Presentation is loading. Please wait.

Presentation is loading. Please wait.

National Cyber Security Awareness Month October 20, 2011 Cyber Security – Our Shared Responsibility.

Published byAugust McGee Modified over 8 years ago

Similar presentations

Presentation on theme: "National Cyber Security Awareness Month October 20, 2011 Cyber Security – Our Shared Responsibility."— Presentation transcript:

1 National Cyber Security Awareness Month October 20, 2011 Cyber Security – Our Shared Responsibility

2 Why do we care about Cyber Security ? Internet usage is a daily activity for most Americans Our young children are using computers in Pre-K Social network sites, on-line gaming, and mobile ‘techno gadgets’ such as IPODs and smart phones permeate every aspect of our teenagers’ lives ALL of our personal information is located in cyber space somewhere at all times Social media is the new social norm And according to President Obama, “…the cyber threat has become one of the most serious economic and national security challenges we face.” 2U.S. Department of Energy | Office of the Chief Information Officer

3 What are my risks? Common questions all Cyberspace users should ask themselves… How do I protect my children? How do I protect my identity? How do I protect my bank account? How do I protect my personal information on my home computer? How do I protect government information at work and at home? Simply put, what is my shared responsibility in protecting my daily cyberspace? 3U.S. Department of Energy | Office of the Chief Information Officer

4 Always STOP before using the Internet and have a firm knowledge of what you are about to do. CONNECT with confidence! 4U.S. Department of Energy | Office of the Chief Information Officer Take time to THINK about your actions and your children’s actions online and how they could impact your safety. What can I do? Stop.Think.Connect.

5 What about the office environment? Shared responsibility to follow required cyber policies and practices Shared responsibility to protect DOE information assets at work and at home Shared responsibility to be cyber aware of possible cyber threats A cyber-aware workforce is an empowered workforce. 5U.S. Department of Energy | Office of the Chief Information Officer

6 Unfortunate Circumstance An real-life example of a common social engineering cyber threat with significant consequences… Breach originated in a phishing e-mail sent to hundreds of employees at Oak Ridge National Labs. E-mail was disguised as an official e-mail from the lab’s HR department about benefit changes. Employees clicked on the embedded link in the e-mail. Malware was downloaded onto their computers. Malware exploited an unpatched flaw in MS Internet Explorer and was designed to search for and steal technical information. As a result of this breach, the lab shut down all Internet access and email services. Many resource hours spent during investigation, research, and mitigation. 6U.S. Department of Energy | Office of the Chief Information Officer

7 DOE Risk Management Approach DOE Risk Management Approach (RMA) The OCIO has established a RMA based on NIST Special Publication (SP) 800-39 that institutes a mission-centric, risk-based approach to the management of cyber security to ensure the confidentiality, integrity, and availability of DOE information and information systems. Developed as a collaborative effort between HQ, Under Secretaries, National Labs, Production Facilities, and the IMGC Advisory Group and representatives. Provides the foundation for risk-based decisions that effectively ‘balance’ security, cost and mission effectiveness as opposed to a system-level compliance approach. DOE RMA Principles – Risk is Managed in Partnership with the Mission IT, Cyber, and Departmental mission needs are effectively ‘balanced’ by the evaluation of value, affordability, and mission impact as determined by the mission owners. The IT/Cyber relationship is one of partnership, cooperation, and collaboration of common tools, best practices, centers of excellence, etc. at both the Federal and Contractor-level. Ultimate Goal of the DOE RMA The ultimate goal of the DOE RMA is to provide a structured, yet flexible approach for managing risk that is intentionally broad-based, and that protects DOE information assets in a manner commensurate with impact to mission, national security, risk, and magnitude of harm. 7U.S. Department of Energy | Office of the Chief Information Officer

Download ppt "National Cyber Security Awareness Month October 20, 2011 Cyber Security – Our Shared Responsibility."

Similar presentations

Stop. Think. Connect. National Cybersecurity Awareness Campaign October 2010.

Stop. Think. Connect. National Cybersecurity Awareness Campaign October 2010.
Providing protection from potential security threats that exist for any internet-connected computer is termed e- security. It is important to be able to.

Providing protection from potential security threats that exist for any internet-connected computer is termed e- security. It is important to be able to.
INADEQUATE SECURITY POLICIES Each covered entity and business associate must have written polices that cover all the Required and Addressable HIPAA standards.

