SlideShare a Scribd company logo

Council rock-school-case-study

CMR WORLD TECH
CMR WORLD TECH

Council Rock School District is the 12th largest district in Pennsylvania. It includes 18 buildings, 5 municipalities, and 10 IT employees supporting over 13,000 users, including students and employees. For the security aspect of IT, Council Rock School District relies on a one-man team: Matthew J. Frederickson. Matthew is CISSP certi ed and has more than 25 years in IT. Being solely responsible for the security of over 13,000 users, Matthew has encountered many challenges and has had to adapt the way he approaches keeping Council Rock School District secure.

Software
1 of 2
Download to read offline
C A S E S T U D Y OSSIM provides essential security capabilities like asset discovery, vulnerability assessment, intrusion detection, behavioral monitoring and SIEM built into one unified platform. Standing on the shoulders of the many proven open source security controls built into the platform, OSSIM is one of the fastest ways to make the first steps towards unified security visibility. AlienVault provides ongoing development for OSSIM so that anyone can have access to sophisticated security technologies; this includes the researchers who need a platform for experimentation, and the unsung heroes who can’t convince their organizations that security is a problem. Matthew used OSSIM for about 2 months and really liked what he saw. However, he realized he needed a fully supported product so he could get answers to his questions quickly rather than waiting for others in the community to help. “I wanted to see if OSSIM was good enough before considering a paid solution,” said Matthew. “After that was proved, I decided I needed something that was fully supported. That’s when I decided to upgrade to AlienVault USM.” Overcoming Challenges of IT Security in K-12 Environments Council Rock School District is the 12th largest district in Pennsylvania. It includes 18 buildings, 5 municipalities, and 10 IT employees supporting over 13,000 users, including students and employees. For the security aspect of IT, Council Rock School District relies on a one-man team: Matthew J. Frederickson. Matthew is CISSP certified and has more than 25 years in IT. Being solely responsible for the security of over 13,000 users, Matthew has encountered many challenges and has had to adapt the way he approaches keeping Council Rock School District secure. Since most K-12 IT teams are under budget and understaffed, Matthew originally tackled his job with open source tools. Soon he realized that he was using an unmanageable number of single point products for the different tasks he needed to accomplish. That’s when Matthew started browsing the Internet to find a better solution. “I was doing a web search, looking for something like Security Onion but with a better UI,” said Matthew. “That’s when I found AlienVault’s free Open Source SIEM (OSSIM). It was perfect because it included all the open source tools I was using all in one dashboard, instead of point products on their own.” Company name: Council Rock School District Industry: Primary: School District Secondary: N/A Headquarters location: Southeastern Pennsylvania Employee count: ~1,000 Website Link: www.crsd.org “I didn’t fully realize how much value I would get out of USM until I started using it. –Matthew J. Frederickson, Security Officer Council Rock School District
C A S E S T U D Y © 2015 AlienVault. All rights reserved. AlienVault and the AlienVault logo are trademarks or registered trademarks of AlienVault. All other names and trademarks are for identification purposes and are the property of their respective owners. C A S E S T U D Y Key Benefits: #1 - Instead of researching and writing correlation directives for each new security threat that emerges, Council Rock School District relies on threat intelligence provided to USM from AlienVault Labs. #2 - Council Rock School District started out by using AlienVault’s Open Source SIEM (OSSIM) and soon after migrated to AlienVault USM for it additional functionality. #3 - The cyber kill chain screen is used by Council Rock School District to easily investigate and prioritize alarms. The transition from OSSIM to USM was straightforward. Matthew worked on it a little each day over about 3-4 days, spending about 4-5 hours in total. He didn’t try to integrate any previous data, just started fresh. Through trial and error he was able to complete the migration without even having to contact support. “I didn’t fully realize how much value I would get out of USM until I started using it,” said Matthew. “The reporting in USM is awesome, it’s been a big benefit for me. And, having a fully supported solution means I can get answers to my questions much more quickly than before. My favorite USM feature is the cyber kill chain screen. It makes it really easy for me to prioritize and investigate alarms. I believe those features are what really allowed me to justify to management why we should go with a paid solution.” Instead of having to research and write correlation directives for each new security threat that emerges, Matthew now relies on the threat intelligence provided to USM by AlienVault Labs. AlienVault Labs is a team of world-class security experts that analyze, validate and curate global threat data collected by the Open Threat Exchange (OTX)—the world’s largest open source repository of threat data. The AlienVault Labs team has become an extension of Matthew’s security monitoring program. They evaluate and translate threat data into integrated security intelligence that is updated weekly in USM via a coordinated set of advanced correlation rules—meaning Matthew can detect emerging threats without needing the expertise to research and write correlation directives himself. Since migrating to USM, Matthew finds himself logging on at least once a day to look at machines that show alarms and rule out any false positives. He also now shares his experience with OSSIM and USM with the IT staff from other school districts in knowledge sharing workshops. “Suddenly, I’m the go-to guy for security. With so many products/services out there, it’s hard for people to know where to start and where they can get the most bang for their buck. OSSIM was a great starting point for me, and migrating to USM has brought even more value.” “Suddenly, I’m the go-to guy for security. With so many products/services out there, it’s hard for people to know where to start and where they can get the most bang for their buck. OSSIM was a great starting point for me, and migrating to USM has brought even more value.” –Matthew J. Frederickson, Security Officer Council Rock School District View all AlienVault case studies at www.alienvault.com/resource-center#content_case-studies

Recommended

Owasp8thdec
Owasp8thdecOwasp8thdec
Owasp8thdectmacuk
 
Why security is the kidney not the tail of the dog v3
Why security is the kidney not the tail of the dog v3Why security is the kidney not the tail of the dog v3
Why security is the kidney not the tail of the dog v3Ernest Staats
 
