Binod Rimal, profile picture
Uploaded byBinod Rimal
PPTX, PDF66 views

Cloud Security.pptx

The document discusses key concepts in cloud security including confidentiality, integrity, and availability (CIA triad). It also covers vulnerabilities, threats, attacks, and countermeasures. The objectives of cloud security are to protect systems, data, information, and build trust by preventing attacks, detecting breaches, defending against threats, and deterring attackers through appropriate security measures.

Embed presentation

Download to read offline
Cloud Security 1
Key Security Concepts - CIA Confidentiality • Preserving authorized restrictions on information access and disclosure, including means for protecting personal privacy and proprietary information Integrity • Guarding against improper information modification or destruction, including ensuring information nonrepudiation and authenticity Availability • Ensuring timely and reliable access to and use of information To complete the picture: 1. Authenticity 2. Accountability 2
Levels of Impact Low The loss could be expected to have a limited adverse effect on organizational operations, organizational assets, or individuals Moderate The loss could be expected to have a serious adverse effect on organizational operations, organizational assets, or individuals High The loss could be expected to have a severe or catastrophic adverse effect on organizational operations, organizational assets, or individuals 3
Vulnerabilities, Threats and Attacks • Vulnerabilities • Corrupted (loss of integrity) • Leaky (loss of confidentiality) • Unavailable or very slow (loss of availability) 4 • Threats • Capable of exploiting vulnerabilities • Represent potential security harm to an asset • Attacks (threats carried out) • Passive – attempt to learn or make use of information from the system that does not affect system resources • Active – attempt to alter system resources or affect their operation • Insider – initiated by an entity inside the security parameter • Outsider – initiated from outside the perimeter
Passive and Active Attacks Passive Attack Active Attack • Attempts to learn or make use of information from the system but does not affect system resources • Eavesdropping on, or monitoring of, transmissions • Goal of attacker is to obtain information that is being transmitted • Two types: – Release of message contents – Traffic analysis • Attempts to alter system resources or affect their operation • Involve some modification of the data stream or the creation of a false stream • Four categories: – Replay – Masquerade – Modification of messages – Denial of service 5
Countermeasures Dealing with security attacks • Prevent • Detect • Recover May itself introduce new vulnerabilities Residual vulnerabilities may remain Goal is to minimize residual level of risk to the assets 6
Trends have shaped cybersecurity • The increasing economic value of information • Computer networks are is part of the critical national framework • Third parties control information not under our control • Criminalisation of the internet • Ever increasing complexity of networks • Slower patching, faster exploits • Sophistication of threats • End user as attacker • Regulatory pressure Adapted from Scheiner (2006) 7 Video: https://www.youtube.com/watch?v=AuYNXgO_f3Y
Rationale for Protection • Cybersecurity is required in order to protect systems, data and information • We need to understand what the data and information is worth in order to determine the appropriate level of protection • Value can be defined or perceived – Impact on Talk Talk • https://www.theguardian.com/business/2015/oct/23/talktalk-cyber-attack- company-unsure-how-many-users-affected – Impact of WannaCry on NHS • https://www.chroniclelive.co.uk/news/north-east-news/nhs-cyber-attack- could-been-13818484 • https://www.theguardian.com/technology/2017/may/13/nhs-workers-and- patients-on-how-cyber-attack-has-affected-them • Organisational and public perception of value may be different from an attacker. • Value can change over time 8
CyberSecurity • Cyber security incorporates a range of domains, including – Application of information security standards – Implementation of secure infrastructure – Education of users – Creation of appropriate organisations • In order to prepare for and attempt to prevent attacks we need to be aware of the security implications and issues in terms of systems security and information security • Reduce risk • Minimize attack • Identify breaches • Build trust 9 In your opinion, what are the objectives of cybersecurity?
Introduction to Cyber Security Policies and Procedures Principle of least privilege 1. Grant access only to those who need it 2. Grant as little access as possible 3. Grant it only for as long as needed Principle of separation of risk 1. Removal of important elements from close proximity – avoids cascade 2. Separate application, host, network and business risk 3. Separate one application’s risk from another’s 4. Separate multiple systems risks 10 Defence in Depth Firewall, IDs, Access Control, File System Secrecy Kerckhoff’s principle – the security of a mechanism should not be dependent on the secrecy of the mechanism
Threat Landscape Examples: • Advanced persistent threats • Cyber crime (dependent and enabled) • Hactivism • Insider threats • Nuisance threats • etc. What cyber threats can you identify? 11
