes to developing and working with clients. His responsibilities have included new product launch, international marketing, sales development, creating marketing and business plans, strategic account management, sales development and responsibilities for C- level client relationship and satisfaction across multiple industries. Mr. Hill had a successful 25+ year career with IBM. Starting his career in sales with IBM, he had held multiple Executive Sales and Marketing Management responsibilities where he had revenue and people responsibility for IBM’s channel business in US and Global markets. Carl Hill graduated from Rhodes College in Memphis with a BA in Psychology and a minor in Economics. Justin Golden is COO and founder of Golden Technology Services. Mr. Golden has compiled over thirty years of sales, marketing and business development experience in the Information Technology industry both here and internationally. Beginning in sales he was early advocate of alternate channel sales utilizing Business Partners across multiple product lines. This was followed by a business development role in an emerging technology, Speech Recognition, where he was awarded several Invention Disclosures for this technology. He established the role of General Business Consultant in a sales assignment in the Czech Republic which led to record sales in revenue, new business and profitability. Mr. Golden also launched the first inside sales (Telesales) team in the US Sales Centers for applications hosting customers. In a most recent assignment, Mr. Golden integrated the offerings of an IBM acquisition, Arsenal Digital, into the company’s services portfolio. Mr. Golden is a graduate of University of Vermont in Burlington with a major in Political Science and a minor in History. After graduation, he spent one year abroad in Ireland and the United Kingdom employed in Solicitors offices, Cork and Southampton. Kevin Skelly is Managing Director and Vice President, Business and Technology Strategy, for Golden Technology Services. Mr. Skelly most recently worked for IBM Corporation, where he had a successful 37-year career. His most recent work in IBM was in directing the analysis and planning in IBM Corporate Strategy of IBM’s strategic initiatives, with a specific focus on advanced analytics and Cloud platforms. Mr. Skelly’s areas of expertise include market strategy, market management, competitive analysis, business plan development, product management, sales/consulting, software architecture and development, and IT technology planning. Mr. Skelly attended Pace University’s Lubin School of Business and majored in Management Information Systems, and is a member of the Society of Competitive Intelligence Professionals and the American Marketing Association. April 27, 201529
_________________________________________________________________________ © 2014 Golden Technology Services Network Security has a number of layers and capabilities, and is EVOLVING Network Firewalls VPN Gateways Network Intrusion Detection/Prevention DDoS WiFi security Network Access Control DNS Security Web, Email and IM filtering April 27, 201530
External Threats Internal Threats Nation States Cyber Terrorists Hacktivists Organised criminal networks Independent insider Insider planted by external.
© 2011 IBM Corporation IBM Security Services Smarter Security Enabling Growth and Innovation Obbe Knoop – Security Services Leader Pacific.
The Changing World of Endpoint Protection Hashem El Telawi October 2015.
© 2014 Level 3 Communications, LLC. All Rights Reserved. Proprietary and Confidential. Polycom event Security Briefing 12/03/14 Level 3 Managed Security.
Staying Ahead of the Curve in Cyber Security Bill Chang CEO, SingTel Group Enterprise.
Mel Pless, Sr. Director, Solutions Consulting Guidance Software, Inc. Let’s Get Right To The Endpoint Leveraging Endpoint Data to Expose,
Data Center Firewall. 2 Common IT Security Challenges Does my network security protect my IT environment and sensitive data and meet the regulatory compliances?
Dell Connected Security Solutions Simplify & unify.
Security Professional Services. Security Assessments Vulnerability Assessment IT Security Assessment Firewall Migration Custom Professional Security Services.
Case Study: Department of Revenue Data Breach National Association of State Auditors, Comptrollers and Treasurers March 21, 2013.
Chapter © 2012 Pearson Education, Inc. Publishing as Prentice Hall.
What Keeps You Awake at Night Compliance Corporate Governance Critical Infrastructure Are there regulatory risks? Do employees respect and adhere to internal.