Owasp o
Owasp oOwasp o
Owasp oSagar Nangare
 
White Paper: Leveraging The OWASP Top Ten to Simplify application security a...
White Paper: Leveraging The OWASP Top Ten to Simplify application security a...White Paper: Leveraging The OWASP Top Ten to Simplify application security a...
White Paper: Leveraging The OWASP Top Ten to Simplify application security a...Security Innovation
 
Staff workshop
Staff workshopStaff workshop
Staff workshopCheshire County Council
 
Фишинг — проклятие или возможность для ИБ?
Фишинг — проклятие или возможность для ИБ? Фишинг — проклятие или возможность для ИБ?
Фишинг — проклятие или возможность для ИБ? Positive Hack Days
 
Higher Education Testimonials from Splunk Customers
Higher Education Testimonials from Splunk CustomersHigher Education Testimonials from Splunk Customers
Higher Education Testimonials from Splunk CustomersAdam Tice
 
Complete network security protection for sme's within limited resources
Complete network security protection for sme's within limited resourcesComplete network security protection for sme's within limited resources
Complete network security protection for sme's within limited resourcesIJNSA Journal
 

Recommended

Owasp8thdec
Owasp8thdecOwasp8thdec
Owasp8thdectmacuk
 
Why security is the kidney not the tail of the dog v3
Why security is the kidney not the tail of the dog v3Why security is the kidney not the tail of the dog v3
Why security is the kidney not the tail of the dog v3Ernest Staats
 
Owasp o
Owasp oOwasp o
Owasp oSagar Nangare
 
White Paper: Leveraging The OWASP Top Ten to Simplify application security a...
White Paper: Leveraging The OWASP Top Ten to Simplify application security a...White Paper: Leveraging The OWASP Top Ten to Simplify application security a...
White Paper: Leveraging The OWASP Top Ten to Simplify application security a...Security Innovation
 
Staff workshop
Staff workshopStaff workshop
Staff workshopCheshire County Council
 
Фишинг — проклятие или возможность для ИБ?
Фишинг — проклятие или возможность для ИБ? Фишинг — проклятие или возможность для ИБ?
Фишинг — проклятие или возможность для ИБ? Positive Hack Days
 
Higher Education Testimonials from Splunk Customers
Higher Education Testimonials from Splunk CustomersHigher Education Testimonials from Splunk Customers
Higher Education Testimonials from Splunk CustomersAdam Tice
 
Complete network security protection for sme's within limited resources
Complete network security protection for sme's within limited resourcesComplete network security protection for sme's within limited resources
Complete network security protection for sme's within limited resourcesIJNSA Journal
 
Ikram PDF Resume (1 Page)
Ikram PDF Resume (1 Page)Ikram PDF Resume (1 Page)
Ikram PDF Resume (1 Page)ikram ahmed
 
Cecii bonita
Cecii bonitaCecii bonita
Cecii bonitaceci51112
 
대신리포트 모닝미팅 160325
대신리포트 모닝미팅 160325대신리포트 모닝미팅 160325
대신리포트 모닝미팅 160325DaishinSecurities
 
Dobry scrum master, a dobry zespół scrumowy
Dobry scrum master, a dobry zespół scrumowyDobry scrum master, a dobry zespół scrumowy
Dobry scrum master, a dobry zespół scrumowyAgile Silesia
 
Ciberseguridad - Curso monográfico
Ciberseguridad - Curso monográficoCiberseguridad - Curso monográfico
Ciberseguridad - Curso monográficoRamon E. Zorrilla
 
Ciberseguridad - Monográfico
Ciberseguridad - MonográficoCiberseguridad - Monográfico
Ciberseguridad - MonográficoRamon E. Zorrilla
 
WebRTC as a Market Disruptor to OTT VoIP Services
WebRTC as a Market Disruptor to OTT VoIP ServicesWebRTC as a Market Disruptor to OTT VoIP Services
WebRTC as a Market Disruptor to OTT VoIP ServicesTsahi Levent-levi
 
Łukasz Krajnik - "Zarządzanie ryzykiem w projekcie"
Łukasz Krajnik - "Zarządzanie ryzykiem w projekcie"Łukasz Krajnik - "Zarządzanie ryzykiem w projekcie"
Łukasz Krajnik - "Zarządzanie ryzykiem w projekcie"PMI Szczecin
 
OTBC / VocTech
OTBC / VocTechOTBC / VocTech
OTBC / VocTechJ_Carrico
 
대신리포트 모닝미팅 160322
대신리포트 모닝미팅 160322대신리포트 모닝미팅 160322
대신리포트 모닝미팅 160322DaishinSecurities
 
Incident Response Whitepaper - AlienVault
Incident Response Whitepaper - AlienVaultIncident Response Whitepaper - AlienVault
Incident Response Whitepaper - AlienVaultJermund Ottermo
 
Security operations center 5 security controls
Security operations center 5 security controls Security operations center 5 security controls
Security operations center 5 security controlsAlienVault
 
Tech Talent Meetup Hacking Security Event Recap
Tech Talent Meetup Hacking Security Event RecapTech Talent Meetup Hacking Security Event Recap
Tech Talent Meetup Hacking Security Event RecapDominic Vogel
 
[Lithuania] I am the cavalry
[Lithuania] I am the cavalry[Lithuania] I am the cavalry
[Lithuania] I am the cavalryOWASP EEE
 
Thecavalryisus owasp eee-oct2015_v2
Thecavalryisus owasp eee-oct2015_v2Thecavalryisus owasp eee-oct2015_v2
Thecavalryisus owasp eee-oct2015_v2Aurelijus Stanislovaitis
 
Cybrary's navigating a security wasteland
Cybrary's navigating a security wasteland Cybrary's navigating a security wasteland
Cybrary's navigating a security wasteland Devendra kashyap
 
CounterTack: 10 Experts on Active Threat Management
CounterTack: 10 Experts on Active Threat ManagementCounterTack: 10 Experts on Active Threat Management
CounterTack: 10 Experts on Active Threat ManagementMighty Guides, Inc.
 