Advanced Persistent Threats • Attack profile – targeted, organised and funded attacks potentially associated to Nation State sponsorship or other powerful entities • Primary Objectives – typically medium to long term; exfiltration of intellectual property for purposes of eliminating years of R&D, competitive economic and/or nation state advantage • Attack methods – social engineering, spear phishing, drive-by download attacks, espionage, focused perimeter breaches 12
Cyber Crime • Attack profile – opportunistic, broad-based, often motivated by financial gain • Primary Objectives – typically short term; identity theft, credit card fraud, extortion, botnet creation & management • Attack methods – phishing attacks, hosting malware on legitimate websites, SPAM related attacks, cyber extortion techniques 13
Hactivism • Attack profile – organised attacks associated to group of individuals with political, ethical, religious, or retaliatory motives • Primary objectives – typically short term; cause havoc & chaos, disrupt operations, discredit and malign via disclosure of sensitive information • Attack methods – distributed denial of service attacks (DDOS), traditional hacking techniques, spear phishing 14
Insider Threats • Attack profile – legitimate internal user with hidden malicious intentions • masqueraders (those who operate under the identity of another user) • clandestine users (those who evade access controls and auditing) • misfeasors (those who have legitimate authorisation but misuse their privileges) • Primary objectives – short to long term; compromise of sensitive information, destruction, revenge, espionage, harassment • Attack methods – access via legitimate credentials and privileges, data exfiltration, physical and logical sabotage, surveillance 15
Nuisance Threats • Attack profile – unskilled attackers, scanners & crawlers, SPAM, worms/viruses, basic malware • Primary objectives – often unknown or irrelevant; recognition& status, reconnaissance, financial • Attack methods – automated scanners, public exploit kits, generic SPAM email, propagating worms/viruses, adware, scareware 16
Cyber Security in Organisations Cybersecurity Actions in Organisations • Ensure that there are clear processes and procedure to: – Define the cybersecurity environment, including risks, threats and implications of breaches. – Detect when a breach of cybersecurity has happened – including ways of identifying issues with policy and implementation of policy – Defend against potential threats and attacks – considering appropriate layers of security – Deter potential attackers and misusers – both from outside the organisation and inside. 17
Cyber Security in Organisations • Training and Awareness of Employees – Ensuring that there is a robust cybersecurity policy in the organisation – Ensuring that all staff are trained (and aware) of threats from cybersecurity – Raising awareness of the threat from social engineering 18
19 Source: https://www.ncsc.gov.uk/content/files/protected_files/guidance_files/NCSC%2010%20Steps%20To%20Cyber%20Security%20NCSC.pdf
Source: https://www.ncsc.gov.uk/content/files/protected_files/guidance_files/NCSC%20Cyber%20Attacks.pdf
The Threat Matrix Business Impact Probability of Threat Financial application crash DoS attack Application security earthquake Information leak E-mail content disclosure Wireless LANs OS systems security PDA/handhelds Internet worms Virus Privacy leak Web services breach Disgruntled employees Access management failure 21
SANS 20 Critical Security Controls • Overview: https://www.youtube.com/watch?v=vg6ck7ZSBrI • Infographic: https://uk.sans.org/media/critical-security-controls/Poster_CIS-Security-Controls_2018.pdf • Visit the main page: https://www.cisecurity.org/controls/ Outline: • Critical Control 1: Inventory of Authorized and Unauthorized Devices • Critical Control 2: Inventory of Authorized and Unauthorized Software • Critical Control 3: Secure Configurations for Hardware and Software on Mobile Devices, Laptops, Workstations, and Servers • Critical Control 4: Continuous Vulnerability Assessment and Remediation • Critical Control 5: Malware Defences • Critical Control 6: Application Software Security • Critical Control 7: Wireless Device Control • Critical Control 8: Data Recovery Capability • Critical Control 9: Security Skills Assessment and Appropriate Training to Fill Gaps • Critical Control 10: Secure Configurations for Network Devices such as Firewalls, Routers, and Switches • Critical Control 11: Limitation and Control of Network Ports, Protocols, and Services • Critical Control 12: Controlled Use of Administrative Privileges • Critical Control 13: Boundary Defence • Critical Control 14: Maintenance, Monitoring, and Analysis of Audit Logs • Critical Control 15: Controlled Access Based on the Need to Know • Critical Control 16: Account Monitoring and Control • Critical Control 17: Data Loss Prevention • Critical Control 18: Incident Response and Management • Critical Control 19: Secure Network Engineering • Critical Control 20: Penetration Tests and Red Team Exercises 22
CIS Controls Version 8 23
RISK IQ’s Evil Internet Minute 24
Cloud Security Challenges 25 1. Data Breaches 2. Compliance With Regulatory Mandates 3. Lack of IT Expertise 4. Cloud Migration Issues 5. Unsecured APIs 6. Insider Threats 7. Open Source
Cloud Security Risks 26 1. Misconfiguration 2. Unauthorized Access 3. Insecure Interfaces/APIs 4. Hijacking of Accounts 5. Lack of Visibility 6. External Sharing of Data 7. Malicious Insiders 8. Cyberattacks 9. Denial of Service Attacks

