85% 89% 10/5/2018. Do You Have A Firewall Around Your Cloud? Conquering The Big Threats & Challenges

Transcription

1 Do You Have A Firewall Around Your Cloud? California Cybersecurity Education Summit 2018 Tyson Moler Oracle Security, North America Public Sector Conquering The Big Threats & Challenges Real Life Threats 1 Fraud 2 Sensitive Data Exposure 3 Data Theft 4 Unauthorized Access 5 Intellectual Property Theft Big Challenges Sophisticated Threats Alert Overload Limited Expertise Inadequate Tools 85% Of breaches exploited system vulnerability where patch was available a year prior; orgs take on average days to fix 89% Of organizations experience data breaches Sophisticated Threats 3 1

2 16,937 Alerts per week 1,000,000 Alerts per year: 19% reliable, 4% investigated 35,000,000 Work hours per year with 17,000 workers Alert Overload Oracle Public 4 3.5m Open cybersecurity jobs by 2021 Limited Expertise Source: Cyber Security Ventures, Cyber Security Jobs Report 5 86% Feel traditional security tools are not sufficient to manage security across the cloud 46 # of security tools the average cyber leader is responsible for (1) Inadequate Tools (1) Source: Oracle and KPMG Cloud Threat Report

3 Conquering the Big Challenges With Technology Real Life Examples 1 Fraud 2 Sensitive Data Exposure 3 Data Theft 4 Unauthorized Access 5 Intellectual Property Theft Big Challenges Sophisticated Threats Alert Overload Limited Expertise Inadequate Tools Technology Solutions Edge Security Identity and Access Management Cloud Access Control and Analytics Edge Security Key Capabilities DDOS MITIGATION Multi-Vector Attacks Web Application Attacks DDoS Attacks Malicious Bots Malware API WEB APPLICATION ACCESS CONTROL BOT MITIGATION WAF ORIGIN PROTECTION Multi-End Point IaaS PaaS SaaS Data Centers CDN Cloud Identity Hub Key Capabilities Synchronize your users and SSO between your on-premise identity stores, legacy IAM environment, and your cloud identity hub. 3

4 Cloud Access Control Key Capabilities Visibility into All the Sanctioned Cloud Applications Used in the Enterprise Discovery of Non Sanctioned Cloud Applications Used in the Enterprise Data Threat Detection for Cloud Applications Comprehensive Data Security DLP and Anti Malware Behavior Analytics with machine learning to correlate users and risk/threats CASB Cloud Access Security Broker Systems Management In The Cloud Key Capabilities Unified Log Management Analytics Remediation Security Application & Infrastructure Complete Transaction Visibility Real, Mobile & Synthetic Users Monitor, aggregate, and analyze Topology- Aware log exploration SecOps & ITOps Support Out-of-thebox ML IT Analytics Real-time dashboards & reporting Data Explorer Automated actions and runbook Simple & complex workflows Broad integration across IT Security User Behavior Incident Response Config. & Compliance Is Your Ability to Secure Keeping Pace With Your Need to Scale? 90% 51% CATEGORIZE HALF, OR MORE, CANNOT ANALYZE OF THEIR CLOUD RESIDENT THE MAJORITY OF DATA AS SENSITIVE THEIR EVENT DATA 2018 Oracle KPMG Cloud Threat Report : Keeping Pace At Scale MALWARE IS STILL THE TOP CONCERN TOPPING OUT 4 OUT OF TOP 5 THREAT TYPES CLOUD ADOPTION 61% report NOC and SOC teams collaborate 87% of organizations have a cloud first orientation 36% have cloud related security event mgmt. challenges THREATS & CHALLENGES 66% have experienced a cyberattack that has disrupted business While 97% have a cloud app policy, only 28% are very concerned about violations. APPROACHES #1 cybersecurity challenge is detecting and reacting to security incidents in the cloud 66% are interested in adaptive MFA 91% use NPM/APM as an identifier for threats *2018 Oracle KPMG Cloud Threat Report Available April 16,

5 Call to Action Assess your non sanctioned cloud usage Evaluate the cost/benefit of using existing tools in cloud migration Determine how to use ML& UEBA for cloud security framework Run trials with cloud tools 5