Successfully reported this slideshow.
8th
 SEEITA –  7th
 SEE ICT Forum Meeting & 7th
  MASIT Open Days Conference
14-15 October 2010, Ohrid  www.seeita.org 
In...
8th
 SEEITA –  7th
 SEE ICT Forum Meeting & 7th
  MASIT Open Days Conference
14-15 October 2010, Ohrid  www.seeita.org 
Ab...
8th
 SEEITA –  7th
 SEE ICT Forum Meeting & 7th
  MASIT Open Days Conference
14-15 October 2010, Ohrid  www.seeita.org 
CO...
8th
 SEEITA –  7th
 SEE ICT Forum Meeting & 7th
  MASIT Open Days Conference
14-15 October 2010, Ohrid  www.seeita.org 
IN...
8th
 SEEITA –  7th
 SEE ICT Forum Meeting & 7th
  MASIT Open Days Conference
14-15 October 2010, Ohrid  www.seeita.org 
Pu...
8th
 SEEITA –  7th
 SEE ICT Forum Meeting & 7th
  MASIT Open Days Conference
14-15 October 2010, Ohrid  www.seeita.org 
Ho...
8th
 SEEITA –  7th
 SEE ICT Forum Meeting & 7th
  MASIT Open Days Conference
14-15 October 2010, Ohrid  www.seeita.org 
Ho...
8th
 SEEITA –  7th
 SEE ICT Forum Meeting & 7th
  MASIT Open Days Conference
14-15 October 2010, Ohrid  www.seeita.org 
Pu...
8th
 SEEITA –  7th
 SEE ICT Forum Meeting & 7th
  MASIT Open Days Conference
14-15 October 2010, Ohrid  www.seeita.org 
Ci...
8th
 SEEITA –  7th
 SEE ICT Forum Meeting & 7th
  MASIT Open Days Conference
14-15 October 2010, Ohrid  www.seeita.org 
WH...
8th
 SEEITA –  7th
 SEE ICT Forum Meeting & 7th
  MASIT Open Days Conference
14-15 October 2010, Ohrid  www.seeita.org 
Un...
8th
 SEEITA –  7th
 SEE ICT Forum Meeting & 7th
  MASIT Open Days Conference
14-15 October 2010, Ohrid  www.seeita.org 
Ho...
8th
 SEEITA –  7th
 SEE ICT Forum Meeting & 7th
  MASIT Open Days Conference
14-15 October 2010, Ohrid  www.seeita.org 
ST...
8th
 SEEITA –  7th
 SEE ICT Forum Meeting & 7th
  MASIT Open Days Conference
14-15 October 2010, Ohrid  www.seeita.org 
Wh...
8th
 SEEITA –  7th
 SEE ICT Forum Meeting & 7th
  MASIT Open Days Conference
14-15 October 2010, Ohrid  www.seeita.org 
Ty...
8th
 SEEITA –  7th
 SEE ICT Forum Meeting & 7th
  MASIT Open Days Conference
14-15 October 2010, Ohrid  www.seeita.org 
Ex...
8th
 SEEITA –  7th
 SEE ICT Forum Meeting & 7th
  MASIT Open Days Conference
14-15 October 2010, Ohrid  www.seeita.org 
Wh...
8th
 SEEITA –  7th
 SEE ICT Forum Meeting & 7th
  MASIT Open Days Conference
14-15 October 2010, Ohrid  www.seeita.org 
Wh...
8th
 SEEITA –  7th
 SEE ICT Forum Meeting & 7th
  MASIT Open Days Conference
14-15 October 2010, Ohrid  www.seeita.org 
AN...
8th
 SEEITA –  7th
 SEE ICT Forum Meeting & 7th
  MASIT Open Days Conference
14-15 October 2010, Ohrid  www.seeita.org 
Im...
8th
 SEEITA –  7th
 SEE ICT Forum Meeting & 7th
  MASIT Open Days Conference
14-15 October 2010, Ohrid  www.seeita.org 
Id...
8th
 SEEITA –  7th
 SEE ICT Forum Meeting & 7th
  MASIT Open Days Conference
14-15 October 2010, Ohrid  www.seeita.org 
Ra...
8th
 SEEITA –  7th
 SEE ICT Forum Meeting & 7th
  MASIT Open Days Conference
14-15 October 2010, Ohrid  www.seeita.org 
Su...
8th
 SEEITA –  7th
 SEE ICT Forum Meeting & 7th
  MASIT Open Days Conference
14-15 October 2010, Ohrid  www.seeita.org 
Re...
8th
 SEEITA –  7th
 SEE ICT Forum Meeting & 7th
  MASIT Open Days Conference
14-15 October 2010, Ohrid  www.seeita.org 
An...
Upcoming SlideShare
Loading in …5
×