Stuxnet and U.S Incidence ResponseStudent NameProfessor Na.docx
Stuxnet and U.S Incidence ResponseStudent NameProfessor Na.docxStuxnet and U.S Incidence ResponseStudent NameProfessor Na.docx
Stuxnet and U.S Incidence ResponseStudent NameProfessor Na.docxpicklesvalery
 
Web app penetration testing best methods tools used
Web app penetration testing best methods tools usedWeb app penetration testing best methods tools used
Web app penetration testing best methods tools usedZoe Gilbert
 
Importance Of Cybersecurity In Education System | SOCVault
Importance Of Cybersecurity In Education System | SOCVaultImportance Of Cybersecurity In Education System | SOCVault
Importance Of Cybersecurity In Education System | SOCVaultSOCVault
 
State of Missouri ForeScout Case Study
State of Missouri ForeScout Case StudyState of Missouri ForeScout Case Study
State of Missouri ForeScout Case StudyAustin Maccherola
 
Vulnerability scanning project
Vulnerability scanning projectVulnerability scanning project
Vulnerability scanning projectChirag Dhamecha
 

More Related Content

Viewers also liked

Ikram PDF Resume (1 Page)
Ikram PDF Resume (1 Page)Ikram PDF Resume (1 Page)
Ikram PDF Resume (1 Page)ikram ahmed
 
Cecii bonita
Cecii bonitaCecii bonita
Cecii bonitaceci51112
 
대신리포트 모닝미팅 160325
대신리포트 모닝미팅 160325대신리포트 모닝미팅 160325
대신리포트 모닝미팅 160325DaishinSecurities
 
Dobry scrum master, a dobry zespół scrumowy
Dobry scrum master, a dobry zespół scrumowyDobry scrum master, a dobry zespół scrumowy
Dobry scrum master, a dobry zespół scrumowyAgile Silesia
 
Ciberseguridad - Curso monográfico
Ciberseguridad - Curso monográficoCiberseguridad - Curso monográfico
Ciberseguridad - Curso monográficoRamon E. Zorrilla
 
Ciberseguridad - Monográfico
Ciberseguridad - MonográficoCiberseguridad - Monográfico
Ciberseguridad - MonográficoRamon E. Zorrilla
 
WebRTC as a Market Disruptor to OTT VoIP Services
WebRTC as a Market Disruptor to OTT VoIP ServicesWebRTC as a Market Disruptor to OTT VoIP Services
WebRTC as a Market Disruptor to OTT VoIP ServicesTsahi Levent-levi
 
Łukasz Krajnik - "Zarządzanie ryzykiem w projekcie"
Łukasz Krajnik - "Zarządzanie ryzykiem w projekcie"Łukasz Krajnik - "Zarządzanie ryzykiem w projekcie"
Łukasz Krajnik - "Zarządzanie ryzykiem w projekcie"PMI Szczecin
 
OTBC / VocTech
OTBC / VocTechOTBC / VocTech
OTBC / VocTechJ_Carrico
 
대신리포트 모닝미팅 160322
대신리포트 모닝미팅 160322대신리포트 모닝미팅 160322
대신리포트 모닝미팅 160322DaishinSecurities
 

Viewers also liked (10)

Ikram PDF Resume (1 Page)
Ikram PDF Resume (1 Page)Ikram PDF Resume (1 Page)
Ikram PDF Resume (1 Page)
 
Cecii bonita
Cecii bonitaCecii bonita
Cecii bonita
 
대신리포트 모닝미팅 160325
대신리포트 모닝미팅 160325대신리포트 모닝미팅 160325
대신리포트 모닝미팅 160325
 
Dobry scrum master, a dobry zespół scrumowy
Dobry scrum master, a dobry zespół scrumowyDobry scrum master, a dobry zespół scrumowy
Dobry scrum master, a dobry zespół scrumowy
 
Ciberseguridad - Curso monográfico
Ciberseguridad - Curso monográficoCiberseguridad - Curso monográfico
Ciberseguridad - Curso monográfico
 
Ciberseguridad - Monográfico
Ciberseguridad - MonográficoCiberseguridad - Monográfico
Ciberseguridad - Monográfico
 
WebRTC as a Market Disruptor to OTT VoIP Services
WebRTC as a Market Disruptor to OTT VoIP ServicesWebRTC as a Market Disruptor to OTT VoIP Services
WebRTC as a Market Disruptor to OTT VoIP Services
 
Łukasz Krajnik - "Zarządzanie ryzykiem w projekcie"
Łukasz Krajnik - "Zarządzanie ryzykiem w projekcie"Łukasz Krajnik - "Zarządzanie ryzykiem w projekcie"
Łukasz Krajnik - "Zarządzanie ryzykiem w projekcie"
 
OTBC / VocTech
OTBC / VocTechOTBC / VocTech
OTBC / VocTech
 
대신리포트 모닝미팅 160322
대신리포트 모닝미팅 160322대신리포트 모닝미팅 160322
대신리포트 모닝미팅 160322
 

Similar to Council rock-school-case-study

Incident Response Whitepaper - AlienVault
Incident Response Whitepaper - AlienVaultIncident Response Whitepaper - AlienVault
Incident Response Whitepaper - AlienVaultJermund Ottermo
 
