Ring of Fire : Achieving a FISMA Compliant Transition to Office 365. Matthew Maes, INL Cyber Security
|
|
- Job Turner
- 5 years ago
- Views:
Transcription
1 Ring of Fire : Achieving a FISMA Compliant Transition to Office 365 Matthew Maes, INL Cyber Security
2 Sharing Our Lessons Learned From A Cyber Security Prospective What went well Wish we would have known that We should have done that different
3 Office 365 Project Timeline Planning & Discovery We Are Here Testing Pilot Migration Implementation Tasks IATT Signed Implementation Work Starts AO Approval/ Pilot Begins Migration Ends MAY 2017 SEP 2017 FEB 2018 APR 2018 MAY 2018 JUN 2018 AUG 2018 SEP 2018 Office 365 Discovery Cyber Risk Presentation to AO Migration Begins Project Completion O365 Cyber Risk Assessment Migration Tool Security Review Implement and Validate Security Controls
4 Early Cyber Security Project Involvement Get the Authorizing Official on board as soon possible Determine what services the organization wants to use Determine what services are off limits Define cyber security objectives Develop the control baseline IATT Signed Implementation Work Starts AO Approval/ Pilot Begins Migration Ends Office 365 Discovery Cyber Risk Presentation to AO Migration Begins Project Completion
5 Identify the Migration Tool Early Tool was chosen within 3 months of implementation NDA timeline delayed security review of tool and the project timeline Migration Tool Identified IATT Signed Implementation Work Starts AO Approval/ Pilot Begins Migration Ends Office 365 Discovery Cyber Risk Presentation to AO Migration Begins Project Completion O365 Cyber Risk Assessment Migration Tool Security Review Migration Tool Security Review
6 Picking a Migration Tool DIY, FastTrack or Procure INL leveraged Gartner to evaluate capabilities of products on the market Operational challenges: How to normalize data between G Suite and Office 365 Gartner Representative Vendors AvePoint Simflofy Binary Tree SkyKick BitTitan SkySync CodeTwo Tervela Metalogix Transend Quest Xillio Sharegate Maintain folder (label) structure and tags Cyber security challenges: Most tools are cloud based Lack of FedRAMP authorized tools
7 Office 365 Government Community Cloud (GCC) Servers are physically isolated from non-government customers Only screened US citizens have logical administrative access Additional background screening
8 Where to Get Information FedRAMP Package Microsoft Office 365 (MT & GCC) Government Compliance Considerations Office 365 US Government TechNet Page Office 365 Trust Center FedRAMP Page Trust documents in the Office 365 administrator portal Other important documents: Auditing and Reporting in Office 365 Compliance Framework for Industry Standards and Regulations for Office 365 and related Microsoft services Encryption in the Microsoft Cloud *Self-Service Handling of Data Spills in Office 365 Security Incident Management in Microsoft Office 365 Tenant Isolation in Microsoft Office 365 Underlined Titles are Hyperlinked, download presentation *Available in your Office 365 Security & Compliance Portal
9 Trust Documents Available in the Portal Security & Compliance >> Service Assurance >> Trust Documents
10 What Services Are Covered By FedRAMP?
11 Encryption in Office 365 Data protected in transit and at rest Customer implemented technologies Secure Multipurpose Internet Mail Extension (S/MIME) Azure Rights Management (Azure RMS) Office 365 Message Encryption Which technologies will be used? Integrating Entrust?
