Presentation is loading. Please wait.

Presentation is loading. Please wait.

{ Active Directory Security Why bother?.   Law #1: Nobody believes anything bad can happen to them, until it does   Law #2: Security only works if.

Published byGodfrey Barker Modified over 8 years ago

Similar presentations

Presentation on theme: "{ Active Directory Security Why bother?.   Law #1: Nobody believes anything bad can happen to them, until it does   Law #2: Security only works if."— Presentation transcript:

1 { Active Directory Security Why bother?

2   Law #1: Nobody believes anything bad can happen to them, until it does   Law #2: Security only works if the secure way also happens to be the easy way   Law #3: If you don't keep up with security fixes, your network won't be yours for long   Law #4: It doesn't do much good to install security fixes on a computer that was never secured to begin with   Law #5: Eternal vigilance is the price of security Microsoft’s 10 Immutable Laws of Security Administration

3   Law #6: There really is someone out there trying to guess your passwords   Law #7: The most secure network is a well- administered one   Law #8: The difficulty of defending a network is directly proportional to its complexity   Law #9: Security isn't about risk avoidance; it's about risk management   Law #10: Technology is not a panacea Law’s continued

4 Next time someone asks why miscreants might want to hack his PC, show him this diagram. https://krebsonsecurity.com/2012/10/the-scrap-value-of-a-hacked-pc-revisited/

5 { Setting Up a Secure Environment Overview *Not all encompassing*

6  Service packs  Hotfixes  Notifications  Network scanners  Virus / malware protection software Updates http://www.pcprofessionals.com.au/2013/the-importance-of-windows-updates/

7  Disable guest account  Transport level encryption  Remote network access  File permissions  Security groups  Group policy  Disable / uninstall unused services  Secure user rights  Firewall settings  Backups  Best Practice Analyzer – BPA  Microsoft Baseline Security Analyzer Security Settings

8  Enabled  Adequate storage  Central location  Review schedule  Email & other notification Audit Logging

9  Why bother?  Limit access  Access logs  Locked server closet / room  Security cameras  Network plugs  Paper trail  Environment monitoring  Wireless vs wired  Biggest security vulnerability – humans Physical security http://goinfopipe.com/top-7-physical-security-trends/#!prettyPhoto

10  Company stand  Passwords  Employee dismissal  User access levels  Privacy  Mobile data transfer  Computer use Policies

11  Sync network time  Train your users Miscellaneous

12  http://www.newark.com/images/en_US/marketing/pdf/BLackBoxPhysi calNetworkSecurity.pdf http://www.newark.com/images/en_US/marketing/pdf/BLackBoxPhysi calNetworkSecurity.pdf http://www.newark.com/images/en_US/marketing/pdf/BLackBoxPhysi calNetworkSecurity.pdf  http://it-audit.sans.org/community/checklists/active-directory-security http://it-audit.sans.org/community/checklists/active-directory-security  http://technet.microsoft.com/en-us/library/cc722488.aspx http://technet.microsoft.com/en-us/library/cc722488.aspx  https://krebsonsecurity.com/2012/10/the-scrap-value-of-a-hacked-pc- revisited/ https://krebsonsecurity.com/2012/10/the-scrap-value-of-a-hacked-pc- revisited/ https://krebsonsecurity.com/2012/10/the-scrap-value-of-a-hacked-pc- revisited/Sources

Download ppt "{ Active Directory Security Why bother?.   Law #1: Nobody believes anything bad can happen to them, until it does   Law #2: Security only works if."

Similar presentations

Mobile Devices: Know the RISKS. Take the STEPS. PROTECT AND SECURE Health Information.

Mobile Devices: Know the RISKS. Take the STEPS. PROTECT AND SECURE Health Information.
Woodland Hills School District Computer Network Acceptable Use Policy.

Woodland Hills School District Computer Network Acceptable Use Policy.
1 Chapter 8 Fundamentals of System Security. 2 Objectives In this chapter, you will: Understand the trade-offs among security, performance, and ease of.

1 Chapter 8 Fundamentals of System Security. 2 Objectives In this chapter, you will: Understand the trade-offs among security, performance, and ease of.
Guanjong High School Group 2. Physical Network Access Security Getting into a network closet could easily allow someone to disable computers and connect.

Guanjong High School Group 2. Physical Network Access Security Getting into a network closet could easily allow someone to disable computers and connect.
Operating System Customization

Operating System Customization
Personal Data Protection and Security Measures Justin Law IT Services - Information Security Team 18, 20 & 25 March 2015.

Personal Data Protection and Security Measures Justin Law IT Services - Information Security Team 18, 20 & 25 March 2015.
INTRANET SECURITY Catherine Alexis CMPT 585 Computer and Data Security Dr Stefan Robila.

INTRANET SECURITY Catherine Alexis CMPT 585 Computer and Data Security Dr Stefan Robila.
Data Security Issues in IR Eileen Driscoll Institutional Planning and Research Cornell University

Data Security Issues in IR Eileen Driscoll Institutional Planning and Research Cornell University
Security Management IACT 918 July 2004 Gene Awyzio SITACS University of Wollongong.

Security Management IACT 918 July 2004 Gene Awyzio SITACS University of Wollongong.
ITS Offsite Workshop 2002 PolyU IT Security Policy PolyU IT/Computer Systems Security Policy (SSP) By Ken Chung Senior Computing Officer Information Technology.

ITS Offsite Workshop 2002 PolyU IT Security Policy PolyU IT/Computer Systems Security Policy (SSP) By Ken Chung Senior Computing Officer Information Technology.
Network Security Peter Behrens Seth Elschlager. Computer Security Preventing unauthorized use of your network and information within that network. Preventing.

Network Security Peter Behrens Seth Elschlager. Computer Security Preventing unauthorized use of your network and information within that network. Preventing.
Security Management IACT 418/918 Autumn 2005 Gene Awyzio SITACS University of Wollongong.

Security Management IACT 418/918 Autumn 2005 Gene Awyzio SITACS University of Wollongong.
Factors to be taken into account when designing ICT Security Policies

Factors to be taken into account when designing ICT Security Policies
Network Security. Trust Relationships (Trust Zones) High trust (internal) = f c (once you gain access); g p Low trust ( ) = more controls; fewer privileges.

Network Security. Trust Relationships (Trust Zones) High trust (internal) = f c (once you gain access); g p Low trust ( ) = more controls; fewer privileges.
Chapter 3 Ethics, Privacy & Security

Chapter 3 Ethics, Privacy & Security
Cloud Computing How secure is it? Author: Marziyeh Arabnejad Revised/Edited: James Childress April 2014 Tandy School of Computer Science.

Cloud Computing How secure is it? Author: Marziyeh Arabnejad Revised/Edited: James Childress April 2014 Tandy School of Computer Science.
New Data Regulation Law 201 CMR 17.00. TJX Video.

New Data Regulation Law 201 CMR TJX Video.
Course ILT Security Unit objectives Configure operating system and file system security Install a fingerprint scanner and card reader Manage the human.

Course ILT Security Unit objectives Configure operating system and file system security Install a fingerprint scanner and card reader Manage the human.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 IT Essentials PC Hardware and Software 4.1 Instructional Resource Chapter.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 IT Essentials PC Hardware and Software 4.1 Instructional Resource Chapter.
GOLD UNIT 4 - IT SECURITY FOR USERS (2 CREDITS) Cameron Simpson.

GOLD UNIT 4 - IT SECURITY FOR USERS (2 CREDITS) Cameron Simpson.

Similar presentations

Ads by Google