Presentation is loading. Please wait.

Presentation is loading. Please wait.

SPEAKER BLITZ ERIC BROWN Senior Systems Engineer NICK JAVANOVIC DoD Regional Sales Manager.

Published byMadeleine Charles Modified over 9 years ago

Similar presentations

Presentation on theme: "SPEAKER BLITZ ERIC BROWN Senior Systems Engineer NICK JAVANOVIC DoD Regional Sales Manager."— Presentation transcript:

1 SPEAKER BLITZ ERIC BROWN Senior Systems Engineer NICK JAVANOVIC DoD Regional Sales Manager

2 Research conducted by Ovum on behalf of Vormetric What have we learned? Data Breaches INSIDER THREAT REPORT and DATA SECURITY Nick Jovanovic – DoD Regional Sales Manager njovanovic@Vormetric.com Eric Brown – Senior Systems Engineer ebrown@Vormetric.com Partners:

3 Data Breaches 2013 – Consumer Records 822 Million Records Exposed – Up from 174 million in 2012 Average cost per record = $136/record – Up $6 from 2012 – Trade Secrets / Intellectual Property Not Disclosed, but much more damaging to Industry and Government Data can’t defend itself – Motives vary, but the methods are the same. – You must have privilege to compromise data

4 Beyond Customer Records What are they after – Intellectual Property / Trade Secrets – Classified Information – Infrastructure Control – Command and Control

5 Traditional Defenses Are Failing Security Holes are Being Exploited Global Vormetric Insider Threat survey administered by ESG October 2013 http://enterprise-encryption.vormetric.com/analyst-report-esg-insider-threat 54% MORE DIFFICULT TO DETECT AND PREVENT INSIDER ATTACKS THAN 2 YEARS AGO 63% Feel VULNERABLE TO ABUSE OF PRIVILEGED USERS 73% DO NOT BLOCK PRIVILEGED USER ACCESS TO SENSITIVE DATA 0% 100% 0% 100%

6 2014 Vormetric Insider Threat Talk HOW ARE ENTERPRISES RESPONDING TO THE THREAT? Using data encryption Increasing budget Constantly monitoring data access 68% 66% 49% Europe feels less vulnerable than the US Feel vulnerable to insider threats Concerned with abuse of privileged user access rights 25%47% 39%63%

7 What is the issue? Superusers control the system, packages, patches, and data permissions The nature of the superuser is that they have full access to data accessible by the system. If a superuser is compromised or goes rogue, the impact can be severe, as they can destroy, steal, and manipulate.

8 Traditional Controls for Super Users Monitoring – OS Level auditing, keystroke logging, etc… Privileged Account Management – Checkout account with single usage password Policy based elevation – Tools that allow a user to elevate to the superuser on a per command basis. sudo, powerbroker, etc… – They are good for saying who can do what as root. But does not control what root can do. None of these controls stop the superuser… Just how one becomes the superuser

9 Common Problem Malware Root Kits Privilege Users Ransom-ware All use Ring-0 to steal data Copyright 2014 Vormetric, Inc. – Proprietary and Confidential. All rights reserved. Slide No: 9

10 Mission can be accomplished. “There are products that allow you to encipher your data files, without allowing the admins to have access through the computer network to those data files. There are commercial products available, the most well known one, Vormetric. “ Bob Bigman - Former CISO, Central Intelligence Agency June 21, 2013

11 Reduce the impact of misconfiguration and other threats by Firewalling Data APT, Misconfiguration Malicious Insiders Mission User Enterprise System Administrator (Privileged User) Virtual Machine Layer Hypervisor Layer Encrypted Multi-Tenant Storage Hypervisor Administrator Storage Administrator Business Unit Virtualized/Cloud Infrastructure 11 Security Intelligence

12 Vormetric Transparent Encryption Simplified encryption and access control Database Storage Application User File Systems Volume Managers Big Data, Databases or Files Combination of approved Users and Processes Privileged Users SA root user *$^!@#)( -|”_}?$%-:>> Encrypted John Smith 401 Main Street Clear Text Cloud Provider / Outsource Administrators *$^!@#)( -|”_}?$%-:>> Encrypted DSM Vormetric Security Intelligence Logs to SIEM Vormetric Data Security Manager on Enterprise premise or in cloud virtual or physical appliance Operating System

13 Vormetric: Application and Vendor agnostic through “Learn Mode”

Download ppt "SPEAKER BLITZ ERIC BROWN Senior Systems Engineer NICK JAVANOVIC DoD Regional Sales Manager."

