Security Gaps from the Field

Size: px

Start display at page:

Download "Security Gaps from the Field"

Bruce Hampton
5 years ago
Views:

Security Gaps from the Field Reconnaissance, Theft,

business with scalable IT services & solutions Bruce

1 Security Gaps from the Field Reconnaissance, Theft, and Looking Them in the Eye Helping you grow your business with scalable IT services & solutions Bruce Ward, CISM, Vice President for today s challenges & tomorrow s vision. Adam Gassensmith, Manager of Client Experience 2017 Peters & Associates, Inc. All rights reserved.

2 Agenda Security Gaps from the Field Watch Movies Tell Jokes Give Away Prizes 1. Background (Case the Joint) 2. Stealing Data (Valuables) 3. Identity (Who s at the Door)

3 Raffle Prizes

4 1) Background (Case the Joint) Recon 101

5 Technology Change

6 Common Misconceptions Cyber crime only happens to large companies like Chase, Target and Home Depot. 31% - incidents of losses at organizations with <100 employees 61% - incidents of losses at organizations with <250 employees Source: Symantec Internet Threat Report

7 Security Program: Loss by device Loss by method

8 Looming Risk Offset Sources:2017 Reports: Ponemon and Deloitte

9 Movie Time

10 Information Security Industry

11 Cyber Security Framework Data Protection

12 Peters & Associates Security Wheel A lot of moving parts DATA

13 2) Stealing Data (Valuables) Theft 101

14 Peters & Associates Security Wheel A lot of moving parts DATA

15 Significant Data

16 Cloud App Security

17 Cloud App Security

18 Intune Mobile Application Management (MAM)

19 Intune MAM / MDM Managed apps Multi-identity policy Corporate data User Personal data IT Personal apps

20 Mobile application management Managed apps User Personal apps

21 Azure Information Protection

Info Protection: User-driven classification Business

Info Protection: Reclassification Business

Info Protection - Recommended classification Business

26 Data Loss Prevention (DLP)

27 Conditions Actions Exceptions 27

28 Raffle Prizes

29 3) IDENTITY (Who s at the Door?) Identity 101

30 Peters & Associates Security Wheel A lot of moving parts DATA

31 How do they do it?

32 HOW do I protect my business? Security Training Periodic Testing Backup/Restore Patch Management Mail Filter Next-gen Firewall Incident Response Plans

33 Scam = Big Business

34 Movie #2! Fraudulent Instruction

35 3. Azure Identity Protection

36 Azure Identity Protection Users with leaked credentials Sign-ins from anonymous IP addresses Impossible travel to atypical locations Sign-ins from infected devices Sign-ins from IP addresses with suspicious activity Sign-ins from unfamiliar locations

37 Phishing & Spearphishing

38 Advanced Threat Protection (ATP)

39 Advanced Threat Protection (ATP) Sender Safe Attachments detonation chamber (sandbox) Behavioral analysis with machine learning Executable? Registry call? Elevation? Unsafe Safe Attachment Supported file type Clean by AV/AS filters Not in Reputation list Safe Links rewrite Exchange Online Protection Multiple filters Three anti-virus engines Links Continuously updated lists of malicious URLs Recipient

40 Technology

41 What To Do Next? Solution 101

People 24x7 Access to Security Awareness Training Schedule Social Engineering Evaluation Baseline testing phishing email templates and landing pages Train your users with on-demand or interactive

42 People 24x7 Access to Security Awareness Training Schedule Social Engineering Evaluation Baseline testing phishing templates and landing pages Train your users with on-demand or interactive resources Scenario-based training exercises Ongoing security hints and tips subscription Training assessments & reporting on results Training course examples: Intro security awareness training Handling sensitive information securely Basics of credit card security Ransomware Mobile data security PCI & GLBA compliance Strong passwords Safe web browsing Financial institution physical security 42

43 O365 Multi-factor Authentication (MFA)

44 Advisory Services People 24x7 Support Access Certified and Skilled Professionals 3 Escalation Tiers & Vendor Management Strategic Planning Process Automated Alerting and Reporting Incident Response Management Forensic Services Security Awareness Training Technology Performance, Health, User/Entity Behavior + Security Endpoint Device Monitoring Managed Endpoint Protection, Firewalls, & Backups Regular Network, Server, and Workstation Patching System Hardening Health Checks and Vulnerability Scanning

45 Knowledge is Power

46 Webinars and Blogs To register for these events, visit: To recap these events, visit:

47 Raffle Prizes

Office 365: Modern Workplace

Office 365: Modern Workplace November 8, 2018 Bruce Ward, VP of Business Strategy Helping you grow your business with scalable IT services & solutions for today s challenges & tomorrow s vision. 2018 Peters