• Share
  • Email
  • Embed
  • Like
  • Save
  • Private Content
2011.06.24 - Services Managés de la Sécurite du Cloud  - Forum des Partenaires du cloud ibm - philippe lachavanne
 

2011.06.24 - Services Managés de la Sécurite du Cloud - Forum des Partenaires du cloud ibm - philippe lachavanne

on

  • 750 views

Document exploité lors du Forum des Partenaires du Cloud IBM durant l'atelier Services Managés de la Sécurité du Cloud

Document exploité lors du Forum des Partenaires du Cloud IBM durant l'atelier Services Managés de la Sécurité du Cloud

Statistics

Views

Total Views
750
Views on SlideShare
743
Embed Views
7

Actions

Likes
0
Downloads
4
Comments
0

1 Embed 7

http://forumcloudibm.blogspot.com 7

Accessibility

Categories

Upload Details

Uploaded via as Adobe PDF

Usage Rights

CC Attribution-ShareAlike LicenseCC Attribution-ShareAlike License

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment

    2011.06.24 - Services Managés de la Sécurite du Cloud  - Forum des Partenaires du cloud ibm - philippe lachavanne 2011.06.24 - Services Managés de la Sécurite du Cloud - Forum des Partenaires du cloud ibm - philippe lachavanne Presentation Transcript