12 Preparing for Mandatory TLS 1.2 in Office 365 Currently Microsoft allows TLS 1.0, TLS 1.2 and TLS 1.2 O365 always uses opportunistic TLS; The highest available protocol will automatically be used But If you don t enforce TLS 1.2 and/or allow less then TLS 1.2 you are at risk October 31, 2018, Microsoft Office 365 will no longer support TLS 1.0 and 1.1 Customer Network If you have devices that do not support TLS 1.2 you may experience connectivity issues Browser based Connection TLS 1.2 TLS 1.1 TLS Browser based Connection (VPN)
13 ADFS is Required to be FedRAMP Compliant -What does that look like? Customer Network Azure AD Connect AD DS AD FS Customer Workstation
14 ADFS Syncing Identities 1 Customer Network Azure AD Connect 1. Azure AD Connect reads AD DS for mail enabled accounts 2. Azure AD Connect Syncs those identities into Azure Active Directory *requires a one-way trust *sync occurs over mutually authenticated TLS connection AD DS AD FS 2 Customer Workstation
15 ADFS User Access Customer Network Azure AD Connect 1. User attempts to access O365 & is redirected to customer ADFS Server 2. ADFS validates user identity with AD DS & issues a ticket 3. O365 validates the ticket and the user gains access AD DS AD FS 2 Customer Workstation 1 3
16 ADFS Remote User Access AD DS 3 Customer Network Azure AD Connect AD FS 1. *User can t authenticate without VPN 2. User attempts to access O365 & is redirected to customer ADFS Server 3. ADFS validates user identity with AD DS & issues a ticket 4. O365 validates the ticket and the user gains access 5. *User can access O365 without VPN for the life of the session 5* 2 4 Laptop 1*
17 Customer Implemented Security Controls 109 Security Controls with customer responsibilities A large percentage can be inherited from common controls Identity and Access Management (IAM) handled through AD DS Scoped in CM controls to ensure: O365 configuration is reviewed and updated at least annually Changes to O365 go through the INL Release Advisory Board/Change Control Process Configuration reviews when Microsoft makes a major O365 change Maintain a copy of all O365 power-shell scripts to enable a rollback Maintain a test environment to complete security impact analysis
18 Documenting Customer Security Controls with ServiceNow GRC
19 Documenting Customer Security Controls with ServiceNow GRC
20 Assessing Customer Security Controls with ServiceNow GRC
21 Assessing Customer Security Controls with ServiceNow GRC
22
IT Security Training MS-500: Microsoft 365 Security Administration. Upcoming Dates. Course Description. Course Outline $2,
IT Security Training MS-500: Microsoft 365 Security Administration $2,595.00 4 Days Upcoming Dates Course Description Day 1: Managing Microsoft 365 Identity and Access (MS-500T01-A) Help protect against
More informationCOMPLIANCE IN THE CLOUD
COMPLIANCE IN THE CLOUD 3:45-4:30PM Scott Edwards, President, Summit 7 Dave Harris Society for International Affairs COMPLIANCE IN THE CLOUD Scott Edwards scott.edwards@summit7systems.com 256-541-9638
More informationManaging Microsoft 365 Identity and Access
Course MS-500T01-A: Managing Microsoft 365 Identity and Access Page 1 of 3 Managing Microsoft 365 Identity and Access Course MS-500T01-A: 1 day; Instructor-Led Introduction Help protect against credential
More informationManaging Privacy Risk & Compliance in Financial Services. Brett Hamilton Advisory Solutions Consultant ServiceNow
Managing Privacy Risk & Compliance in Financial Services Brett Hamilton Advisory Solutions Consultant ServiceNow 1 Speaker Introduction INSERT PHOTO Name: Brett Hamilton Title: Advisory Solutions Consultant
More informationOffice 365: What to Expect When Moving to the Cloud
Office 365: What to Expect When Moving to the Cloud Presentation by Nicole Lawrence Unified Communications Solution Specialist, SHI MCSE Productivity Biography Unified Communications Solution Specialist
More informationFedRAMP: Understanding Agency and Cloud Provider Responsibilities
May 2013 Walter E. Washington Convention Center Washington, DC FedRAMP: Understanding Agency and Cloud Provider Responsibilities Matthew Goodrich, JD FedRAMP Program Manager US General Services Administration
More informationMicrosoft Security Management
Microsoft Security Management MICROSOFT SECURITY MANAGEMENT SECURITY MANAGEMENT CHALLENGES Some large financial services organizations have as many as 40 or more different security vendors inside their
More informationSharePoint 2016 Migration Checklist. Step-by-Step Guide to Migration Success
Checklist Step-by-Step Guide to Migration Success WWW.PORTALSOLUTIONS.NET Table of Contents Before You Get Started 3 Step No. 1: Know Your Content 4 Step No. 2: Selecting Your Upgrade or Migration Strategy
More informationLeveraging the LincPass in USDA
Leveraging the LincPass in USDA Two Factor Authentication, Digital Signature, Enterprise VPN, eauth Single Sign On February 2010 USDA Takes Advantage of the LincPass USDA is taking advantage of the LincPass
More informationIntroduction to the Federal Risk and Authorization Management Program (FedRAMP)
Introduction to the Federal Risk and Authorization Management Program (FedRAMP) 8/2/2015 Presented by: FedRAMP PMO 1 Today s Training Welcome! This training session is part one of the FedRAMP Training
More informationNS2 Cloud Overview The Cloud Built for Federal Security and Export Controlled Environments. Hunter Downey, Cloud Solution Director
NS2 Cloud Overview The Cloud Built for Federal Security and Export Controlled Environments Hunter Downey, Cloud Solution Director Why Organizations are investing in the Cloud Pressure on IT and business
More informationFISMA Compliance. with O365 Manager Plus.
