BISS - 11nov2011

454 views

Published on

Published in: Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
454
On SlideShare
0
From Embeds
0
Number of Embeds
13
Actions
Shares
0
Downloads
2
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

BISS - 11nov2011

  1. 1. PRIMA DECADA Noile Generatii Bogdan Toporan │ BEST INTERNET SECURITY
  2. 2. Security solutions <ul><li>“ An infinite number of monkeys with an infinite number of typewriters and an infinite amount of time could eventually write the works of Shakespeare “—The Infinite Monkey Theorem </li></ul><ul><li>“ An infinite number of hackers </li></ul><ul><li>with an infinite number of </li></ul><ul><li>keyboards, an infinite amount of </li></ul><ul><li>caffeine, and an infinite amount </li></ul><ul><li>of time could eventually </li></ul><ul><li>compromise a network.” </li></ul>
  3. 3. BISS │ Best Internet Security 10 ani – 1.11.’11 <ul><li>Suntem specializati in system si network security </li></ul><ul><li>Suntem o echipa de experti, cu acces la ultimele tehnologii si descoperiri in  domeniul IT Sec </li></ul><ul><li>Protejam organizatii financiar-bancare, guvernamentale, de telecomunicatii, utilitati si industrie </li></ul><ul><li>De 10 ani suntem permanent conectati la dinamica dezvoltarii domeniului IT Security </li></ul><ul><li>In 10 ani, am evoluat de la statutul de pionier intr-un segment IT foarte specializat, la cel de integrator pentru solutii profesionale IT Security </li></ul><ul><li>BISS propune cele mai avansate tehnologii / solutii / produse si ofera suport / servicii de inalta calitate. </li></ul><ul><li>Suntem parte a sistemelor de protectie ale clientilor si partenerilor nostri </li></ul><ul><li>Suntem partenerii liderilor tehnologiilor IT Security . Partenerii BISS sunt companii ce dezvolta concepte si tehnologii de varf, companii vizionare specializate in aria protectiei retelelor, comunicatiilor si datelor rezidente in sistemele informatice. </li></ul>
  4. 4. BISS – infiintata in 2001 <ul><li>Trusted information security integrator </li></ul>
  5. 5. Expertiza <ul><li>Gateway </li></ul><ul><li>Server </li></ul><ul><li>Desktop </li></ul><ul><li>NIPS / HIPS </li></ul><ul><li>VAM </li></ul><ul><li>Web Security </li></ul><ul><li>IAM </li></ul><ul><li>Log Management </li></ul><ul><li>Encryption /PKI </li></ul><ul><li>UTM </li></ul><ul><li>DLP </li></ul><ul><li>WAN Optimization </li></ul><ul><li>SIEM </li></ul><ul><li>Intelligence </li></ul><ul><li>Web App </li></ul><ul><li>E-mail </li></ul><ul><li>Etc. </li></ul><ul><li>WAF </li></ul><ul><li>XML Fw </li></ul><ul><li>Mail fw </li></ul><ul><li>AntiSpam </li></ul><ul><li>App scans </li></ul><ul><li>Code review </li></ul>Application <ul><li>Oracle </li></ul><ul><li>SQL </li></ul><ul><li>Etc. </li></ul><ul><li>VA </li></ul><ul><li>IPS </li></ul><ul><li>Discovery </li></ul><ul><li>Log mgmt </li></ul><ul><li>Admin monitor </li></ul><ul><li>DAM </li></ul><ul><li>Reporting </li></ul>Database <ul><li>Compliance </li></ul><ul><li>Plan </li></ul><ul><li>Audit </li></ul><ul><li>Training </li></ul><ul><li>Deployment </li></ul><ul><li>Support </li></ul><ul><li>Professional services </li></ul>Consultant Network BISS
  6. 6. Motive pentru IT Security <ul><li>Nevoia reala de conectare </li></ul><ul><li>Existenta Internetului </li></ul>
  7. 7. Motive pentru IT Security <ul><li>Complexitatea sistemelor informatice </li></ul><ul><li>Rapiditatea adoptarii noilor modele si tehnologii </li></ul>
  8. 8. X-Force Trend Risk report H1 2011
  9. 9. X-Force Trend Risk report H1 2011 <ul><li>Common points of entry </li></ul><ul><ul><li>the public website and data servers. </li></ul></ul><ul><ul><li>employee workstations or endpoints. </li></ul></ul>
  10. 10. X-Force Trend Risk report H1 2011 <ul><li>Aproximativ 50% din vulnerabilitatile cunoscute sunt inca unpatched </li></ul>
  11. 11. X-Force Trend Risk report H1 2011 <ul><li>Un studiu recent al Forrester Research, releva faptul ca peste 75% din companii nu au documentat inca un database security plan. </li></ul><ul><li>Forrester estimeaza de asemenea ca in prezent, DBAs aloca sub 5% din timpul lor pentru database security. </li></ul><ul><li>Key drivers pentru database security </li></ul><ul><ul><li>Atacatorii sunt motivati sa compromita bazele de date cu o protectie slaba, de sumele pe care le castiga vanzand datele personale sustrase. </li></ul></ul><ul><ul><li>Cyber-spionajul vizeaza proprietatea intelectuala. </li></ul></ul><ul><ul><li>Hacktivism-ul este o forma de atac motivata politic, adesea sponsorizata politic si folosita pentru suportul activitatilor politice. </li></ul></ul><ul><ul><li>Amenintarile interne sunt considerate cele mai serioase, angajatii putand frauda si exploata facil accesul legitim. </li></ul></ul><ul><ul><li>Compliance – cerinte tot mai complexe </li></ul></ul>
