Presentation is loading. Please wait.

Presentation is loading. Please wait.

Telenet for Business Mobile & Security? Brice Mees Security Services Operations Manager.

Published byTobias Wilkins Modified over 8 years ago

Similar presentations

Presentation on theme: "Telenet for Business Mobile & Security? Brice Mees Security Services Operations Manager."— Presentation transcript:

1 Telenet for Business Mobile & Security? Brice Mees Security Services Operations Manager

2 Agenda  Mobile Trends  Where to start?  Risks and Threats  Risk mitigation  Conclusion

3 Agenda  Mobile Trends  Where to start?  Risks and Threats  Risk mitigation  Conclusion

4 The mobile era The PC/Web Era The Post-PC Era The Mobile-First Era

5 "Apps Storm" VS "Security"

6 Looks suspicious? Ready to accept unmanaged devices on your network?

7 BYOD Trend  Devices become cheaper and more powerful  The Generation “Y”  Company owned devices are sometimes old- fashioned  Will you allow personal devices on your network ?  What are the risks ?

8 Agenda  Mobile Trends  Where to start?  Risks and Threats  Risk mitigation  Conclusion

9 Understand Enterprise Objectives “If you don’t know where you are going, any road will get you there” – Lewis Caroll

10 Start from your requirements Your Business Your Management Information Technology

11 Create a Mobile Security Policy

12 Agenda  Mobile Trends  Where to start?  Risks and Threats  Risk mitigation  Conclusion

13 BYOD: Risks related to costs  Brand disrepute by uncontrolled use of services/devices  Increased variety and complexity  Device loss  Enabling infrastructure Source: ENISA

14 Physical Risks

15 Increased variety and complexity

16 There is an app for that...  To steal your data  To steal your money (premium SMS services)  To spy on you  To evade regular controls

17 Accept or Decline?

18 Apps are programs  Apps act like normal programs:  They may have bugs  They may be badly designed  They may be altered (backdoors) Output Input Processing

19 Apps are programs  Apps must be developed using best practices with more focus on mobile devices specs like small keyboard not ideal to input passwords  OWASP has a top-10 mobile risks (1) that must be reviewed (1) https://www.owasp.org/index.php/OWASP_Mobile_Security_Project#tab=Top_Ten_Mobile_Risks

20 Malicious Marketplace – Social Engineering

21 BYOD: Risks related to Legal and Regulatory  Governance & compliance controls of employee-owned devices  Difficult enforcement of controls due to constantly changing context  e-discovery limitation due to ownership & personal data Source: ENISA

22 Privacy risks

23 BYOD: Risks related to data  Device sharing can lead to unauthorized release of corporate info  Enterprise network access by unknown users & unmanaged devices  Application rich devices difficult to control  Devices as targets of attacks Source: ENISA

24 Risks related to data

25 OWASP Top 10 Mobile Risks 1. Weak Server Side Controls 2. Insecure Data Storage 3. Insufficient Transport Layer Protection 4. Unintended Data Leakage 5. Poor Authorization and Authentication 6. Broken Cryptography 7. Client Side Injection 8. Security Decisions Via Untrusted Inputs 9. Improper Session Handling 10. Lack of Binary Protections

26 Threats related to device

27 Agenda  Mobile Trends  Where to start?  Risks and Threats  Risk Mitigation  Conclusion

28 Risk Mitigation Governance Management Legal and HR Mana- gement Technical Management Device Management Application Management User & Data Management

29 General Policy and Organisation  Define appropriate usage (physical, data, application)  Create “Awareness”  Monitor, detect, report  Collaborate with HR/ Legal

30 MDM? “Mobile Device Management (MDM) software secures, monitors, manages and supports mobile devices deployed across mobile operators, service providers and enterprises.”

31 Mobile Device Management  Do you need MDM?  Microsoft Exchange includes ActiveSync for free  Security Vendors propose some tools to handle and manage Mobile devices

32 Mobile Device Management  Enforce policy compliance  Inventory Management  Software/ Application Management  Authentication  Encrypted data  Encrypted communication

33 Mobile Device Management  Remote wipe  Physical protection  Password enforcement  Audit and Reporting  Cost control (Geolocalization)  Access Control

34 Mobile Device Management Enterprise Appstore

35 Mobile Device Management  Data segmentation  Containerization  Privacy protection  Backup management  Data Loss Prevention

36 MDS? “Mobile Device Security(MDS) concentrates on the security of personal and business information stored on smartphones.”

37 Mobile Device Security  Focus on identity, data and availability protection using: URL Filtering Web Application Filtering Malware detection: Check Traffic, Apps & SMS Antivirus

38 Unity Makes Strength  Combine multiple technologies to efficiently protect mobile devices  Use solutions which are “open” (API, logs)  Think about “Lego” blocks  Telenet might help you to build your solution

39 Unity Makes Strength

40 Solutions delivered by Telenet

41 Conclusion  Combination of MDM & MDS is ideal solution to cover most of mobile security related aspects  Invite us to discuss your requirements and define together the best solution for your business

42 Let’s have a drink!

Download ppt "Telenet for Business Mobile & Security? Brice Mees Security Services Operations Manager."