FISMA Compliance with O365 Manager Plus www.o365managerplus.com About FISMA The Federal Information Security Management Act (FISMA) is a United States federal law passed in 2002 that made it a requirement
More informationISO STANDARD IMPLEMENTATION AND TECHNOLOGY CONSOLIDATION
ISO STANDARD IMPLEMENTATION AND TECHNOLOGY CONSOLIDATION Cathy Bates Senior Consultant, Vantage Technology Consulting Group January 30, 2018 Campus Orientation Initiative and Project Orientation Project
More informationΟ ρόλος της τεχνολογίας στο ταξίδι της συμμόρφωσης με τον Γενικό Κανονισμό. Αντιγόνη Παπανικολάου & Νίκος Αναστόπουλος
Ο ρόλος της τεχνολογίας στο ταξίδι της συμμόρφωσης με τον Γενικό Κανονισμό Αντιγόνη Παπανικολάου & Νίκος Αναστόπουλος Providing clarity and consistency for the protection of personal data The General
More informationSME License Order Working Group Update - Webinar #3 Call in number:
SME License Order Working Group Update - Webinar #3 Call in number: Canada Local: +1-416-915-8942 Canada Toll Free: +1-855-244-8680 Event Number: 662 298 966 Attendee ID: check your WebEx session under
More informationSWIFT 7.2 & Customer Security. Providing choice, flexibility & control.
SWIFT 7.2 & Customer Security Providing choice, flexibility & control. 0 SWIFT 7.2 UPGRADE: WHAT DO YOU NEED TO KNOW? DECEMBER 6, 2017 Patricia Hines, CTP Senior Analyst, Corporate Banking Celent SWIFT
More informationFedRAMP Digital Identity Requirements. Version 1.0
FedRAMP Digital Identity Requirements Version 1.0 January 31, 2018 DOCUMENT REVISION HISTORY DATE VERSION PAGE(S) DESCRIPTION AUTHOR 1/31/2018 1.0 All Initial document FedRAMP PMO i ABOUT THIS DOCUMENT
More informationRHM Presentation. Maas 360 Mobile device management
RHM Presentation Maas 360 Mobile device management Strong adoption in the enterprise Manufacturing Financial Consumer Healthcare Public Others 2 Trusted by over 9,000 customers Recognized Industry Leadership
More informationBuilding a More Secure Cloud Architecture
Building a More Secure Cloud Architecture Jerry Archer SVP and CSO Let s Make College Happen Security Guiding Principles in the Cloud Secure Perimeter Micro-segmentation -- isolating applications and data
More informationThe Definitive Guide to Office 365 External Sharing. An ebook by Sharegate
The Definitive Guide to Office 365 External Sharing An ebook by Sharegate The Definitive Guide to External Sharing In any organization, whether large or small, sharing content with external users is an
More informationCyber Partnership Blueprint: An Outline
Approved for Public Release; Distribution Unlimited. 13-3851 The MITRE Corporation Cyber Partnership Blueprint: An Outline October 26, 2013 Copyright 1997-2013, The MITRE Corporation. All rights reserved.
