the myths and truths about your cyber risk your r digital
play

The Myths and Truths about Your Cyber Risk Your r Digital G - PowerPoint PPT Presentation

Feb 13, 2024 •50 likes •310 views

The Myths and Truths about Your Cyber Risk Your r Digital G Guides for r today Ny Brown Sr. Systems Administrator, TAC Matt Bruns Sr. Systems Administrator, TAC Todd Kisel Risk Management Consultant, TAC Robert Ruiz RMS

  2. The Myths and Truths about Your Cyber Risk

  3. Your r Digital G Guides for r today… Ny Brown – Sr. Systems Administrator, TAC Matt Bruns – Sr. Systems Administrator, TAC Todd Kisel – Risk Management Consultant, TAC Robert Ruiz – RMS Associate Director, TAC 3

  4. Discl claim imer The information presented in this session is for educational purposes only. Coverage and Information Technology (IT) scenarios, checklists, and answers presented are not requirements of coverage, determinations or endorsements of specific software, services or technology companies. Each potential claim is unique and must be evaluated on its own merit. Coverage as provided by the TAC RMP is subject to the terms and conditions of the specific coverage document. This session does not satisfy or comply with HB 3834 (86th Legislature) requirement at this time. 4

  5. Lea Learnin ing O Obje ject ctiv ives 5

  6. My Myth # #1 I am not on social media (Facebook ,Twitter, Instagram, etc…) therefore I am not susceptible (or less of a target) to a cyber event. 6

  7. Myth # #2 I have no part in my county’s cyber plan, that is what the IT department is for (and their responsibility). 7

  8. Risks generally characterized as “cyber” are generally broader than those involving computers or computer networks. Just because your county government may not maintain Tru ruth #1 #1 or keep electronic records, does not eliminate the risk of a data breach. A data breach can be digital or physical in nature. 8

  9. Even though data Tr Truth # #2 has not been exposed, it does not mean that a county did not have a cyber security event. 9

  10. Which Cyber i r is it? • Event – is any cyber occurrence/happening • Incident – is the act of violating an explicit or implied security policy (U.S. DHS-CISA) • Breach – is the intentional or unintentional release or exposure of sensitive and private data by an unauthorized source, party or individual 1 0

  11. IT and R d Risk k Manag agem emen ent have t to be on the s same me page! NIST Cybersecurity Framework - Resilience 11

  12. Clos ose to to Home me 12

  13. Pre-incident C Checklist Who? What? When? Where? How? 1 3

  14. Exer ercise e #1 #1 At this time, we want to deepen our understanding of Cyber Security with a demonstration of some real world incidents. 1 4

  15. BEC 15

  16. US USB B or Un Unknown Safety B Brea each • Conference giveaways • Personal storage devices (USB, thumb drive…) • USB drives a friend shares with you • USB drive you found on the floor or on a table What do all these have in COMMON? 16

  17. Post-incident C Checklist Contact Contact IT and/or your contracted vendor. Notify Notify and file claim with TAC RMP or your insurance carrier. Consult Consult with Data Breach Coach* Implement Implement your Cyber Resilience/Incident Response plan Work Work with Forensic team and other key stakeholders or vendors Begin Begin mitigation and recovery efforts *Authorities may need to be notified. Consult your County Attorney and Data Breach Coach* 1 7

  18. • Have a plan • Test the plan • Identify Cyber r • Protect Resilience • Detect • Respond • Recover 18

  19. Consider erati tion ons • Does a Cyber policy cover everything? • What if funds are transferred? • Who do I call? • Where do we start? 19

  20. Pri rivacy o or r Secu curit ity E Event L Liabilit ility an and E Expense C Coverage BASIC COVERAGE DETAILS • Immediate hands on breach response • Forensic Investigation • Public Relations • Notification and Credit Monitoring (if needed) • Legal Fees • Regulatory Proceedings and Penalties • $2,000,000 limit (as of 10/01/19) subject to deductible Contained within the TAC RMP Public Official’s Liability Coverage 2 0