Security operations center 5 security controls
Security operations center 5 security controls Security operations center 5 security controls
Security operations center 5 security controlsAlienVault
 
Tech Talent Meetup Hacking Security Event Recap
Tech Talent Meetup Hacking Security Event RecapTech Talent Meetup Hacking Security Event Recap
Tech Talent Meetup Hacking Security Event RecapDominic Vogel
 
[Lithuania] I am the cavalry
[Lithuania] I am the cavalry[Lithuania] I am the cavalry
[Lithuania] I am the cavalryOWASP EEE
 
Cybrary's navigating a security wasteland
Cybrary's navigating a security wasteland Cybrary's navigating a security wasteland
Cybrary's navigating a security wasteland Devendra kashyap
 
CounterTack: 10 Experts on Active Threat Management
CounterTack: 10 Experts on Active Threat ManagementCounterTack: 10 Experts on Active Threat Management
CounterTack: 10 Experts on Active Threat ManagementMighty Guides, Inc.
 
Stuxnet and U.S Incidence ResponseStudent NameProfessor Na.docx
Stuxnet and U.S Incidence ResponseStudent NameProfessor Na.docxStuxnet and U.S Incidence ResponseStudent NameProfessor Na.docx
Stuxnet and U.S Incidence ResponseStudent NameProfessor Na.docxpicklesvalery
 
Web app penetration testing best methods tools used
Web app penetration testing best methods tools usedWeb app penetration testing best methods tools used
Web app penetration testing best methods tools usedZoe Gilbert
 
Importance Of Cybersecurity In Education System | SOCVault
Importance Of Cybersecurity In Education System | SOCVaultImportance Of Cybersecurity In Education System | SOCVault
Importance Of Cybersecurity In Education System | SOCVaultSOCVault
 
State of Missouri ForeScout Case Study
State of Missouri ForeScout Case StudyState of Missouri ForeScout Case Study
State of Missouri ForeScout Case StudyAustin Maccherola
 
Vulnerability scanning project
Vulnerability scanning projectVulnerability scanning project
Vulnerability scanning projectChirag Dhamecha
 
Auckland University of technology Gets Complete Patch Management with Secuia ...
Auckland University of technology Gets Complete Patch Management with Secuia ...Auckland University of technology Gets Complete Patch Management with Secuia ...
Auckland University of technology Gets Complete Patch Management with Secuia ...Flexera
 
Security Transformation
Security TransformationSecurity Transformation
Security TransformationFaisal Yahya
 
Ibm cognitive security_white_paper_04_2016
Ibm cognitive security_white_paper_04_2016Ibm cognitive security_white_paper_04_2016
Ibm cognitive security_white_paper_04_2016Janghyuck Choi
 
5 BEST PRACTICES FOR A SECURITY OPERATION CENTER (SOC)
5 BEST PRACTICES FOR A SECURITY OPERATION CENTER (SOC)5 BEST PRACTICES FOR A SECURITY OPERATION CENTER (SOC)
5 BEST PRACTICES FOR A SECURITY OPERATION CENTER (SOC)Vijilan IT Security solutions
 
Cybersecurity Employee Training
Cybersecurity Employee TrainingCybersecurity Employee Training
Cybersecurity Employee TrainingPaige Rasid
 
What i learned at issa international summit 2019
What i learned at issa international summit 2019What i learned at issa international summit 2019
What i learned at issa international summit 2019Ulf Mattsson
 
Axonius Case Study: AppsFlyer
Axonius Case Study: AppsFlyerAxonius Case Study: AppsFlyer
Axonius Case Study: AppsFlyernathan-axonius
 

Similar to Council rock-school-case-study (20)

Incident Response Whitepaper - AlienVault
Incident Response Whitepaper - AlienVaultIncident Response Whitepaper - AlienVault
Incident Response Whitepaper - AlienVault
 
Security operations center 5 security controls
Security operations center 5 security controls Security operations center 5 security controls
Security operations center 5 security controls
 
Tech Talent Meetup Hacking Security Event Recap
Tech Talent Meetup Hacking Security Event RecapTech Talent Meetup Hacking Security Event Recap
Tech Talent Meetup Hacking Security Event Recap
 
[Lithuania] I am the cavalry
[Lithuania] I am the cavalry[Lithuania] I am the cavalry
[Lithuania] I am the cavalry
 
Thecavalryisus owasp eee-oct2015_v2
Thecavalryisus owasp eee-oct2015_v2Thecavalryisus owasp eee-oct2015_v2
Thecavalryisus owasp eee-oct2015_v2
 
Cybrary's navigating a security wasteland
Cybrary's navigating a security wasteland Cybrary's navigating a security wasteland
Cybrary's navigating a security wasteland
 
CounterTack: 10 Experts on Active Threat Management
CounterTack: 10 Experts on Active Threat ManagementCounterTack: 10 Experts on Active Threat Management
CounterTack: 10 Experts on Active Threat Management
 
Stuxnet and U.S Incidence ResponseStudent NameProfessor Na.docx
Stuxnet and U.S Incidence ResponseStudent NameProfessor Na.docxStuxnet and U.S Incidence ResponseStudent NameProfessor Na.docx
Stuxnet and U.S Incidence ResponseStudent NameProfessor Na.docx
 
Web app penetration testing best methods tools used
Web app penetration testing best methods tools usedWeb app penetration testing best methods tools used
Web app penetration testing best methods tools used
 
Importance Of Cybersecurity In Education System | SOCVault
Importance Of Cybersecurity In Education System | SOCVaultImportance Of Cybersecurity In Education System | SOCVault
Importance Of Cybersecurity In Education System | SOCVault
 
State of Missouri ForeScout Case Study
State of Missouri ForeScout Case StudyState of Missouri ForeScout Case Study
State of Missouri ForeScout Case Study
 
Vulnerability scanning project
Vulnerability scanning projectVulnerability scanning project
Vulnerability scanning project
 
Auckland University of technology Gets Complete Patch Management with Secuia ...
Auckland University of technology Gets Complete Patch Management with Secuia ...Auckland University of technology Gets Complete Patch Management with Secuia ...
Auckland University of technology Gets Complete Patch Management with Secuia ...
 
