Larry Clinton Operations Officer Internet Security Alliance - - PowerPoint PPT Presentation

▶

Apr 30, 2023 193 likes •316 views

Larry Clinton Operations Officer Internet Security Alliance lclinton@isalliance.org 703-907-7028 202-236-0001 The Internet Security Alliance The Internet Security Alliance is a collaborative effort between Carnegie Mellon Universitys

SLIDE 1

Larry Clinton Operations Officer Internet Security Alliance lclinton@isalliance.org 703-907-7028 202-236-0001

SLIDE 2

The Internet Security Alliance

The Internet Security Alliance is a collaborative effort between Carnegie Mellon University’s Software Engineering Institute (SEI) and its CERT Coordination Center (CERT/CC) and the Electronic Industries Alliance (EIA), a federation of trade associations with

ver 2,500 members.

SLIDE 3

The Past

SLIDE 5

Source: http://cm.bell-labs.com/who/ches/map/gallery/index.html

The Present

SLIDE 6

Growth in Incidents Reported to the CERT/CC

1988 1989 1990 1991 1992 1993 1994 1995 1996 1997 1998 1999 2000 2001 2002 132 110,000 55,100 21,756 9,859 3,734 2,134 2,573 2,412 2,340 1,334 773 406 252 6

20000 40000 60000 80000 100000 120000

SLIDE 7

1. Invest in Cyber Security

2.Consider Risk Mitigation 3.Become Involved in the Policy Debate

4. Implement Best practices

5.Join an Information Sharing Organization

SLIDE 8

Step 4. Adopt and Implement ISAlliance Best Practices

Cited in US National Draft

Strategy to Protect Cyber Space (September 2002)

Endorsed by TechNet for CEO

Security Initiative (April 2003)

Endorsed US India Business

Council (April 2003)

SLIDE 9

Common Sense Guide Top Ten Practice Topics

Practice #1: General Management
Practice #2: Policy
Practice #3: Risk Management
Practice #4: Security Architecture & Design
Practice #5: User Issues
Practice #6: System & Network Management
Practice #7: Authentication & Authorization
Practice #8: Monitor & Audit
Practice #9: Physical Security
Practice #10: Continuity Planning & Disaster Recovery

SLIDE 10

ISAlliance/CERT Training

Concepts and Trends In Information Security
Information Security for Technical Staff
OCTAVE Method Training Workshop
Overview of Managing Computer Security Incident

Response Teams

Fundamentals of Incident Handling
Advanced Incident Handling for Technical Staff
Information Survivability an Executive Perspective

SLIDE 11

CERT Knowledgebase Examples

SLIDE 12

Larry Clinton Operations Officer Internet Security Alliance lclinton@isalliance.org 703-907-7028 202-236-0001

The Internet Security Alliance

The Internet Security Alliance is a collaborative effort between Carnegie Mellon University’s Software Engineering Institute (SEI) and its CERT Coordination Center (CERT/CC) and the Electronic Industries Alliance (EIA), a federation of trade associations with

Sponsors

The Past

The Present

Growth in Incidents Reported to the CERT/CC

2.Consider Risk Mitigation 3.Become Involved in the Policy Debate

5.Join an Information Sharing Organization

Step 4. Adopt and Implement ISAlliance Best Practices

Strategy to Protect Cyber Space (September 2002)

Security Initiative (April 2003)

Council (April 2003)

Common Sense Guide Top Ten Practice Topics

ISAlliance/CERT Training

Response Teams

CERT Knowledgebase Examples

Larry Clinton Operations Officer Internet Security Alliance lclinton@isalliance.org 703-907-7028 202-236-0001