More informationAdministering Windows Server 2012
Page 1 of 10 Overview Get hands-on instruction and practice administering Windows Server 2012, including Windows R2, in this five-day Microsoft Official Course. This course is part two in a series of three
More informationCAN MICROSOFT HELP MEET THE GDPR
CAN MICROSOFT HELP MEET THE GDPR REQUIREMENTS? Danny Uytgeerts Microsoft 365 TSP / P-Seller Privacy Consultant (certified DPO) Member of DPO-Pro (Professional association of Belgian DPOs) danny.uytgeerts@realdolmen.com
More informationU.S. E-Authentication Interoperability Lab Engineer
Using Digital Certificates to Establish Federated Trust chris.brown@enspier.com U.S. E-Authentication Interoperability Lab Engineer Agenda U.S. Federal E-Authentication Background Current State of PKI
More informationMicrosoft Certified System Engineer
529 Hahn Ave. Suite 101 Glendale CA 91203-1052 Tel 818.550.0770 Fax 818.550.8293 www.brandcollege.edu Microsoft Certified System Engineer Program Summary This instructor-led program with a combination
More informationWindows Server 2016 MCSA Bootcamp
Course Overview This course will provide experienced IT professionals who wish to either upgrade their skills for the purpose of certifying on Microsoft Windows Server 2016 or who wish to gain information
More informationSingle Sign-On Showdown
Single Sign-On Showdown ADFS vs Pass-Through Authentication Max Fritz Solutions Architect SADA Systems #ITDEVCONNECTIONS Azure AD Identity Sync & Auth Timeline 2009 2012 DirSync becomes Azure AD Sync 2013
More informationTelos and Amazon Web Services (AWS): Accelerating Secure and Compliant Cloud Deployments
` Telos and Amazon Web Services (AWS): Accelerating Secure and Compliant Cloud Deployments Telos Corporation 19886 Ashburn Road Ashburn, VA 24445 www.telos.com ` Introduction Telos Corporation and Amazon
More informationGET YOUR HOUSE IN ORDER. Patching and Imaging Creation Strategies
GET YOUR HOUSE IN ORDER Patching and Imaging Creation Strategies SPEAKERS Phil Schwan Solution Architect Netrix, LLC Agenda Windows Image Management Windows Servicing Patch Management Build and Capture?
More informationTechnical Security Standard
Technical Security Standard Title: Minimum Controls TSS Version: 1.1 Effective Date July 2018 This Standard defines the minimum baseline security controls and Summary: processes required for a given Information
More informationSURFdrive AN OWNCLOUD SYNC & SHARE SERVICE. TF-storage Rogier Spoor SURFnet 22 SEPT 2014
SURFdrive AN OWNCLOUD SYNC & SHARE SERVICE TF-storage Rogier Spoor SURFnet 22 SEPT 2014 Top 5 reasons to use a personal cloud storage solution 1 2 Users always have access to their documents, regardless
More informationRecommendations for Implementing an Information Security Framework for Life Science Organizations
Recommendations for Implementing an Information Security Framework for Life Science Organizations Introduction Doug Shaw CISA, CRISC Director of CSV & IT Compliance Azzur Consulting Agenda Why is information
More informationVirtual Machine Encryption Security & Compliance in the Cloud
Virtual Machine Encryption Security & Compliance in the Cloud Pius Graf Director Sales Switzerland 27.September 2017 Agenda Control Your Data In The Cloud Overview Virtual Machine Encryption Architecture
More informationOffice 365 External Sharing Webinar November 7, 2017
Office 365 External Sharing Webinar November 7, 2017 Introductions Peter Carson President, Extranet User Manager and Envision IT SharePoint MVP Partner Seller, Microsoft Canada peter.carson@extranetusermanager.com
More informationTECHNICAL AND ORGANIZATIONAL DATA SECURITY MEASURES
TECHNICAL AND ORGANIZATIONAL DATA SECURITY MEASURES Contents Introduction... 3 The Technical and Organizational Data Security Measures... 3 Access Control of Processing Areas (Physical)... 3 Access Control
More informationHow to Establish Security & Privacy Due Diligence in the Cloud
How to Establish Security & Privacy Due Diligence in the Cloud Presentation: Cloud Computing Expo 2015, Santa Clara, California Maria C. Horton, CISSP, ISSMP, Cloud Essentials, IAM CEO, EmeSec Incorporated
More informationAdministering Windows Server 2012
Administering Windows Server 2012 Course Details Course Outline Module 1: Configuring and Troubleshooting Domain Name System This module explains how to configure and troubleshoot DNS, including DNS replication
