Cyber Attack Survival
•Download as PPTX, PDF•
0 likes•247 views
This document discusses cyber attack survival and data security. It begins with discussing the threat landscape, understanding risks, and implementing a data security program. It then discusses observed data breach threats like malware infections and hacking, how breaches are typically discovered, and assessing security risks. The document recommends following frameworks like NIST and ISO, validating controls through audits and testing, and prioritizing "quick win" controls that address 40% of data breaches. The overall document provides an overview of understanding security risks, implementing controls, and testing a data security program to survive cyber attacks.
Recommended
More Related Content
What's hot
What's hot (20)
Similar to Cyber Attack Survival
Similar to Cyber Attack Survival (20)
More from Skoda Minotti
More from Skoda Minotti (20)
Recently uploaded
Recently uploaded (20)
Cyber Attack Survival
- 1. Cyber Attack Survival Joseph Compton, CISSP, CISA, QSA Paul Winkeler May 16, 2017
- 2. 2 • Threat landscape: Ransomware and beyond • Understanding your risks • Implementing a data security program • Testing and maintaining your data security program AGENDA
- 10. 10 DATA BREACHES
- 12. 12 • 75% say their organizations are as or more vulnerable to malicious code attacks and security breaches compared with a year ago. And in the face of a crushing skills shortage, 40% subsist on no more than 5% of the IT budget. • "Managing the complexity of security" reclaimed the No. 1 spot among 10 challenges facing the respondents to our security survey, all from organizations with 100 or more employees PERCEIVED THREATS Source: InformationWeek 2014 Strategic Security Survey
- 13. 13 • 58% see an infected personal device connecting to the corporate network as a top endpoint security concern, making it the No. 1 response, ahead of phishing and lost devices • 56% say cyber-criminals pose the greatest threat to their organizations this year, the top answer, ahead of authorized users and employees at 49% • 23% have experienced a security breach or espionage in the past year PERCEIVED THREATS Source: InformationWeek 2014 Strategic Security Survey
- 14. 14 Source: Verizon 2015 Data Breach Investigation Report OBSERVED THREATS
- 15. 15 OBSERVED THREAT SOURCES Source: Verizon 2015 Data Breach Investigation Report
- 16. 16 BREACH DISCOVERY Source: Verizon 2015 Data Breach Investigation Report
- 18. 18 Understand organizational risks Key risk prioritization Identify high-risk areas • Gain an understanding of the high-risk areas and underlying rationales by conducting interviews with members of senior management, Legal and your Trust Advisors. • Identify key risks based on the threats and vulnerabilities relevant to the organization and ranked these items based on on their overall impact (environment, system and technical analysis) and expected likelihood of occurrence. • Identified the top risks to the company based on inherent risk ranking. Threat Categories A B C D E External Attack 2 3 Internal Misuse and abuse 6 2 Theft 2 System Malfunction 2 1 Service Interruption 1 5 Customer 4 Information Risk Ratings: A-Verify High, B-High, C-Medium, D-Low, E-Very Low DATA SECURITY RISK ASSESSMENT
- 19. WHERE DO I START?
- 20. SECURITY POSTURE LIFE CYCLE
- 21. 21 CONTROL FRAMEWORKS • CSA Star – Cloud Security Alliance • COBIT – Control Objectives for Information and Related Technology • FEDRAMP – Federal Risk and Authorization Management Program • FISMA – Federal Information Security Management Act • HIPAA – Health Insurance Portability and Accountability Act • ISO – International Organization for Standardization • ITIL – Information Technology Infrastructure Library • PCI DSS – Payment Card Industry Data Security Standard • NIST – National Institute of Standards and Technology • SOC 2 (AT 101) – Service Organization Control Reports
- 22. VALIDATE • Independent auditor assessments and attestations Review of policies and administrative procedures Inspection of configurations and settings Testing of manual procedures Observation of control activities
- 23. • Security Testing Vulnerability Assessments − Internal and external testing Internal and External Penetration Testing − Network penetration testing − Web application testing − Social engineering VALIDATE
- 24. 24 WHAT CAN I DO FIRST? • 40% of the controls determined to be most effective against data breaches fall into the “Quick Win" category Source: Verizon 2015 Data Breach Investigation Report
- 25. 25 CONTACT Joseph Compton CISSP, CISA, QSA (440) 605-7252 jcompton@skodaminotti.com Paul Winkeler (440) 899-3822 pwinkeler@dataservtech.com Dave MacDonald (440) 899-3816 dmacdonald@dataservtech.com
Editor's Notes
- Thank you for coming out
- [With the mass proliferation of technology and the Internet of Things, this should be no surprise and will not be trending downward any time soon.]
- [This is reason number one to implement a REAL BYOD program.] [The big breaches reported this year all involved outsiders taking advantage of insiders. I’d really recommend company’s reconsider what technology employees actually need as opposed to want for starters.] [Additional data suggests that only about 33% of all breaches are even reported to law enforcement. It’s safe to assume that of all entities out there, 67% are unaware, negligent, incompetent and or willful; take your pick!]