  12. 12. X-Force Trend Risk report H1 2011
  13. 13. Security drivers
  14. 14. O noua abordare <ul><li>Informatie relevanta (intelligence) </li></ul><ul><li>Vizibilitate (in timp real) </li></ul><ul><li>Corelare </li></ul><ul><li>Predictibilitate (risk management) </li></ul><ul><li>Administrare unitara (corelare) </li></ul><ul><li>Reactie rapida </li></ul><ul><li>Analiza (forensic) </li></ul><ul><li>Scalabilitate </li></ul>
  15. 15. Eliminate False Choice - Capability & Simplicity Siloed Solution Integrated Solution
  16. 16. Disponibilitate <ul><li>Compliance validation and security response improvement in the same solution </li></ul><ul><li>Out of the box content to swiftly meet PCI, NERC, SOX, HIPAA, GLBA, CoCo, etc. </li></ul><ul><li>Flexibility to meet new compliance standards as they evolve </li></ul>PCI HIPAA FISMA CoCo NERC SOX
  17. 17. Intelligence Clear & concise delivery of the most relevant information … What was the attack? Who was responsible? How many targets involved? Was it successful? Where do I find them? Are any of them vulnerable? How valuable are they to the business? Where is all the evidence?
  18. 18. Point & click Feature Benefit Network topology and traffic maps, provided in context of an active threat Greatly enhance end-to-end visualization and remediation of security incidents Summary network connection database and visualization tools built from high volume of network flow data Improves the speed and efficiency of drilling into end user activity and attack path Graphical mapping of risk (both pre and post exploit) on top of network visualization tools Greatly improves time to recognize and remediate security incidents
  19. 19. Next Generation Web Security
  20. 20. Blue Coat
  21. 21. Next Generation Firewall
  22. 22. Next Generation SIEM
  23. 23. Next Generation <ul><li>Proactive threat management </li></ul><ul><li>Massive data reduction </li></ul><ul><li>Rapid, complete impact analysis </li></ul><ul><li>Eliminates silos </li></ul><ul><li>Highly scalable </li></ul><ul><li>Flexible, future-proof </li></ul><ul><li>Operational elegance </li></ul><ul><li>Simple deployment </li></ul><ul><li>Rapid time to value </li></ul>
  24. 24. Q&A <ul><li>Cum tratez problemele de confidentialitate? </li></ul><ul><li>Cum imi monitorizez reteaua si echipamentele de securitate acum? </li></ul><ul><li>Cum stabilesc anume o prioritizare a sistemelor vulnerabile? </li></ul><ul><li>Cum interpretez rezultatele furnizate de scanerele de vulnerabilitati? </li></ul><ul><li>Cum monitorizez utilizarea aplicatiilor de socializare? </li></ul><ul><li>Controlez accesul la retelele sociale? </li></ul><ul><li>Am cum sa fac o corelare a informatiilor furnizate de reteaua mea? </li></ul><ul><li>In cazul unui atac, exista resursa interna pregatita sa faca fata? </li></ul><ul><li>S-ar fi putut detecta atacul mai devreme (inaintea declansarii impactului)? </li></ul><ul><li>Cine e responsabil pentru securitate? </li></ul><ul><li>La cine pot sa apelez? </li></ul><ul><ul><ul><li>Partener /consultant </li></ul></ul></ul><ul><ul><ul><li>Date de contact </li></ul></ul></ul><ul><ul><ul><li>Outsourced </li></ul></ul></ul>
  25. 25. Sample Slide  Bullet Points <ul><li>The text demonstrates how your own text will look when you replace the placeholder with your own text. </li></ul><ul><li>This is a placeholder text. This text can be replaced with your own text. </li></ul><ul><li>If you don’t want to use the style and size of the fonts as used in this placeholder it is possible to replace it by selecting different options. </li></ul><ul><ul><li>For replacing the placeholder text you need to click on the placeholder text and insert your own text. </li></ul></ul><ul><ul><li>The text that you insert will retain the same style and format as the placeholder text. </li></ul></ul>MULŢUMESC Bogdan Toporan │ BISS [email_address] www.biss.ro 1.11.’11

×