pr proactive ctive se secur curity ity data a
play

PR PROACTIVE CTIVE SE SECUR CURITY ITY: : DATA A BREA BREACH - PowerPoint PPT Presentation

Jun 01, 2023 •228 likes •449 views

PR PROACTIVE CTIVE SE SECUR CURITY ITY: : DATA A BREA BREACH CH ASSE ASSESSM SSMENT ENT CyberSecurity Chicago September 2018 Security In The News Frequency and severity of cyber security news on the rise 2 PROPRIETARY AND

  1. PR PROACTIVE CTIVE SE SECUR CURITY ITY: : DATA A BREA BREACH CH ASSE ASSESSM SSMENT ENT CyberSecurity Chicago September 2018

  2. Security In The News Frequency and severity of cyber security news on the rise 2 PROPRIETARY AND CONFIDENTIAL

  3. Understanding The Problem Enterprise Strategy Group (ESG) – Project Overview • Cybersecurity Realities and Priorities for 2018 and Beyond – 413 completed online surveys with cybersecurity and IT respondents with influence over cybersecurity decision-making/strategy at their organization – Enterprise (2,500 or more employees and $100 million or more in annual revenue in US and 1,000 or more employees and $50 million or more in annual revenue outside of US) organizations in United States, United Kingdom and Australia • 61% United States, 20% United Kingdom, 20% Australia – Multiple industry verticals including manufacturing, financial, retail/wholesale and health care, among others (source: ESG – Cybersecurity Realities and Priorities for 2018 and Beyond) 3 PROPRIETARY AND CONFIDENTIAL

  4. Understanding The Problem Most Significant Impact on Security Strategy Which of the following factors have the most significant impact on shaping your organization’s security strategy? (Percent of respondents, N=413, three responses accepted) Preventing/detecting malware threats 37% Proactively minimizing and mitigating risks 37% The need to support new IT initiatives 37% Need to balance application/network performance and security 36% requirements The need to support new business initiatives 31% (source: ESG – Cybersecurity Realities and Priorities for 2018 and Beyond) 4 PROPRIETARY AND CONFIDENTIAL

  5. Understanding The Problem Why Cybersecurity Has Become More Difficult Over the Past Two Years You indicated that cybersecurity has become more difficult over the last two years. In your opinion, which of the following factors have had the greatest impact on increasing cybersecurity difficulty? (Percent of respondents, N=326, three responses accep An increase in malware volume and sophistication 42% An increase in the number of new IT initiatives has made it difficult to 38% keep up with cybersecurity An increase in the number of targeted attacks that may circumvent 34% traditional network security controls An increase in the number of devices connecting to the network 32% An increase in network traffic 29% (source: ESG – Cybersecurity Realities and Priorities for 2018 and Beyond) 5 PROPRIETARY AND CONFIDENTIAL

  6. Understanding The Problem Areas of Cybersecurity Budget Change for 2018 You stated that your organization’s cybersecurity budget will go up in 2018. Please indicate how the cybersecurity budget will change in each of the following areas: (Percent of respondents, N=413) Increase significantly from 2017 Increase somewhat from 2017 Remain about the same as 2017 Decrease somewhat from 2017 Decrease significantly from 2017 Network security 46% 45% 7% 1% Cloud security 46% 41% 12% 1% Application/database security 36% 50% 12% 1% Security testing/validation 34% 50% 16% 1% Host-based security 31% 44% 23% 1% Training 28% 43% 27% 2% 1% Personnel 22% 39% 37% 2% 0% 10% 20% 30% 40% 50% 60% 70% 80% 90% 100% (source: ESG – Cybersecurity Realities and Priorities for 2018 and Beyond) 6 PROPRIETARY AND CONFIDENTIAL

