Presentation is loading. Please wait.

Presentation is loading. Please wait.

Security from the Inside Michael Tillison Senior Vice President ManTech International Corp.

Published byGriffin Flynn Modified over 9 years ago

Similar presentations

Presentation on theme: "Security from the Inside Michael Tillison Senior Vice President ManTech International Corp."— Presentation transcript:

1 Security from the Inside Michael Tillison Senior Vice President ManTech International Corp.

2 Company insiders, employees, contractors, vendors, etc…consitute the greatest risk: Risky Internet Behavior Unsolicited email attachments Divulge proprietary information Introduce wireless risks to corp. networks Neglect security in their daily activities Intentional and unintentional activities that put sensitive company information at risk. The Threat - People

3 85% of companies and Govt. Agencies have experienced breaches ($59 Billion per yr.) (NSI) 75% of security breaches are insiders (NCIX) 59% of employees leaving a company admit to taking proprietary information with them (FBI) Industry SCRs up 600% since 2009 (DSS) 800 insider threat cases-majority of subjects took the information within the last 30 days of employment (CERT; Carnegie Mellon) The Threat - People

4 Security attacks increasing with the economic downturn – Data breaches increased 50% in past 2 yrs (ITRC) 2013 – Insiders incidents have overtaken computer viruses as the most frequent reported type of security incident. The Threat - People

5 Common gateways to hacker attacks, information theft, viruses and other incidents: –Carelessness with passwords –Opening unexpected email attachments –Ignorance about wireless/mobile devices risk –Naiveté’ towards social engineers contact and questions –Laptop loss due to theft or carelessness –Cavalier attitude towards security policy and procedures Employee Behavior doesn’t have to be Malicious to be dangerous

6 Employee understands the value of company’s information assets and the consequences if compromised. Security perceived as synonymous with market capitalization, full employment, revenue growth, increased profits and market expansion – Employees accept responsibility as owners of the enterprise Education/Training raises employee awareness and provides critical knowledge and skills to counter the growing threat. Unintentional Insider Solution – Education/Awareness Program

7 Hacker and virus damage short-term and long-term costs to companies - $1.6 Trillion Liability exposure with e-commerce, partnering and other third-party relationships. Reduced liability insurance premiums Strong security culture may defend against disgruntled employee sabotage/Workplace Violence, etc… ROI

8 Bradley Manning Bryan Underwood Edward Snowden Others ----- Malicious Insider Threat – “We have met the enemy and he is us”

9 Executive Order 13587 – Structural Reforms to improve Security of Classified Networks Executive Order 13556 – Controlled Unclassified Information DFARS – Unclassified IT Security Insider Threat Task Force – DNI Insider Threat Policy/Standards NISPOM conforming change requiring Insider Threat Program Contract Requirements Government Response

10 Cyber (SOC) –Detects data access and policy infractions –Reactive or post intrusion forensics –Difficult to discern between malicious vs. user error or training issues –Smaller number of data sources Holistic –Proactive identification of high risk threats before the event. –Facilitates more accurate targeting –Facilitates removing vulnerabilities before exploitation –Enables enhanced awareness training –Able to tailor the tools and program to fit the business model Holistic vs. Cyber Approach

11 Policy-Program Development Communications High Risk Employee List Enhanced Monitoring Investigations Case Escalation Reporting Insider Threat Program

12 The same conditions apply for other insider crimes: embezzlement, sabotage and procurement fraud. –An opportunity to commit the crime –A motive or need to be satisfied through the crime –An ability to overcome natural inhibitions to criminal behavior. (moral values, loyalty, fear) –A trigger that sets the betrayal in motion Preconditions for Insider Betrayal

13 Personal Indicators Loyalty Indicators Technology Indicators Performance Indicators Foreign Influence Indicators Security Indicators Risk Indicators

14 The individual who can preserve a calm outward demeanor while their private life descends into a pit! They never present themselves for help knowing that their careers would be over. Self-interest and talent – smart enough to prevent incriminating matters from becoming public. (Usual security checks are not effective) My Major Concern

15 Better profiling and detection tools Promote conditions that reduce the motivation to engage in insider activity before there is anything to detect. Build mechanisms that create safe exits for troubled insiders before they engage in malicious activity. Termination procedures that protect the company. The Future

16 Security IS Human Resources Compliance Legal Risk Executive Management Corporate Teamwork

17 Questions??????

Download ppt "Security from the Inside Michael Tillison Senior Vice President ManTech International Corp."

