cyber resilience
play

Cyber Resilience OCTOBER 19, 2018 COLUMBIA, SC Cyber Resilience - PowerPoint PPT Presentation

Dec 13, 2022 •394 likes •863 views

Financial Planning Association South Carolina Cyber Resilience OCTOBER 19, 2018 COLUMBIA, SC Cyber Resilience Professional Tom Scott New Century Solutions LLC | NCS Cyber Certified Information Systems Security Professional Certified

  1. Financial Planning Association South Carolina “Cyber Resilience” OCTOBER 19, 2018 COLUMBIA, SC

  2. Cyber Resilience Professional Tom Scott New Century Solutions LLC | NCS Cyber Certified Information Systems Security Professional Certified Information Systems Auditor Certified Risk Information Systems Control Project Management Professional Certified Critical Infrastructure Manager 2 | N C S C Y B E R . C O M

  3. SCCYBER.ORG 3 | 3 | N C S C Y B E R . C O M

  4. “The Internet has made the world flat.” 4 | N C S C Y B E R . C O M

  5. Computing is an immature Industry… ➢ Real Internet or www. begins in the early 1980’s. ➢ Just earlier in 1973 the first network (exclusively run by government and educational institutions) had only 100 nodes on it (means 100 different servers were connected). ➢ Late 1980’s, CRAY XMP -1 super computer was touted as fastest computer of all time at 200m calculations per second. ➢ Today’s iPhone 7 is faster. ➢ Windows 10 has 60m lines of code. 5 | N C S C Y B E R . C O M

  6. SCCYBER.ORG 6 | “ E-commerce has led to various challenges and opportunities through new technologies. ” 6 | N C S C Y B E R . C O M

  7. 7 | N C S C Y B E R . C O M

  8. 8 | N C S C Y B E R . C O M

  9. 9 | N C S C Y B E R . C O M

  10. 1 0 | N C S C Y B E R . C O M

  11. 1 1 | N C S C Y B E R . C O M

  12. MORE HEADLINES ➢ This case (U.S. v. Hong) of cyber meets securities fraud should serve as a wake-up call…around the world: You ARE and WILL BE targets of cyber-hacking, because you have information valuable to would-be criminals . Preet Bharara US Attorney, SDNY ➢ I am convinced there are only two types of companies: those that HAVE been hacked AND those that WILL BE …And even they are converging into one category: companies that HAVE been hacked AND will be HACKED AGAIN… Robert Mueller Director, FBI March 1, 2012 1 2 | N C S C Y B E R . C O M

  13. 1 3 | N C S C Y B E R . C O M

  14. Large Data Breaches to Date: ➢ Equifax 146M Users ➢ Yahoo 1.5B Users ➢ E-bay 145M Users ➢ Target 110M Users ➢ Sony 102M Users ➢ JPMC 76M Users ➢ Anthem/BCBS 80M Users ➢ Home Depot 56M Users ➢ OPM 22.5M Users ➢ Ashley-Madison 30.M Users PRIVACYRIGHTS.ORG 1 4 | N C S C Y B E R . C O M

  15. Computer incident response was once the sole responsibility of the IT department, but as it has become clear that the consequences of a computer incident can threaten an enterprise’s very existence, directors are now being held more accountable. Directors have to be aware that a serious computer incident could result in a number of negative consequences for their enterprise, such as reputational damage or regulatory fines 1 5 | N C S C Y B E R . C O M

  16. 1 6 | N C S C Y B E R . C O M

  17. 1 7 | N C S C Y B E R . C O M

  18. SCCYBER.ORG “ …what we have to remember is those who attack are patient, and those that attack never stop trying. So, if that’s the case, we can never stop working to make sure we keep things safe. “ -- Governor Nikki Haley 1 8 | N C S C Y B E R . C O M

  19. 1 9 | N C S C Y B E R . C O M

  20. 2 0 | N C S C Y B E R . C O M

  21. 75 % 2 5 % 2 1 | N C S C Y B E R . C O M

  22. “ I don’t need a robot army. I intend to use yours.” Dr. Edward Sobiesk US Army CCOE 2 2 | N C S C Y B E R . C O M