Charan Resume
Charan ResumeCharan Resume
Charan Resume
 
Security Transformation
Security TransformationSecurity Transformation
Security Transformation
 
Ibm cognitive security_white_paper_04_2016
Ibm cognitive security_white_paper_04_2016Ibm cognitive security_white_paper_04_2016
Ibm cognitive security_white_paper_04_2016
 
5 BEST PRACTICES FOR A SECURITY OPERATION CENTER (SOC)
5 BEST PRACTICES FOR A SECURITY OPERATION CENTER (SOC)5 BEST PRACTICES FOR A SECURITY OPERATION CENTER (SOC)
5 BEST PRACTICES FOR A SECURITY OPERATION CENTER (SOC)
 
Cybersecurity Employee Training
Cybersecurity Employee TrainingCybersecurity Employee Training
Cybersecurity Employee Training
 
What i learned at issa international summit 2019
What i learned at issa international summit 2019What i learned at issa international summit 2019
What i learned at issa international summit 2019
 
Axonius Case Study: AppsFlyer
Axonius Case Study: AppsFlyerAxonius Case Study: AppsFlyer
Axonius Case Study: AppsFlyer
 

More from CMR WORLD TECH

Cyber Security for Everyone Course - Final Project Presentation
Cyber Security for Everyone Course - Final Project PresentationCyber Security for Everyone Course - Final Project Presentation
Cyber Security for Everyone Course - Final Project PresentationCMR WORLD TECH
 
Cpq basics bycesaribeiro
Cpq basics bycesaribeiroCpq basics bycesaribeiro
Cpq basics bycesaribeiroCMR WORLD TECH
 
Questoes processautomation
Questoes processautomationQuestoes processautomation
Questoes processautomationCMR WORLD TECH
 
Aws migration-whitepaper-en
Aws migration-whitepaper-enAws migration-whitepaper-en
Aws migration-whitepaper-enCMR WORLD TECH
 
Delivery readness for pick season and higth volume
Delivery readness for pick season and higth volumeDelivery readness for pick season and higth volume
Delivery readness for pick season and higth volumeCMR WORLD TECH
 
Why digital-will-become-the-primary-channel-for-b2 b-engagement
Why digital-will-become-the-primary-channel-for-b2 b-engagementWhy digital-will-become-the-primary-channel-for-b2 b-engagement
Why digital-will-become-the-primary-channel-for-b2 b-engagementCMR WORLD TECH
 
Transcript Micrsosft Java Azure
Transcript Micrsosft Java Azure Transcript Micrsosft Java Azure
Transcript Micrsosft Java Azure CMR WORLD TECH
 
Buisiness UK Trading Marketing Finance
Buisiness UK Trading Marketing Finance Buisiness UK Trading Marketing Finance
Buisiness UK Trading Marketing Finance CMR WORLD TECH
 
Hyperledger arch wg_paper_1_consensus
Hyperledger arch wg_paper_1_consensusHyperledger arch wg_paper_1_consensus
Hyperledger arch wg_paper_1_consensusCMR WORLD TECH
 
Apexand visualforcearchitecture
Apexand visualforcearchitectureApexand visualforcearchitecture
Apexand visualforcearchitectureCMR WORLD TECH
 
Trailblazers guide-to-apps
Trailblazers guide-to-appsTrailblazers guide-to-apps
Trailblazers guide-to-appsCMR WORLD TECH
 
Berkeley program on_data_science___analytics_1
Berkeley program on_data_science___analytics_1Berkeley program on_data_science___analytics_1
Berkeley program on_data_science___analytics_1CMR WORLD TECH
 
Rep consumer experience_in_the_retail_renaissance_en_28_mar18_final_dm_
Rep consumer experience_in_the_retail_renaissance_en_28_mar18_final_dm_Rep consumer experience_in_the_retail_renaissance_en_28_mar18_final_dm_
Rep consumer experience_in_the_retail_renaissance_en_28_mar18_final_dm_CMR WORLD TECH
 
Salesforce voice-and-tone
Salesforce voice-and-toneSalesforce voice-and-tone
Salesforce voice-and-toneCMR WORLD TECH
 

More from CMR WORLD TECH (20)

Cyber Security
Cyber SecurityCyber Security
Cyber Security
 
Cyber Security for Everyone Course - Final Project Presentation
Cyber Security for Everyone Course - Final Project PresentationCyber Security for Everyone Course - Final Project Presentation
Cyber Security for Everyone Course - Final Project Presentation
 
CPQ Básico
CPQ BásicoCPQ Básico
CPQ Básico
 
Cpq basics bycesaribeiro
Cpq basics bycesaribeiroCpq basics bycesaribeiro
Cpq basics bycesaribeiro
 
Apexbasic
ApexbasicApexbasic
Apexbasic
 
Questoes processautomation
Questoes processautomationQuestoes processautomation
Questoes processautomation
 
Process automationppt
Process automationpptProcess automationppt
Process automationppt
 
Transcript mva.cesar
Transcript mva.cesarTranscript mva.cesar
Transcript mva.cesar
 
Aws migration-whitepaper-en
Aws migration-whitepaper-enAws migration-whitepaper-en
Aws migration-whitepaper-en
 
Delivery readness for pick season and higth volume
Delivery readness for pick season and higth volumeDelivery readness for pick season and higth volume
Delivery readness for pick season and higth volume
 
