Presentation is loading. Please wait.

Presentation is loading. Please wait.

FIVE STEPS TO REDUCE THE RISK OF CYBERCRIME TO YOUR BUSINESS.

Published byDina Watkins Modified over 8 years ago

Similar presentations

Presentation on theme: "FIVE STEPS TO REDUCE THE RISK OF CYBERCRIME TO YOUR BUSINESS."— Presentation transcript:

1 FIVE STEPS TO REDUCE THE RISK OF CYBERCRIME TO YOUR BUSINESS

2 “ The world is changing, and so too is the threat landscape. SMB to Large Enterprise are being targeted in unprecedented numbers. ” Target Breach 56% 200k 5M Increase of Attacks in 2014 Chick-fil-A Credit Cards SECURITY AND THE COST OF INTRUSION

3 TYPES OF CYBER ATTACKS

4 DO BUSINESSES REALLY FAIL AFTER A CYBER ATTACK? 60% of all targeted cyber attacks were directed at Enterprise 80% of Cyber Attacks resulted in PCI Compliance Fines 60% of Enterprise organizations see a 40% short term loss in revenue

5 WHAT CAN BE DONE TO MITIGATE THE RISK OF CYBERCRIME TO MY BUSINESS?

6 STEPS TO HELP YOU SECURE YOUR BUSINESS 1) Firewall Theory 2) Use stronger authentication 3) Diversify your network 4) Compliance audit 5) Educate your users

7 TASK #1 FIREWALL THEORY ! Firewall all ingress and egress points. Limit incoming and outgoing traffic. Limit BYOD devices. Take a defensive strategy. Audit users monthly.

8 SAMPLE FIREWALL CONFIGURATION

9 KNOWING YOUR SYSTEMS IS CRITICAL FOR MAINTAINING A REASONABLE DEGREE OF IT SECURITY If you don’t have a CSO, get one and have them report to the CEO.

10 TASK #2: USE STRONGER AUTHENTICATION Validating identities remains the key factor in security. Single Factor vs Multi Factor. Use random key generators. Establish multi-factor authentication for VPN and personal devices Change Password in 8 week intervals

11 TASK #3: DIVERSIFY YOUR NETWORK Making your account credentials dynamic. Lock up your WIFI Access points. Limit access to certain data. Allow access to specific parts of your network. Disable USB access and enable Cloud storage.

12 TASK #4: COMPLIANCE AUDIT Are you PCI Compliant and do you handle financial transaction's? Check for how many users are on your network. Semi Annual on-site assessment and quarterly off site scans. Check records against PCI compliance standards. Enable stricter access protocols for access..

13 TASK #5: EDUCATE YOUR USERS Educate your employees on Cyber Crime. Make sure your employees close the bank vault. Don’t allow installation of programs on office computers. Safeguards are meant to support.

14 PCI COMPLIANCE FINES

15 BREACH CONSEQUENCES Cardholder Breaches can result in the following losses for a merchant. $50-$90 fine per cardholder data compromised Suspension of credit card acceptance by a merchant’s credit card account provider Possible civil litigation from breached customers Loss of customer trust which effects future sales

16 CONTACT INFORMATION Sherman Crancer 949-680-6671

Download ppt "FIVE STEPS TO REDUCE THE RISK OF CYBERCRIME TO YOUR BUSINESS."

Similar presentations

The Whole/Hole of Security Public (DoD) v. Corporate Carl Bourland US Army Judge Advocate Generals Corps.

The Whole/Hole of Security Public (DoD) v. Corporate Carl Bourland US Army Judge Advocate Generals Corps.
Surviving the PCI Self -Assessment James Placer, CISSP West Michigan Cisco Users Group Leadership Board.

Surviving the PCI Self -Assessment James Placer, CISSP West Michigan Cisco Users Group Leadership Board.
INADEQUATE SECURITY POLICIES Each covered entity and business associate must have written polices that cover all the Required and Addressable HIPAA standards.

INADEQUATE SECURITY POLICIES Each covered entity and business associate must have written polices that cover all the Required and Addressable HIPAA standards.
1© Copyright 2011 EMC Corporation. All rights reserved. Anatomy of an Attack.