More informationExtranet Identity Management and Authentication for SharePoint On Premise, Office 365 and Beyond
Extranet Identity Management and Authentication for SharePoint On Premise, Office 365 and Beyond Presented by Peter Carson President, Envision IT October 22, 2014 Peter Carson President, Envision IT SharePoint
More informationCOURSE OUTLINE MOC 20411: ADMINISTERING WINDOWS SERVER 2012 MODULE 1: CONFIGURING AND TROUBLESHOOTING DOMAIN NAME SYSTEM
COURSE OUTLINE MOC 20411: ADMINISTERING WINDOWS SERVER 2012 MODULE 1: CONFIGURING AND TROUBLESHOOTING DOMAIN NAME SYSTEM This module explains how to configure and troubleshoot DNS, including DNS replication
More informationOPUC Workshop March 13, 2015 Cyber Security Electric Utilities. Portland General Electric Co. Travis Anderson Scott Smith
OPUC Workshop March 13, 2015 Cyber Security Electric Utilities Portland General Electric Co. Travis Anderson Scott Smith 1 CIP Version 5 PGE Implementation Understanding the Regulations PGE Attended WECC
More informationCOURSE OUTLINE. COURSE OBJECTIVES After completing this course, students will be able to: 1 - INSTALLING & CONFIGURING DCS
20742 Identity with Windows Server 2016 This course teaches IT Pros how to deploy and configure Active Directory Domain Services in a distributed environment, how to implement Group Policy, how to perform
More informationCourse Outline 20742B
Course Outline 20742B Module 1: Installing and configuring domain controllers This module describes the features of AD DS and how to install domain controllers (DCs). It also covers the considerations
More informationGSX 365 Usage Reports & Security Audit
GSX 365 Usage Reports & Security Audit With you, everywhere, for more than 20 years Founded in 1996, Headquartered in Switzerland London Geneva Offices in USA, UK, France, Switzerland, Singapore and Bangalore
More informationMapping of FedRAMP Tailored LI SaaS Baseline to ISO Security Controls
Mapping of FedRAMP Tailored LI SaaS Baseline to ISO 27001 Security Controls This document provides a list of all controls that require the Cloud Service Provider, Esri, to provide detailed descriptions
More informationM20742-Identity with Windows Server 2016
M20742-Identity with Windows Server 2016 Course Number: M20742 Category: Technical Microsoft Duration: 5 days Certification: 70-742 Overview This five-day instructor-led course teaches IT Pros how to deploy
More informationOverview of Archiving. Cloud & IT Services for your Company. EagleMercury Archiving
EagleMercury Email Archiving Part of EagleMercury Security Collaboration Suite Assure compliance, speed ediscovery, and help protect your intellectual property Overview of Email Archiving EagleMercury
More informationWatson Developer Cloud Security Overview
Watson Developer Cloud Security Overview Introduction This document provides a high-level overview of the measures and safeguards that IBM implements to protect and separate data between customers for
More informationSTEVE 2.0 Frequently Asked Questions (FAQs)
STEVE 2.0 Frequently Asked Questions (FAQs) What is the overall deployment plan for STEVE 2.0? STEVE 2.0 will utilize a phased deployment model. Phase 1 will include bi-directional core messaging (Birth,
More informationLiferay Security Features Overview. How Liferay Approaches Security
Liferay Security Features Overview How Liferay Approaches Security Table of Contents Executive Summary.......................................... 1 Transport Security............................................
More informationAN IPSWITCH WHITEPAPER. The Definitive Guide to Secure FTP
AN IPSWITCH WHITEPAPER The Definitive Guide to Secure FTP The Importance of File Transfer Are you concerned with the security of file transfer processes in your company? According to a survey of IT pros
More informationIntroduction to AWS GoldBase
Introduction to AWS GoldBase A Solution to Automate Security, Compliance, and Governance in AWS October 2015 2015, Amazon Web Services, Inc. or its affiliates. All rights reserved. Notices This document
More informationAdministering Windows Server 2012
Course 20411D: Administering Windows Server 2012 Module 1: Configuring and Troubleshooting Domain Name System This module explains how to configure and troubleshoot DNS, including DNS replication and caching.