  7. Understanding The Problem Why Organizations Conduct More Security Testing You indicated that your organization does more security testing today than it did two years ago. Which of the following factors most contributed to this increase? (Percent of respondents, N=372, three responses accepted) We have come to believe that frequent security testing is a best practice 34% Many of our application workloads now reside in the cloud so we felt it was important to 33% increase security testing in support of using cloud infrastructure services Our CISO (or similar senior position) has pushed the organization to do more proactive 33% security testing We must perform security testing more often as part of regulatory compliance 33% We’ve implemented new types of production applications over the past two years 29% Business managers are more involved with cybersecurity and they require us to do more 29% security testing for risk assessment purposes Our security budget has increased recently, freeing up funds for more security testing 28% My organization suffered a security breach which led us to do more frequent security 22% proactive testing My organization has purchased cyber insurance and we are obligated to do more security 20% testing in support of this Third-party customers have mandated that we do security testing more often 12% (source: ESG – Cybersecurity Realities and Priorities for 2018 and Beyond) 7 PROPRIETARY AND CONFIDENTIAL

  8. Understanding The Problem The Bigger Truth • Traditional cybersecurity strategies are not working – Cybersecurity grows incrementally more difficult – Organizations are understaffed and lack the right skills • “An ounce of prevention is worth a pound of cure” – Security is “moving to the left” – More comprehensive testing – Proactivity • Changes are happening – CISO responsibilities – Transition to cloud computing – Budget increases – SaaS (source: ESG – Cybersecurity Realities and Priorities for 2018 and Beyond) 8 PROPRIETARY AND CONFIDENTIAL

  9. Data Breach Assessment Data Breach Statistics • There has been the consistent rise over the past few years in the total number of data breaches – Massive data breaches like Equifax, Yahoo, or Target expose or compromise sensitive information on the order of millions, or even billions of accounts – 2017 was a record-breaking year with a total of 5,207 data breaches, exposing nearly 8 billion information records (source: Dark Reading) 9 PROPRIETARY AND CONFIDENTIAL

  10. “The art of war teaches us to rely not on the likelihood of the enemy’s not coming, but on our own readiness to receive him” – Sun Tzu, The Art of War 10 PROPRIETARY AND CONFIDENTIAL

  11. Automated Purple Team Assessments Continual validation of your network’s threat landscape • Define your topology including zone details and begin to perform automated red vs. blue assessments • Data Breach Assessment can leverage knowledge of zone to tailor its executed exploits and malware to your environment • Meet / prepare for regulatory compliance requirements with continual assessments Assess your threat landscape and find the holes before the bad guys do 11 PROPRIETARY AND CONFIDENTIAL

  12. Emulation over Simulation When you look closely you can tell it isn’t real… • Emulation – reproduction of the exact scenario such that it is a recreation or replicate and indistinguishable from the original • Simulation – fabrication of a scenario with the goal to mimic or resemble said scenario that it could be passable if not evaluated closely • Solutions in the market today leverage pcap replay (i.e., simulation) which can lead to incorrect results and false sense of security Only use emulated attacks and malware 12 PROPRIETARY AND CONFIDENTIAL

  13. Evasion Techniques Evade detection by leveraging attacker techniques • Hide your attacks in plain sight by using tried and true techniques used by attackers to evasion detection • Validate all techniques across all attack vectors (including exploits and malware) to confirm your security solutions cannot be easily bypassed Confirm security solutions cannot be easily fooled by evasion techniques 13 PROPRIETARY AND CONFIDENTIAL

  14. Active Monitoring Know the impacts of security content inspection in real-time • Assess the impacts of security inspection by generating legitimate, hyper-realistic emulated traffic for the same services you are protecting • Limit the impact to users by finding security policies that degrade performance and do not provide additional security coverage Fine tune your security policies with active monitoring 14 PROPRIETARY AND CONFIDENTIAL

  15. False Positive And Data Loss Prevention Verification Secure communications without compromising them • Verify that security solutions don’t just block all files of that filetype but actually inspect them to stop the malicious ones without impact to your user’s daily work Security Device • Validate that intellectual property and other sensitive file content (e.g., SSNs, credit card numbers) does not leave your network Verify data loss policies across filetypes IP/DLP and network vectors 15 PROPRIETARY AND CONFIDENTIAL

