Presentation is loading. Please wait.

Presentation is loading. Please wait.

“Assuring Reliable and Secure IT Services”. IT Redundancy: Its Value How much reliability to buy? Customer Service impacted as a result of 15 minutes.

Published byCordelia Wheeler Modified over 8 years ago

Similar presentations

Presentation on theme: "“Assuring Reliable and Secure IT Services”. IT Redundancy: Its Value How much reliability to buy? Customer Service impacted as a result of 15 minutes."— Presentation transcript:

1 “Assuring Reliable and Secure IT Services”

2 IT Redundancy: Its Value How much reliability to buy? Customer Service impacted as a result of 15 minutes downtime? Privacy? Security? Normal Accidents?

3 Retool Your Data Center Transforming a data center for e-business is almost like rebuilding a 747 while it's flying. "The real challenge is to provide continuous application availability while changing everything around you." The most fundamental way to ease the transition is to get a better understanding of your business model, customer needs and how applications interact with one another in a Web-enabled world. Have an architecture that lets administrators add, remove, test or repair hardware and software - without taking down the complex.

4

5 Availability Math Availability of Components in Series The effect of Redundancy on Availability High Availability Facilities N+1 And N+N Redundancy

6 Availability Math The Availability of Components in the Series

7

8

9 Availability Math The Effects of Redundancy on Availability

10

11

12 Availability Math High-Availability Facilities Uninterruptible Electric Power Delivery Physical Security Climate Control and Fire Suppression Network Connectivity Help Desk and Incident Response Procedures

13 Availability Math N + 1 and N + N Redundancy N+1 means that for each type of critical component there should be at least one unit standing by. N+N redundancy requires twice as many mission-critical components as are necessary to run a facility at any one time.

14

15 Securing Infrastructure against Malicious Threats External Attacks and Intrusion External attacks are actions against computing infrastructure that harm it or degrade its services without actually gaining access to it. The most common is DOS or “Denial of Service”. A distributed DOS attacks use automated routines secretly deposited on Internet-connected computers. Spoofing is used by clever attackers to simulate a distributed attack by inserting false origin information into packets to mislead filtering software at a target site. Intrusion occurs when an intruder gains access to a company’s internal IT infrastructure by a variety of methods. Viruses and worms are malicious software programs that replicate, spreading themselves to other computers.

16 Securing Infrastructure Against Malicious Threats Classification of Threats – External Attacks – Intrusion – Viruses and Worms Defensive Measures – Firewalls – Security Policies – Authentication – Encryption – Patching and Change Management – Intrusion Detection and Network Monitoring

17

18

19

20 Securing Infrastructure against Malicious Threats Defensive measures Security Policies Firewalls Authentication Encryption Patching and Change Management Intrusion Detection and Network Monitoring

21 Securing Infrastructure against Malicious Threats A Security Management Framework Make Deliberate Security Decisions Consider Security a Moving Target Practice Disciplined Change Management Educate Users Deploy Multilevel Technical Measures, as Many as You Can Afford

22 A Security Management Framework Make Deliberate Security Decisions Consider Security a Moving Target Practice Disciplined Change Management Educate Users Deploy Multilevel Technical Measures, as many as you can afford

23 Securing Infrastructure against Malicious Threats Risk Management of Availability and Security

24 Risk Management of Availability and Security See Figure 6.9 Managing Infrastructure Risk p445 Incident Management and Disaster Recovery – Managing incidents before they occur – Managing incidents when they occur – Managing incidents after they occur

25

26 Securing Infrastructure against Malicious Threats Incident Management and Disaster Recovery Managing Incidents before They Occur Managing during an Incident Managing after an Incident

27 Executive questions to access their own preparedness for the 21 st century challenges Go to page 448.

Download ppt "“Assuring Reliable and Secure IT Services”. IT Redundancy: Its Value How much reliability to buy? Customer Service impacted as a result of 15 minutes."

Similar presentations

Chapter 1 - 1 ADCS CS262/0898/V1 Chapter 1 An Introduction To Computer Security TOPICS Introduction Threats to Computer Systems –Threats, Vulnerabilities.

Chapter ADCS CS262/0898/V1 Chapter 1 An Introduction To Computer Security TOPICS Introduction Threats to Computer Systems –Threats, Vulnerabilities.
Ethics, Privacy and Information Security

Ethics, Privacy and Information Security
1 Chapter 7 Intrusion Detection. 2 Objectives In this chapter, you will: Understand intrusion detection benefits and problems Learn about network intrusion.

1 Chapter 7 Intrusion Detection. 2 Objectives In this chapter, you will: Understand intrusion detection benefits and problems Learn about network intrusion.
Chapter 4 McGraw-Hill/Irwin Copyright © 2011 by The McGraw-Hill Companies, Inc. All rights reserved. Ethics and Information Security.

Chapter 4 McGraw-Hill/Irwin Copyright © 2011 by The McGraw-Hill Companies, Inc. All rights reserved. Ethics and Information Security.
1 MODULE 10 : Assuring Reliable and Secure IT Services Matakuliah: J0422 / Manajemen E-Corporation Tahun: 2005 Versi: 1 / 2.

1 MODULE 10 : Assuring Reliable and Secure IT Services Matakuliah: J0422 / Manajemen E-Corporation Tahun: 2005 Versi: 1 / 2.
Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.

Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.
Security+ Guide to Network Security Fundamentals

Security+ Guide to Network Security Fundamentals
Security strategy. What is security strategy? How an organisation plans to protect and respond to security attacks on their information technology assets.

Security strategy. What is security strategy? How an organisation plans to protect and respond to security attacks on their information technology assets.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Qualitative.

Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Qualitative.
IS 380 OME 1 Fall 2010 Class 1. Administrative Roster Syllabus Review Class overview 10 domains overview.

IS 380 OME 1 Fall 2010 Class 1. Administrative Roster Syllabus Review Class overview 10 domains overview.
Reliability and Security. Security How big a problem is security? Perfect security is unattainable Security in the context of a socio- technical system.

Reliability and Security. Security How big a problem is security? Perfect security is unattainable Security in the context of a socio- technical system.
Lecture 11 Reliability and Security in IT infrastructure.

Lecture 11 Reliability and Security in IT infrastructure.
Security Overview. 2 Objectives Understand network security Understand security threat trends and their ramifications Understand the goals of network.

Security Overview. 2 Objectives Understand network security Understand security threat trends and their ramifications Understand the goals of network.
Network Infrastructure Security. LAN Security Local area networks facilitate the storage and retrieval of programs and data used by a group of people.

Network Infrastructure Security. LAN Security Local area networks facilitate the storage and retrieval of programs and data used by a group of people.
Network Security. Trust Relationships (Trust Zones) High trust (internal) = f c (once you gain access); g p Low trust ( ) = more controls; fewer privileges.

Network Security. Trust Relationships (Trust Zones) High trust (internal) = f c (once you gain access); g p Low trust ( ) = more controls; fewer privileges.
Alter – Information Systems 4th ed. © 2002 Prentice Hall 1 E-Business Security.

Alter – Information Systems 4th ed. © 2002 Prentice Hall 1 E-Business Security.
Lecture 11 Reliability and Security in IT infrastructure.

Lecture 11 Reliability and Security in IT infrastructure.

Similar presentations

Ads by Google