understanding the difference between noise intelligence
play

Understanding the Difference Between Noise & Intelligence - PowerPoint PPT Presentation

Sep 07, 2022 •352 likes •803 views

Understanding the Difference Between Noise & Intelligence CSOHIMSS Spring Conference OCLC Conference Center, Dublin, OH | May 20, 2016 Lynn R. Child Education AA Tiffin University BA Ohio Northern University MA Bowling Green

  1. Understanding the Difference Between Noise & Intelligence CSOHIMSS Spring Conference OCLC Conference Center, Dublin, OH | May 20, 2016

  2. Lynn R. Child Education AA – Tiffin University BA – Ohio Northern University MA – Bowling Green State University MA – George Washington University Experience Principal Founder, President & Chairman - CentraComm CEO - Aardvark Inc. 2

  3. Joanne White CIO HIPAA Privacy & Security Officer Wood County Hospital

  4. Agenda of Topics • Define Internet of Things (IoT) • Explain Ways IoT Improves Healthcare • Define Big Data Analytics • Define SIM + SEM = SIEM • Explain SIEM Components per Gartner • Provide Business Cases for Use of SIEM in Healthcare • Show Examples of SIEM at Wood County Hospital • Q & A

  6. Population of California – 38.8m Texas – 27m Pennsylvania – 12m Illinois – 12m Ohio – 11 m Michigan – 10m Combined

  7. What is the Internet of Things • The Internet of Things is the network of physical objects that contain embedded technology to communicate and sense or interact with their internal states or the external environment.

  8. Some Examples of the IoT Devices

  9. More Examples of the IoT Devices 9

  10. Even Rail Cars Create Data 10

  11. List of countries by IoT devices A Connected Society online per 100 inhabitants as published by the OECD* in 2015. Rank Country Devices online Relative size 1 South Korea 37.9 2 Denmark 32.7 3 Switzerland 29.0 4 United States 24.9 5 Netherlands 24.7 6 Germany 22.4 7 Sweden 21.9 8 Spain 19.9 Over 75 9 France 17.6 10 Portugal 16.2 Billion 11 Belgium 15.6 12 United Kingdom 13.0 Connected 13 Canada 11.6 14 Italy 10.2 Devices by 15 Brazil 9.2 16 Japan 8.2 2020! 17 Australia 7.9 18 Mexico 6.8 19 Poland 6.3 20 China 6.2 21 Colombia 6.1 22 Russia 4.9 23 Turkey 2.3 24 India 0.6 *Organisation_for_Economic_Co-operation_and_Development

  12. IoT is the interplay between bedside monitors, IoT in Healthcare smartwatches and fitness trackers, implanted medical devices, and any other object that transmits or receives a signal containing data that must be accessed or stored somewhere else.

  13. Medical IoT Devices Www.summitdata.com

  14. Sources of Medical IoT Data

  15. 3 Ways IoT improves Healthcare  Increase Operational Efficiency • Track Patients • Manage Inventory & Time • Manage Equipment  Improve Patient Care • Incorporate Mobile Devices • Access Data from Wearable Technologies • Integrate Electronic Medical Records  Support Leadership and Leverage Innovation • Capture and Analyze Data • Improve Performance and Quicken Innovation • Enhance Time Dedicated to Patient Care and Building Strategies • Improve Overall Operations http://www.himss.org/News/NewsDetail.aspx?ItemNumber=40536

  16. IoT Creates Big Data - Big Data Comes from Machines Volume | Velocity | Variety | Variability GPS, RFID, Hypervisor, Web Servers, Email, Messaging, Clickstreams, Mobile, Telephony, IVR, Databases, Sensors, Telematics, Storage, Servers, Security Devices, Desktops Medical Appliances & Devices 16

  17. Value comes from Big Data Analysis Big data analytics is the process of examining large data sets containing a variety of data types -- i.e., big data -- to uncover hidden patterns, unknown correlations, market trends, customer preferences and other useful business information. All of this data must be secure! http://searchbusinessanalytics.techtarget.com/definition/big- data-analytics

  18. Breaches Result from Unsecure Networks and/or Data .

  19. SIEM: An effective security tool Security information and event management (SIEM) is an approach to security management that seeks to provide a holistic view of an organization's information technology (IT) security. http://searchsecurity.techtarget.com/definition/security-information- and-event-management-SIEM

  20. SIM + SEM = SIEM SIM - long-term storage as well as analysis and reporting of log data SEM - real-time monitoring, correlation of events, notifications and console view SIEM - real-time analysis of security alerts generated by network hardware and applications https://en.wikipedia.org/wiki/Security_information_and_event_management

  21. SIEM Components  Gathers, analyzes and presents information from network and security devices  Includes identity and access-management applications  Incorporates vulnerability management and policy-compliance tools  Supports operating-system, database and application logs  Includes external threat data https://www.gartner.com/doc/480703/improve-it-security- vulnerability-management