  16. Evaluating Multi-Tier Security Protection Emulating Scenarios That Look and Feel Like An Attacker Multi-path Attack – Secure Datacenter Firewall Policies Data Loss Allowed Prevention (DLP) Denied 1. User browses to the Internet and accesses a website controlled by the attacker 2. User laptop is compromised and is under the control of the attacker 3. The attacker pivots and attacks a server within the secure datacenter 4. Once compromised, Corporate LAN the attacker can control the internal server and send data outbound to servers controlled by the Internet attacker 16 PROPRIETARY AND CONFIDENTIAL

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

COMMUNICATING E FFE CTIVE L Y ABOUT BALANCING ANIMAL WE LF ARE AGAINST OTHE R

COMMUNICATING E FFE CTIVE L Y ABOUT BALANCING ANIMAL WE LF ARE AGAINST OTHE R

COMMUNICATING E FFE CTIVE L Y ABOUT BALANCING ANIMAL WE LF ARE AGAINST OTHE R SUSTAINABILITY CONSIDE RATIONS FOR FOOD PRODUCTION (FOOD SE CURITY , AFFORDABILITY , QUALITY AND SAFE TY , E NVIRONME NTAL IMPACTS) What does success

345 views • 6 slides
Se Secur ure Data a Type pes: A A Simp mple Ab Abstract ction for Co

Se Secur ure Data a Type pes: A A Simp mple Ab Abstract ction for Co

Se Secur ure Data a Type pes: A A Simp mple Ab Abstract ction for Co Confidentiality-Preserving g Da Data An Analytics Savvas Savvides, Julian Stephen, Masoud Saeida Ardekani, Vinaitheerthan Sundaram, Patrick Eugster Purdue

506 views • 14 slides
DO-Pill SecuR: The intelligent pillbox Composition of DO-Pill SecuR Programmable electronic

DO-Pill SecuR: The intelligent pillbox Composition of DO-Pill SecuR Programmable electronic

DO-Pill SecuR: The intelligent pillbox Composition of DO-Pill SecuR Programmable electronic device. Blister pack Dynamic membrane Intelligent Pillbox Indicates to patient the exact period to take his medication via a sound alert, plus

166 views • 13 slides
Le Lecture 15 15 Access Control 1 Recall: Secu curity Service ces Confidentiality: to

Le Lecture 15 15 Access Control 1 Recall: Secu curity Service ces Confidentiality: to

Le Lecture 15 15 Access Control 1 Recall: Secu curity Service ces Confidentiality: to assure information privacy and secrecy Authentication: to assert who created or sent data Integrity: to show that data has not been altered

656 views • 32 slides
Unde Understandi nding+O ng+Ope pen+P n+Ports+i +in+A n+Andr ndroid+ d+ Ap

Unde Understandi nding+O ng+Ope pen+P n+Ports+i +in+A n+Andr ndroid+ d+ Ap

Unde Understandi nding+O ng+Ope pen+P n+Ports+i +in+A n+Andr ndroid+ d+ Ap Applications:+Discover ery,+Diagnosis,+and+ Se Secur curity+A y+Assessme ment Daoyuan Wu 1 ,*Debin Gao 1 ,*Rocky*K.*C.*Chang 2 ,* En He 3 ,*Eric*K.*T.*Cheng

249 views • 21 slides
f ood secur it y bil l : Wa y f or W a r d t o opt im a l nut r it ion Pr ema r a ma

f ood secur it y bil l : Wa y f or W a r d t o opt im a l nut r it ion Pr ema r a ma

f ood secur it y bil l : Wa y f or W a r d t o opt im a l nut r it ion Pr ema r a ma cha ndr a n Nut r it ioN f ouNda t ioN of iNdia , New del hi. 21 st Novem ber , 2013 Perspective Food price inflation Food security act NSIs

796 views • 48 slides
Investigating a proactive approach for bicyclists safety by using GPS data Conceptual Safety