  21. Crime C e Cov overage BASIC COVERAGE DETAILS Employee Dishonesty • Forgery or Alteration • Theft, Disappearance and Destruction Robbery and Safe Burglary • Computer Fraud and Funds Transfer Fraud • Money Orders and Counterfeit Paper Currency • $250,000 limit subject to $1,000 deductible (no additional cost) • Higher Crime coverage limits available – ask your RMC • Contained in TAC RMP Property Coverage Document 21

  22. Resou ources ces • eRisk Hub • TAC RMP Cyber Coverage for Members with Public Officials’ Liability coverage • TAC Cybersecurity Training for Counties* • Department of Homeland Security (DHS) Cyber Resilience Review (DHS-CISA) • Texas Department of Information Resources (DIR) • TAC Risk Management Consultants *Pending official requirements from Texas DIR as mandated by HB3834* 22

  23. Practi ctical T Tips Personal County Password management Password management • • VPN VPN, firewall, email filters, etc. • • Firewall Penetration testing (soft) • • Antivirus Software patching • • Situational awareness Cyber incident response plan • • Anti-malware Employee training (ongoing) • • Common sense approach Backups – multiple locations • • Top-down support • County-wide communication & • participation Vendor & contract management – cyber • liability Lists are not meant to be exhaustive and all encompassing 23

  24. Cu Current S State 2 4

  25. As of August 20, 2019 2 5

  26. YOU COUNTY What i is Next xt… 26

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Impacts of GMO Crops on our Farming Future based on: GMO MYTHS AND TRUTHS An

Impacts of GMO Crops on our Farming Future based on: GMO MYTHS AND TRUTHS An

Bee SAFE presents Impacts of GMO Crops on our Farming Future based on: GMO MYTHS AND TRUTHS An evidence-based examination of the claims made for the safety and efficacy of genetically modified crops. 1 Report written by Genetic

449 views • 32 slides
Untangling Header Bidding Lore Some myths, some truths, and some hope Waqar Aqeel , Debopam

Untangling Header Bidding Lore Some myths, some truths, and some hope Waqar Aqeel , Debopam

Untangling Header Bidding Lore Some myths, some truths, and some hope Waqar Aqeel , Debopam Bhattacherjee, Balakrishnan Chandrasekaran, Philip Brighten Godfrey, Gregory Laughlin, Bruce M. Maggs, and Ankit Singla 1 How (traditional) Real-Time

442 views • 15 slides
Standards and Guidelines: Myths and Truths The Diagnostic Standard for Diabetes Mellitus is Fixed

Standards and Guidelines: Myths and Truths The Diagnostic Standard for Diabetes Mellitus is Fixed

Standards and Guidelines: Myths and Truths The Diagnostic Standard for Diabetes Mellitus is Fixed and Immutable ADA Criteria for Diagnosis of Diabetes A1C 6.5% FPG 126 mg/dl 2 hour PG 200 mg/dl during OGTT Classic symptoms and random

608 views • 31 slides
Taking a Closer Look: Housing Myths & Truths HOMEs 18th Annual Ventura County Housing

Taking a Closer Look: Housing Myths & Truths HOMEs 18th Annual Ventura County Housing

Taking a Closer Look: Housing Myths & Truths HOMEs 18th Annual Ventura County Housing Conference October 22, 2019 I N STIT U TE FO R G L O BA L E CO N O M I C R E S E A RC H California State C H A N N E L University I S L A

610 views • 49 slides
AMI Technology Overview AMI Technology Overview How does it work: Truths and Myths

AMI Technology Overview AMI Technology Overview How does it work: Truths and Myths

AMI Technology Overview AMI Technology Overview How does it work: Truths and Myths How does it work: Truths and Myths Meters

386 views • 10 slides
Welcome to GWTTRA 5 Myths about Digital Marketing GWTTRA TOURISM MYTHS AND LEGENDS HPR Digital

Welcome to GWTTRA 5 Myths about Digital Marketing GWTTRA TOURISM MYTHS AND LEGENDS HPR Digital

Welcome to GWTTRA 5 Myths about Digital Marketing GWTTRA TOURISM MYTHS AND LEGENDS HPR Digital Marketing LLC Myth 1: Everyone desires to travel Ans: NO! There are two main types of travelers: 1: Change travelers 2: No Change Travelers