Why digital-will-become-the-primary-channel-for-b2 b-engagement
Why digital-will-become-the-primary-channel-for-b2 b-engagementWhy digital-will-become-the-primary-channel-for-b2 b-engagement
Why digital-will-become-the-primary-channel-for-b2 b-engagement
 
Transcript Micrsosft Java Azure
Transcript Micrsosft Java Azure Transcript Micrsosft Java Azure
Transcript Micrsosft Java Azure
 
Buisiness UK Trading Marketing Finance
Buisiness UK Trading Marketing Finance Buisiness UK Trading Marketing Finance
Buisiness UK Trading Marketing Finance
 
Hyperledger arch wg_paper_1_consensus
Hyperledger arch wg_paper_1_consensusHyperledger arch wg_paper_1_consensus
Hyperledger arch wg_paper_1_consensus
 
Master lob-e-book
Master lob-e-bookMaster lob-e-book
Master lob-e-book
 
Apexand visualforcearchitecture
Apexand visualforcearchitectureApexand visualforcearchitecture
Apexand visualforcearchitecture
 
Trailblazers guide-to-apps
Trailblazers guide-to-appsTrailblazers guide-to-apps
Trailblazers guide-to-apps
 
Berkeley program on_data_science___analytics_1
Berkeley program on_data_science___analytics_1Berkeley program on_data_science___analytics_1
Berkeley program on_data_science___analytics_1
 
Rep consumer experience_in_the_retail_renaissance_en_28_mar18_final_dm_
Rep consumer experience_in_the_retail_renaissance_en_28_mar18_final_dm_Rep consumer experience_in_the_retail_renaissance_en_28_mar18_final_dm_
Rep consumer experience_in_the_retail_renaissance_en_28_mar18_final_dm_
 
Salesforce voice-and-tone
Salesforce voice-and-toneSalesforce voice-and-tone
Salesforce voice-and-tone
 

Recently uploaded

ODSC - Batch to Stream workshop - integration of Apache Spark, Cassandra, Pos...
ODSC - Batch to Stream workshop - integration of Apache Spark, Cassandra, Pos...ODSC - Batch to Stream workshop - integration of Apache Spark, Cassandra, Pos...
ODSC - Batch to Stream workshop - integration of Apache Spark, Cassandra, Pos...Christina Lin
 
Advancing Engineering with AI through the Next Generation of Strategic Projec...
Advancing Engineering with AI through the Next Generation of Strategic Projec...Advancing Engineering with AI through the Next Generation of Strategic Projec...
Advancing Engineering with AI through the Next Generation of Strategic Projec...OnePlan Solutions
 
Project Based Learning (A.I).pptx detail explanation
Project Based Learning (A.I).pptx detail explanationProject Based Learning (A.I).pptx detail explanation
Project Based Learning (A.I).pptx detail explanationkaushalgiri8080
 
why an Opensea Clone Script might be your perfect match.pdf
why an Opensea Clone Script might be your perfect match.pdfwhy an Opensea Clone Script might be your perfect match.pdf
why an Opensea Clone Script might be your perfect match.pdfjoe51371421
 
Unit 1.1 Excite Part 1, class 9, cbse...
Unit 1.1 Excite Part 1, class 9, cbse...Unit 1.1 Excite Part 1, class 9, cbse...
Unit 1.1 Excite Part 1, class 9, cbse...aditisharan08
 
chapter--4-software-project-planning.ppt
chapter--4-software-project-planning.pptchapter--4-software-project-planning.ppt
chapter--4-software-project-planning.pptkotipi9215
 
Building a General PDE Solving Framework with Symbolic-Numeric Scientific Mac...
Building a General PDE Solving Framework with Symbolic-Numeric Scientific Mac...Building a General PDE Solving Framework with Symbolic-Numeric Scientific Mac...
Building a General PDE Solving Framework with Symbolic-Numeric Scientific Mac...stazi3110
 
The Essentials of Digital Experience Monitoring_ A Comprehensive Guide.pdf
The Essentials of Digital Experience Monitoring_ A Comprehensive Guide.pdfThe Essentials of Digital Experience Monitoring_ A Comprehensive Guide.pdf
The Essentials of Digital Experience Monitoring_ A Comprehensive Guide.pdfkalichargn70th171
 
Alluxio Monthly Webinar | Cloud-Native Model Training on Distributed Data
Alluxio Monthly Webinar | Cloud-Native Model Training on Distributed DataAlluxio Monthly Webinar | Cloud-Native Model Training on Distributed Data
Alluxio Monthly Webinar | Cloud-Native Model Training on Distributed DataAlluxio, Inc.
 
Salesforce Certified Field Service Consultant
Salesforce Certified Field Service ConsultantSalesforce Certified Field Service Consultant
Salesforce Certified Field Service ConsultantAxelRicardoTrocheRiq
 
The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...
The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...
The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...ICS
 
HR Software Buyers Guide in 2024 - HRSoftware.com
HR Software Buyers Guide in 2024 - HRSoftware.comHR Software Buyers Guide in 2024 - HRSoftware.com
HR Software Buyers Guide in 2024 - HRSoftware.comFatema Valibhai
 
Short Story: Unveiling the Reasoning Abilities of Large Language Models by Ke...
Short Story: Unveiling the Reasoning Abilities of Large Language Models by Ke...Short Story: Unveiling the Reasoning Abilities of Large Language Models by Ke...
Short Story: Unveiling the Reasoning Abilities of Large Language Models by Ke...kellynguyen01
 
