Uploaded bydkaya
PPT, PDF5,147 views

Ironport Data Loss Prevention

The document details IronPort's email and web security solutions, emphasizing their capabilities in data loss prevention, spam filtering, and virus defense. It highlights IronPort's SenderBase network and its effectiveness in managing and analyzing email and web traffic to improve threat detection. Additionally, it discusses integration with Cisco's broader security portfolio and compliance with industry regulations like PCI.

Embed presentation

Downloaded 34 times
Securing Your Email - Data Loss Prevention Deniz Kaya Microsoft, Cisco, Ironport, Mile2 Instructor CCSI, CCNP, MCT, MCSE, ICSI, ICSP, CPTS
IronPort ® Gateway Security Products Web Security | Email Security | Security Management | Encryption EMAIL Security Appliance WEB Security Appliance Security MANAGEMENT Appliance IronPort SenderBase APPLICATION-SPECIFIC SECURITY GATEWAYS CLIENTS BLOCK Incoming Threats PROTECT Corporate Assets Data Loss Prevention Encryption CENTRALIZE Administration Internet ENCRYPTION Appliance
IronPort + Cisco Market Leadership Customer Leadership - Over 6,000 customers globally - 99% customer retention rate Technology Leadership - Industry leading email and Web security applications and management tools Global Leadership - Worldwide business operations - Global technology infrastructure
The IronPort SenderBase ® Network Global Reach Yields Benchmark Accuracy 5B+ queries daily 150+ Email and Web parameters 35% of the World’s Traffic IronPort EMAIL Security Appliances IronPort WEB Security Appliances IronPort SenderBase Combines Email & Web Traffic Analysis View into both Email & Web traffic dramatically improves efficacy 80% of spam contains URLs Email is a key distribution vector for Web-based malware
IronPort Consolidates the Network Perimeter For Security, Reliability and Lower Maintenance After IronPort Groupware Firewall IronPort Email Security Appliance Internet Users Before IronPort Anti-Spam Anti-Virus Policy Enforcement Mail Routing Internet Firewall Groupware Users Encryption Platform MTA DLP Scanner DLP Policy Manager
IronPort Architecture Multi-Layered Email Security MANAGEMENT TOOLS THE IRONPORT A SYNC OS™ EMAIL PLATFORM SPAM DEFENSE VIRUS DEFENSE DATA LOSS PREVENTION EMAIL ENCRYPTION
IronPort AsyncOS Unmatched Scalability and Security • IronPort AsyncOS is a scalable and secure operating system, optimized for messaging • Advanced Email Controls protect reputation and downstream systems • Standards-based Integration replaces legacy systems with ease MANAGEMENT TOOLS THE IRONPORT A SYNC OS™ EMAIL PLATFORM SPAM DEFENSE VIRUS DEFENSE DATA LOSS PREVENTION EMAIL ENCRYPTION
Multi-layer Spam Defense Best-of-Breed Protection at the Gateway • IronPort Reputation Filters™: the outer layer defense • IronPort Anti-Spam ™ : stops the broadest array of threats – spam, phishing, fraud and more MANAGEMENT TOOLS THE IRONPORT A SYNC OS™ EMAIL PLATFORM SPAM DEFENSE VIRUS DEFENSE DATA LOSS PREVENTION EMAIL ENCRYPTION
SenderBase ® Data Makes the Difference • Complaint Reports •  Spam Traps • Message Composition Data • Global Volume Data • URL Lists • Compromised Host Lists • Web Crawlers • IP Blacklists & Whitelists • Additional Data SenderBase Data Data Analysis/ Security Modeling SenderBase Reputation Scores -10 to +10 Parameters Threat Prevention in Realtime
Introducing IronPort Spam Defense Multi-layer spam defense designed to: Stop spam quickly Stop spam accurately Reputation Worlds first and best sender based reputation service - Blocks 80% of spam at gateway - World class accuracy SBRS IPAS Who? How? What? Where? World’s most accurate content based spam engine - 98% catch rate - World class accuracy
IronPort Anti-Spam Accuracy Powered By Context Adaptive Scanning Engine WHAT? HOW? WHO? WHERE? All text inside an image Random dots appear within the message Nearly identical color scheme in 100,000’s spamtrap msgs Verdict BLOCK IP address recently started sending email Message originated from dial-up IP address Sending IP address located in Russia Message leaves trace of spamware tool
IronPort Reputation Filters Dell Case Study Dell’s challenge: Dell currently receives 26M messages per day Only 1.5M are legitimate messages 68 existing gateways running Spam Assassin were not accurate IronPort solution: Reputation Filters block over 19M messages per day 5.5M messages per day scanned by anti-spam engine Replaced 68 servers with 8 IronPort C60s Accuracy of spam filtering increased 10x Servers consolidated by 70% Operating costs reduced by 75% “ IronPort has increased the quality and reliability of our network operations, while reducing our costs.” -- Tim Helmsetetter Manager, Global Collaborative Systems Engineering and Service Management, DELL CORPORATION
Multi-layer Virus Defense Best-of-Breed Protection at the Gateway • IronPort Virus Outbreak Filters  : stop outbreaks 13 hours ahead of traditional signatures • McAfee and Sophos Anti-Virus: signature-based solutions with industry leading accuracy MANAGEMENT TOOLS THE IRONPORT A SYNC OS™ EMAIL PLATFORM SPAM DEFENSE VIRUS DEFENSE DATA LOSS PREVENTION EMAIL ENCRYPTION
IronPort Outbreak Filters Close the Reaction Time Gap
How Virus Outbreak Filters Work Dynamic Quarantine In Action T = 0 zip (exe) files T = 5 mins -zip (exe) files -Size 50 to 55 KB. T = 10 mins zip (exe) files Size 50 to 55KB “ Price” in the name file T = 8 hours Release messages if signature update is in place Messages Scanned & Deleted Fine-grained Rules, Multiple Parameters: Attachment Type, Attachment Size, URLs, Filenames & More