Information Security for increased usage of e-services - Masit Open Days 2010

1,041 views

Published on

Presentation on the 8th SEEITA – 7th SEE ICT Forum Meeting & 7th MASIT Open Days Conference.

http://www.seeita.org/
http://www.seeita.org/?conference_agenda

Published in: Self Improvement, Technology
  • Be the first to comment

  • Be the first to like this

Information Security for increased usage of e-services - Masit Open Days 2010

  1. 1. 8th  SEEITA –  7th  SEE ICT Forum Meeting & 7th   MASIT Open Days Conference 14-15 October 2010, Ohrid  www.seeita.org  Information security for  increased usage of e-Services Ana Meskovska, ana.meskovska@tpconsulting.com.mk
  2. 2. 8th  SEEITA –  7th  SEE ICT Forum Meeting & 7th   MASIT Open Days Conference 14-15 October 2010, Ohrid  www.seeita.org  About me • Consultant and Trainer in Trajkovski & Partners Consulting • Quality and Information Security Manager • B.Sc. in Electrical Engineering • Master student – e-Business management • ICMCI Certified Management Consultant – CMC • ECQA certified IT Security and e-Security Manager • Member of Board of Directors and Chairman of the Committee for Events of itSMF Macedonia
  3. 3. 8th  SEEITA –  7th  SEE ICT Forum Meeting & 7th   MASIT Open Days Conference 14-15 October 2010, Ohrid  www.seeita.org  CONTENT • INTRODUCTION – Purpose of presentations issues and understanding the issues • STARTING FROM THE BASICS – What is e-service, information security • ANSWER THE CHALLENGES
  4. 4. 8th  SEEITA –  7th  SEE ICT Forum Meeting & 7th   MASIT Open Days Conference 14-15 October 2010, Ohrid  www.seeita.org  INTRODUCTION
  5. 5. 8th  SEEITA –  7th  SEE ICT Forum Meeting & 7th   MASIT Open Days Conference 14-15 October 2010, Ohrid  www.seeita.org  Purpose of the presentation • Main topic - increasing usage of e-services • Why this topic? – Explosive development and advancement of ICT – Significant growth of internet usage – Rapid increase of e-services – Flat-lining in usage of e-services
  6. 6. 8th  SEEITA –  7th  SEE ICT Forum Meeting & 7th   MASIT Open Days Conference 14-15 October 2010, Ohrid  www.seeita.org  Households with Internet access • 81.0% in 2009 • 78.6% in 2008 • 16.5% in 2007 • 14% in 2006 Source: State Statistical Office
  7. 7. 8th  SEEITA –  7th  SEE ICT Forum Meeting & 7th   MASIT Open Days Conference 14-15 October 2010, Ohrid  www.seeita.org  Households that used computer and Internet in 2008 and 2009 Source: State Statistical Office
  8. 8. 8th  SEEITA –  7th  SEE ICT Forum Meeting & 7th   MASIT Open Days Conference 14-15 October 2010, Ohrid  www.seeita.org  Purpose of using the Internet in the first quarter 2009 Source: State Statistical Office
  9. 9. 8th  SEEITA –  7th  SEE ICT Forum Meeting & 7th   MASIT Open Days Conference 14-15 October 2010, Ohrid  www.seeita.org  Citizens using the Internet and e- Government Figure 1. Percentage of citizens using the Internet and e-Government (Source: Eurostat 2009) Overall progress in citizen using governmental e- services between 2004 and 2008: • 4% - 7% for EU15 • 3% - 4% for EU12
  10. 10. 8th  SEEITA –  7th  SEE ICT Forum Meeting & 7th   MASIT Open Days Conference 14-15 October 2010, Ohrid  www.seeita.org  WHY, not to use e-services? • The e-service doesn’t offer any additional benefits vs. the regular service • The e-service is not relevant • It is too complicated • It is not as quality as the regular service • A trust issue • It is not obligatory • …….
  11. 11. 8th  SEEITA –  7th  SEE ICT Forum Meeting & 7th   MASIT Open Days Conference 14-15 October 2010, Ohrid  www.seeita.org  Understanding the issues • Why is trust an issue: – involvement of sensitive and personal information – risk from disclosure and misuse of important information and documents – absence of physical contact, visual communication and tangibility • How to start overcoming this issue? – Information security – …….
  12. 12. 8th  SEEITA –  7th  SEE ICT Forum Meeting & 7th   MASIT Open Days Conference 14-15 October 2010, Ohrid  www.seeita.org  How to use Information security to increase usage of e-services?
  13. 13. 8th  SEEITA –  7th  SEE ICT Forum Meeting & 7th   MASIT Open Days Conference 14-15 October 2010, Ohrid  www.seeita.org  STARTING FROM THE BASICS
  14. 14. 8th  SEEITA –  7th  SEE ICT Forum Meeting & 7th   MASIT Open Days Conference 14-15 October 2010, Ohrid  www.seeita.org  What means e-service? • The attainment and delivery of services through electronic media • Any asset, deed, effort or performance that is made available via the Internet to drive new revenue streams or create new efficiencies