    • Global Technology Services – OM&D Southwest Europe Managed Security Services Meeting BPs – June 2011Loïc Guézo – lguezo@fr.ibm.comSecurity & Compliance Services Area ManagerCISSP® - LA 27001:2005 - IBM Technical Expert CouncilIBM Security Solutions - IBM Global Technology Services © 2011 IBM Corporation
    • Global Technology Services – OM&D Southwest Europe IBM Managed Security Services Portfolio Managed Cloud Security Services Security Services Managed Security Services Cloud Security Services Managed Firewall Vulnerability Services Management Services Managed IDPS Security Event & Log Managed Secure Management Services Web Gateway IBM ISS X-Force® Managed Threat Analysis UTM Services Services Managed Protection Managed E-mail Services for Networks, Security Servers and Desktops Managed Web Security Multiple Device Types & Vendors Supported2 © 2011 IBM Corporation
    • Global Technology Services – OM&D Southwest Europe Managed/Cloud Security Services Customer Sites IBM Security Operations Center Data Centers Meta data Security (logs, events) Operations Center SOC Atlanta - Detroit Management Monitoring BackBone Alerting Reporting SOC SOC SOC SOC Brussels India Brisbane 4…8 Real Business Value Customer IT-Security Manager • Real time systems health checking • Vendor Neutral • Reduced Costs • Track threats, reduce risks • Enhanced Protection • Reduced ComplexityCustomer CIO/VP executive reporting • 24x7x365 Service • Reduced Risk• Policy reporting • Security Expertise • Regulatory Compliance• Audit reporting • Strong SLA’s • Executive reporting• Compliance dashboard • Guaranteed 100% SLA’s • Executive Reporting3 © 2011 IBM Corporation
    • Global Technology Services – OM&D Southwest Europe Summary of Cloud and Managed Security Threat Mitigation Service Name Description Options AntiVirus, AntiSpam, Image Control, Content eMail security „washing machine“ for eMails Control Web security washing machine“ for Web traffic AntiVirus, Anti Spyware, URL Filtering Cloud Standard : no alerting Security Event & LogSecurity Management Log event collection and archival Select : automated alertingServices Ongoing internal and external vulnerabilty Internal Scanning Vulnerability Management assessments, regulation compliance (PCI) External Scanning (IPs owned by Client) X-Force Threat Analysis Internet Threat analysis Service Filtering of vulnerabilities MPS for Desktop Focus is on intrusion protection and device management Standard : Low End, limited changes, limited MPS for Server alerting ISS Proventia Product line Select : Many changes, advanced alerting and Protection Service Level Agreements escalation IBM ISS shares Customer risk MPS for Network Premium : Bundled with PSS offerings, UnlimitedManaged main goal: provide proteciont while reduce operational cost. changes, advanced alerting and escalationSecurity Mgd. Firewall Focus is on intrusion detection and device Standard : Low End, limited changes, limitedServices Mgd. Intrusion / Detection mangement alerting Prevention Multi-vendor support Select : Many changes, advanced alerting and Service Level Agreements on uptime and escalation Mgd. Unified Threat reporting. Premium : Unlimited changes, advanced alerting Management and escalation main goal: reduce operational cost. Mgd Web Security Gateway Gateway managment (Bluecoat) Different Service Levels4 © 2011 IBM Corporation
    • Global Technology Services – OM&D Southwest Europe Security Services answer critical IT security questions Single customer / SOC portal 10+ billion events per day 9 security operations centers Answering customers’ critical questions: Is someone breaking in?• Recent Win Logos Am I compliant?• Deal sizes $300k - $12M Is that a cyber attack?• 40 – 45% gross profit Can you change my firewall settings? Can you shut down that port? Is this website malicious? Is that an email virus? Is this server vulnerable? Firewalls Intrusion detection Routers/switches Servers Emails URLs5 © 2011 IBM Corporation
    • Global Technology Services – OM&D Southwest Europe MSS – BP Advantages Create a new recurring revenue stream with small upfront investment (skill enablement): Deal Size: 15-20k€/Year to x00k€ Multiyear Signing Upfront Recurrent Revenue Business Model very fast and with no additional investment needed Portfolio of service offerings is enhanced with additional unique efficient and effective tools to serve customers Complement BP’s security value proposition and justify higher security specialists’ rate Provide platform to propose/implement additional security services and integrations RFP (sec assessment & reviews, patching, installation of additional IPS and IDS systems, on-site support,…..) Can push additional architectural consulting/solution leveraging MSS services (i.e. VMS) Leverage IBM Virtual-SOC Portal without having to build own solution6 Leverage on at least 20% discount on IBM MSS list price as IBM MSS reseller © 2011 IBM Corporation
    • Global Technology Services – OM&D Southwest Europe Integrated Business Partner Model77 © 2011 IBM Corporation
    • Global Technology Services – OM&D Southwest Europe MSS – Integrated Business Partner Model IBM MSS Offering MSS Offering Global Security Order IBM Order Operation Center Business Billing Billing Client Partner Service Service Request Request - Mode B - - Mode B -Service Request Service Delivery Service Delivery and - Mode A - service request (in mode A) is done by IBM directly BP PRE-REQUISITES for mode B: Mode A is the IBM direct model (IBM SOC interacts directly BP needs to have an 24x7 Help with Clients) Desk (HD) already in place BP needs to support French Mode B is the new proposed Integrated BP Model: BPs talks and English language (use MSS portal in English) with SOC and with Clients (which interacts only with BP) BP needs to have sufficient - IBM delivers MSS services to the Final Client skill on Logical Security area and IBM MSS offering - BP handles MSS services requests between (to/from) IBM and the Final Client8 © 2011 IBM Corporation
    • Global Technology Services – OM&D Southwest Europe MSS – Integrated Business Partner Model IBM MSS Offering MSS Offering Global Security Order IBM Order Operation Center Business Billing Billing Client Partner Service Service Request Request - Mode B - - Mode B -Service Request Service Delivery Service Delivery and - Mode A - service request (in mode A) is done by IBM directly BP TASKS FOR MODE B OF THE INTEGRATED BP MODEL: BP can resell (leveraging 20% discount on the list price) the IBM MSS offering to Client BP can leverage on MSS service to push/implement its own additional services to the Client Based on pre-defined SLAs: BP interacts with Client for all services related requests (i.e. policy change) BP support the Client on the MSS Portal and requests of help on its information content) BP routes (if needed) all services requests to IBM as a Level 1 HD support IBM will notify of the fulfillment of any services requests (submitted via the pre- defined model) to the BP which will then notify the Client 9 BP and IBM SOC (based on Client needs) interact in a 24x7 HD model © 2011 IBM Corporation
    • Global Technology Services – OM&D Southwest Europe MSS – Integrated Business Partner Model UK Experience (IBM & SITA)• SITA is a Company specialized in air transport communications and information technology (IT) solutions for airports and governmental organizations.• SITA implements the “IBM MSS Integrated Partner Model”: Help Desk support (24x7) to the end users (from a service delivery, IBM interacts only with the BP, not with the end user) Provides, to its Clients and on a wide range of hardware and software platforms, security services for: – firewalls – intrusion protection and detection devices – multi-function devices – unified threat management devices – Antivirus, malcode, worm protection and web filtering;• IBM MSS solutions are packaged with SITA services and sold by SITA as one integrated solution. SITA leverage on: – IBM MSS Firewall management service – IBM MSS IDS/IPS management service – IBM MSS Unified Threat Management service• At the moment SITA is looking at expanding its services’ scope by leveraging IBM Hosted Security and Log Management service (IBM SELM).• Details of SITA solution at: http://www.sita.aero/product/managed-security-appliance10 © 2011 IBM Corporation