The document discusses the threat of internal threats to organizations from employees. It notes that while organizations spend significant resources protecting against external threats, many do not adequately protect against internal threats. Examples are given of data breaches and theft caused by employees. The document then describes Capgemini's Internal Audit Solution, which collects and analyzes data from various systems to identify anomalous employee behavior and proactively detect potential internal threats. It provides an overview of how the solution works and the continuous process of monitoring technical policies and analyzing behavioral patterns.
Master Data in the Cloud: 5 Security FundamentalsSarah Fane
Your master data is essential to the smooth operation of your business. But it is also valuable to others. Master data is vulnerable to both internal and external attacks. As the future of business and data is increasingly cloud-based, we explore five fundamentals to ensure the security of your data.
Discussion of information Security risks in current business and technology environments.
presented to ISSA Ireland conference attendees in Dublin on 12 May 2011.
The growing costs of security breaches and manual compliance efforts have given rise to new data security solutions specifically designed to prevent data breaches and deliver automated compliance. This paper examines the drivers for adopting a strategic approach to data security, compares and contrasts current approaches, and presents the Return on Security Investment (ROSI) of viable data security solutions.
2020 Cost of Insider Threats Global Report with Dr. Larry Ponemon, Chairman ...Proofpoint
Ponemon 2020 Cost Report for Insider Threats: Key Takeaways and Trends How much could Insider Threats cost your company annually? $11.45M, according to a new report from the Ponemon Institute, up from $8.76M in 2018. Ponemon’s 2020 Cost of Insider Threats Report surveyed hundreds of IT security professionals across North America, EMEA, and APAC, covering multi-year trends that prove the significance of this rapidly growing threat type. Join Larry Ponemon, Chairman and Founder of the Ponemon Institute, and Josh Epstein, CMO at ObserveIT a Proofpoint company, in a webinar to break down the key findings of the 2020 report. We will cover: ● What kinds of Insider Threats cost organizations the most ● How investigations are driving up the cost-per-incident for companies ● Which organizations, industries, and regions are being targeted the most ● How companies can potentially save millions by using a dedicated Insider Threat management approach.
It is shocking to note that about 3.5 billion people saw their
personal data stolen in the top two of the 15 biggest breaches
of this century alone. With the average cost of a data breach
exceeding $8 million, it is no wonder that safeguarding
confidential business and customer information has become
more important than ever. Furthermore, with stricter laws and governance requirements, data security is now everyone’s
responsibility across the entire enterprise.
However, that is easier said than done, and for that reason, an
an increasing number of organizations are relying heavily on data masking to proactively protect their data, avoid the cost of security breaches, and ensure compliance.
Master Data in the Cloud: 5 Security FundamentalsSarah Fane
Your master data is essential to the smooth operation of your business. But it is also valuable to others. Master data is vulnerable to both internal and external attacks. As the future of business and data is increasingly cloud-based, we explore five fundamentals to ensure the security of your data.
Discussion of information Security risks in current business and technology environments.
presented to ISSA Ireland conference attendees in Dublin on 12 May 2011.
The growing costs of security breaches and manual compliance efforts have given rise to new data security solutions specifically designed to prevent data breaches and deliver automated compliance. This paper examines the drivers for adopting a strategic approach to data security, compares and contrasts current approaches, and presents the Return on Security Investment (ROSI) of viable data security solutions.
2020 Cost of Insider Threats Global Report with Dr. Larry Ponemon, Chairman ...Proofpoint
Ponemon 2020 Cost Report for Insider Threats: Key Takeaways and Trends How much could Insider Threats cost your company annually? $11.45M, according to a new report from the Ponemon Institute, up from $8.76M in 2018. Ponemon’s 2020 Cost of Insider Threats Report surveyed hundreds of IT security professionals across North America, EMEA, and APAC, covering multi-year trends that prove the significance of this rapidly growing threat type. Join Larry Ponemon, Chairman and Founder of the Ponemon Institute, and Josh Epstein, CMO at ObserveIT a Proofpoint company, in a webinar to break down the key findings of the 2020 report. We will cover: ● What kinds of Insider Threats cost organizations the most ● How investigations are driving up the cost-per-incident for companies ● Which organizations, industries, and regions are being targeted the most ● How companies can potentially save millions by using a dedicated Insider Threat management approach.