More Related Content

PPTX
Cyber-Security-Unit-1.pptx
byTikdiPatel
 
PPTX
cyber security presentation.pptx
bykishore golla
 
PPTX
chapter1 Introduction to Software Security.pptx
byLina Shimelis
 
PDF
Module 1 Introduction of Network security
byhoangvttlu
 
PPTX
Lecture 2 Threats and Strategy.pptx
bymoushalivindi
 
PPT
Cyber Crime and Security Ch 1 .ppt
bywaleejhaider1
 
PPT
Lecture 4 presentation of cyber security
byjitendrachettri894
 
DOCX
Security ConceptsDr. Y. ChuCIS3360 Security in Computing.docx
bybagotjesusa
 
Cyber-Security-Unit-1.pptx
byTikdiPatel
 
cyber security presentation.pptx
bykishore golla
 
chapter1 Introduction to Software Security.pptx
byLina Shimelis
 
Module 1 Introduction of Network security
byhoangvttlu
 
Lecture 2 Threats and Strategy.pptx
bymoushalivindi
 
Cyber Crime and Security Ch 1 .ppt
bywaleejhaider1
 
Lecture 4 presentation of cyber security
byjitendrachettri894
 
Security ConceptsDr. Y. ChuCIS3360 Security in Computing.docx
bybagotjesusa
 

Similar to Cloud Security.pptx

PPTX
Introduction to Computer Security
byKamal Acharya
 
PPTX
Information Security_Part_I.pptx very important
byPriyankaKotoky1
 
PPTX
Introduction to cyber security.pptx
bySharmaAnirudh2
 
PPTX
Module 1Introduction to cyber security.pptx
bySkippedltd
 
PPTX
Cyber Security awareness of cyber security
byBabaBoss5
 
PDF
Introduction to Cybersecurity.pdf
byssuserf98dd4
 
PPTX
Navigating-the-Digital-Frontier-A-Guide-to-Cyber-Security Surojit.pptx.pptx
byayushsarkar975
 
PDF
Cyber Security Course & Guide. X.GI. pdf
byGrowthy.web
 
PPTX
FY Msc IT Cs Notes for Module 1_76e8ec671605f8123b9fee3f71d22c31.pptx
byarjunpanditarjunpand
 
PPTX
Cybersecurity Training For Sales People.pptx
bysubodh258201
 
PDF
An Overview of Cyber Security_ Risks, Threats, and Solutions.pdf
bykhushnuma khan
 
