Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Cybersecurity Risk Assessment - 'All Done' with WISER

202 views

Published on

A practical Demo session showcasing CyberWISER Light, the online tool designed to help small organisations assess their cyber risk exposure and vulnerabilities. The demo also features a sneak preview of CyberWISER Essential, an upgrade service with real-time monitoring and advanced assessment of cyber risk through specific sensors deployed on the target infrastructure.

Published in: Internet
  • Be the first to comment

  • Be the first to like this

Cybersecurity Risk Assessment - 'All Done' with WISER

  1. 1. WISER “WIDE-IMPACT CYBER SECURITY RISK FRAMEWORK” www.cyberwiser.eu @cyberwiser Co-funded by the European Commission Horizon 2020 – Grant # 653321 Cybersecurity Risk Assessment – ‘All done’ with WISER Riga – 27th October, 2016 Presentation at DSS ITSEC DEMO 1 Antonio Álvarez Romero Atos Spain
  2. 2. Outline CyberWISER Services Introduction to CyberWISER-Light Introduction to CyberWISER-Essential Conclusions © WISER 2015 www.cyberwiser.eu - @cyberwiser 2
  3. 3. CyberWISER Services CyberWISER Light – self-assessment of cyber risks and vulnerabilities in IT system. User-friendly service - suited to every type of organisation. Especially good for time- and resource-constrained SMEs. CyberWISER Essential – Risk Platform as a Service (RPaaS) for self-assessment of exposure levels with continuous, quasi-real-time monitoring Standardised mitigation plan CyberWISER Plus – RPaaS + Customised approach to cyber risk assessment Face-to-face support in self-assessment phase Deployment support & mitigation plan tailored to your organisation www.cyberwiser.eu 3© WISER 2016 www.cyberwiser.eu - @cyberwiser
  4. 4. CyberWISER Services © WISER 2016 www.cyberwiser.eu - @cyberwiser 4 CyberWISER-Light (CWL) Two versions: CWL Fast-track and Complete Software as a Service Online Questionnaire Online Vulnerability scanner Produces Aggregated Report CyberWISER-Essential (CWE) CyberWISER-Plus (CWP)
  5. 5. CyberWISER Services © WISER 2016 www.cyberwiser.eu - @cyberwiser 5 CyberWISER-Light (CWL) CyberWISER-Essential (CWE) Risk Management PaaS Sensors deployed at client produce data Risk Assessment services in the Cloud Dashboard showing real-time data and information CyberWISER-Plus (CWP)
  6. 6. CyberWISER Services © WISER 2016 www.cyberwiser.eu - @cyberwiser 6 CyberWISER-Light (CWL) CyberWISER-Essential (CWE) CyberWISER-Plus (CWP) Extended with more specific Risk Models Extended with specific application-level sensors
  7. 7. Outline CyberWISER Services Introduction to CyberWISER-Light Introduction to CyberWISER-Essential Conclusions © WISER 2015 www.cyberwiser.eu - @cyberwiser 7
  8. 8. CyberWISER-Light © WISER 2016 www.cyberwiser.eu - @cyberwiser 8
  9. 9. CyberWISER-Light Demo © WISER 2015 www.cyberwiser.eu - @cyberwiser 9
  10. 10. Questionnaire © WISER 2015 www.cyberwiser.eu - @cyberwiser 10
  11. 11. Vulnerability test © WISER 2015 www.cyberwiser.eu - @cyberwiser 11
  12. 12. Vulnerability test
  13. 13. CyberWISER-Light Demo © WISER 2015 www.cyberwiser.eu - @cyberwiser 13
  14. 14. Outline © WISER 2015 www.cyberwiser.eu - @cyberwiser 14 CyberWISER Services Introduction to CyberWISER-Light Introduction to CyberWISER-Essential Conclusions
  15. 15. CyberWISER-Essential © WISER 2016 www.cyberwiser.eu - @cyberwiser 15 Dashboard with a set of sections Risk Reporting Configuration Monitoring Modelling Testing
  16. 16. CyberWISER-Essential © WISER 2016 www.cyberwiser.eu - @cyberwiser 16 Risk reporting
  17. 17. CyberWISER-Essential © WISER 2016 www.cyberwiser.eu - @cyberwiser 17 Configuration
  18. 18. CyberWISER-Essential © WISER 2016 www.cyberwiser.eu - @cyberwiser 18 Monitoring
  19. 19. CyberWISER-Essential © WISER 2016 www.cyberwiser.eu - @cyberwiser 19 Modelling
  20. 20. CyberWISER-Essential © WISER 2016 www.cyberwiser.eu - @cyberwiser 20 Testing
  21. 21. CyberWISER-Essential Demo Scenario © WISER 2015 www.cyberwiser.eu - @cyberwiser 21 Simulation of an incident The attacker uses Kali Linux from public IP address The attacker executes a Hydra script Wiser Agent detects the attack with Snort sensor (/var/log/snort/snort.alert) Wiser Agent sends events to DWH Show events received by Monitoring Engine from DWH via RabbitMQ Show Alarm received in the RAE and how it is triggered the risk assessment • Risk models selected • DEXI instantiation • Qualitative risk assessment per risk and target • Aggregations: • Overall • By sections • By risks • Mitigation measures
  22. 22. CyberWISER-Essential Demo Scenario © WISER 2015 www.cyberwiser.eu - @cyberwiser 22
  23. 23. Outline © WISER 2015 www.cyberwiser.eu - @cyberwiser 23 CyberWISER Services Introduction to CyberWISER-Light Introduction to CyberWISER-Essential Conclusions
  24. 24. CyberWISER: What’s in it for my organisation? © WISER 2016 www.cyberwiser.eu - @cyberwiser 24 Affordable cyber risk assessment services depending on customer needs & budget. Due to the real-time monitoring and the increase of automatization of this assessment, prices could be more competitive, and be affordable for segments as SMEs, that have a low budget for these types of services. Effective, efficient, and user-friendly solutions. This is going to be achieved by means of an Online-centred delivery model, which is found at www.cyberwiser.eu Customised approach and a team of experts “on-call” (where applicable), to overcome the intrinsic shortfalls of the one-fits- all solution. A “Cyber Security for all” approach!
  25. 25. www.cyberwiser.eu @cyberwiser Thank you for your attentions! Questions? Contact Antonio Álvarez Romero Atos Spain antonio.alvarez@atos.net

×