  23. 70% of Cyber attacks target SMBs 50% of SMBs have experienced a cyber attack 60% of SMBs go out of business within 6 months of suffering a cyber attack ARE YOU A SMB? 2 3 | N C S C Y B E R . C O M

  24. Your Organization 2 4 | N C S C Y B E R . C O M

  25. 2 5 | N C S C Y B E R . C O M

  26. 2 6 | N C S C Y B E R . C O M

  27. MECKLENBURG COUNTY GOVERNMENT Largest population in North Carolina – over one million residents Includes City of Charlotte and 6 other towns Major county services • Health & Human Services • Criminal Justice Services • Land, Use and Environmental Services • Parks & Recreation • Tax Assessment & Collection $1.7 Billion Operating Budget 2 7 | N C S C Y B E R . C O M

  28. Ransomware attack — December 5, 2017 Mecklenburg County network credentials were compromised by cyber criminal(s) using a social engineering Phishing attack The criminal(s) utilized harvested user sign-on credentials to gain un- authorized access to Mecklenburg County systems The criminal(s) then planted Ransomware to ‘Freeze’ select systems and then demanded payment to ‘Unfreeze’ 48 Servers encrypted — Over 200 systems impacted 2 8 | N C S C Y B E R . C O M

  29. Backups: Server team stood up a new database environment & restored database backups for various systems which ran overnight Gained additional insights from various sources regarding potential risks & benefits of paying ransom. Engaged Experts (Microsoft, FBI, Fortalice, TrendMicro, Others) Based on risk / benefit analysis and input from numerous discussions with County Executive Leadership, decision was made and communicated that: Mecklenburg County would not pay https://www.nytimes.com/2017/12/06/us/mecklenburg-county-hackers.html 2 9 | N C S C Y B E R . C O M

  30. What Went Well ▪ Treated as a County crisis – Not an IT issue ✓ Daily command center engaged throughout ▪ Communication strategy came from the Top – early and timely frequency (email & telephony was essential) ▪ Had strong back-ups and ability to restore ▪ Had practiced IT and Department COOP’s (table top exercises) ▪ Had strong relationship with Forensic IT companies (on the job within hours) ▪ Had Cyber Insurance ▪ Got Lucky – No Data Loss 3 0 | N C S C Y B E R . C O M

  31. Lessons Learned? ▪ If you have valuable data (personal, HIPPA, PCI), provide critical infrastructure services, or have the ability to pay, you are a cybersecurity target – You are probably being watched and tested as we speak. ▪ Cyber criminals are highly sophisticated and persistent – in our case, they spent considerable time looking for a way in – moved quickly once in. ▪ Your employees will fall for phishing (no matter how much training you do). ▪ Your employees are unaware of file sharing and other social media risks – you may be surprised at how much unauthorized file sharing is going on: personal storage, Dropbox, etc. 3 1 | N C S C Y B E R . C O M

  32. Lessons Learned ▪ If (when) you are hacked, be aware that your IT access will be blocked (inbound and outbound) by 3 rd parties. You will need to prove to each provider that it is safe to restore access (can take weeks) ▪ Banks ▪ State, Federal, Local systems (even cities and towns within the County) ▪ You will be inundated with assistance and advice (these were unanticipated management communication challenges) ▪ Be prepared for counter attacks 3 2 | N C S C Y B E R . C O M

  33. 3 3 | N C S C Y B E R . C O M

  34. SCIDSA South Carolina Insurance Data Security Act 3 4 | N C S C Y B E R . C O M

  35. Key Dates January 1, 2019 Agencies are required to notify the SC DOI Director, no later than 72 hours after determining that a cyber Security event has occurred. July 1, 2019 Agencies are required to have established a comprehensive, written Information Security program by July 1, 2019. Section 38-99-20 July 1, 2020 SCIDSA Agencies are required to have vetted their supply chain’s implementation of administrative, technical and physical controls to safeguard their Information Systems storing agency Non-Public Data. Section 38- South Carolina 99-20(F) Insurance Data February 15, 2020 Agencies operating in South Carolina must submit a Security Act written statement certifying to the SC DOI Director, a written statement certifying that the insurer complies with the requirements set forth in the Act. Section 38-99-20(H)(2)(1) 3 5 | N C S C Y B E R . C O M