PDF
Presentation 10 (1).pdf
byKARANSINGHD
 
PDF
Introduction to Cyber Security.pdf file.
byrabbiaburraq05
 
PPTX
Information Security lecture no 1, bs Information technology.pptx
bymahabatool112
 
PPTX
Cyber crime and Information Security.pptx
bySAINATHYADAV11
 
PDF
introduction cyber security and CIA Triad
byshaunakkulkarni2005
 
PPTX
Cyber Sequrity.pptx is life of cyber security
byperweeng31
 
PDF
Cyber Security
byIRJET Journal
 
PPTX
What is Information Security and why you should care ...
byJames Mulhern
 
PPTX
Cyber security
byRishav Sadhu
 
Introduction to Computer Security
byKamal Acharya
 
Information Security_Part_I.pptx very important
byPriyankaKotoky1
 
Introduction to cyber security.pptx
bySharmaAnirudh2
 
Module 1Introduction to cyber security.pptx
bySkippedltd
 
Cyber Security awareness of cyber security
byBabaBoss5
 
Introduction to Cybersecurity.pdf
byssuserf98dd4
 
Navigating-the-Digital-Frontier-A-Guide-to-Cyber-Security Surojit.pptx.pptx
byayushsarkar975
 
Cyber Security Course & Guide. X.GI. pdf
byGrowthy.web
 
FY Msc IT Cs Notes for Module 1_76e8ec671605f8123b9fee3f71d22c31.pptx
byarjunpanditarjunpand
 
Cybersecurity Training For Sales People.pptx
bysubodh258201
 
An Overview of Cyber Security_ Risks, Threats, and Solutions.pdf
bykhushnuma khan
 
Presentation 10 (1).pdf
byKARANSINGHD
 
Introduction to Cyber Security.pdf file.
byrabbiaburraq05
 
Information Security lecture no 1, bs Information technology.pptx
bymahabatool112
 
Cyber crime and Information Security.pptx
bySAINATHYADAV11
 
introduction cyber security and CIA Triad
byshaunakkulkarni2005
 
Cyber Sequrity.pptx is life of cyber security
byperweeng31
 
Cyber Security
byIRJET Journal
 
What is Information Security and why you should care ...
byJames Mulhern
 
Cyber security
byRishav Sadhu
 

Recently uploaded

PDF
Conferencia de Abertura_Virgilio Almeida.pdf
byGrupo Tordesillas
 
PPTX
Masterclass on Cybercrime, Scams & Safety Hacks.pptx
bykalkidirwhytap
 
PDF
AI Workflows and Workflow Rhetoric - by Ms. Oceana Wong
byagenticroom
 
PDF
Past Memories and a New World: Photographs of Stoke Newington from the 70s, 8...
byHistory of Stoke Newington
 
PPTX
Screening and Selecting Studies for Systematic Review Dr Reginald Quansah
bySystematic Reviews Network (SRN)
 
PDF
1. Doing Academic Research: Problems and Issues, 2. Academic Research Writing...
byProf. Vinod Kumar Kanvaria
 
PPTX
The hidden treasures Grade 5 Story with Motive Questions.pptx
byGildaPetillaDelaCruz
 
PDF
The invasion of Alexander of Macedonia in India
byPrachiSontakke5
 
PDF
UGC NET Paper 1 Syllabus | 10 Units Complete Guide for NTA JRF
byNIKHIL K N
 
PPTX
Prelims - History and Geography Quiz - Around the World in 80 Questions - IITK
byAditya Padhi
 
PDF
Integrated Circuits: Lithography Techniques - Fundamentals and Advanced Metho...
byGS Virdi
 
PPTX
Declaration of Helsinki Basic principles in medical research ppt.pptx
byRanikonde
 
PDF
Cattolica University - Lab Generative and Agentic AI - Mario Bencivinni
byMario Bencivinni
 
PPTX
LYMPHATIC SYSTEM.pptx it includes lymph, lymph nodes, bone marrow, spleen
byReena Yadav
 