More informationTech Dive: Microsoft Azure Identity Management and Office 365
Tech Dive: Microsoft Azure Identity Management and Office 365 Tech Dive: Microsoft Azure Identity Management and Office 365 Microsoft Partner Confidential 2 Tech Dive: Microsoft Azure Identity Management
More informationGeneral Data Protection Regulation
General Data Protection Regulation Workshare Ltd ( Workshare ) is a service provider with customers in many countries and takes the protection of customers data very seriously. In order to provide an enhanced
More informationCompliance & Security in Azure. April 21, 2018
Compliance & Security in Azure April 21, 2018 Presenter Bio Jeff Gainer, CISSP Senior Information Security & Risk Management Consultant Senior Security Architect Have conducted multiple Third-Party risk
More informationAmerican Association for Laboratory Accreditation
R311 - Specific Requirements: Federal Risk and Authorization Management Program Page 1 of 10 R311 - Specific Requirements: Federal Risk and Authorization Management Program 2017 by A2LA. All rights reserved.
More informationExternal Collaboration with Office 365 Project Sites. September 16, 2015
External Collaboration with Office 365 Project Sites September 16, 2015 Peter Carson President, Envision IT SharePoint MVP Partner Seller, Microsoft Canada peter.carson@extranetusermanager.com http://blog.petercarson.ca
More informationO365 Solutions. Three Phase Approach. Page 1 34
O365 Solutions Three Phase Approach msfttechteam@f5.com Page 1 34 Contents Use Cases... 2 Use Case One Advanced Traffic Management for WAP and ADFS farms... 2 Use Case Two BIG-IP with ADFS-PIP... 3 Phase
More informationSecure Access & SWIFT Customer Security Controls Framework
Secure Access & SWIFT Customer Security Controls Framework SWIFT Financial Messaging Services SWIFT is the world s leading provider of secure financial messaging services. Their services are used and trusted
More informationAccess to University Data Policy
UNIVERSITY OF OKLAHOMA Health Sciences Center Information Technology Security Policy Access to University Data Policy 1. Purpose This policy defines roles and responsibilities for protecting OUHSC s non-public
More information905M 67% of the people who use a smartphone for work and 70% of people who use a tablet for work are choosing the devices themselves
67% of the people who use a smartphone for work and 70% of people who use a tablet for work are choosing the devices themselves 905M tablets in use for work and home globally by 2017 Before Now 32% of
More informationJordan Levesque Making sure your business is PCI compliant
Jordan Levesque Making sure your business is PCI compliant Brief overview of PCIDSS What's new in PCI DSS 3.2 Why is PCI important? Dive in! Simple things you can do to be secure Tomorrows session: What
More informationManaging Protected and Controlled Data with Globus. Vas Vasiliadis
Managing Protected and Controlled Data with Globus Vas Vasiliadis vas@uchicago.edu Globus SaaS: Research data lifecycle Instrument 1 Researcher initiates transfer request; or requested automatically by
More informationPrivileged Account Security: A Balanced Approach to Securing Unix Environments
Privileged Account Security: A Balanced Approach to Securing Unix Environments Table of Contents Introduction 3 Every User is a Privileged User 3 Privileged Account Security: A Balanced Approach 3 Privileged
More informationCurrent procedures, challenges and opportunities for collection and analysis of Criminal Justice statistics CERT-GH
Current procedures, challenges and opportunities for collection and analysis of Criminal Justice statistics CERT-GH International Workshop on Criminal Justice Statistics on Cybercrime and Electronic Evidence
More informationMicrosoft Certified Solutions Associate (MCSA)
Microsoft Certified Solutions Associate (MCSA) Installing and Configuring Windows Server 2012 (70-410) Module 1: Deploying and Managing Windows Server 2012 Windows Server 2012 Overview Overview of Windows
More informationWHITEPAPER A Selection Guide to Binary Tree s Directory Synchronization Software
WHITEPAPER A Selection Guide to Binary Tree s Directory Synchronization Software Table of Contents Introduction... 3 Binary Tree Directory Synchronization Software Products... 4 Directory Sync Pro... 4
More informationDefense-in-Depth Against Malicious Software. Speaker name Title Group Microsoft Corporation
Defense-in-Depth Against Malicious Software Speaker name Title Group Microsoft Corporation Agenda Understanding the Characteristics of Malicious Software Malware Defense-in-Depth Malware Defense for Client