  22. Turning Noise into Intelligence Big Data IoT Analytics SIEM Data Aggregation & Reporting Better, Quicker, Safer & More Effective IT & Business Decision Making

  23. Data ta Powers ers Bu Business ness Decisions isions

  24. Wood County Hospital Concerns • Networks…and threats are becoming more complex • IT security roles are becoming increasingly specialized / minimal staff • Continuous monitoring of inventories and vulnerabilities is the new norm • Even smaller healthcare facilities must correlate and analyze big data • Most aren’t prepared to survive a cyber attack

  25. Wood County Hospital Desired Solution • Cloud-based SIEM based on Elasticsearch, big data and machine learning • Monthly Vulnerability Assessments • Personalized service managed by a dedicated security engineer • Continuous monitoring, analysis and correlations of events, logs and user information • Custom alerts, response management and reporting • Filter out false-positive incident alerts • Ensure proactive detection and response to threats, intrusions and attacks

  26. Wood County Hospital Solution External • Cloud-based SIEM 24x7 continuous monitoring of external threats • Currently includes logs from the firewalls and Forcepoint • Forcepoint includes url filtering, email encryption, DLP, and malware

  27. Problem Detected • Our training department complained that a website was blocked • The reason was found in our log • The owner of the website was unaware they had 41 malicious links on their site. • We were able to send them a copy of the log to take corrective action • Note: To date they have not resolved these issues

  29. ACE Insight Report Generated 2016-02-25 at 7:40:51 PM UTC Input: http://toledoshrm.org Analysis for: http://toledoshrm.org Link detection summary: Shows the actual name and type of the security threat. Threat Name Threat Type Description Injection.Black_SEO.Web.RTSS Injection Black_SEO Shows the total number of links and the number of links that point to malicious destinations. Total Number of Links 250 Malicious Links 41 URL link detection Review analysis of all links within the target URL or IP address, including detailed link properties Threat Severity Real-time Security Analysis URL Medium Compromised Websites http://toledoshrm.org/images/Ads/11/11- PWMGlogo_TAHRAHOMEPAGE.jpg Medium Compromised Websites http://creativeindoorplay.co.uk/config.php?page=70-412.html Medium Compromised Websites http://socialmediarodeo.com/config.php?page=/comptia/220-801-ex Medium Compromised Websites http://creativeindoorplay.co.uk/config.php?page=1Z0-051.html Medium Compromised Websites http://www.toledoshrm.org/documents/meetings/DianaBioasof

  30. Problem Detected • Another case where the SIEM log alerted us to take corrective action • We received an email alert and phone call • This server is located at a hosting facility

  31. Corrective Action • The log identified Bedep Malware on one of our Terminal Servers • We ran Sophos on it but contained rootkit and would not boot in safe mode • The server had to be re-imaged

  32. Incident Type: Incident Systems Impacted: whcts3 Description: The system whcts3 (xx.xx.xx.xx) appears to be infected with Bedep Malware. We have evidence of traffic to known malware control sites on the internet subsequent to a visit to an exploit page. IDS Signatures hit: Bedep HTTP POST CnC Beacon Possible Compromised Host Sinkhole Cookie Value Snkz Possible Bedep Connectivity Check Possible Angler EK Payload June 16 2015 M2 Possible Angler EK Landing URI Struct Jul 15 M1 T1 Possible Angler EK IE DHE Post M3 Possible Angler EK Flash Exploit June 16 2015 M1 Angler or Nuclear EK Flash Exploit M2 Angler or Nuclear EK Flash Exploit (IE) Jun 16 M1 T2 Angler EK Landing URI Struct Oct 12 Recommended Actions: The system whcts3 should have AV scanners run on it, or it should be re- imaged depending on your virus policies.

  33. Wood County Hospital Solution Internal • Cloud-based SIEM 24x7 continuous monitoring of internal threats • Darktrace appliance on-site for POC

  38. 3 Bu Business ness Cases s fo for SIE IEM in He n Healthcare lthcare 1. Streamline compliance reporting 2. Detect incidents that would otherwise not be detected 3. Improve the efficiency of incident handling activities http://searchsecurity.techtarget.com/feature/Three-enterprise- benefits-of-SIEM-products

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Difference-in-Difference estimator Presented at Summer School 2015 by Ziyodullo Parpiev, PhD

Difference-in-Difference estimator Presented at Summer School 2015 by Ziyodullo Parpiev, PhD

Difference-in-Difference estimator Presented at Summer School 2015 by Ziyodullo Parpiev, PhD June 9, 2015 Tashkent Todays Class Non-experimental Methods: Difference-in-differences Understanding how it works How to test the

