iPanSec.com SOAPA Dashboard Smart InfoSec Automation Zero Trust - - PowerPoint PPT Presentation

ipansec com soapa dashboard smart infosec automation zero
SMART_READER_LITE
LIVE PREVIEW

iPanSec.com SOAPA Dashboard Smart InfoSec Automation Zero Trust - - PowerPoint PPT Presentation

Jan 24, 2023 415 likes •555 views

iPanSec.com SOAPA Dashboard Smart InfoSec Automation Zero Trust Assurance Suite SOAPA Dashboard Integrated with Network Layer (PacketX , UPAS) Field WiFi /BLE /ZigBee Layer (ArcRan iSecMaster) Endpoint Layer (Comodo)

slide-1
SLIDE 1

iPanSec.com SOAPA Dashboard

slide-2
SLIDE 2

Smart InfoSec Automation Zero Trust Assurance Suite

  • SOAPA Dashboard Integrated with

– Network Layer (PacketX , UPAS) – Field WiFi /BLE /ZigBee Layer (ArcRan iSecMaster) – Endpoint Layer (Comodo) – File/Config Layer (CimTrak) – API / 3rd Party components Layer – VPN Jumper / HoneyPot – SIEM / SOC Tickets

slide-3
SLIDE 3

Zero Trust Assurance Suit (SOAPA Dashboard) Total White Listing View

Risk Dashboard ISAC / SOC / CSIRT Whitelist Monitoring System Host API Endpoint Segment Network Zone

WiFi /BLE /ZigBee

FIM File Process ACL

Network Layer

DLL Port IP MAC Address Protocol

+

3rd Party comp. Framework Lib / Repo Data Flow DLP UBA / BAD Cloud API Configuration iSecMaster WiFi / BLE/ ZigBee Audit Log Analysis VPN JUMP Monitoring VM 2 VM Monitoring HonetPot Deceptor Comodo PacketX Policy Enforcer SOAPA Dashboard CimTrak UPAS

Data Layer Intelligent Layer Endpoint Layer File/ Config. Layer Service Layer Behavior Layer

VPN

OS Layer

Rules Privilege

Permission Account

slide-4
SLIDE 4

iPanSec SOAPA Dashboard

  • Module 1: CMDB from InfoSec

View

  • Module 2: Vulnerability / Threat

Life Cycle Management

  • Module 3: Notification Response

Ticket Flow

– External :ISAC Ticket Flow – Internal

  • Module 4: SSDLC (Secure System

Develop Life cycle)

  • Module 5: Internal Audit &

practice

  • Module 6: InfoSec Maturity

Assessment – ISO 27032 – NIST Cyber Security Framework

  • Module 7: InfoSec Knowledge

Database – Code Fix – Patch – Response – Compliance

  • Module 8: Integrate with SOC /

SIEM

slide-5
SLIDE 5

Notification Response and Compliance

ISAC CSIRT

Vulnerability / Threat Life Cycle Management

Network / OS Applications / System

IT Assets & Configuration Management

Host System / Application

UPAS SmartIT / IP Guard/ WinMatrix OCS / Ftool Agent Nessus / Rapid 7 Acunetix/AppScan/WebInspect Fortify / Checkmarx STIX / TAXII Code Fix , Patch , Response KMDB External CTI import +

SOAPA Dashboard Modules

Auto Threat Impact Analysis Auto CMDB update Auto KMDB update

slide-6
SLIDE 6

External Internal Defense Vulnerability(ANA) Others

  • Warning(EWA)

Web Defaced (DEF) Compromised(INT) Feedback (FBI) Monitor Response Ex101 ANA Vulnerability Response Flow SOC(IPSIDS) APT Anti-Virus Network Vulnerability Assessment Web Vulnerability Assessment Code Review On-Demand

Smart InfoSec Automation

slide-7
SLIDE 7

Why?

  • Each InfoSec Solution

creates operation flow

  • Internal / External

intelligence source trigger a response flow

  • Ex. Internal Anti-Virus,

SOC , ISAC notification

slide-8
SLIDE 8

SOAPA Dashboard (security operations and analytics platform architecture)

Level SIEM Risk Mgmt. Vuln. Mgmt. SOAPA Dashboard Strategy

  • InfoSec Maturity Assessment

Knowledge Database KPI/MRI tracking Management

  • InfoSec Project Control

InfoSec Dashboard Less Human Workforce Operation

  • InfoSec Operation Automation

IT Assets Whitelisting Integrate with Threat Intelligent and ISAC

https://www.csoonline.com/article/3145408/data-protection/goodbye-siem-hello-soapa.html

slide-9
SLIDE 9

Dashboard KPI/MRI

slide-10
SLIDE 10
slide-11
SLIDE 11
slide-12
SLIDE 12

Knowledge Database Response

slide-13
SLIDE 13

Success Cases