778 views • 64 slides
Mark Fernandes Principal, Cyber Risk Services + FUTURE OF CYBER CYB CYBER SINGU GULAR ARIT

Mark Fernandes Principal, Cyber Risk Services + FUTURE OF CYBER CYB CYBER SINGU GULAR ARIT

Mark Fernandes Principal, Cyber Risk Services + FUTURE OF CYBER CYB CYBER SINGU GULAR ARIT ITY How cyber is becoming a key aspect of the ubiquity generation. CYBER SUMMIT More to come 3 2018 Deloitte Cyber Risk Services 4 2018

514 views • 19 slides
Introduction to Cyber Risk & Insurance Prepared for the Construction Financial Management

Introduction to Cyber Risk & Insurance Prepared for the Construction Financial Management

Introduction to Cyber Risk & Insurance Prepared for the Construction Financial Management Association Date: August 18, 2016 Agenda An Overview of Cyber Risk Exposures 1. Legal & Regulatory Trends 2. Marshs Cyber Risk Management

649 views • 31 slides
Data Driven Assessment of Cyber Risk: Challenges in Assessing and Mitigating Cyber Risk

Data Driven Assessment of Cyber Risk: Challenges in Assessing and Mitigating Cyber Risk

Data Driven Assessment of Cyber Risk: Challenges in Assessing and Mitigating Cyber Risk Challenges in Assessing and Mitigating Cyber Risk Mustaque Ahamad, Saby Mitra and Paul Royal Georgia Tech Information Security Center Georgia Tech

763 views • 16 slides
Cyber Security Risk Using the Cyber Security Measurement Framework Cyber Security Framework

Cyber Security Risk Using the Cyber Security Measurement Framework Cyber Security Framework

Cyber Security Risk Using the Cyber Security Measurement Framework Cyber Security Framework Reporting Objectives Executive Summary Information Assess Current Cyber Security Posture Measure Progress Toward Improvement Assess

634 views • 5 slides
Big Data Myths and Facts: Explaining Digital Transformation to non-IT Professionals Boris Novikov

Big Data Myths and Facts: Explaining Digital Transformation to non-IT Professionals Boris Novikov

Big Data Myths and Facts: Explaining Digital Transformation to non-IT Professionals Boris Novikov National Research University Higher School of Economics Saint Petersburg, Russia 1 Myths are Everywhere Misterios millenium Software

497 views • 11 slides
Technology and Cyber Wrap up Navigating the changing and challenging risk landscape How to

Technology and Cyber Wrap up Navigating the changing and challenging risk landscape How to

Technology and Cyber Wrap up Navigating the changing and challenging risk landscape How to prepare for Cyber Risk: 3 2 1 Understand the tech & Cyber insurance Focus on company interconnected risks culture 2 Policy: Protection &

774 views • 18 slides
Digital Childhood: Myths and Realities Natalia Kucirkova The Open University Myths &

Digital Childhood: Myths and Realities Natalia Kucirkova The Open University Myths &

Digital Childhood: Myths and Realities Natalia Kucirkova The Open University Myths & realities/ key issues Myths & realities/ key issues 1, Pedagogy versus technology 2, Technology versus nature 3, All technology is equal 4,

438 views • 22 slides
Cyber Risk as Systemic Risk Jon Danielsson Systemic Risk Centre London School of Economics

Cyber Risk as Systemic Risk Jon Danielsson Systemic Risk Centre London School of Economics

Introduction Systemic Risk Cyber as systemic Conclusion Cyber Risk as Systemic Risk Jon Danielsson Systemic Risk Centre London School of Economics www.systemicrisk.ac.uk June 10 th 2016 Introduction Systemic Risk Cyber as systemic

351 views • 24 slides
Assessing your Cyber Risk A Real Life Case Study Presented by: Liz Limjuco, Marsh Mike Paulino,

Assessing your Cyber Risk A Real Life Case Study Presented by: Liz Limjuco, Marsh Mike Paulino,

Assessing your Cyber Risk A Real Life Case Study Presented by: Liz Limjuco, Marsh Mike Paulino, CSG International Cindy Stevens, Colorado Springs Utilities Agenda What is Cyber Insurance Overview of Cyber Risk Quantifying Cyber