It is shocking to note that about 3.5 billion people saw their
personal data stolen in the top two of the 15 biggest breaches
of this century alone. With the average cost of a data breach
exceeding $8 million, it is no wonder that safeguarding
confidential business and customer information has become
more important than ever. Furthermore, with stricter laws and governance requirements, data security is now everyone’s
responsibility across the entire enterprise.
However, that is easier said than done, and for that reason, an
an increasing number of organizations are relying heavily on data masking to proactively protect their data, avoid the cost of security breaches, and ensure compliance.
How prepared are you when it comes to Data Privacy? Take the enterprise data privacy quiz to find out. Follow along and mark your answers to see how you stack against your peers or read the report here: http://bit.ly/1DUGMfH.
Overcoming Hidden Risks in a Shared Security ModelOnRamp
Risk management, compliance, and security are a shared burden between your organization and your vendors. Standards such as NIST (Publication 500-292) and regulations like HIPAA and PCI-DSS provide considerations for compliance and security but do not account for the nuances of your unique business or your infrastructure. Guidelines are written as though one party is responsible for compliance and security, but you rely on multiple vendors. Outsourcing can lead to ambiguous delegation of compliance responsibilities, lack of data governance and security practices, and difficulty in achieving data protection—ultimately risking non-compliance and leaving your infrastructure vulnerable.
Join our expert panel as they share insights into closing the gap on who’s responsible for what in data security and best practices for improving your security posture.
Takeaways:
Who owns the responsibility of compliance and security?
How to find and mitigate hidden risks in a 3rd party ecosystem
How to map your requirements to owners, policies, and controls
Expert recommendations for PCI, HIPAA, FERPA, FISMA and more.
Presented at ISACA Indonesia Monthly Technical Meeting, 11 Dec 2019 at Telkom Landmark.
Key takeaways from my presentation:
1. Cloud customers have to understand the share responsibilities between customer and cloud provider
2. Different cloud service model (IaaS, PaaS, SaaS) has different audit methodology
3. Customer’s IT Auditor have to be trained to have the skills needed to audit the cloud service
4. Understanding IAM in Cloud is very important. Each Cloud Service Provider has different IAM mechanism
5. Understanding different type of audit logs in cloud platform is important for IT Auditor
Boards' Eye View of Digital Risk & GDPR v2Graham Mann
The presentation provides senior executives and board members with an overview of digital risk and GDPR. It describes the issues and seeks to provide answers, whilst highlighting the need for a joined-up strategy around digital risk management.
To implement data-centric security, while simultaneously empowering your business to compete and win in today’s nano-second world, you need to understand your data flows and your business needs from your data. Begin by answering some important questions:
•
What does your organization need from your data in order to extract the maximum business value and gain a competitive advantage?
•
What opportunities might be leveraged by improving the security posture of the data?
•
What risks exist based upon your current security posture? What would the impact of a data breach be on the organization? Be specific!
•
Have you clearly defined which data (both structured and unstructured) residing across your extended enterprise is most important to your business? Where is it?
•
What people, processes and technology are currently employed to protect your business sensitive information?
•
Who in your organization requires access to data and for what specific purposes?
•
What time constraints exist upon the organization that might affect the technical infrastructure?
•
What must you do to comply with the myriad government and industry regulations relevant to your business?
Finally, ask yourself what a successful data-centric protection program should look like in your organization. What’s most appropriate for your organization?
The answers to these and other related questions would provide you with a clearer picture of your enterprise’s “data attack surface,” which in turn will provide you with a well-documented risk profile. By answering these questions and thinking holistically about where your data is, how it’s being used and by whom, you’ll be well positioned to design and implement a robust, business-enabling data-centric protection plan that is tailored to the unique requirements of your organization.