BATTLEFIELD ORM: TIPS, TACTICS AND STRATEGIES FOR CONQUERING YOUR DATABASE
BATTLEFIELD ORM: TIPS, TACTICS AND STRATEGIES FOR CONQUERING YOUR DATABASEBATTLEFIELD ORM: TIPS, TACTICS AND STRATEGIES FOR CONQUERING YOUR DATABASE
BATTLEFIELD ORM: TIPS, TACTICS AND STRATEGIES FOR CONQUERING YOUR DATABASEOrtus Solutions, Corp
 
EY_Graph Database Powered Sustainability
EY_Graph Database Powered SustainabilityEY_Graph Database Powered Sustainability
EY_Graph Database Powered SustainabilityNeo4j
 
(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...
(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...
(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...gurkirankumar98700
 
Building Real-Time Data Pipelines: Stream & Batch Processing workshop Slide
Building Real-Time Data Pipelines: Stream & Batch Processing workshop SlideBuilding Real-Time Data Pipelines: Stream & Batch Processing workshop Slide
Building Real-Time Data Pipelines: Stream & Batch Processing workshop SlideChristina Lin
 
KnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptx
KnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptxKnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptx
KnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptxTier1 app
 
cybersecurity notes for mca students for learning
cybersecurity notes for mca students for learningcybersecurity notes for mca students for learning
cybersecurity notes for mca students for learningVitsRangannavar
 

Recently uploaded (20)

ODSC - Batch to Stream workshop - integration of Apache Spark, Cassandra, Pos...
ODSC - Batch to Stream workshop - integration of Apache Spark, Cassandra, Pos...ODSC - Batch to Stream workshop - integration of Apache Spark, Cassandra, Pos...
ODSC - Batch to Stream workshop - integration of Apache Spark, Cassandra, Pos...
 
Advancing Engineering with AI through the Next Generation of Strategic Projec...
Advancing Engineering with AI through the Next Generation of Strategic Projec...Advancing Engineering with AI through the Next Generation of Strategic Projec...
Advancing Engineering with AI through the Next Generation of Strategic Projec...
 
Project Based Learning (A.I).pptx detail explanation
Project Based Learning (A.I).pptx detail explanationProject Based Learning (A.I).pptx detail explanation
Project Based Learning (A.I).pptx detail explanation
 
why an Opensea Clone Script might be your perfect match.pdf
why an Opensea Clone Script might be your perfect match.pdfwhy an Opensea Clone Script might be your perfect match.pdf
why an Opensea Clone Script might be your perfect match.pdf
 
Unit 1.1 Excite Part 1, class 9, cbse...
Unit 1.1 Excite Part 1, class 9, cbse...Unit 1.1 Excite Part 1, class 9, cbse...
Unit 1.1 Excite Part 1, class 9, cbse...
 
chapter--4-software-project-planning.ppt
chapter--4-software-project-planning.pptchapter--4-software-project-planning.ppt
chapter--4-software-project-planning.ppt
 
Building a General PDE Solving Framework with Symbolic-Numeric Scientific Mac...
Building a General PDE Solving Framework with Symbolic-Numeric Scientific Mac...Building a General PDE Solving Framework with Symbolic-Numeric Scientific Mac...
Building a General PDE Solving Framework with Symbolic-Numeric Scientific Mac...
 
The Essentials of Digital Experience Monitoring_ A Comprehensive Guide.pdf
The Essentials of Digital Experience Monitoring_ A Comprehensive Guide.pdfThe Essentials of Digital Experience Monitoring_ A Comprehensive Guide.pdf
The Essentials of Digital Experience Monitoring_ A Comprehensive Guide.pdf
 
Alluxio Monthly Webinar | Cloud-Native Model Training on Distributed Data
Alluxio Monthly Webinar | Cloud-Native Model Training on Distributed DataAlluxio Monthly Webinar | Cloud-Native Model Training on Distributed Data
Alluxio Monthly Webinar | Cloud-Native Model Training on Distributed Data
 
Salesforce Certified Field Service Consultant
Salesforce Certified Field Service ConsultantSalesforce Certified Field Service Consultant
Salesforce Certified Field Service Consultant
 
The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...
The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...
The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...
 
HR Software Buyers Guide in 2024 - HRSoftware.com
HR Software Buyers Guide in 2024 - HRSoftware.comHR Software Buyers Guide in 2024 - HRSoftware.com
HR Software Buyers Guide in 2024 - HRSoftware.com
 
Short Story: Unveiling the Reasoning Abilities of Large Language Models by Ke...
Short Story: Unveiling the Reasoning Abilities of Large Language Models by Ke...Short Story: Unveiling the Reasoning Abilities of Large Language Models by Ke...
Short Story: Unveiling the Reasoning Abilities of Large Language Models by Ke...
 
BATTLEFIELD ORM: TIPS, TACTICS AND STRATEGIES FOR CONQUERING YOUR DATABASE
BATTLEFIELD ORM: TIPS, TACTICS AND STRATEGIES FOR CONQUERING YOUR DATABASEBATTLEFIELD ORM: TIPS, TACTICS AND STRATEGIES FOR CONQUERING YOUR DATABASE
BATTLEFIELD ORM: TIPS, TACTICS AND STRATEGIES FOR CONQUERING YOUR DATABASE
 
Call Girls In Mukherjee Nagar 📱 9999965857 🤩 Delhi 🫦 HOT AND SEXY VVIP 🍎 SE...
Call Girls In Mukherjee Nagar 📱 9999965857 🤩 Delhi 🫦 HOT AND SEXY VVIP 🍎 SE...Call Girls In Mukherjee Nagar 📱 9999965857 🤩 Delhi 🫦 HOT AND SEXY VVIP 🍎 SE...
Call Girls In Mukherjee Nagar 📱 9999965857 🤩 Delhi 🫦 HOT AND SEXY VVIP 🍎 SE...
 