Similar presentations

!! Are we under attack !! Consumer devices continue to invade *Corporate enterprise – just wanting to plug in* Mobile Device Management.

!! Are we under attack !! Consumer devices continue to invade *Corporate enterprise – just wanting to plug in* Mobile Device Management.
Security for Mobile Devices

Security for Mobile Devices
Avoid data leakage, espionage, sabotage and other reputation and business risks without losing employee performance and mobility.

Avoid data leakage, espionage, sabotage and other reputation and business risks without losing employee performance and mobility.
Security, Privacy and the Cloud Connecticut Community Providers’ Association June 20, 2014 Steven R Bulmer, VP of Professional Services.

Security, Privacy and the Cloud Connecticut Community Providers’ Association June 20, 2014 Steven R Bulmer, VP of Professional Services.
Personal Data Protection and Security Measures Justin Law IT Services - Information Security Team 25 & 27 November 2013.

Personal Data Protection and Security Measures Justin Law IT Services - Information Security Team 25 & 27 November 2013.
Everything you want to know about managing mobile devices in the enterprise Ivan Hemmans hemmans.com From A to Z.

Everything you want to know about managing mobile devices in the enterprise Ivan Hemmans hemmans.com From A to Z.
Defense-in-Depth Against Malicious Software Jeff Alexander IT Pro Evangelist Microsoft Australia

Defense-in-Depth Against Malicious Software Jeff Alexander IT Pro Evangelist Microsoft Australia
Personal Data Protection and Security Measures Justin Law IT Services - Information Security Team 18, 20 & 25 March 2015.

Personal Data Protection and Security Measures Justin Law IT Services - Information Security Team 18, 20 & 25 March 2015.
SAM for Mobile Device Management Presenter Name. of employees spend at least some portion of their time working outside their office. Mobility is the.

SAM for Mobile Device Management Presenter Name. of employees spend at least some portion of their time working outside their office. Mobility is the.
MobileFirst Protect 1. MobileFirst Protect (MaaS360) 2 Mobile Device Management Enable and Manage Apple iOS smartphones, and tablets with Apple DEP Gain.

MobileFirst Protect 1. MobileFirst Protect (MaaS360) 2 Mobile Device Management Enable and Manage Apple iOS smartphones, and tablets with Apple DEP Gain.
Managing BYOD Legal IT’s Next Great Challenge. Agenda  The BYOD Trend – benefits and risks  Best practices for managing mobile device usage  Overview.

Managing BYOD Legal IT’s Next Great Challenge. Agenda  The BYOD Trend – benefits and risks  Best practices for managing mobile device usage  Overview.
Security Guidelines and Management

Security Guidelines and Management
© 2004-2014. Centrify Corporation. All Rights Reserved. Unified Identity Management across Data Center, Cloud and Mobile.

© Centrify Corporation. All Rights Reserved. Unified Identity Management across Data Center, Cloud and Mobile.
Security Risk Management Marcus Murray, CISSP, MVP (Security) Senior Security Advisor, Truesec

Security Risk Management Marcus Murray, CISSP, MVP (Security) Senior Security Advisor, Truesec
The Difficult Road To Cybersecurity Steve Katz, CISSP Security Risk Solutions 631-692-5175 Steve Katz, CISSP Security.

The Difficult Road To Cybersecurity Steve Katz, CISSP Security Risk Solutions Steve Katz, CISSP Security.
OWASP Mobile Top 10 Why They Matter and What We Can Do

OWASP Mobile Top 10 Why They Matter and What We Can Do
Mobile Policy. Overview Security Risks with Mobile Devices Guidelines for Managing the Security of Mobile Devices in the Enterprise Threats of Mobile.

Mobile Policy. Overview Security Risks with Mobile Devices Guidelines for Managing the Security of Mobile Devices in the Enterprise Threats of Mobile.
©2012 Check Point Software Technologies Ltd. | [Confidential] For Check Point users and approved third parties Building Your Security Strategy with 3D.

©2012 Check Point Software Technologies Ltd. | [Confidential] For Check Point users and approved third parties Building Your Security Strategy with 3D.
PBA. Observations  Growth, projects, busy-ness –Doing an incredible amount of work  Great Quality of work  Concern about being perfect  Attitudes.

PBA. Observations  Growth, projects, busy-ness –Doing an incredible amount of work  Great Quality of work  Concern about being perfect  Attitudes.
1 Managed Security. 2 Managed Security provides a comprehensive suite of security services to manage and protect your network assets –Managed Firewall.

1 Managed Security. 2 Managed Security provides a comprehensive suite of security services to manage and protect your network assets –Managed Firewall.

Similar presentations

Ads by Google