PPTX
Anatomy of the eyeball An overviews.pptx
byMushahidRaza8
 
PPTX
DEPED MEMORANDUM 089, 2025 PMES guidelines pptx
byRoseBubuli
 
PPTX
What are New Features in Purchase _Odoo 18
byCeline George
 
PPTX
SEMESTER 5 UNIT- 1 Difference of Children and adults.pptx
bysachin7989
 
PPTX
Time Series Analysis - Weighted (Unequal) Moving Average Method
bySundar B N
 
PPTX
G-Protein-Coupled Receptors (GPCRs): Structure, Mechanism, and Functions
byAnoja Kurian
 
Conferencia de Abertura_Virgilio Almeida.pdf
byGrupo Tordesillas
 
Masterclass on Cybercrime, Scams & Safety Hacks.pptx
bykalkidirwhytap
 
AI Workflows and Workflow Rhetoric - by Ms. Oceana Wong
byagenticroom
 
Past Memories and a New World: Photographs of Stoke Newington from the 70s, 8...
byHistory of Stoke Newington
 
Screening and Selecting Studies for Systematic Review Dr Reginald Quansah
bySystematic Reviews Network (SRN)
 
1. Doing Academic Research: Problems and Issues, 2. Academic Research Writing...
byProf. Vinod Kumar Kanvaria
 
The hidden treasures Grade 5 Story with Motive Questions.pptx
byGildaPetillaDelaCruz
 
The invasion of Alexander of Macedonia in India
byPrachiSontakke5
 
UGC NET Paper 1 Syllabus | 10 Units Complete Guide for NTA JRF
byNIKHIL K N
 
Prelims - History and Geography Quiz - Around the World in 80 Questions - IITK
byAditya Padhi
 
Integrated Circuits: Lithography Techniques - Fundamentals and Advanced Metho...
byGS Virdi
 
Declaration of Helsinki Basic principles in medical research ppt.pptx
byRanikonde
 
Cattolica University - Lab Generative and Agentic AI - Mario Bencivinni
byMario Bencivinni
 
LYMPHATIC SYSTEM.pptx it includes lymph, lymph nodes, bone marrow, spleen
byReena Yadav
 
Anatomy of the eyeball An overviews.pptx
byMushahidRaza8
 
DEPED MEMORANDUM 089, 2025 PMES guidelines pptx
byRoseBubuli
 
What are New Features in Purchase _Odoo 18
byCeline George
 
SEMESTER 5 UNIT- 1 Difference of Children and adults.pptx
bysachin7989
 
Time Series Analysis - Weighted (Unequal) Moving Average Method
bySundar B N
 
G-Protein-Coupled Receptors (GPCRs): Structure, Mechanism, and Functions
byAnoja Kurian
 