772 views • 52 slides
My User-experience and Understanding of OSINT and Private Intelligence Agency as

My User-experience and Understanding of OSINT and Private Intelligence Agency as

My User-experience and Understanding of OSINT and Private Intelligence Agency as Fresh Intelligence Analyst Presented by Animus CHOW Chun Pong REVLUN 19 Before I joined the Industry Brief Outlook of My Background, My Skills,

429 views • 27 slides
Understanding the A,B,Cs & Ds of Medicare by Emily Carrick What is the difference between:

Understanding the A,B,Cs & Ds of Medicare by Emily Carrick What is the difference between:

Understanding the A,B,Cs & Ds of Medicare by Emily Carrick What is the difference between: Social Security Pension program for individuals ages 62+ and the disabled. SSA also enrolls people onto Medicare. Medicaid Program to provide

488 views • 23 slides
Visioning Committee Air Quality and Noise January 23, 2020 Noise Data Noise is evaluated on

Visioning Committee Air Quality and Noise January 23, 2020 Noise Data Noise is evaluated on

Visioning Committee Air Quality and Noise January 23, 2020 Noise Data Noise is evaluated on intensity, duration, and area impacted S ource: FAA Noise Contour Map 2 ICAO Aircraft Certification - Noise Reference Points (1476 ft.) (6562

670 views • 24 slides
Towards Understanding the Importance of Noise in Training Neural Networks Mo Zhou , Tianyi Liu

Towards Understanding the Importance of Noise in Training Neural Networks Mo Zhou , Tianyi Liu

Towards Understanding the Importance of Noise in Training Neural Networks Mo Zhou , Tianyi Liu , Yan Li , Dachao Lin , Enlu Zhou and Tuo Zhao Georgia Tech and Peking University June. 12, 2019 International

775 views • 59 slides
CSSM Understanding radiated noise measured UNCLASSIFIED at different sound ranges Hans

CSSM Understanding radiated noise measured UNCLASSIFIED at different sound ranges Hans

C entre for S hip S ignature M anagement CSSM Understanding radiated noise measured UNCLASSIFIED at different sound ranges Hans Hasenpflug,Stefan Schael, Anton Homm, November 2016 Layton Gilroy and David J McIntosh Backgound The acoustic

657 views • 23 slides
The effect of AM noise on correlation PM noise measurements 1/f noise in RF and microwave

The effect of AM noise on correlation PM noise measurements 1/f noise in RF and microwave

The effect of AM noise on correlation PM noise measurements 1/f noise in RF and microwave amplifiers Enrico Rubiola, Rodolphe Boudot, Yannick Gruson FEMTO-ST Institute, Besanon, France CNRS and Universit de Franche Comt TimeNav 07

731 views • 27 slides
Causal inference Part II: Difference In Difference and Instrumental Variables Difference in

Causal inference Part II: Difference In Difference and Instrumental Variables Difference in

Causal inference Part II: Difference In Difference and Instrumental Variables Difference in difference Card & Krueger (1995,AER) Rise in minimum wage from 4,2$ to 5,05$ in April 1992 in the State of New Jersey. Research question:

405 views • 28 slides
Spoken Language Understanding EE596B/LING580K -- Conversational Artificial Intelligence Hao Fang

Spoken Language Understanding EE596B/LING580K -- Conversational Artificial Intelligence Hao Fang

Spoken Language Understanding EE596B/LING580K -- Conversational Artificial Intelligence Hao Fang University of Washington 4/3/2018 1 Can machines think? A. M. Turing (1950) Computing Machinery and Intelligence Nevertheless I

861 views • 70 slides
NOISE AT WORK AWARENESS SESSION FOR WORKERS WHAT IS NOISE Noise is all around us at home,

NOISE AT WORK AWARENESS SESSION FOR WORKERS WHAT IS NOISE Noise is all around us at home,

LIFE NEEDS SOUND NOISE AT WORK AWARENESS SESSION FOR WORKERS WHAT IS NOISE Noise is all around us at home, at leisure and at work If noise is too loud and we are exposed for too long it can damage our hearing and afgect our safety at

249 views • 14 slides
Understanding GitOps IBM Cloud and Cognitive Software GitOps What is the difference between

Understanding GitOps IBM Cloud and Cognitive Software GitOps What is the difference between

Understanding GitOps IBM Cloud and Cognitive Software GitOps What is the difference between GitOps and CiCd / DevOps / . ?? - It is Ci/Cd Process used my devs BUT for App Config and Infra Config Declarative description of the system is

457 views • 9 slides
= x ... What is a Statistic ? What are Statistic s ? A quantity that is computed

= x ... What is a Statistic ? What are Statistic s ? A quantity that is computed

Why do we need statistics? CS533 Modeling and Performance 1. Noise, noise, noise, noise, noise! Evaluation of Network and Computer Systems Statistics for Performance Evaluation OK not really this type of noise (Chapters 12-15) Why Do