  36. Key Requirements ➢ Risk Assessment ➢ Comprehensive Written Information Security Program, including an Incident Response Plan SCIDSA ➢ Chief Information Security Officer appointed to oversee the Information Security Program South Carolina ➢ Annual reporting by CISO to Board of Directors or Insurance Data Security Act Owner(s) ➢ Annual reporting to SC Department of Insurance 3 6 | N C S C Y B E R . C O M

  37. Is Outsourcing Compliance Right For You? Insurance agents routinely identify and calculate risks when developing a client's policy, be it health, auto, or life. * Assessing cybersecurity risks follows a similar path of identifying risks and corresponding threats by SCIDSA answering these questions: ➢ What are the known risks within your business? South Carolina ➢ What are your business's unidentified risks? Insurance Data ➢ What are the existing and evolving threats? Security Act ➢ What are you doing to effectively counter threats? ➢ Are you managing the risks to your business? *Dragoon Security Group 3 7 | N C S C Y B E R . C O M

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

SARNET ENHANCING RESILIENCE AGAINST CYBER ATTACKS Frank Fransen | 5 October 2016 SARNET -

SARNET ENHANCING RESILIENCE AGAINST CYBER ATTACKS Frank Fransen | 5 October 2016 SARNET -

SARNET ENHANCING RESILIENCE AGAINST CYBER ATTACKS Frank Fransen | 5 October 2016 SARNET - Enhancing Cyber Resilience Relation to NCSRA II SARNET | October 5th 2016 CYBER THREATS ARE EVOLVING Key trends Cyber Cyber Cyber Magnitude of

153 views • 13 slides
Conceptualizing Human Resilience in the Face of the Global Epidemiology of Cyber Attacks L Jean

Conceptualizing Human Resilience in the Face of the Global Epidemiology of Cyber Attacks L Jean

Conceptualizing Human Resilience in the Face of the Global Epidemiology of Cyber Attacks L Jean Camp, Marthie Grobler, Julian Jang-Jaccard, Christian Probst, Karen Renaud, Paul Watters Cyber is Global It is unrealistic to study cyber at a

719 views • 36 slides
SAME Resilience Webinar Dedicated to National Security Since 1920 JETC Resilience Program Wed, 23

SAME Resilience Webinar Dedicated to National Security Since 1920 JETC Resilience Program Wed, 23

SAME Resilience Webinar Dedicated to National Security Since 1920 JETC Resilience Program Wed, 23 May Government Panel on Priority Resilience Issues Cyber Resiliency of Mission Critical Automation Systems Thr, 24 May Resilience

564 views • 27 slides
Strengthening Europes Cyber Resilience System a nd Fostering a Competitive & Innovative

Strengthening Europes Cyber Resilience System a nd Fostering a Competitive & Innovative

& National Emergency Coordination MEUSAC Consultation Session Strengthening Europes Cyber Resilience System a nd Fostering a Competitive & Innovative Cybersecurity Industry (13 March 2017 ) Venue: Fortress Builders

703 views • 27 slides
Strengthening Europes Cyber Resilience System & Fostering a Competitive and Innovative

Strengthening Europes Cyber Resilience System & Fostering a Competitive and Innovative

Strengthening Europes Cyber Resilience System & Fostering a Competitive and Innovative Cybersecurity Industry COM(2016) 410: Malta Perspective MEUSAC Meeting, Valletta Dr. Keith Cilia-Debono 13th March, 2017 Cyberspace : Prelude

300 views • 17 slides
Safe, Secure and Prosperous: A Cyber Resilience Strategy for Scotland Learning & Skills

Safe, Secure and Prosperous: A Cyber Resilience Strategy for Scotland Learning & Skills

Safe, Secure and Prosperous: A Cyber Resilience Strategy for Scotland Learning & Skills Daniel Sellers Strategic Them es Leadership and Partnership Working Awareness Raising and Communication Education, Skills and Professional Developm

317 views • 18 slides
European Framework for Threat Intelligence Based Ethical Redteaming (TIBER- EU) & Cyber

