Internal Threats in Kazakhstan. Cyber crime. How to defend. Cyber Security
1. How to Defend
against
Internal Threats
Ken Tulegenov, Group Founder
“Information Security Community. Kazakhstan” on LinkedIn
tulegenov@gmail.com
Almaty
November 16
2016
32. Measures for Internal Threats (IMHO) :
Data
Encryption
(FDE, USB,
Backup)
Application
Control
Device Control
HIPS + AV
NGFW
Prevent
(Basic)
DLP
Privilege Rights
Management
Internal NGFW
802.1x
SIEM
Prevent
(Gen)
Database Activity
Monitoring
Users Activity
Monitoring
Database
Encryption
IRM (Information
Rights
Management)
User Behavior
Analysis
Prevent
(Adv)
33. How to manage this ZOO?
One Security Platform for 1 Security Layer or Products Family
Easy Administration via Console (User Interface / Configuration / Support)
Unified Real-time Monitoring for all products
34. What can Intel Security (McAfee) offer?
SIEM (Security Information Event Management)
EPP (Endpoint Protection)
DLP (Data Loss Prevention)
MDP (Mobile Data Protection / Encryption)
35. Measures for Internal Threats (IMHO) :
Data
Encryption
(FDE, USB,
Backup)
Application
Control
Device Control
HIPS + AV
NGFW
Prevent
(Basic)
DLP
Privilege Rights
Management
Internal NGFW
802.1x
SIEM + Threat
Exchange
Prevent
(Gen)
Database Activity
Monitoring
Users Activity
Monitoring
Database
Encryption
IRM (Information
Rights
Management)
User Behavior
Analysis
Prevent
(Adv)