Cloud Security.pptx

  • 1.
  • 2.
    Key Security Concepts- CIA Confidentiality • Preserving authorized restrictions on information access and disclosure, including means for protecting personal privacy and proprietary information Integrity • Guarding against improper information modification or destruction, including ensuring information nonrepudiation and authenticity Availability • Ensuring timely and reliable access to and use of information To complete the picture: 1. Authenticity 2. Accountability 2
  • 3.
    Levels of Impact Low Theloss could be expected to have a limited adverse effect on organizational operations, organizational assets, or individuals Moderate The loss could be expected to have a serious adverse effect on organizational operations, organizational assets, or individuals High The loss could be expected to have a severe or catastrophic adverse effect on organizational operations, organizational assets, or individuals 3
  • 4.
    Vulnerabilities, Threats andAttacks • Vulnerabilities • Corrupted (loss of integrity) • Leaky (loss of confidentiality) • Unavailable or very slow (loss of availability) 4 • Threats • Capable of exploiting vulnerabilities • Represent potential security harm to an asset • Attacks (threats carried out) • Passive – attempt to learn or make use of information from the system that does not affect system resources • Active – attempt to alter system resources or affect their operation • Insider – initiated by an entity inside the security parameter • Outsider – initiated from outside the perimeter
  • 5.
    Passive and ActiveAttacks Passive Attack Active Attack • Attempts to learn or make use of information from the system but does not affect system resources • Eavesdropping on, or monitoring of, transmissions • Goal of attacker is to obtain information that is being transmitted • Two types: – Release of message contents – Traffic analysis • Attempts to alter system resources or affect their operation • Involve some modification of the data stream or the creation of a false stream • Four categories: – Replay – Masquerade – Modification of messages – Denial of service 5
  • 6.
    Countermeasures Dealing with security attacks •Prevent • Detect • Recover May itself introduce new vulnerabilities Residual vulnerabilities may remain Goal is to minimize residual level of risk to the assets 6
  • 7.
    Trends have shapedcybersecurity • The increasing economic value of information • Computer networks are is part of the critical national framework • Third parties control information not under our control • Criminalisation of the internet • Ever increasing complexity of networks • Slower patching, faster exploits • Sophistication of threats • End user as attacker • Regulatory pressure Adapted from Scheiner (2006) 7 Video: https://www.youtube.com/watch?v=AuYNXgO_f3Y
  • 8.
    Rationale for Protection •Cybersecurity is required in order to protect systems, data and information • We need to understand what the data and information is worth in order to determine the appropriate level of protection • Value can be defined or perceived – Impact on Talk Talk • https://www.theguardian.com/business/2015/oct/23/talktalk-cyber-attack- company-unsure-how-many-users-affected – Impact of WannaCry on NHS • https://www.chroniclelive.co.uk/news/north-east-news/nhs-cyber-attack- could-been-13818484 • https://www.theguardian.com/technology/2017/may/13/nhs-workers-and- patients-on-how-cyber-attack-has-affected-them • Organisational and public perception of value may be different from an attacker. • Value can change over time 8
  • 9.
    CyberSecurity • Cyber securityincorporates a range of domains, including – Application of information security standards – Implementation of secure infrastructure – Education of users – Creation of appropriate organisations • In order to prepare for and attempt to prevent attacks we need to be aware of the security implications and issues in terms of systems security and information security • Reduce risk • Minimize attack • Identify breaches • Build trust 9 In your opinion, what are the objectives of cybersecurity?
  • 10.
    Introduction to CyberSecurity Policies and Procedures Principle of least privilege 1. Grant access only to those who need it 2. Grant as little access as possible 3. Grant it only for as long as needed Principle of separation of risk 1. Removal of important elements from close proximity – avoids cascade 2. Separate application, host, network and business risk 3. Separate one application’s risk from another’s 4. Separate multiple systems risks 10 Defence in Depth Firewall, IDs, Access Control, File System Secrecy Kerckhoff’s principle – the security of a mechanism should not be dependent on the secrecy of the mechanism
  • 11.
    Threat Landscape Examples: • Advancedpersistent threats • Cyber crime (dependent and enabled) • Hactivism • Insider threats • Nuisance threats • etc. What cyber threats can you identify? 11
  • 12.
    Advanced Persistent Threats •Attack profile – targeted, organised and funded attacks potentially associated to Nation State sponsorship or other powerful entities • Primary Objectives – typically medium to long term; exfiltration of intellectual property for purposes of eliminating years of R&D, competitive economic and/or nation state advantage • Attack methods – social engineering, spear phishing, drive-by download attacks, espionage, focused perimeter breaches 12
