The State of Security in 2017:

Transcription

1 The State of Security in 2017: A report from experts in the field February 22, 2017 Ryan Frillman Director, Information Security & Compliance, Spire Energy Joey Smith Chief Information Security Officer, Schnuck Markets Gary Harbison Chief Information Security Officer (CISO) Monsanto Information Security Office James Stanger, PhD Sr. Director Product Development CompTIA

2 The voice of the world s information technology (IT) industry and o ver 1.5 million IT pros. CERTIFICATIONS Largest Provider of Vendor- Neutral IT Certifications ASSOCIATION 4,000+ IT Channel Providers & Partners PHILANTHROPY Creating IT Futures Foundation ADVOCACY Public Policy & Reform Higher Salaries Growing Demand Verified Strengths Universal Skills A non-profit trade association with more than 4,000 members and business partners. Our members A 501(c)(3) charitable organization that creates on-ramps for successful IT careers, serving individuals who Our advocacy division encourages collaboration and advancing of legislation that allows the private Three of the Top 10 Certifications That Help IT Workers Get Jobs are CompTIA certifications. * drive our programs through their participation in CompTIA communities, research studies, events, sharing of best practices and more. are underrepresented in IT and lacking in opportunities to be successful in IT, including veterans, youth, and the unemployed. sector to develop new products and services, find solutions and sell them in the global marketplace. * Source: The Dice Report, February

3 C O M P T I A C E R T I F I C A T I O N S A Quick Overview BEST PRACTICES IT Fundamentals CyberSecure PROFESSIONAL-LEVEL MASTERY LEVEL CompTIA CSA+ CompTIA Advanced Security Practitioner (CASP) SPECIALTY A+ CDIA+ Cloud+ Linux+ Network+ Project+ Security+ Server+ CTT+ Cloud Essentials 3

4 C O M P T I A C E R T I F I C A T I O N S A skills-based look at the roadmap We certify essential skills for the entire IT department ecosystem Help Desk IT Support Technician Field Technician A+ Security+ CSA+ CASP Security Engineer Security Analyst IA Technician Operating system support Server+ Linux+ Cloud+ Cloud Systems Analyst Cloud Engineer Network Technician Network+ Project+ Project Manager For all workers, both inside and outside CE 4

5 For some time, we ve taken note of the spike in security issues reported world-wide. Agenda These issues include ransomware, DDosS attacks, privacy issues, as well as how to secure increasinglysensitive information derived from today s increasingly-sophisticated networks. Today, individuals and companies alike present an increased attack surface that hackers can exploit. Today, we re going to hear from expert, management-level individuals about how they address these issues. We ll be discussing security trends, the steps and strategies that today s CIOs and security experts are taking, and the essential skill set needed in the industry. (1) CEU credit towards A+, Network+, Security+, Cloud+, CASP, and CSA+: You will receive a confirmation along with instructions on how to add the credit to your certification account within 48 hours Introduction to the panel More about the collective decades of experience that our panel brings to the able Today s security issues What are they? What are they going to be? Let s hear some war stories. What are we doing to resolve them? What are the things our panel are doing to address today s issues? What wisdom can they provide for us? Essential security skills What are the ideal skill sets needed in today s security workers? Q&A 5

6 The State of Security AUTHORITIES IN: Ryan Frillman Director, Information Security & Compliance, Spire Energy Joey Smith Chief Information Security Officer, Schnuck Markets Gary Harbison Chief Information Security Officer (CISO) Monsanto Open source Security Web technologies Networking E-commerce Project management Complex architectures Industrial networks Ensuring Four 9s and Five 9s solutions for e- commerce, agriculture, and the energy industry These guys get the 3 a.m. call when something happens Have acted as CompTIA Subject Matter Experts for our exams 6

7 W E L C O M E! A Little Housekeeping Continuing Education This webinar is good for (1) CEU credit towards A+, Network+, Security+, Cloud+ and CASP. After the webinar, you may click on the "Proof of Participation" widget to download a certificate which may be uploaded to your candidate account for activity credit. Recording This webinar is being recorded. You are muted by default, please ask all questions in the Q&A section. Survey & Feedback We want your feedback! Please complete brief survey at the completion of the webinar. Tweet with #ITProStateOfSecurity, #CompTIA #CompTIAWebinar, #CompTIAcertified On-Demand Q&A & Group Chat Webinar presentation slides and recording link will be available tomorrow. Got a question? Use the Q&A widget Also, you can chat with other event attendees in the Group Chat widget! 7