Similar presentations

INADEQUATE SECURITY POLICIES Each covered entity and business associate must have written polices that cover all the Required and Addressable HIPAA standards.

INADEQUATE SECURITY POLICIES Each covered entity and business associate must have written polices that cover all the Required and Addressable HIPAA standards.
BalaBit Shell Control Box

BalaBit Shell Control Box
Vormetric Data Security

Vormetric Data Security
Www.tectia.com COPYRIGHT © 2010 TECTIA CORPORATION. ALL RIGHTS RESERVED. Proactive Measures to Prevent Data Theft Securing, Auditing and Controlling remote.

COPYRIGHT © 2010 TECTIA CORPORATION. ALL RIGHTS RESERVED. Proactive Measures to Prevent Data Theft Securing, Auditing and Controlling remote.
SPEAKER BLITZ GINA SCINTA Senior Solutions Architect SafeNet.

SPEAKER BLITZ GINA SCINTA Senior Solutions Architect SafeNet.
Copyright © 2012 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill/Irwin CHAPTER FOUR ETHICS AND INFORMATION SECURITY: MIS BUSINESS CONCERNS.

Copyright © 2012 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill/Irwin CHAPTER FOUR ETHICS AND INFORMATION SECURITY: MIS BUSINESS CONCERNS.
Chapter 4 McGraw-Hill/Irwin Copyright © 2011 by The McGraw-Hill Companies, Inc. All rights reserved. Ethics and Information Security.

Chapter 4 McGraw-Hill/Irwin Copyright © 2011 by The McGraw-Hill Companies, Inc. All rights reserved. Ethics and Information Security.
1 Security on OpenStack 11/7/2013 Brian Chong – Global Technology Strategist.

1 Security on OpenStack 11/7/2013 Brian Chong – Global Technology Strategist.
Preventing Good People From Doing Bad Things Best Practices for Cloud Security Brian Anderson Chief Marketing Officer & Author of “Preventing Good People.

Preventing Good People From Doing Bad Things Best Practices for Cloud Security Brian Anderson Chief Marketing Officer & Author of “Preventing Good People.
Access Control Chapter 3 Part 5 Pages 248 to 252.

Access Control Chapter 3 Part 5 Pages 248 to 252.
© 2015 Cisco and/or its affiliates. All rights reserved. 1 The Importance of Threat-Centric Security William Young Security Solutions Architect It’s Our.

© 2015 Cisco and/or its affiliates. All rights reserved. 1 The Importance of Threat-Centric Security William Young Security Solutions Architect It’s Our.
Global Information Security Issues According to the E&Y Global Survey, Managers Say the Right Thing… –90% of 1400 companies surveyed in 66 countries say.

Global Information Security Issues According to the E&Y Global Survey, Managers Say the Right Thing… –90% of 1400 companies surveyed in 66 countries say.
Network Security. Trust Relationships (Trust Zones) High trust (internal) = f c (once you gain access); g p Low trust ( ) = more controls; fewer privileges.

Network Security. Trust Relationships (Trust Zones) High trust (internal) = f c (once you gain access); g p Low trust ( ) = more controls; fewer privileges.
Security Risk Management Marcus Murray, CISSP, MVP (Security) Senior Security Advisor, Truesec

Security Risk Management Marcus Murray, CISSP, MVP (Security) Senior Security Advisor, Truesec
Directory and File Transfer Services Chapter 7. Learning Objectives Explain benefits offered by centralized enterprise directory services such as LDAP.

Directory and File Transfer Services Chapter 7. Learning Objectives Explain benefits offered by centralized enterprise directory services such as LDAP.
Real Security for Server Virtualization Rajiv Motwani 2 nd October 2010.

Real Security for Server Virtualization Rajiv Motwani 2 nd October 2010.
Cloud Computing Cloud Security– an overview Keke Chen.

Cloud Computing Cloud Security– an overview Keke Chen.
Terry Ray VP Global Security Engineering The Insider's View To Insider Threats © 2012 Imperva, Inc. All rights reserved.

Terry Ray VP Global Security Engineering The Insider's View To Insider Threats © 2012 Imperva, Inc. All rights reserved.
Security Imperatives in a New Workplace Partnering to Protect Digital Information in the 21st Century Presented by Michael Ferris, Alaska Enterprise Solutions.

Security Imperatives in a New Workplace Partnering to Protect Digital Information in the 21st Century Presented by Michael Ferris, Alaska Enterprise Solutions.
Lecture 10 Intrusion Detection modified from slides of Lawrie Brown.

Lecture 10 Intrusion Detection modified from slides of Lawrie Brown.

Similar presentations

Ads by Google