SLIDE 1
Project a Secure Web 2.0
(using Drupal)
Paolo Ottolino PMP CISSP-ISSAP CISA CISM OPST ITIL paolo.ottolino (at) isc2chapter-italy.it May XX, 2016
Project a Secure Web 2.0 (using Drupal) Paolo Ottolino PMP - - PowerPoint PPT Presentation
Project a Secure Web 2.0 (using Drupal) Paolo Ottolino PMP - - PowerPoint PPT Presentation
Project a Secure Web 2.0 (using Drupal) Paolo Ottolino PMP CISSP-ISSAP CISA CISM OPST ITIL paolo.ottolino (at) isc2chapter-italy.it May XX, 2016 Agenda Web 2.0 & CMS CMS Cyber Risk Drupal Security Agenda Web 2.0 & CMS Needs,
SLIDE 2
SLIDE 3
Agenda
Web 2.0 & CMS
Needs, Functionalities, Selection
SLIDE 4
Web 2.0: Insecure by Design?
SLIDE 5
Web 2.0 & CMS: Logical Architecture
SLIDE 6
CMS Solution: Top 3 used products
SLIDE 7
Most wanted CMS Functionalities…
SLIDE 8
UK and EU Org & Biz use Drupal…
SLIDE 9
… but also US makes strong use of Drupal!
SLIDE 10
Full CMS Functionalities
SLIDE 11
Agenda
CMS Cyber Risk
Threats, Vulnerabilities, Countermeasures
SLIDE 12
CMS Threats: Security Hacking
SLIDE 13
CMS Vulnerabilities: Open Web Application SecurityProject
SLIDE 14
CMS Vulnerabilities: OWASP Top10
SLIDE 15
CMS Risks: Risk-Threat-Vulnerability Map
SLIDE 16
CMS Risks: DevOps Security Strategy
SLIDE 17
CMS Risks: DevOps Security Strategy
SLIDE 18
Agenda
Drupal Security
Security DevOps, Keeping Secure, Drupal 8
SLIDE 19
Drupal Security DevOps Strategy
SLIDE 20
Keeping Secure: CMS Patch Comparison
SLIDE 21
Keeping Secure: Drupal actors (1/2)
SLIDE 22
Keeping Secure: Drupal process (2/2)
SLIDE 23
Keeping Secure: Drupal process (2/2)
SLIDE 24
Drupal8: Cover the Lacking Functionalities…
SLIDE 25
Drupal 8: Welcome Easiness!
SLIDE 26