1© Copyright 2011 EMC Corporation. All rights reserved. Anatomy of an Attack.
PCI-DSS Erin Benedictson Information Security Analyst AAA Oregon/Idaho.

PCI-DSS Erin Benedictson Information Security Analyst AAA Oregon/Idaho.
Invasion of Smart Phones in Clinical Areas Chrissy Kyak Privacy Officer University of Maryland Upper Chesapeake Health.

Invasion of Smart Phones in Clinical Areas Chrissy Kyak Privacy Officer University of Maryland Upper Chesapeake Health.
© 2014 wheresjenny.com Cyber crime CYBER CRIME. © 2014 wheresjenny.com Cyber crime Vocabulary Defacement : An attack on a website that changes the visual.

© 2014 wheresjenny.com Cyber crime CYBER CRIME. © 2014 wheresjenny.com Cyber crime Vocabulary Defacement : An attack on a website that changes the visual.
Smart Payment Processing ™ 800-846-4472 www.MercuryPay.com Protecting Your Business from Card Data Theft Presenter: Lucas Zaichkowsky.

Smart Payment Processing ™ Protecting Your Business from Card Data Theft Presenter: Lucas Zaichkowsky.
Credit Card Compliance Regulations Mandated by the Payment Card Industry Standards Council Accounting and Financial Services.

Credit Card Compliance Regulations Mandated by the Payment Card Industry Standards Council Accounting and Financial Services.
Mr C Johnston ICT Teacher

Mr C Johnston ICT Teacher
© Vendor Safe Technologies 2008 B REACHES BY M ERCHANT T YPE 70% 1% 9% 20% Data provided by Visa Approved QIRA November 2008 from 475 Forensic Audits.

© Vendor Safe Technologies 2008 B REACHES BY M ERCHANT T YPE 70% 1% 9% 20% Data provided by Visa Approved QIRA November 2008 from 475 Forensic Audits.
Presented by : Vivian Eberhardt, Supervisor Cash and Credit Operations

Presented by : Vivian Eberhardt, Supervisor Cash and Credit Operations
PCI Compliance Forrest Walsh Director, Information Technology California Chamber of Commerce.

PCI Compliance Forrest Walsh Director, Information Technology California Chamber of Commerce.
Data Security Standard. What Is PCI ? Who Does It Apply To ? Who Is Involved With the Compliance Process ? How We Can Stay Compliant ?

Data Security Standard. What Is PCI ? Who Does It Apply To ? Who Is Involved With the Compliance Process ? How We Can Stay Compliant ?
Peter Brudenall & Caroline Evans- Simmons & Simmons Marsh Technology Conference 2005 Zurich, Switzerland. Managing the Security Landscape – Legal and Risk.

Peter Brudenall & Caroline Evans- Simmons & Simmons Marsh Technology Conference 2005 Zurich, Switzerland. Managing the Security Landscape – Legal and Risk.
Payment Card Industry (PCI) Data Security Standard (DSS) Compliance Commonwealth of Massachusetts Office of the State Comptroller March 2007.

Payment Card Industry (PCI) Data Security Standard (DSS) Compliance Commonwealth of Massachusetts Office of the State Comptroller March 2007.
Government Databases and You or How I Learned to Stop Worrying and Love Information Loss. By Patrick Fahey Mis 304.

Government Databases and You or How I Learned to Stop Worrying and Love Information Loss. By Patrick Fahey Mis 304.
GPUG ® Summit 2011 November 8-11 Caesars Palace – Las Vegas, NV Payment Processing Online and Within Dynamics GP PCI Compliance and Secure Payment Processing.

GPUG ® Summit 2011 November 8-11 Caesars Palace – Las Vegas, NV Payment Processing Online and Within Dynamics GP PCI Compliance and Secure Payment Processing.
Risk Management. Risk Categories Strategic Credit Market Liquidity Operational Compliance/legal/regulatory Reputation.

Risk Management. Risk Categories Strategic Credit Market Liquidity Operational Compliance/legal/regulatory Reputation.
Why Comply with PCI Security Standards?

Why Comply with PCI Security Standards?

Similar presentations

Ads by Google