2© Copyright 2013 EMC Corporation. All rights reserved. Cyber Intelligence Fighting Cyber Crime Insert Event Date LEADERS EDGE.
1 The New Security Blueprint : Challenges & Opportunities Ajay Goel, Managing Director, Symantec India & SAARC Sept 1, 2011.
Asif Jinnah Microsoft IT – United Kingdom. Security Challenges in an ever changing landscape Evolution of Security Controls: Microsoft’s Secure Anywhere.
© 2009 IBM Corporation Delivering Quality Service with IBM Service Management April 13 th, 2009.
Cyber Security Nevada Businesses Overview June, 2014.
1© Copyright 2012 EMC Corporation. All rights reserved. Next Generation Authentication Bring Your Own security impact Tim Dumas – Technology Consultant.
Microsoft and Symantec More Than The Sum Of Our Parts.
CLOSE THE SECURITY GAP WITH IT SOLUTIONS FROM COMPUTACENTER AND CISCO AUGUST 2014.
1 Deployment of Computer Security in an Organization CE-408 Sir Syed University of Engineering & Technology 99-CE-282, 257 & 260.
Website Hardening HUIT IT Security | Sep
Security Risk Management Marcus Murray, CISSP, MVP (Security) Senior Security Advisor, Truesec
1© Copyright 2011 EMC Corporation. All rights reserved. Anatomy of an Attack.
Managing Data Against Insider Threats Dr. John D. Johnson, CISSP.
Life Science Services and Solutions Collaborative brings the expertise and resources to translate your business strategy into actionable IT plans, business.
[Name / Title] [Date] Effective Threat Protection Strategies.
Manage your technology for optimal return on investment (ROI) The Tivoli ® Configuration & Operations management solution from IBM.
Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.
IT-Partners Limited © 2011 IT Partners Limited Y OUR IT SOLUTION P ARTNERS Managing Director Confidential Data Loss Prevention Sunny Ho 1.
Protecting Mainframe and Distributed Corporate Data from FTP Attacks: Introducing FTP/Security Suite Alessandro Braccia, DBA Sistemi.
Company LOGO Copyright Carrie Kerskie Data Breach & Identity Theft By Carrie Kerskie Kerskie Group, Inc.
Nationwide Information Risk Management (IRM) May 12, 2015 M. Travis Michalak Nationwide Financial – AVP Information Risk Management.
InformationWeek 2014 Strategic Security Survey Research Findings © 2014 Property of UBM Tech; All Rights Reserved.
Unify and Simplify: Security Management
1© Copyright 2014 EMC Corporation. All rights reserved. Applying the Power of Data Analytics to Cyber Security Dr. Robert W. Griffin Chief Security Architect.
Infrastructure for the People-Ready Business. Presentation Outline POINT B: Pro-actively work with your Account manager to go thru the discovery process.
©2015 EarthLink. All rights reserved. EarthLink overview.
Ali Pabrai, CISSP, CSCS ecfirst, chairman & ceo Preparing for a HIPAA Security Audit.
Enterprise Mobility Suite: Simplify security, stay productive Protect data and empower workers Unsecured company data can cost millions in lost research,
Partnering For Profitability Growing your business with Microsoft Forefront Security Solutions Mark Hassall Director Security & Access BG Microsoft Corporation.
The cost of Cybercrime 1 Steve Lamb Regional Marketing Manager – EMEA, Enterprise Security Products Twitter: actionlamb.
Cybersecurity in Ohio David A. Brown Chief Information Security Officer State of Ohio.
Data Security: Steps to Improved Information Security September 22, 2015 Presented by: Alex Henderson General Counsel and Chief Administrative Officer.
FFIEC Cyber Security Assessment Tool Overview and Key Considerations.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
No one questions that Microsoft can write great software. Customers want to know if we can be innovative, scalable, reliable in the cloud. (1996) 450M+
CIO Perspectives on Security Fabrício Brasileiro Regional Sales Manager.
© 2017 SlidePlayer.com Inc. All rights reserved.