  15. 15. 8th  SEEITA –  7th  SEE ICT Forum Meeting & 7th   MASIT Open Days Conference 14-15 October 2010, Ohrid  www.seeita.org  Types of e-services • E-services that don’t have critical impact on our lives or business – e-mails, social networks, chats, blogs, collaboration workspaces… • E-services that have crucial impact on our lives, private and business wise – e-banking, e-procurement, e-auctions, e- government, e-healthcare…
  16. 16. 8th  SEEITA –  7th  SEE ICT Forum Meeting & 7th   MASIT Open Days Conference 14-15 October 2010, Ohrid  www.seeita.org  Example of e-service activities • registering for user identity - e.g. membership application • updating user information - e.g. new address • updating user status - e.g. credit card account balance • submitting application - e.g. credit card, driving license • placing order - e.g. buying and selling of stocks and funds • doing payment transaction - e.g. credit card payment • searching for information - e.g. business matching • exchanging information - e.g. chatroom • receiving information and service - e.g. education notes • doing survey, etc…
  17. 17. 8th  SEEITA –  7th  SEE ICT Forum Meeting & 7th   MASIT Open Days Conference 14-15 October 2010, Ohrid  www.seeita.org  What means Information? • Information is an asset to the organization, which has value to organization and needs to be protected appropriately • Types of information: – Printed or written on paper – Electronic – Send by mail or other electronic connections – Presented on company’s promotional materials, web site – Spoken
  18. 18. 8th  SEEITA –  7th  SEE ICT Forum Meeting & 7th   MASIT Open Days Conference 14-15 October 2010, Ohrid  www.seeita.org  What means Information  Security? • Providing confidentiality, integrity and availability of written, spoken and electronic information – Confidentiality - limiting information access and disclosure to authorized users and preventing access by or disclosure to unauthorized ones – Integrity  - accuracy and completeness – Availability - accessibility and usability upon demand by an authorized entity
  19. 19. 8th  SEEITA –  7th  SEE ICT Forum Meeting & 7th   MASIT Open Days Conference 14-15 October 2010, Ohrid  www.seeita.org  ANSWER THE CHALLENGES
  20. 20. 8th  SEEITA –  7th  SEE ICT Forum Meeting & 7th   MASIT Open Days Conference 14-15 October 2010, Ohrid  www.seeita.org  Implement Information Security Management System • Conduct risk assessment • Define and enforce IS policies – ISMS policy, Privacy policy, e-Privacy policy • Define and enforce IS procedures – Business continuity planning, Access control …. • Identify and implement relevant IS controls – firewall, cryptography, SSL, PKI and DC • Take in consideration best practices and standards – ISO 27001, ITIL, ISO 20000, COBIT, ITAF …
  21. 21. 8th  SEEITA –  7th  SEE ICT Forum Meeting & 7th   MASIT Open Days Conference 14-15 October 2010, Ohrid  www.seeita.org  Identify and achieve CIA balance
  22. 22. 8th  SEEITA –  7th  SEE ICT Forum Meeting & 7th   MASIT Open Days Conference 14-15 October 2010, Ohrid  www.seeita.org  Raise awareness • Raise awareness for: – the purpose of e-service – the benefits from the e-service – the need for information security – how is information security organized and implemented – importance and existence of IS controls and tools among management, employees, clients, users, ….
  23. 23. 8th  SEEITA –  7th  SEE ICT Forum Meeting & 7th   MASIT Open Days Conference 14-15 October 2010, Ohrid  www.seeita.org  Summary • Trend: Flat-lining of usage of services • Issue: the trust issue • Answer: first step in dealing with the trsut issue - information security • Conclusion: Create and communicate an  Information Security Management  System
  24. 24. 8th  SEEITA –  7th  SEE ICT Forum Meeting & 7th   MASIT Open Days Conference 14-15 October 2010, Ohrid  www.seeita.org  Relevant links • www.iso27001security.com • http://bledconference.org/index.php/eConference/2010 • http://www.infosec.gov.hk/english/information/services. html • http://epp.eurostat.ec.europa.eu/portal/page/portal/eur ostat/home/ • www.stat.gov.mk • www.isaca.org • www.itil-officialsite.com
  25. 25. 8th  SEEITA –  7th  SEE ICT Forum Meeting & 7th   MASIT Open Days Conference 14-15 October 2010, Ohrid  www.seeita.org  Ana Meskovska anameskovska@gmail.com

×