774 views • 20 slides
An alternative use of difference as a geographical concept; a case study investigation of

An alternative use of difference as a geographical concept; a case study investigation of

An alternative use of difference as a geographical concept; a case study investigation of how difference impacts A Level understanding of issues of urban inequality. A constructivist epistemological stance and interpretivist

177 views • 4 slides
The Difference between Knowledge and Understanding Sherri Roush Department of Philosophy Group

The Difference between Knowledge and Understanding Sherri Roush Department of Philosophy Group

The Difference between Knowledge and Understanding Sherri Roush Department of Philosophy Group in Logic and the Methodology of Science U.C. Berkeley 2 3 Jones Smith Brown 1962 4 Gettier case Smith believes from experience q Jones

1.13k views • 97 slides
3D and environment Noise visualization Noise visualization Philippe Royer Noise, air and non

3D and environment Noise visualization Noise visualization Philippe Royer Noise, air and non

3D and environment Noise visualization Noise visualization Philippe Royer Noise, air and non - ionising radiation division REPUBLIQUE Service de l'air, du bruit et des rayonnements non ionisants ET CANTON DE GENEVE Rsum de la

611 views • 22 slides
1 Noise related activities of State Health Office (LGA) Noise related activities of State Health

1 Noise related activities of State Health Office (LGA) Noise related activities of State Health

WG 42: NOISE Noise typology Environmental noise Environment and Health road, rail and air traffic industries, constriction and public work Aspects of Noise neighborhood ventilation systems, office machines, home appliances Leisure

568 views • 3 slides
Workshop GG Energy Savings Champions Best Practices & Case Studies in Energy Reduction

Workshop GG Energy Savings Champions Best Practices & Case Studies in Energy Reduction

Workshop GG Energy Savings Champions Best Practices & Case Studies in Energy Reduction & Energy Efficiency in Award-Winning Medium-Sized Companies Wednesday, February 20, 2019 2 p.m. to 3:15 p.m. Biographical Information Angela

929 views • 55 slides
Slide 1 ___________________________________ ___________________________________ 2018 Access for

Slide 1 ___________________________________ ___________________________________ 2018 Access for

Slide 1 ___________________________________ ___________________________________ 2018 Access for ELLs 2.0 Suite of Assessments Department of Bilingual ___________________________________ Education and World Languages Test Chairpersons

521 views • 18 slides
2019/20 Agreement Trial Subject: Music Composition with Technology Date: 24/10/19 AGENDA

2019/20 Agreement Trial Subject: Music Composition with Technology Date: 24/10/19 AGENDA

2019/20 Agreement Trial Subject: Music Composition with Technology Date: 24/10/19 AGENDA Welcome & Introduction CCEA presentation and esubmissions overview Unit Overview The moderation process General points Chief Examiner /

450 views • 28 slides
s ts t

s ts t

s ts t rtr rt rst

932 views • 63 slides
School in September 2020 PRESENTATION WILL BE UPLOADED TO THE SCHOOL WEBSITE AND PARENTS

School in September 2020 PRESENTATION WILL BE UPLOADED TO THE SCHOOL WEBSITE AND PARENTS

Transfer to Secondary School in September 2020 PRESENTATION WILL BE UPLOADED TO THE SCHOOL WEBSITE AND PARENTS NOTIFIED Chase Bridge 2011-2019 Year 6 destinations 2011 2012 2013 2014 2015 2016 2017 2018 2019 Total 604 50 56 56

395 views • 17 slides
BOND OVERSIG IGHT C COMMIT ITTEE 20 2016 Coppell Independent School District Executive

BOND OVERSIG IGHT C COMMIT ITTEE 20 2016 Coppell Independent School District Executive

BOND OVERSIG IGHT C COMMIT ITTEE 20 2016 Coppell Independent School District Executive Summary In May 2016 at the direction of the Superintendent and with guidance from the Board of Trustees, a proposal was made to form a Bond Oversight

71 views • 4 slides
Freight and Logistics Its effects on the built environment Presented by: Jason Trenchfield

Freight and Logistics Its effects on the built environment Presented by: Jason Trenchfield

Presentation Title Transportation Planning for global Freight and Logistics Its effects on the built environment Presented by: Jason Trenchfield Principal Leader Freight & Logistics AECOM Middle East 10 th Global Supply Chain and

360 views • 7 slides
Building a Volunteer Base & Level One The Positional Leader Getting Members Involved

Building a Volunteer Base & Level One The Positional Leader Getting Members Involved

Levels of Leaders by Dr. John Maxwell Building a Volunteer Base & Level One The Positional Leader Getting Members Involved The People follow because they have to Influence does not past than your job description Entry

242 views • 6 slides

More recommend