8 What do our panel members do?

9 Panel member responsibilities 9

10 The job of ensuring uptime Uptime definition the five 9s? Data and service replication techniques Traditional / Enterprise Cloud Network downtime solutions Redundant hardware Redundant software DNS Protocol SDN? Additional systems Server downtime solutions Virtualization (traditional, containers) Backups / RAID Cloud? War stories when networks get hacked, and why PLEASE NOTE: (1) CEU credit towards A+, Network+, Security+, Cloud+, CASP, and CSA+: You will receive a confirmation along with instructions on how to add the credit to your certification account within 48 hours. 10

11 Uptime metrics Essential services Essential assets Mean time to recovery Recovery Point Objective (RPO) The maximum targeted period in which data might be lost from an IT service due to a major incident. Recovery Time Objective (RTO) The maximum tolerable length of time that a computer, system, network, or application can be down after a failure or disaster. What other metrics do you use? What about compliance? PCI, other regs... PLEASE NOTE: (1) CEU credit towards A+, Network+, Security+, Cloud+, CASP, and CSA+: You will receive a confirmation along with instructions on how to add the credit to your certification account within 48 hours. 11

12 T R O U B L E S H O O T I N G Y O U R C A R E E R Issues confronting the industry Attacks DOS, DDOS Botnets Advanced Persistent Threats (APT) Motives Ideology Espionage as a ruse for the real attack End users Insider attack disgruntled employees Mistakes Lack of planning Lack of funds How possible is it for a group of hackers not particularly wellequipped to take out an entire power grid? PLEASE NOTE: (1) CEU credit towards A+, Network+, Security+, Cloud+, CASP, and CSA+: You will receive a confirmation along with instructions on how to add the credit to your certification account within 48 hours. 12

13 S E C U R I T Y Complicating factors for security Some things to consider - CIOs are worried about what they don t know - We need to think outside the box - Workers need multiple skills in order to secure systems - Creativity is essential in successful workers Growing organization of hackers Greater tech interconnectivity Sophistication of security threats Greater availability of hacking tools Rise of social networking Volume of security threats More reliance on internet applications Continued use of legacy systems Challenges with security expertise Consumerization of IT 54% 52% 52% 48% 45% 45% 44% 38% 35% 35% 13

14 T R O U B L E S H O O T I N G Y O U R C A R E E R Making the most with a limited budget Cost savings Open source? Better-trained individuals? Cloud services? Better planning Employee education? PLEASE NOTE: (1) CEU credit towards A+, Network+, Security+, Cloud+, CASP, and CSA+: You will receive a confirmation along with instructions on how to add the credit to your certification account within 48 hours. 14

15 Burning issues today

16 Ransomware / malware Ransomware one of the biggest stories lately How it gets in What it can do to a company How to address it Training Removal / payment Creating a resilient presence PLEASE NOTE: (1) CEU credit towards A+, Network+, Security+, Cloud+, CASP, and CSA+: You will receive a confirmation along with instructions on how to add the credit to your certification account within 48 hours. 16

17 Relates to various issues Ransomware Privacy issues The latest methods you ve seen How do you combat it? Training Technology? End users and social engineering PLEASE NOTE: (1) CEU credit towards A+, Network+, Security+, Cloud+, CASP, and CSA+: You will receive a confirmation along with instructions on how to add the credit to your certification account within 48 hours. 17

18 Major attacks in the news Characteristics Can last for hours From botnets IoT and DDoS Solutions? DDoS attacks new perspectives PLEASE NOTE: (1) CEU credit towards A+, Network+, Security+, Cloud+, CASP, and CSA+: You will receive a confirmation along with instructions on how to add the credit to your certification account within 48 hours. 18