The state of data privacy with dimensional research Druva
Here are the slides from the Data Privacy webinar we hosted with Dimensional Research. Full access to the full data privacy report that's referenced in the slides, go here: http://bit.ly/1EoYo3r
Managed Detection and Response (MDR) WhitepaperMarc St-Pierre
Managed detection and response (MDR) solutions benefit from investigative capabilities, particularly as derived and evolved from the digital forensic community. Buyers should thus include investigative experience as a selection factor when reviewing MDR offerings.
Whitepaper from TAG Cyber and OpenText on Managed Detection and Response (MDR): Investigative Capability as a Key Selection Factor.
Data Loss Prevention (DLP) - Fundamental Concept - ErykEryk Budi Pratama
Presented at APTIKNAS (Indonesia ICT Business Association) DKI Jakarta regular webinar.
Title:Data Loss Prevention: Fundamental Concept in Enabling DLP System
2 July 2020
The trends continue to point upward for data incidents and 2013 is becoming a pace setter. The shifting regulatory landscape promises to add further complications for companies struggling to prepare for and respond to data privacy incidents.
This webinar will feature two leading data breach experts who have performed a two year trend analysis across hundreds of cases to offer a powerful and up-to-date perspective on what has happened and their predictions for the future. It will also cover how these factors are shaping regulations which are in turn influencing decision-making in the C-Suite.
Our featured speakers for this timely webinar will be:
-Bill Hardin, Director of Data Privacy Response & Investigations, Navigant
-Jennifer Coughlin, Privacy and Data Security Attorney, Nelson, Levine
-Gant Redmon, Esq. General Counsel and VP of Business Development, Co3 Systems
IT Executive Guide to Security IntelligencethinkASG
Transitioning from log management and SIEM to comprehensive security intelligence.
This white paper discusses the increasing need for organizations to maintain comprehensive and cost-effective information security, and describes the integrated set of solutions provided by the IBM QRadar Security Intelligence Platform designed to help achieve total security intelligence.
In this work we highlighted some of the concepts of data privacy, techniques used in data privacy, and some techniques used in data privacy in the cloud plus some new research trends.
Forrester Webinar: Security Ratings Set the StandardSecurityScorecard
Heidi Shey, Forrester Senior Analyst - Security and Risk, discusses Forrester’s recently released study, “Security Ratings Set the Standard.”* View this webinar to learn how:
*91% of those using security ratings platforms find that the ROI meets or exceeds expectations
*Adoption of security ratings platforms is on the rise
*Security Ratings provide a competitive advantage
*Today’s threat landscape is as complex as it is dangerous
*Security Ratings Set The Standard, an April 2018 commissioned study conducted by Forrester Consulting on behalf of SecurityScorecard
How prepared are you when it comes to Data Privacy? Take the enterprise data privacy quiz to find out. Follow along and mark your answers to see how you stack against your peers or read the report here: http://bit.ly/1DUGMfH.
Overcoming Hidden Risks in a Shared Security ModelOnRamp
Risk management, compliance, and security are a shared burden between your organization and your vendors. Standards such as NIST (Publication 500-292) and regulations like HIPAA and PCI-DSS provide considerations for compliance and security but do not account for the nuances of your unique business or your infrastructure. Guidelines are written as though one party is responsible for compliance and security, but you rely on multiple vendors. Outsourcing can lead to ambiguous delegation of compliance responsibilities, lack of data governance and security practices, and difficulty in achieving data protection—ultimately risking non-compliance and leaving your infrastructure vulnerable.
Join our expert panel as they share insights into closing the gap on who’s responsible for what in data security and best practices for improving your security posture.
Takeaways:
Who owns the responsibility of compliance and security?
How to find and mitigate hidden risks in a 3rd party ecosystem
How to map your requirements to owners, policies, and controls
Expert recommendations for PCI, HIPAA, FERPA, FISMA and more.
Presented at ISACA Indonesia Monthly Technical Meeting, 11 Dec 2019 at Telkom Landmark.