  • 13.
    Cyber Crime • Attackprofile – opportunistic, broad-based, often motivated by financial gain • Primary Objectives – typically short term; identity theft, credit card fraud, extortion, botnet creation & management • Attack methods – phishing attacks, hosting malware on legitimate websites, SPAM related attacks, cyber extortion techniques 13
  • 14.
    Hactivism • Attack profile –organised attacks associated to group of individuals with political, ethical, religious, or retaliatory motives • Primary objectives – typically short term; cause havoc & chaos, disrupt operations, discredit and malign via disclosure of sensitive information • Attack methods – distributed denial of service attacks (DDOS), traditional hacking techniques, spear phishing 14
  • 15.
    Insider Threats • Attackprofile – legitimate internal user with hidden malicious intentions • masqueraders (those who operate under the identity of another user) • clandestine users (those who evade access controls and auditing) • misfeasors (those who have legitimate authorisation but misuse their privileges) • Primary objectives – short to long term; compromise of sensitive information, destruction, revenge, espionage, harassment • Attack methods – access via legitimate credentials and privileges, data exfiltration, physical and logical sabotage, surveillance 15
  • 16.
    Nuisance Threats • Attackprofile – unskilled attackers, scanners & crawlers, SPAM, worms/viruses, basic malware • Primary objectives – often unknown or irrelevant; recognition& status, reconnaissance, financial • Attack methods – automated scanners, public exploit kits, generic SPAM email, propagating worms/viruses, adware, scareware 16
  • 17.
    Cyber Security inOrganisations Cybersecurity Actions in Organisations • Ensure that there are clear processes and procedure to: – Define the cybersecurity environment, including risks, threats and implications of breaches. – Detect when a breach of cybersecurity has happened – including ways of identifying issues with policy and implementation of policy – Defend against potential threats and attacks – considering appropriate layers of security – Deter potential attackers and misusers – both from outside the organisation and inside. 17
  • 18.
    Cyber Security inOrganisations • Training and Awareness of Employees – Ensuring that there is a robust cybersecurity policy in the organisation – Ensuring that all staff are trained (and aware) of threats from cybersecurity – Raising awareness of the threat from social engineering 18
  • 19.
  • 20.
  • 21.
    The Threat Matrix Business Impact Probabilityof Threat Financial application crash DoS attack Application security earthquake Information leak E-mail content disclosure Wireless LANs OS systems security PDA/handhelds Internet worms Virus Privacy leak Web services breach Disgruntled employees Access management failure 21
  • 22.
    SANS 20 CriticalSecurity Controls • Overview: https://www.youtube.com/watch?v=vg6ck7ZSBrI • Infographic: https://uk.sans.org/media/critical-security-controls/Poster_CIS-Security-Controls_2018.pdf • Visit the main page: https://www.cisecurity.org/controls/ Outline: • Critical Control 1: Inventory of Authorized and Unauthorized Devices • Critical Control 2: Inventory of Authorized and Unauthorized Software • Critical Control 3: Secure Configurations for Hardware and Software on Mobile Devices, Laptops, Workstations, and Servers • Critical Control 4: Continuous Vulnerability Assessment and Remediation • Critical Control 5: Malware Defences • Critical Control 6: Application Software Security • Critical Control 7: Wireless Device Control • Critical Control 8: Data Recovery Capability • Critical Control 9: Security Skills Assessment and Appropriate Training to Fill Gaps • Critical Control 10: Secure Configurations for Network Devices such as Firewalls, Routers, and Switches • Critical Control 11: Limitation and Control of Network Ports, Protocols, and Services • Critical Control 12: Controlled Use of Administrative Privileges • Critical Control 13: Boundary Defence • Critical Control 14: Maintenance, Monitoring, and Analysis of Audit Logs • Critical Control 15: Controlled Access Based on the Need to Know • Critical Control 16: Account Monitoring and Control • Critical Control 17: Data Loss Prevention • Critical Control 18: Incident Response and Management • Critical Control 19: Secure Network Engineering • Critical Control 20: Penetration Tests and Red Team Exercises 22
  • 23.
  • 24.
    RISK IQ’s EvilInternet Minute 24
  • 25.
    Cloud Security Challenges 25 1.Data Breaches 2. Compliance With Regulatory Mandates 3. Lack of IT Expertise 4. Cloud Migration Issues 5. Unsecured APIs 6. Insider Threats 7. Open Source
  • 26.
    Cloud Security Risks 26 1.Misconfiguration 2. Unauthorized Access 3. Insecure Interfaces/APIs 4. Hijacking of Accounts 5. Lack of Visibility 6. External Sharing of Data 7. Malicious Insiders 8. Cyberattacks 9. Denial of Service Attacks