Similar presentations

Cyber Crime and Technology

Cyber Crime and Technology
INADEQUATE SECURITY POLICIES Each covered entity and business associate must have written polices that cover all the Required and Addressable HIPAA standards.

INADEQUATE SECURITY POLICIES Each covered entity and business associate must have written polices that cover all the Required and Addressable HIPAA standards.
4 Information Security.

4 Information Security.
What is Insider Threat? “Potential damage to the interests of an organization by a person(s) who is regarded, falsely, as loyally working for or on behalf.

What is Insider Threat? “Potential damage to the interests of an organization by a person(s) who is regarded, falsely, as loyally working for or on behalf.
© 2007-2011 Carnegie Mellon University The CERT Insider Threat Center.

© Carnegie Mellon University The CERT Insider Threat Center.
STOP.THINK.CONNECT™ NATIONAL CYBERSECURITY AWARENESS CAMPAIGN SMALL BUSINESS PRESENTATION.

STOP.THINK.CONNECT™ NATIONAL CYBERSECURITY AWARENESS CAMPAIGN SMALL BUSINESS PRESENTATION.
1 No Silver Bullet : Inherent Limitations of Computer Security Technologies Jeffrey W. Humphries Texas A&M University.

1 No Silver Bullet : Inherent Limitations of Computer Security Technologies Jeffrey W. Humphries Texas A&M University.
McGraw-Hill/Irwin ©2009 The McGraw-Hill Companies, All Rights Reserved CHAPTER 4 ETHICS AND INFORMATION SECURITY Business Driven Information Systems 2e.

McGraw-Hill/Irwin ©2009 The McGraw-Hill Companies, All Rights Reserved CHAPTER 4 ETHICS AND INFORMATION SECURITY Business Driven Information Systems 2e.
Forensic and Investigative Accounting Chapter 16 Cybercrime Loss Valuations © 2011 CCH. All Rights Reserved. 4025 W. Peterson Ave. Chicago, IL 60646-6085.

Forensic and Investigative Accounting Chapter 16 Cybercrime Loss Valuations © 2011 CCH. All Rights Reserved W. Peterson Ave. Chicago, IL
Management’s Role in Information Security V.T. Raja, Ph.D., Oregon State University.

Management’s Role in Information Security V.T. Raja, Ph.D., Oregon State University.
CERT ® System and Network Security Practices Presented by Julia H. Allen at the NCISSE 2001: 5th National Colloquium for Information Systems Security Education,

CERT ® System and Network Security Practices Presented by Julia H. Allen at the NCISSE 2001: 5th National Colloquium for Information Systems Security Education,
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Qualitative.

Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Qualitative.
Reliability and Security. Security How big a problem is security? Perfect security is unattainable Security in the context of a socio- technical system.

Reliability and Security. Security How big a problem is security? Perfect security is unattainable Security in the context of a socio- technical system.
Engineering Secure Software. Lottery Story A Threat We Can’t Ignore  Documented incidents are prevalent Carnegie Melon’s SEI has studied over 700 cybercrimes.

Engineering Secure Software. Lottery Story A Threat We Can’t Ignore  Documented incidents are prevalent Carnegie Melon’s SEI has studied over 700 cybercrimes.
Session 3 – Information Security Policies

Session 3 – Information Security Policies
IT Security Readings A summary of Management's Role in Information Security in a Cyber Economy and The Myth of Secure Computing.

IT Security Readings A summary of Management's Role in Information Security in a Cyber Economy and The Myth of Secure Computing.
CYBER CRIME AND SECURITY TRENDS

CYBER CRIME AND SECURITY TRENDS
Developing a Security Policy Chapter 2. Learning Objectives Understand why a security policy is an important part of a firewall implementation Determine.

Developing a Security Policy Chapter 2. Learning Objectives Understand why a security policy is an important part of a firewall implementation Determine.
Presented by Manager, MIS.  GRIDCo’s intentions for publishing an Acceptable Use Policy are not to impose restrictions that are contrary to GRIDCo’s.

Presented by Manager, MIS.  GRIDCo’s intentions for publishing an Acceptable Use Policy are not to impose restrictions that are contrary to GRIDCo’s.

Similar presentations

Ads by Google