European Framework for Threat Intelligence Based Ethical Redteaming (TIBER- EU) & Cyber

European Framework for Threat Intelligence Based Ethical Redteaming (TIBER- EU) & Cyber Resilience Oversight Expectations (CROE) AMI-Pay 17 April 2018 Cyber Resilience Oversight Expectations (CROE) Rubric CROE why? Sets up a

415 views • 9 slides
Showcase: Industry/Research Partnership: Cyber Resilience Metrics for Bulk Power System Sachin

Showcase: Industry/Research Partnership: Cyber Resilience Metrics for Bulk Power System Sachin

Showcase: Industry/Research Partnership: Cyber Resilience Metrics for Bulk Power System Sachin Shetty, Old Dominion University Bheshaj Krishnappa, ReliabilityFirst CREDC Industry Workshop March 27-29, 2017 Funded by the U.S. Department of

499 views • 14 slides
2018 Data Security Incident Response Report Building Cyber Resilience: Compromise Response

2018 Data Security Incident Response Report Building Cyber Resilience: Compromise Response

2018 Data Security Incident Response Report Building Cyber Resilience: Compromise Response Intelligence in Action April 11, 2018 Contact Information Theodore J. Kobus, III Casie D. Collignon Leader, Privacy and Data Protection Practice

448 views • 23 slides
CYBER RESILIENCE AND CRISIS MANAGEMENT IN THE SECURITIES INDUSTRY FEBRUARY 6, 2014 Karl Schimmeck

CYBER RESILIENCE AND CRISIS MANAGEMENT IN THE SECURITIES INDUSTRY FEBRUARY 6, 2014 Karl Schimmeck

CYBER RESILIENCE AND CRISIS MANAGEMENT IN THE SECURITIES INDUSTRY FEBRUARY 6, 2014 Karl Schimmeck Karl Schimmeck is Managing Director of Financial Services Operations at SIFMA. He brings over 15 years of experience in operations,

702 views • 25 slides
resilience Professor Kate Thomas c.p.thomas@bham.ac.uk What is resilience? Resilience is the

resilience Professor Kate Thomas c.p.thomas@bham.ac.uk What is resilience? Resilience is the

How to improve our resilience Professor Kate Thomas c.p.thomas@bham.ac.uk What is resilience? Resilience is the process of adapting well in the face of adversity, trauma, tragedy, threats or significant sources of stress Resilience is

287 views • 9 slides
Full Year Results for the year ended 31 May 2020 3 September 2020 Overv ervie iew Adam Palser

Full Year Results for the year ended 31 May 2020 3 September 2020 Overv ervie iew Adam Palser

Full Year Results for the year ended 31 May 2020 3 September 2020 Overv ervie iew Adam Palser Cyber and software resilience more relevant than ever Excellent long-term market growth prospects Cyber Resilience is more important than

471 views • 33 slides
NSF Activities in Cyber Trust NSF Activities in Cyber Trust NSF Activities in Cyber Trust For

NSF Activities in Cyber Trust NSF Activities in Cyber Trust NSF Activities in Cyber Trust For

NSF Activities in Cyber Trust NSF Activities in Cyber Trust NSF Activities in Cyber Trust For ACM CCS I ndustry/ Govt Track Oct. 26, 2004 Carl Landwehr ( clandweh@nsf.gov ) Cyber Trust Coordinator National Science Foundation What s the

439 views • 17 slides
Do Now: Resilience 1. Create a Circle Map for resilience. 2. Look at the pictures. What

Do Now: Resilience 1. Create a Circle Map for resilience. 2. Look at the pictures. What

Do Now: Resilience 1. Create a Circle Map for resilience. 2. Look at the pictures. What do you think resilience means? 3. Write your ideas in a Circle Map. Unit 3 Stories of Resilience 1. Write your definition of Resilience is...