EY_Graph Database Powered Sustainability
EY_Graph Database Powered SustainabilityEY_Graph Database Powered Sustainability
EY_Graph Database Powered Sustainability
 
(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...
(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...
(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...
 
Building Real-Time Data Pipelines: Stream & Batch Processing workshop Slide
Building Real-Time Data Pipelines: Stream & Batch Processing workshop SlideBuilding Real-Time Data Pipelines: Stream & Batch Processing workshop Slide
Building Real-Time Data Pipelines: Stream & Batch Processing workshop Slide
 
KnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptx
KnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptxKnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptx
KnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptx
 
cybersecurity notes for mca students for learning
cybersecurity notes for mca students for learningcybersecurity notes for mca students for learning
cybersecurity notes for mca students for learning
 

Council rock-school-case-study

  • 1. C A S E S T U D Y OSSIM provides essential security capabilities like asset discovery, vulnerability assessment, intrusion detection, behavioral monitoring and SIEM built into one unified platform. Standing on the shoulders of the many proven open source security controls built into the platform, OSSIM is one of the fastest ways to make the first steps towards unified security visibility. AlienVault provides ongoing development for OSSIM so that anyone can have access to sophisticated security technologies; this includes the researchers who need a platform for experimentation, and the unsung heroes who can’t convince their organizations that security is a problem. Matthew used OSSIM for about 2 months and really liked what he saw. However, he realized he needed a fully supported product so he could get answers to his questions quickly rather than waiting for others in the community to help. “I wanted to see if OSSIM was good enough before considering a paid solution,” said Matthew. “After that was proved, I decided I needed something that was fully supported. That’s when I decided to upgrade to AlienVault USM.” Overcoming Challenges of IT Security in K-12 Environments Council Rock School District is the 12th largest district in Pennsylvania. It includes 18 buildings, 5 municipalities, and 10 IT employees supporting over 13,000 users, including students and employees. For the security aspect of IT, Council Rock School District relies on a one-man team: Matthew J. Frederickson. Matthew is CISSP certified and has more than 25 years in IT. Being solely responsible for the security of over 13,000 users, Matthew has encountered many challenges and has had to adapt the way he approaches keeping Council Rock School District secure. Since most K-12 IT teams are under budget and understaffed, Matthew originally tackled his job with open source tools. Soon he realized that he was using an unmanageable number of single point products for the different tasks he needed to accomplish. That’s when Matthew started browsing the Internet to find a better solution. “I was doing a web search, looking for something like Security Onion but with a better UI,” said Matthew. “That’s when I found AlienVault’s free Open Source SIEM (OSSIM). It was perfect because it included all the open source tools I was using all in one dashboard, instead of point products on their own.” Company name: Council Rock School District Industry: Primary: School District Secondary: N/A Headquarters location: Southeastern Pennsylvania Employee count: ~1,000 Website Link: www.crsd.org “I didn’t fully realize how much value I would get out of USM until I started using it. –Matthew J. Frederickson, Security Officer Council Rock School District
  • 2. C A S E S T U D Y © 2015 AlienVault. All rights reserved. AlienVault and the AlienVault logo are trademarks or registered trademarks of AlienVault. All other names and trademarks are for identification purposes and are the property of their respective owners. C A S E S T U D Y Key Benefits: #1 - Instead of researching and writing correlation directives for each new security threat that emerges, Council Rock School District relies on threat intelligence provided to USM from AlienVault Labs. #2 - Council Rock School District started out by using AlienVault’s Open Source SIEM (OSSIM) and soon after migrated to AlienVault USM for it additional functionality. #3 - The cyber kill chain screen is used by Council Rock School District to easily investigate and prioritize alarms. The transition from OSSIM to USM was straightforward. Matthew worked on it a little each day over about 3-4 days, spending about 4-5 hours in total. He didn’t try to integrate any previous data, just started fresh. Through trial and error he was able to complete the migration without even having to contact support. “I didn’t fully realize how much value I would get out of USM until I started using it,” said Matthew. “The reporting in USM is awesome, it’s been a big benefit for me. And, having a fully supported solution means I can get answers to my questions much more quickly than before. My favorite USM feature is the cyber kill chain screen. It makes it really easy for me to prioritize and investigate alarms. I believe those features are what really allowed me to justify to management why we should go with a paid solution.” Instead of having to research and write correlation directives for each new security threat that emerges, Matthew now relies on the threat intelligence provided to USM by AlienVault Labs. AlienVault Labs is a team of world-class security experts that analyze, validate and curate global threat data collected by the Open Threat Exchange (OTX)—the world’s largest open source repository of threat data. The AlienVault Labs team has become an extension of Matthew’s security monitoring program. They evaluate and translate threat data into integrated security intelligence that is updated weekly in USM via a coordinated set of advanced correlation rules—meaning Matthew can detect emerging threats without needing the expertise to research and write correlation directives himself. Since migrating to USM, Matthew finds himself logging on at least once a day to look at machines that show alarms and rule out any false positives. He also now shares his experience with OSSIM and USM with the IT staff from other school districts in knowledge sharing workshops. “Suddenly, I’m the go-to guy for security. With so many products/services out there, it’s hard for people to know where to start and where they can get the most bang for their buck. OSSIM was a great starting point for me, and migrating to USM has brought even more value.” “Suddenly, I’m the go-to guy for security. With so many products/services out there, it’s hard for people to know where to start and where they can get the most bang for their buck. OSSIM was a great starting point for me, and migrating to USM has brought even more value.” –Matthew J. Frederickson, Security Officer Council Rock School District View all AlienVault case studies at www.alienvault.com/resource-center#content_case-studies