INADEQUATE SECURITY POLICIES Each covered entity and business associate must have written polices that cover all the Required and Addressable HIPAA standards.
Helping our customers keep their computers safe.  Using your pet’s, business, family, friend’s names  Using number or letter sequences (0123, abcd)

Helping our customers keep their computers safe.  Using your pet’s, business, family, friend’s names  Using number or letter sequences (0123, abcd)
Coxheath Primary School E-safety- Term 3 2013. Purpose To outline the use of the internet in school The use of the internet outside school What are the.

Coxheath Primary School E-safety- Term Purpose To outline the use of the internet in school The use of the internet outside school What are the.
Social Network Security Issues: Social Engineering and Phishing Attacks Jeffrey Allen, Leon Gomez, Marlon Green, Phillip Ricciardi, Christian Sanabria.

Social Network Security Issues: Social Engineering and Phishing Attacks Jeffrey Allen, Leon Gomez, Marlon Green, Phillip Ricciardi, Christian Sanabria.
SECURITY EVALUATION OF AN ORGANIZATION TA Md Morshedul Islam.

SECURITY EVALUATION OF AN ORGANIZATION TA Md Morshedul Islam.
National Cybersecurity Awareness Campaign. Campaign Background  In May 2009, President Obama issued the Cyberspace Policy Review, which recommends the.

National Cybersecurity Awareness Campaign. Campaign Background  In May 2009, President Obama issued the Cyberspace Policy Review, which recommends the.
STOP.THINK.CONNECT™ NATIONAL CYBERSECURITY AWARENESS CAMPAIGN SMALL BUSINESS PRESENTATION.

STOP.THINK.CONNECT™ NATIONAL CYBERSECURITY AWARENESS CAMPAIGN SMALL BUSINESS PRESENTATION.
Cyber and Internet Safety El Rodeo School September 11, 2013.

Cyber and Internet Safety El Rodeo School September 11, 2013.
National Cyber Security and Information (Cyber) Security Awareness Prof SH (Basie) von Solms Immediate Past President : IFIP University of Johannesburg.

National Cyber Security and Information (Cyber) Security Awareness Prof SH (Basie) von Solms Immediate Past President : IFIP University of Johannesburg.
A Covenant University Presentation By Favour Femi-Oyewole, BSc, MSc (Computer Science), MSc (Information Security) Certified COBIT 5 Assessor /Certified.

A Covenant University Presentation By Favour Femi-Oyewole, BSc, MSc (Computer Science), MSc (Information Security) Certified COBIT 5 Assessor /Certified.
DHS SECURITY INCIDENT REPORTING AND RESPONSE SECURITY INCIDENT REPORTING AND RESPONSE DHS managers, employees, and other authorized information users.

DHS SECURITY INCIDENT REPORTING AND RESPONSE SECURITY INCIDENT REPORTING AND RESPONSE DHS managers, employees, and other authorized information users.
National Institute of Standards and Technology 1 NIST Guidance and Standards on System Level Information Security Management Dr. Alicia Clay Deputy Chief.

National Institute of Standards and Technology 1 NIST Guidance and Standards on System Level Information Security Management Dr. Alicia Clay Deputy Chief.
ICT Curriculum Evening – an introduction to Wizkid.

ICT Curriculum Evening – an introduction to Wizkid.
September 9, 2009 Michael W. McKeehan Executive Director, Internet & Technology Policy Online Safety: Protecting Consumers.

September 9, 2009 Michael W. McKeehan Executive Director, Internet & Technology Policy Online Safety: Protecting Consumers.
STOP.THINK.CONNECT™ A NATIONAL CYBERSECURITY AWARENESS CAMPAIGN OLDER AMERICANS PRESENTATION.

STOP.THINK.CONNECT™ A NATIONAL CYBERSECURITY AWARENESS CAMPAIGN OLDER AMERICANS PRESENTATION.
Cyber Security - Threats James Clement Network Specialist ETS: Communications & Network Services

Cyber Security - Threats James Clement Network Specialist ETS: Communications & Network Services
Date of Presentation Guidelines for Industry on Child Online Protection © UNICEF/NYHQ2010-1016/OLIVIER ASSELIN.

Date of Presentation Guidelines for Industry on Child Online Protection © UNICEF/NYHQ /OLIVIER ASSELIN.
© 2003, EDUCAUSE/Internet2 Computer and Network Security Task Force Computer Access, Privacy and Security: Legal Obligations and Liabilities Rodney J.

© 2003, EDUCAUSE/Internet2 Computer and Network Security Task Force Computer Access, Privacy and Security: Legal Obligations and Liabilities Rodney J.

Similar presentations

Ads by Google