19 Privacy issues Companies are collecting data, and creating information Predictive analytics Highly-sensitive data How is it stored? How do you make sure it stays private? At what point does a hacked company turn criminal? Initially a victim But what if they don t report the hack properly? Survey: Biggest problems with big data Turn it data into actionable information 51% Managing the database 16% Handling the volume and velocity of data 10% Securing the systems 12% Privacy concerns 4% Legal issues 7% Do these percentages/responses make sense in 2017? PLEASE NOTE: (1) CEU credit towards A+, Network+, Security+, Cloud+, CASP, and CSA+: You will receive a confirmation along with instructions on how to add the credit to your certification account within 48 hours. 19

20 The Advanced Persistent Threat (APT) Addressing the problem Is it still about stopping the hacker? Or, is there a newer approach Creating a resilient network Compartmentalization Automation Redundancy / failover / recovery Metrics to consider Planning Malware Introduction Command & Control Lateral Movement What else? Target Identification Exfiltration (Attack Event) Retreat PLEASE NOTE: (1) CEU credit towards A+, Network+, Security+, Cloud+, CASP, and CSA+: You will receive a confirmation along with instructions on how to add the credit to your certification account within 48 hours. 20

21 What are we doing to address these issues? Some war stories...

22 Going beyond signature-based, traditional hardware/software models. Beyond hardware and software to wetware Signature-based (firewalls, IDS, antivirus) table stakes, at best Traditional pen testing Security and the help desk PLEASE NOTE: (1) CEU credit towards A+, Network+, Security+, Cloud+, CASP, and CSA+: You will receive a confirmation along with instructions on how to add the credit to your certification account within 48 hours. 22

23 User Behavior Analytics (UBA) PLEASE NOTE: (1) CEU credit towards A+, Network+, Security+, Cloud+, CASP, and CSA+: You will receive a confirmation along with instructions on how to add the credit to your certification account within 48 hours. 23

24 Creating security baselines / thresholds PLEASE NOTE: (1) CEU credit towards A+, Network+, Security+, Cloud+, CASP, and CSA+: You will receive a confirmation along with instructions on how to add the credit to your certification account within 48 hours. 24

25 Where companies and organizations provide detailed information concerning successful attacks How can it work? Why is it considered important? Information sharing PLEASE NOTE: (1) CEU credit towards A+, Network+, Security+, Cloud+, CASP, and CSA+: You will receive a confirmation along with instructions on how to add the credit to your certification account within 48 hours. 25

26 What are some of the novel education programs? Does end user education work? What is the best type of education? Hands-on Live lab Other? Education PLEASE NOTE: (1) CEU credit towards A+, Network+, Security+, Cloud+, CASP, and CSA+: You will receive a confirmation along with instructions on how to add the credit to your certification account within 48 hours. 26

27 Essential best practices Security and return on investment Justifying expenses to the boss CEO Board Accounting Showing ROI what questions do they ask? How do your reports justify expenses to you? PLEASE NOTE: (1) CEU credit towards A+, Network+, Security+, Cloud+, CASP, and CSA+: You will receive a confirmation along with instructions on how to add the credit to your certification account within 48 hours. 27

28 The ideal skill set advice from our panel

29 I T I N D U S T R Y T R E N D S Essential skills an overview Security analytics #1 #6 Business continuity Risk analysis Security infrastructure knowledge #2 #3 Top Ten Skills #7 #8 Traditional and cloud-based backup solutions Server downtime solutions Strong analytical abilities - Visio #4 Are these in the right order? #9 Data service replication techniques Network planning - Failover/redundancy #5 What tools do you use every day? What skills do you look for in a potential employee? #10 Compliance 29

30 Lightning round and audience Q&A

31 Lightning round... and audience questions Continuing education: What conferences do you like to attend? And what books / journals / sites do you read carefully? What advice do you have for the ITPro members in terms of skills that they need to learn? What are some of the next big technologies on the horizon that are going to change your world? 31

32 Thank You! Certification.CompTIA.org PLEASE NOTE: (1) CEU credit towards A+, Network+, Security+, Cloud+, CASP, and CSA+: You will receive a confirmation along with instructions on how to add the credit to your certification account within 48 hours.