Key takeaways from my presentation:
1. Cloud customers have to understand the share responsibilities between customer and cloud provider
2. Different cloud service model (IaaS, PaaS, SaaS) has different audit methodology
3. Customer’s IT Auditor have to be trained to have the skills needed to audit the cloud service
4. Understanding IAM in Cloud is very important. Each Cloud Service Provider has different IAM mechanism
5. Understanding different type of audit logs in cloud platform is important for IT Auditor
Boards' Eye View of Digital Risk & GDPR v2Graham Mann
The presentation provides senior executives and board members with an overview of digital risk and GDPR. It describes the issues and seeks to provide answers, whilst highlighting the need for a joined-up strategy around digital risk management.
To implement data-centric security, while simultaneously empowering your business to compete and win in today’s nano-second world, you need to understand your data flows and your business needs from your data. Begin by answering some important questions:
•
What does your organization need from your data in order to extract the maximum business value and gain a competitive advantage?
•
What opportunities might be leveraged by improving the security posture of the data?
•
What risks exist based upon your current security posture? What would the impact of a data breach be on the organization? Be specific!
•
Have you clearly defined which data (both structured and unstructured) residing across your extended enterprise is most important to your business? Where is it?
•
What people, processes and technology are currently employed to protect your business sensitive information?
•
Who in your organization requires access to data and for what specific purposes?
•
What time constraints exist upon the organization that might affect the technical infrastructure?
•
What must you do to comply with the myriad government and industry regulations relevant to your business?
Finally, ask yourself what a successful data-centric protection program should look like in your organization. What’s most appropriate for your organization?
The answers to these and other related questions would provide you with a clearer picture of your enterprise’s “data attack surface,” which in turn will provide you with a well-documented risk profile. By answering these questions and thinking holistically about where your data is, how it’s being used and by whom, you’ll be well positioned to design and implement a robust, business-enabling data-centric protection plan that is tailored to the unique requirements of your organization.
The state of data privacy with dimensional research Druva
Here are the slides from the Data Privacy webinar we hosted with Dimensional Research. Full access to the full data privacy report that's referenced in the slides, go here: http://bit.ly/1EoYo3r
Managed Detection and Response (MDR) WhitepaperMarc St-Pierre
Managed detection and response (MDR) solutions benefit from investigative capabilities, particularly as derived and evolved from the digital forensic community. Buyers should thus include investigative experience as a selection factor when reviewing MDR offerings.
Whitepaper from TAG Cyber and OpenText on Managed Detection and Response (MDR): Investigative Capability as a Key Selection Factor.
Data Loss Prevention (DLP) - Fundamental Concept - ErykEryk Budi Pratama
Presented at APTIKNAS (Indonesia ICT Business Association) DKI Jakarta regular webinar.
Title:Data Loss Prevention: Fundamental Concept in Enabling DLP System
2 July 2020
The trends continue to point upward for data incidents and 2013 is becoming a pace setter. The shifting regulatory landscape promises to add further complications for companies struggling to prepare for and respond to data privacy incidents.
This webinar will feature two leading data breach experts who have performed a two year trend analysis across hundreds of cases to offer a powerful and up-to-date perspective on what has happened and their predictions for the future. It will also cover how these factors are shaping regulations which are in turn influencing decision-making in the C-Suite.
Our featured speakers for this timely webinar will be:
-Bill Hardin, Director of Data Privacy Response & Investigations, Navigant
-Jennifer Coughlin, Privacy and Data Security Attorney, Nelson, Levine
-Gant Redmon, Esq. General Counsel and VP of Business Development, Co3 Systems
IT Executive Guide to Security IntelligencethinkASG
Transitioning from log management and SIEM to comprehensive security intelligence.
This white paper discusses the increasing need for organizations to maintain comprehensive and cost-effective information security, and describes the integrated set of solutions provided by the IBM QRadar Security Intelligence Platform designed to help achieve total security intelligence.
In this work we highlighted some of the concepts of data privacy, techniques used in data privacy, and some techniques used in data privacy in the cloud plus some new research trends.
