More Related Content
What's hot
What's hot (20)
Similar to ABB Summer Co-op 2015
Similar to ABB Summer Co-op 2015 (20)
ABB Summer Co-op 2015
- 1. ABB Summer Co-op 2015 Rudy Libertini PSPG Cybersecurity Group
- 2. About Me Rudy Libertini • School: • Bachelors of Computer Engineering (May 2017) • Member of IEEE
- 4. Goals for Summer • Increase Knowledge of Cyber Security • Gain Professional Experience • Build Meaningful Relationships • Have Fun!
- 5. The Cybersecurity Group Joseph Catanese Manager Matt Virostek Supervisor Michael Slavens aka Coop Others: Ralph Porfilio and Mike Radigan
- 7. Hardening •Hardening Tool •Setting Firewall Rules, Services and Registry Profiles
- 8. Patch Management •Patch Disk • Bulletins • Download patches • Create Profiles • Generate Repository Patch Management Utility
- 9. Antivirus • Blacklisting blacklisting is the baseline deployment for antivirus • Whitelisting
- 10. Disaster Recovery • Backup Grandfather, Father, Son • Recovery
- 11. Tasks: •Patch Management Utility •Testing •Documentation •Symphony Plus Secure Deployment Guideline •Symphony Plus ePO Deployment Guide •Security Workplace Deployment Guide •WSUS •Backlogging
- 12. Extra Tasks: •Creation of Symphony Plus Engineering Testbed •PGE Drawings (Visio) •TimeSync (Win32 registry) •Security Workplace TeamTrack clean up •Fingerprint Profiles •Hardening Tool Testing
- 13. Reflections • Gained Professional Experience • My Team was Amazing • Enjoyed My Projects • ABB > The Classroom • Get Involved • Don’t Sing In The Lab
- 14. Conclusion
Editor's Notes
- Ralph is the Director of Engineering and Technology and Mike is the Business Development Manager for Cybersecurity
- Originally created because of the requirement for hardening on all new Symphony Plus systems, the Hardening Tool was designed by Matt. It runs batch files to set the firewall rules, services and registry profiles for a more secure deployment.
- Patch Disk Process: After Patch Tuesday, which is the second Tuesday of every month ABB Global patch testing teams download and test all the monthly patches for All ABB Systems 800xA, 800xA-PG, Advabuild, PGP, and Symphony Plus. From the testing they create Bulletins which can be found on the ABB website. From these Bulletins the local Cybersecurity Group creates a Disk that can be loaded into a system and with Security Workplace distributed to all the nodes in that system. Roughly 120 customers subscribe to the monthly Patch Disk. PMU is developed and maintained by the local ABB Group. Core of SWP.
- Blacklisting is a list of all known viruses that are not allowed on the system. Whitelisting is a list of the specific programs that are recognized and allowed on the system.
- Grandfather, Father, Son process works by taking Incremetal backups of day-to-day changes then a Differential backup every week which consistest of a roll-up of the weeks Incremental backups and a new Incremental backup for that day. The final step is a Full backup created every month.
- PMU On SWP testbed VMs I tested remote patch installation and recorded bugs and errors in PMU server-side-targeting Secure Deployment Guideline used for the ABB Standard on Firewall Rules, Services, and other security settings Initial run through and revision Detailing all discrepancies between current practices and Guideline Standards Symphony Plus ePO Deployment Guide Initial draft of document Security Workplace Deployment Guide Testing process Detailing unclear directions Windows Security Update Services Backlog Profiles - based off Bulletins developed by ABB Global patch testing teams - to patch all systems in checkout so they are fully patched before being shipped out - Client-Side-Targeting on TeamNet client looks to WSUS server for patches
- SPE testbed Installed 4 instances of SPE 1.1 client and 4 instances of Composer 6.1 client To be used for testing user management configuration for time efficiency. PGE Visio drawings of Coyote Springs Non-Redundant DMZ Network TimeSync Win32 Registry Functions Researched what all the functions are and how they affect the system Important because if there is a discrepancy in time between a client and the Domain it will be booted off the Domain for trust reasons Fingerprint Profiles Fingerprinting Application pulls all the Firewall, Services, and Registry settings from a computer and compares them to a profile where all the correct settings are listed It then displays any discrepancies. Hardening Tool ran tests to check if the correct Firewall, Services, and Registry settings were deployed. also debugging
- Gained Professional Experience: In my experience at ABB I learned a lot about Cybersecurity. Before I stared I didn’t know anything about Services or Firewalls or Patching or Disaster Recovery The technical information I’ve learned is invaluable to me and my career path. My Team Was Amazing: They were patient with me and always willing to answer my questions, no matter how annoying I got. Enjoyed My Projects: I looked forward to coming to work and learning what I would be doing next. This was the perfect mix of something new every day and allowing me to hone my skills doing continuous tasks. ABB> The Classroom: I learned more this summer about working in a lab than I ever did at my research job at CSU or in the class room. I’m thankful to have been given this opportunity and I hope I can continue to explore my talents and interests in cyber security and other areas. Get Involved: I wouldn’t have been able to get to know my coworkers if I didn’t take the extra step to get involved in extra activities, like sand volleyball. Don’t Sing in the lab: Enough said.