Investigating a proactive approach for bicyclists safety by using GPS data Conceptual Safety

International Co-operation on Theories and Concepts in Traffic safety (ICTCT) Proactive approach 2425 th October 2019, Warsaw, POLAND Investigating a proactive approach for bicyclists safety by using GPS data Conceptual Safety Pyramid

160 views • 3 slides
Backup and Recovery What is data backup and recovery? Data backup is a proactive means to

Backup and Recovery What is data backup and recovery? Data backup is a proactive means to

Backup and Recovery What is data backup and recovery? Data backup is a proactive means to mitigate the loss of data, files, or systems by creating duplicate copies of data. Creating backups can reduce the chance of losing vital data. Recovery is

112 views • 7 slides
Efficient Scientific Data Management on Supercomputers HDF5 and Proactive Data Containers

Efficient Scientific Data Management on Supercomputers HDF5 and Proactive Data Containers

Efficient Scientific Data Management on Supercomputers HDF5 and Proactive Data Containers (PDC) Suren Byna Staff Scientist Scientific Data Management Group Data Science and Technology Department Lawrence Berkeley National Laboratory

1.16k views • 53 slides
How to become a True stories to become a proactive developer! proactive developer? PRESENTED

How to become a True stories to become a proactive developer! proactive developer? PRESENTED

How to become a True stories to become a proactive developer! proactive developer? PRESENTED BY Eduardo Telaya Software arquitect Whats Inside What does it mean to be proactive 7 developer? How to find opportunities to be 14

587 views • 21 slides
Pract ctical Cybersecu curity Ri Risk a and C Control Ma Maturi urity A y Asse ssessme

Pract ctical Cybersecu curity Ri Risk a and C Control Ma Maturi urity A y Asse ssessme

Pract ctical Cybersecu curity Ri Risk a and C Control Ma Maturi urity A y Asse ssessme ssments Brian Fricke, CISSP, CISM Chief Information Security Officer None of the data presented in this presentation represents the actual security

140 views • 13 slides
Ho How t to m mak ake your ur Zoo oom m cl class s secur cure and p d pri rivate We

Ho How t to m mak ake your ur Zoo oom m cl class s secur cure and p d pri rivate We

Ho How t to m mak ake your ur Zoo oom m cl class s secur cure and p d pri rivate We will begin shortly. Please answer the brief poll question. Ron Owston, PhD Research Associate, Contact North Professor Emeritus, York University

472 views • 25 slides
Ho How t to m mak ake your ur Zoo oom m cl class s secur cure and p d pri rivate We

Ho How t to m mak ake your ur Zoo oom m cl class s secur cure and p d pri rivate We

Ho How t to m mak ake your ur Zoo oom m cl class s secur cure and p d pri rivate We will begin shortly. Please answer the brief poll question. Ron Owston, PhD Research Associate, Contact North Professor Emeritus, York University

326 views • 28 slides
PERSONAL PRONOUNS 2 PERSONAL PRONOUNS SUBJE JECT CTIVE AND OBJECT CTIVE CASE

PERSONAL PRONOUNS 2 PERSONAL PRONOUNS SUBJE JECT CTIVE AND OBJECT CTIVE CASE

PERSONAL PRONOUNS 2 PERSONAL PRONOUNS SUBJE JECT CTIVE AND OBJECT CTIVE CASE Referem-se s pessoas do discurso; Funcionam como sujeito ou substituem um elemento com funo de sujeito; Funcionam como objeto ou

470 views • 27 slides
WBA Secur-IT Conference The Art of Human Hacking You can trust me. WHAT ARE THE EFFECTS?

WBA Secur-IT Conference The Art of Human Hacking You can trust me. WHAT ARE THE EFFECTS?