Forrester Webinar: Security Ratings Set the StandardSecurityScorecard
Heidi Shey, Forrester Senior Analyst - Security and Risk, discusses Forrester’s recently released study, “Security Ratings Set the Standard.”* View this webinar to learn how:
*91% of those using security ratings platforms find that the ROI meets or exceeds expectations
*Adoption of security ratings platforms is on the rise
*Security Ratings provide a competitive advantage
*Today’s threat landscape is as complex as it is dangerous
*Security Ratings Set The Standard, an April 2018 commissioned study conducted by Forrester Consulting on behalf of SecurityScorecard
Classe moyenne : un Américain sur deux, deux Français sur troisFrance Stratégie
Rien de comparable a priori entre les classes moyennes française et américaine. La première compte toujours deux Français sur trois quand la seconde connaît depuis quarante ans un phénomène marqué d’érosion. La crise de 2008 change néanmoins la donne. La classe moyenne française subit, depuis, un recul de ses effectifs et de son revenu médian. S’agit-il d’un simple repli conjoncturel ou de l’amorce d’un déclin sur le modèle américain ?
http://www.strategie.gouv.fr/publications/classe-moyenne-un-americain-francais-trois
The Global Village founded by Mr. Yank Barry is a successful effort in the world that has seen many victims of disasters receives necessary help. The purpose of the foundation was to develop delivery system of easy to use nutritious products to regions impacted by catastrophes and disasters. Yank also intended to educate people about the VitaPro products by NGO agencies such as International Red Cross and CARE.
Securing Your Intellectual Property: Preventing Business IP LeaksHokme
Let us delve into strategies to safeguard your business's intellectual property (IP) and avoid leaks. Explore how Confiex's Virtual Data Room acts as a fortress against unauthorized access, ensuring your sensitive data and valuable IP remain protected at all times.
Source- https://confiexdataroom.com/blog/data-room/virtual-data-room/how-to-avoid-business-ip-leaks/
Your firm needs to be committed to protecting information assets, including personal data and client documents. As a trusted advisor to our clients, the expectation is that we are aware of threats and are guarding their data. Data privacy and information security are fundamental components of doing business today, no matter how large your firm is.
In this paper we will look at three specific ways of protecting our clients:
1. Protection through our ability to research and improve intellectual capital
2. Protection through policies, procedures and processes
3. Protection by securing client data
Cyber-attacks are an alarming threat to all types of businesses & organizations.The risk of a cyber-attack is not just a risk to your company but also to your privacy.Hence, cybersecurity is crucial for every business. Cybersecurity protects critical data from cyber attackers. This includes sensitive data, governmental and industry information, personal information, personally identifiable information (PII), intellectual property, and protected health information (PHI). If you are looking for tools to fight against cyber threats, then Techwave’s tools & technologies with adequate controls will help your organization stay protected.
Cyber-attacks are an alarming threat to all types of businesses & organizations.The risk of a cyber-attack is not just a risk to your company but also to your privacy.Hence, cybersecurity is crucial for every business. Cybersecurity protects critical data from cyber attackers. This includes sensitive data, governmental and industry information, personal information, personally identifiable information (PII), intellectual property, and protected health information (PHI). If you are looking for tools to fight against cyber threats, then Techwave’s tools & technologies with adequate controls will help your organization stay protected.
Project 3 – Hollywood and IT· Find 10 incidents of Hollywood p.docxstilliegeorgiana
Project 3 – Hollywood and IT
· Find 10 incidents of Hollywood portraying IT security incorrectly
· You can use movies or TV episodes
· Write 2-5 paragraphs for each incident. Use supporting citations for each part.
· What has Hollywood portrayed wrong? Describe the scene and what is being shown. Make sure to state whether it is partially wrong or totally fictitious.
· How would you protect/secure against what they show (answers might include install firewall, load Antivirus etc.)
· Use APA formatting for your sources on everything.
· Make sure to put your name on assignment.