508 views • 23 slides
PREDICTIVE MODELING CONFERENCE Data Workshop Cyber Risk Models Loss Aggregation Models

PREDICTIVE MODELING CONFERENCE Data Workshop Cyber Risk Models Loss Aggregation Models

PREDICTIVE MODELING CONFERENCE Data Workshop Cyber Risk Models Loss Aggregation Models Advisens Data Assets CYBER RISK MODELS Cyber Case Count over Time Cyber Cases Entered per Day Case Type Composition Total : 21,817 Distribution

967 views • 51 slides
Crit itic ical R Ris isks an and Cr Critical [ [Co County] Budgets Event: 74 th Annual

Crit itic ical R Ris isks an and Cr Critical [ [Co County] Budgets Event: 74 th Annual

Crit itic ical R Ris isks an and Cr Critical [ [Co County] Budgets Event: 74 th Annual Texas Association of County Auditors Fall Conference October 15 18, 2019 Horseshoe Bay, TX Pres esented ed by by: Todd Kisel, Northeast Risk

136 views • 10 slides
Parker-Davis Project Transmission System Cost Allocation June 27, 2019 Phoenix, AZ Cost

Parker-Davis Project Transmission System Cost Allocation June 27, 2019 Phoenix, AZ Cost

Parker-Davis Project Transmission System Cost Allocation June 27, 2019 Phoenix, AZ Cost Allocation & Sub-Allocation Cost allocation is the process of assigning the repayment of capital costs to each function in a multiple-purpose

166 views • 14 slides
Fishermans Bend Standing Advisory Committee Public Briefing | 28 January 2020 Membership of the

Fishermans Bend Standing Advisory Committee Public Briefing | 28 January 2020 Membership of the

Fishermans Bend Standing Advisory Committee Public Briefing | 28 January 2020 Membership of the Standing Advisory Committee Dalia Cook (Chair) Michael Kirsch (Deputy Chair) Jill Garner Stefan Preuss Office of the

622 views • 14 slides
West Africa Historical GIS and the Liberated Africans Project Henry B. Lovejoy Thank the

West Africa Historical GIS and the Liberated Africans Project Henry B. Lovejoy Thank the

West Africa Historical GIS and the Liberated Africans Project Henry B. Lovejoy Thank the directors Neil Friastat, Matthew Kirschenbaum, and Trevor Muoz for inviting me and thanks to Stephanie for organizing all my travel and accommodations. It

55 views • 4 slides
Helen Pierce AIA, LEED AP BD+C AIA, LEED AP BD+C LEED AP AIA Managing Director Principal

Helen Pierce AIA, LEED AP BD+C AIA, LEED AP BD+C LEED AP AIA Managing Director Principal

Sacramento Irvine San Diego San Jose Jim Kisel Walter Estay Andrea Pippin Helen Pierce AIA, LEED AP BD+C AIA, LEED AP BD+C LEED AP AIA Managing Director Principal Educational Facilities Planner Associate Dir. of School Planning

447 views • 40 slides
LPA LPA Fairfield-Suisun Unified School District Facilities Master Plan Governing Board FMP

LPA LPA Fairfield-Suisun Unified School District Facilities Master Plan Governing Board FMP

LPA LPA Fairfield-Suisun Unified School District Facilities Master Plan Governing Board FMP Process Presentation July 9, 2015 1 Sacramento Irvine San Diego San Jose welcome 50 years 285 people sacramento 80 staff dedicated fairfield

385 views • 14 slides
Soledad Unified School District Main Street Middle School Project: Update and Discussion Regular

Soledad Unified School District Main Street Middle School Project: Update and Discussion Regular

Soledad Unified School District Main Street Middle School Project: Update and Discussion Regular Board Meeting July 27, 2016 Project Team Presenter Introductions John Dominguez, School Site Solutions, Inc., Program Manager Jim Kisel,

393 views • 22 slides
Workshop for the definition of a methodological approach for the participative management of

Workshop for the definition of a methodological approach for the participative management of

FFEM Project Optimizing the production of goods and services by Mediterranean forest ecosystems in a context of global change Workshop for the definition of a methodological approach for the participative management of forests in the

295 views • 26 slides

More recommend