More informationWindows Server : Administering Windows Server 2012 R2. Upcoming Dates. Course Description. Course Outline
Windows Server 2012 20411: Administering Windows Server 2012 R2 Acquire the skills necessary to administrate and implement the core infrastructure services in a Windows Server 2012 R2 environment. Learn
More informationIntroduction. Deployment Models. IBM Watson on the IBM Cloud Security Overview
IBM Watson on the IBM Cloud Security Overview Introduction IBM Watson on the IBM Cloud helps to transform businesses, enhancing competitive advantage and disrupting industries by unlocking the potential
More informationTRACKVIA SECURITY OVERVIEW
TRACKVIA SECURITY OVERVIEW TrackVia s customers rely on our service for many mission-critical applications, as well as for applications that have various compliance and regulatory obligations. At all times
More informationMD-101: Modern Desktop Administrator Part 2
Days: 5 Description: This five-day course is for Desktop Administrators that deploy, configure, secure, manage, and monitor devices and client applications in an enterprise environment. As desktops has
More informationAdministering Windows Server 2012
Administering Windows Server 2012 20411D; 5 days, Instructor-led Course Description Get hands-on instruction and practice administering Windows Server 2012, including Windows Server 2012 R2, in this five-day
More informationHealthcare Security Success Story
Regional Forum on Cybersecurity in the Era of Emerging Technologies & the Second Meeting of the Successful Administrative Practices -2017 Cairo, Egypt 28-29 November 2017 Healthcare Security Success Story
More informationContemporary Challenges for Cloud Service Providers Seeking FedRAMP Compliance
Contemporary Challenges for Cloud Service Providers Seeking FedRAMP Compliance July 2017 Jeff Roth, CISSP-ISSEP, CISA, CGEIT, QSA Regional Director NCC Group Agenda FedRAMP - Foundations/Frameworks Cloud
More informationOperated by Los Alamos National Security, LLC for the U.S. Department of Energy's NNSA
Operated by Los Alamos National Security, LLC for the U.S. Department of Energy's NNSA LANL s Multi-Factor Authentication (MFA) Initiatives NLIT Summit 2018 Glen Lee Network and Infrastructure Engineering
More informationSneak Peak at CIS Critical Security Controls V 7 Release Date: March Presented by Kelli Tarala Principal Consultant Enclave Security
Sneak Peak at CIS Critical Security Controls V 7 Release Date: March 2018 2017 Presented by Kelli Tarala Principal Consultant Enclave Security 2 Standards and Frameworks 3 Information Assurance Frameworks
More informationOffice : Enabling and Managing Office 365. Upcoming Dates. Course Description. Course Outline
Office 365 20347: Enabling and Managing Office 365 Learn how to evaluate, plan, deploy and operate Microsoft Office 365 Cloud-Based Services in this 5-day class. Your instructor will focus on real world
More informationGoogle Cloud & the General Data Protection Regulation (GDPR)
Google Cloud & the General Data Protection Regulation (GDPR) INTRODUCTION General Data Protection Regulation (GDPR) On 25 May 2018, the most significant piece of European data protection legislation to
More informationCourse 20533B: Implementing Microsoft Azure Infrastructure Solutions
Course 20533B: Implementing Microsoft Azure Infrastructure Solutions Course details Course Outline Module 1: Introduction to Azure This module explains cloud computing, and compares cloud computing and
More informationPCI DSS 3.1 is here. Are you ready? Mike Goldgof Sr. Director Product Marketing
PCI DSS 3.1 is here. Are you ready? Mike Goldgof Sr. Director Product Marketing 1 WhiteHat Security Application Security Company Leader in the Gartner Magic Quadrant Headquartered in Santa Clara, CA 320+
More informationTraining and Certification. Guide to Learning and Certification Paths
Training and Certification Guide to Learning and Certification Paths Home Contents Back Next Table of Contents ServiceNow Fundamentals Implementer Developer Fulfiller Training 3 Get Certified Become Indispensable
More informationMicrosoft Certified Solution Associate Windows Server 2016 Training
Microsoft Certified Solution Associate Windows Server 2016 Training INNOVATIVE ACADEMY s Best Microsoft Training in Bangalore is designed so Innovative to help you clear the Microsoft Certified Solution
More informationSecuring Your Most Sensitive Data