Big Data and Social Media
Colgate Palmolive
Agenda Of socail media use
Buisness intellegence and Social media concenpts
Intellegent organization
Data Anaylysis and Data trustworthiness
Conclusion
Buisness intellegence and Social media concenpts
No-Hassle Documentation
Gain Trusted Followers
Spy on Competition
Learn Customer Demographics
Research and Analyze Events
Advertise More Accurately
Intellegent organization
They consistently use (big) data proactively
They know exactly where they want to go: all-round vision
They continuously discuss business matters: alignment
They talk to each other regarding positive and negative performance
They know their customers through and through
They think and work in an agile way
Data Anaylysis and Data trustworthiness
Data completeness and accuracy
Data credibility
Data consistency
Data processing and algorithms
Data Validity
Conclusion
How Colgate benefit from Big Data and Social Media
Social media increases sales and customers
Big data shows popular trends and popular companies
All around they are both beneficial
Big Data can find trends that can benefit you greatly
Criteria
Title Page:
Name, Contact info, title of Presentation
Slide 1
Adenda : Topic you going to cover in order
Slide 2
Discuss how big data, social media concepts and knowledge to successfully create business intellegence (Support your bullets points with data, analysis, charts)
Slide 3
Describe how big data can be used to build an intelligent organization
Slide 4
Discuss the importance of data source trustworthiness and data analysis
Slide 5
Conclusion
Slide 6
Big Data And Business Intelligence
Business Value With Big Data
For business to survive in a competitive environment, organizational change requires improved governance, sponsorship, processes, and controls, in addition to new skill sets and technology all work in harmony to deliver the benefits of big data. See Fig. 13.2
Data science has taken the business world by storm. Every field of study and area of business has been affected as companies realize the value of the incredible quantities of data being generated. But to extract value from those data, one needs to be trained in the proper data science skills. The R programming language has become the de fac to programming language for data science. Its flexibility, power, sophistication, and expressiveness have ma ...
Today’s online world brings new challenges to businesses, making the security of your businesses’ internal information extremely critical. As we are all connected to the Internet,
we all can become a victim of cyber-attacks.
So, what can you do to better protect your business and secure your internal data?
Shariyaz abdeen data leakage prevention presentationShariyaz Abdeen
Data leakage prevention is one of the key topics which we have been talking in present. Due to the organizations moving towards big data, financial systems.. which resides in cyber space, there is an increasing number of frauds associated with the technology revolution in the cyberspace.This post highlights the threats and the counter measures, so we can protect the sensitive personal data. I prefer the approach of “ Trust but verify model ”.
Protect your confidential information while improving servicesCloudMask inc.
Over the last few decades, the financial sector has outgrown banks, as financial engineering, digital money and regulatory changes have evolved. Assets managed by financial firms (equity and various types of debt) are larger, as corporate debt has surpassed federal, state and local government’s debt. The US banks’ share of assets under management (AUM) accordingly declined from 58% in 1907 to 27% in 2008, while pension, mutual funds and non-depository firms (e.g., private equity and hedge funds) have grown substantially.
Protect your confidential information while improving services
Internal Audit
1. The Threat from Within the way we do it
The Threat from Within
Protecting Your Information Assets
What safeguards have you got
in place?
Safeguarding corporate information
assets has become a commercial
imperative for organisations across
the world as the threat of cyber crime
increases and high profile malpractice
cases hit the headlines. Within this
context it is understandable that
enterprises expend significant time
and money protecting their enterprise
from external attack.
It appears that in many cases there
is little or no consideration given to
the activities that take place inside a
business. For example, there may be
no safeguards on what or how much
can be sent out via email from
employee desktops, giving rise to the
leakage of confidential information.
This failure to understand or respond
to internal threats puts key business
assets at risk – the reputation of the
organisation, data, cash, intellectual
property, patents, etc. The electronic
age has brought with it huge
productivity benefits but, inevitably,
alongside this have come threats to
our efficiency and business continuity.
Organisations are now working across
geographies, time zones and currencies
(with corresponding increases in data
volumes) and as different working
practices filter through the
organisation, vulnerabilities appear.