WBA Secur-IT Conference The Art of Human Hacking You can trust me. WHAT ARE THE EFFECTS? The global cost of cybercrime will reach $6 trillion by 2021, twelve times increase from the 2016 estimate of $450 billion. May only be tip

642 views • 41 slides
CHANGI CHANGING SO NG SOCI CIAL AL Harrington Meyer SECU SE CURITY I Y IN THE N THE

CHANGI CHANGING SO NG SOCI CIAL AL Harrington Meyer SECU SE CURITY I Y IN THE N THE

Madonna CHANGI CHANGING SO NG SOCI CIAL AL Harrington Meyer SECU SE CURITY I Y IN THE N THE U US: S: Professor, Sociology R RISING INSECUR ISING INSECURIT ITY? Y? Syracuse University PO POVERTY-BASE -BASED SSI D SSI

331 views • 15 slides
GSP Stakeholder Committee Stakeholder Committee Meeting July 23, 2018 Agenda Welcome,

GSP Stakeholder Committee Stakeholder Committee Meeting July 23, 2018 Agenda Welcome,

GSP Stakeholder Committee Stakeholder Committee Meeting July 23, 2018 Agenda Welcome, Introductions, and Agenda Review Merced Subbasin Water Resources Model and Water Budget Baseline overview Current status Undesirable

742 views • 38 slides
Support Vector Machine Machine Learning 10-601B Seyoung Kim

Support Vector Machine Machine Learning 10-601B Seyoung Kim

Support Vector Machine Machine Learning 10-601B Seyoung Kim Many of these slides are derived fromTom Mitchell, Ziv Bar-Joseph. Thanks! Types of

608 views • 30 slides
r rt r t r

r rt r t r

r rt r t r r t s Pr tr r

694 views • 51 slides
Local Density of States in 1D Mott Insulators with a Boundary F.H.L. Essler (Oxford) D.

Local Density of States in 1D Mott Insulators with a Boundary F.H.L. Essler (Oxford) D.

Local Density of States in 1D Mott Insulators with a Boundary F.H.L. Essler (Oxford) D. Schuricht (Oxford), E. Fradkin and A. Jaefari (Urbana) D. Schuricht and F.H.L. Essler, JSTAT P11004 (2007) D. Schuricht, F.H.L. Essler, A. Jaefari and E.

594 views • 22 slides
1 Data Mining and Privacy The primary task in data mining: Develop models about aggregated

1 Data Mining and Privacy The primary task in data mining: Develop models about aggregated

Privacy Breaches in Privacy-Preserving Data Mining Johannes Gehrke Department of Computer Science Cornell University Joint work with Sasha Evfimievski (Cornell), Ramakrishnan Srikant (IBM), and Rakesh Agrawal (IBM) Motivation: Information

310 views • 18 slides
CSC 495.002 Group Projects Dr. Ozg ur Kafal North Carolina State University

CSC 495.002 Group Projects Dr. Ozg ur Kafal North Carolina State University

CSC 495.002 Group Projects Dr. Ozg ur Kafal North Carolina State University Department of Computer Science Fall 2017 G ENERAL I NFORMATION Group Work Goals: Give you experience (both research and development) on a specific topic

462 views • 23 slides
Formal Methods and CyberSecurity James Davenport University of Bath Former Fulbright

Formal Methods and CyberSecurity James Davenport University of Bath Former Fulbright

Formal Methods and CyberSecurity James Davenport University of Bath Former Fulbright CyberSecurity Scholar 4 September 2019 James Davenport Formal Methods and CyberSecurity CyberSecurity CyberSecurity failures abound: tens daily in the

212 views • 19 slides
CYBER SECURITY - DE-RISKING THE USE OF CLOUD SERVICES Maritz Cloete, CISSP, M.CIIS 16 September

CYBER SECURITY - DE-RISKING THE USE OF CLOUD SERVICES Maritz Cloete, CISSP, M.CIIS 16 September

CYBER SECURITY - DE-RISKING THE USE OF CLOUD SERVICES Maritz Cloete, CISSP, M.CIIS 16 September 2020 INTRODUCTIONS Maritz Cloete Information/Cyber Security Consultant Background Cyber security risk management Implementing

549 views • 29 slides

More recommend