455 views • 6 slides
Developing Resilience Parent Council Meeting What is resilience . Resilience is the ability to

Developing Resilience Parent Council Meeting What is resilience . Resilience is the ability to

Developing Resilience Parent Council Meeting What is resilience . Resilience is the ability to bounce back after something negative like a tough situation or difficult time and then get back to feeling just about as good as you felt

517 views • 12 slides
CYBER CYBER-SAFETY CYBER CYBER SAFETY SAFETY SAFETY BASICS BASICS Engineering Staff College

CYBER CYBER-SAFETY CYBER CYBER SAFETY SAFETY SAFETY BASICS BASICS Engineering Staff College

3/29/2012 CYBER CYBER-SAFETY CYBER CYBER SAFETY SAFETY SAFETY BASICS BASICS Engineering Staff College of India I N T R O D U C T I O N What is Cyber-safety Consequences Threats of Inaction Cyber-safety? Cyber-safety Cyber-safety at

215 views • 7 slides
Atlantic Petroleum Acquisition of Emergy Exploration Norway Entry November 2012 Disclaimer

Atlantic Petroleum Acquisition of Emergy Exploration Norway Entry November 2012 Disclaimer

Atlantic Petroleum Acquisition of Emergy Exploration Norway Entry November 2012 Disclaimer This presentation includes statements regarding future results, which are subject to risks and uncertainties. Consequently, actual results may

700 views • 15 slides
Q3 2018 results and market update Disclaimer All statements in this presentation other than

Q3 2018 results and market update Disclaimer All statements in this presentation other than

6 November 2018 Q3 2018 results and market update Disclaimer All statements in this presentation other than statements of historical fact are forward-looking statements, which are subject to a number of risks, uncertainties, and assumptions

421 views • 21 slides
EU National Herman B.W.M. Koter, MSc, Committees DTox, ERT Chair of the Netherlands National

EU National Herman B.W.M. Koter, MSc, Committees DTox, ERT Chair of the Netherlands National

Netherlands National Committee for the protection of animals used for scientific purposes State of Play EU National Herman B.W.M. Koter, MSc, Committees DTox, ERT Chair of the Netherlands National Results mini-questionnaire Committee for

504 views • 14 slides
National Council Session 101 1 October 2016 CEO/Board Chair Retreat G.I.R.L. 2017/ 54 TH NCS

National Council Session 101 1 October 2016 CEO/Board Chair Retreat G.I.R.L. 2017/ 54 TH NCS

National Council Session 101 1 October 2016 CEO/Board Chair Retreat G.I.R.L. 2017/ 54 TH NCS Calendar 3 National Council Session 101 Overview Girl Scout National Governance System Overview Overview Delegates National Board and

467 views • 13 slides
Wisconsins Shoreland Management Program NR115 Rule Revision Update Main Points Brief

Wisconsins Shoreland Management Program NR115 Rule Revision Update Main Points Brief

Wisconsins Shoreland Management Program NR115 Rule Revision Update Main Points Brief History of Program Review Process Main Issues OHWM Setbacks and Buffers Nonconforming Structures Development Density

475 views • 20 slides
ACM Pipeline 3.0 Project The Network for College Success (NCS) is located at the University of

ACM Pipeline 3.0 Project The Network for College Success (NCS) is located at the University of

ACM Pipeline 3.0 Project The Network for College Success (NCS) is located at the University of Chicago . Driven by research, the postsecondary work of NCS supports schools to increase the number of students going to college . NCS also

454 views • 19 slides
Office of the City Clerk Election Division 555 Ramirez Street, 3 rd Floor, Space 375 Los

Office of the City Clerk Election Division 555 Ramirez Street, 3 rd Floor, Space 375 Los

Office of the City Clerk Election Division 555 Ramirez Street, 3 rd Floor, Space 375 Los Angeles, CA 90012 Phone: (213) 978 0444 or (888) 873 1000 http://cityclerk.lacity.org/election/index.htm Neighborhood Council Election Unit Senior

387 views • 10 slides
Common Core Standards Come to Nevada: Common Core Standards Come to Nevada: Implications for

Common Core Standards Come to Nevada: Common Core Standards Come to Nevada: Implications for

Common Core Standards Come to Nevada: Common Core Standards Come to Nevada: Implications for Students with Disabilities Anne H. Davidson Nevada Department of Education Nevada Department of Education A presentation to the National Conference on

466 views • 22 slides

More recommend