For example, access to strategically
important information is often
unregulated and policies for data
storage and retrieval fail to live up to
statutory requirements.
2. I A leading credit card provider
suffered the compromise of 40
million credit card account details
I A senior vice president of a high-tech
company was arrested for embezzling
US$10 million
I Private Swiss bank admits theft of
confidential customer data
I Engineer within a global aerospace
company steals confidential
documents and attempts to sell
the information
I UK law enforcement field officer
sells documents to press
Leading analyst groups are now defining
Internal Threat Management as the next
major threat to business security.
Is there a solution for data
rich organisations?
Capgemini has developed an Internal
Audit Solution combining best-of-breed
technology with real-world experience
gained working in both government
and commercial sectors. This solution
facilitates the capture (Collection)
of disparate data; the warehousing
(Storage) of that data; and the mining
(Analysis) of the data to discover and
anticipate non-compliant activity.
By the analysis of people’s behaviour,
the Internal Audit Solution is
capable of proactively identifying
those employees likely to be a threat
to the enterprise.
1
Why is this such an issue?
The consequences of ignoring the
internal threats are significant.
The reputation of your enterprise can
be comprised through negative
publicity that undermines faith in
your ability to meet citizen/customer
expectations. Loss of cash and revenue
are obvious risks through malpractice
within call centres and insider trading.
If this comes to light, the subsequent
damage to a reputation can hit the
share value. Loss of intellectual
property or know-how can degrade
the competitive advantage of an
enterprise and significant research
and development investment can be
nullified through the theft of patents
and designs. Recent documented
examples where business assets
have been compromised include:
Protecting Your
Information Assets
Metadata
Audit Data Warehouse
Storage AnalysisCollection
Systems
Networks
Applications
HR Data
IDS
Business
PABX
Operations
Audit
Anomaly
Detection
Alerting
User
Segmentation
Modelling
Reporting
Data Cleansing
Data Quality
Integration
De-Duplication
Enhancement
Visualisation
Query and Report
Slice and Dice
Text Mining
Data Mining
Figure 1 – Overview of the Capgemini Internal Audit Solution
Capgemini is uniquely placed to bring to bear leading subject matter expertise in the area of Internal Audit, providing insight into likely indicators of
non-compliant behaviour supported by expertise in key information security standards such as BS7799 and ISO 17799.
3. The Threat from Within – Protecting Your Information Assets 2
the way we do it
How does it work in practice?
The solution facilitates the automated
analysis of security logs from a
number of different systems. It also
provides the capability to analyse and
capture available System Audit Data,
identify anomalous behaviour and
predict who is most likely to breach
system policies.
As a result, there is a requirement
to automate the collection, storage
and analysis of disparate system logs
as follows:
The Threat from Within
I The acquisition of System Audit
Data from a number of platforms:
including system accounting logs
from clients, servers, operating
systems and applications; network
connections, Intrusion Detection
System Sensors and, where
appropriate, stand-alone systems
such as door access control systems
and telephone exchanges
I The movement of data into a single
Audit Data Warehouse environment,
providing the following benefits:
• secure repository
• consistent view of all activity
• trusted repository of validated
audit data
I Perform analysis across all
logs including:
• highlighting of defined
procedural events
• identification to the auditor(s)
of ‘unusual’ behaviour patterns
• provision of a small volume of
data (a Data Mart) for use by
the auditor(s)
• storage of the Data Dictionary
(Metadata) that will store
information about the data in
terms of structure and significance
• Output analyses in the form
of textual and graphical reports
(for both standard and
user-defined reports)
Audit Data
Review
Technical Policy
Monitoring
Behavioural
Patterns
Analyse
Data Quality
Technical Policy
Breach
Behavioural
Models
In-depth Analysis
of Individual Behaviour
Additional Data
Capture Requirements
Behavioural
Analysis
Figure 2 – The Internal Audit Process
The process of internal audit is a continuous activity with constant implementation of measures and counter measures. As a result, the Internal Audit
Solution drives continuous interchange between technical policy monitoring and behavioural analysis.