Software-Defined Access Securing Your Most Sensitive Data Company Overview Digital Growth Means Digital Threats Digital technologies offer organizations unprecedented opportunities to innovate their way
More informationExchange 2016 Upgrade Scenarios
Exchange 2016 Upgrade Scenarios Joe Hoegler Kraft Kennedy August 17, 2017 #ILTAG131 INTRODUCTION JOE HOEGLER Practice Group Leader, Infrastructure & Enterprise Systems at Kraft Kennedy Microsoft Certified
More informationjamf Nation - London Roadshow
jamf Nation - London Roadshow Sachin Parmar Workplace Technology Manager 17 May 2018 About Just Eat Our vision Creating the world s greatest food community 3 About Me About Me Sachin Parmar 8+ years professionally
More informationVirtustream Cloud and Managed Services Solutions for US State & Local Governments and Education
Data Sheet Virtustream Cloud and Managed Services Solutions for US State & Local Governments and Education Available through NASPO ValuePoint Cloud Services VIRTUSTREAM CLOUD AND MANAGED SERVICES SOLUTIONS
More informationUse Cases for Argonaut Project -- DRAFT Page
Use Cases for Argonaut Project -- DRAFT Page 1 Use Cases for Argonaut Project DRAFT V0.3 March 03, 2015 Use Cases for Argonaut Project -- DRAFT Page 2 Introduction The Argonaut Project seeks to rapidly
More informationArcGIS Online A Security, Privacy, and Compliance Overview. Andrea Rosso Michael Young
ArcGIS Online A Security, Privacy, and Compliance Overview Andrea Rosso Michael Young ArcGIS Online A Multi-Tenant System Portal Portal Portal ArcGIS Online Agenda Online Platform Security Deployment Architecture
More informationInformation Technology Procedure IT 3.4 IT Configuration Management
Information Technology Procedure IT Configuration Management Contents Purpose and Scope... 1 Responsibilities... 1 Procedure... 1 Identify and Record Configuration... 2 Document Planned Changes... 3 Evaluating
More informationSolution Pack. Managed Services Virtual Private Cloud Security Features Selections and Prerequisites
Solution Pack Managed Services Virtual Private Cloud Security Features Selections and Prerequisites Subject Governing Agreement DXC Services Requirements Agreement between DXC and Customer including DXC
More informationAvePoint Cloud Governance. Release Notes
AvePoint Cloud Governance Release Notes Table of Contents New Features and Improvements: June 2018... 2 New Features and Improvements: May 2018... 3 New Features and Improvements: April 2018... 4 New Features
More informationDeploying Tableau at Enterprise Scale in the Cloud
# T C 1 8 Deploying Tableau at Enterprise Scale in the Cloud Calvin Chaney Senior Systems Analyst Enterprise Analytics / Tableau Enterprise Analytics supports Tableau s mission of driving self-service
More informationthe SWIFT Customer Security
TECH BRIEF Mapping BeyondTrust Solutions to the SWIFT Customer Security Controls Framework Privileged Access Management and Vulnerability Management Table of ContentsTable of Contents... 2 Purpose of This
More informationMCSA Office 365 Bootcamp
MCSA Office 365 Bootcamp Length: 6 days Format: Bootcamp Time: Day About This Course Demonstrate your skills in transitioning to and administering cloud-hosted business applications with Microsoft Office
More informationAltius IT Policy Collection
Altius IT Policy Collection Complete set of cyber and network security policies Over 100 Policies, Plans, and Forms Fully customizable - fully customizable IT security policies in Microsoft Word No software
More informationInstallation, Storage, and Compute with Windows Server
Installation, Storage, and Compute with Windows Server 2016-740 Module 1: Installing, upgrading, and migrating servers and workloadst Introducing Windows Server 2016 Preparing and installing Nano Server
More informationNow on Now: How ServiceNow has transformed its own GRC processes
Now on Now: How ServiceNow has transformed its own GRC processes Increasing scalability, lowering risk, and slashing costs by $30,000 START 1 Introduction When your business is growing at 0% a year, it
More informationCloud Security Whitepaper
Cloud Security Whitepaper Sep, 2018 1. Product Overview 3 2. Personally identifiable information (PII) 3 Using Lookback without saving any PII 3 3. Security and privacy policy 4 4. Personnel security 4
More informationNE Administering Windows Server 2012
NE-20411 Administering Windows Server 2012 Summary Duration 5 Days Audience IT Professionals Level 200 Technology Windows Server 2012 Delivery Method Instructor-led (Classroom) Training Credits N/A Introduction
More information