Industry Leading Signatures from Sophos and McAfee Anti-Virus Integrated Sophos ® anti-virus engine High performance in-line scanning Easy to deploy and manage Intuitive user interface Single view with Mail Flow Monitor Auto updates Lower TCO with integrated solution
IronPort Data Loss Prevention Inbound/Outbound Policy Enforcement • Integrated Scanning makes DLP deployments quick & easy • Integrated Remediation eases work flow burden MANAGEMENT TOOLS THE IRONPORT A SYNC OS™ EMAIL PLATFORM SPAM DEFENSE DATA LOSS PREVENTION VIRUS DEFENSE EMAIL ENCRYPTION
Data Loss Prevention Multi-Faceted Problem Regulatory Compliance HIPAA, GLBA, PCI, SOX Regulations Scan for sensitive information and block infractions Secure business partner communication Acceptable Use Block offensive content Enforce messaging policy (attachment size, etc) Add legal disclaimers to outgoing mails Intellectual Property Protection Block messages containing confidential data Prevent email communications with competitor
PCI Applies to Nearly Every Industry PCI Not Just for Retail Utilities E-Commerce Transportation Restaurant Financial/ Insurance Retail Service Provider Healthcare Federal Mobile Universities Sports and Entertainment State Agencies
The Payment Card Industry (PCI) Data Security Standard Published January 2005 Impacts ALL who process, transmit, or store cardholder data Also applies to 3 rd -party hosting companies, information storage companies, etc. Monthly fines ranging from $5,000 to $50,000 for missed deadlines Has global reach Source: pcisecuritystandards.org Not Published yet Latin American CEMEA 2008 TBD 2008 TBD 2008 TBD Canada DEC 2009 DEC 2009 DEC 2009 Asia MAR-DEC 2008 MAR-DEC 2008 Negotiated individually Western Europe DEC 2008 DEC 2007 SEP 2007 US Level 3 Level 2 Level 1 Theater
Data Loss Prevention Foundation Integrated Scanning Users Integrated Scanning Makes DLP Deployments Quick & Easy Outbound Mail Weighted Content Dictionaries Compliance Dictionaries Attachment Scanning Custom Content Filters Smart Identifiers
Data Loss Prevention Foundation Integrated Remediation Users Integrated Remediation Eases Work Flow Burden Outbound Mail Remediation: Quarantine Remediation Notification Remediation: Reporting Encrypt The Message
IronPort Email Encryption  Don’t Remediate…Accelerate MANAGEMENT TOOLS THE IRONPORT A SYNC OS™ EMAIL PLATFORM SPAM DEFENSE DATA LOSS PREVENTION VIRUS DEFENSE EMAIL ENCRYPTION
Encryption Market Evolution The Technical View    Encryption technology is the foundation for business class email Secure Envelopes S/MIME, PGP, Secure Webmail Single, Integrated Platform No Certificate Complexity Universal Reach Multi-Platform Deployment Certificate Requirements Sender/Receiver Plug-Ins IronPort PXE ™ Legacy Encryption Solutions
IronPort PXE: Sending a Message Instant Deployment, Zero Management Costs IronPort Hosted Keys  Gateway encrypts message  User opens IronPort PXE in browser  User authenticates & gets message key Password  Decrypted message displayed Message pushed to Recipient Key Stored
IronPort PXE: Receiving a Message Seamless End-User Experience  View message  Enter password  Open Attachment   
Management for Organizations of All Sizes IronPort Email Security Manager  – unified policy management IronPort Email Security Monitor  – enterprise-class reporting system Management Interfaces – simple integration and increased productivity MANAGEMENT TOOLS THE IRONPORT A SYNC OS™ EMAIL PLATFORM SPAM DEFENSE VIRUS DEFENSE DATA LOSS PREVENTION EMAIL ENCRYPTION
IronPort Email Security Manager Single view of policies for the entire organization IT SALES LEGAL Mark and Deliver Spam Delete Executables Archive all mail Virus Outbreak Filters disabled for .doc files Allow all media files Quarantine executables “ Email Security Manager serves as a single, versatile dashboard to manage all the services on the appliance.” -- PC Magazine 2/22/05 Categories: by Domain, Username, or LDAP
Cisco Self-Defending Network (SDN) Cisco Security- Portfolio @ a Glance Network & End-point Security Content & Application Security Systems & Security Management
The Portfolio at a Glance… Content and Application Security Content Security Reputation based, zero-day defense Capability to address diverse attacks types and techniques Secure all sources of attack Application Security Layer 7 protection for application and data vulnerabilities XML traffic validation and inspection Enhanced deep packet inspection Product Highlights: Ironport Email Ironport Web Intrusion Prevention Systems Product Highlights: ACE XML Gateway Web Application Firewall
Systems Approach to Stop Malware: Visibility and Control Intrusion Prevention Detection Precision response Content Security Email SPAM Web filtering Endpoint Security Host IPS AV solutions Firewall and VPN Traffic access control Encryption Centralized Policy Management and Monitoring
Cisco’s Security Portfolio— Offers End-to-End Compliance with PCI Requirements
Cisco Data Loss Prevention Solution NAC, CSA, IronPort, and TrustSec IronPort NAC Appliance ASA printer IronPort Prevent data loss at perimeter Mail policy verification Logs transaction Encrypts mail message and notifies recipient NAC Appliance Verifies CSA and endpoint posture TrustSec TrustSec Enforces data policy through role-based access control Cisco Security Agent Scan files for sensitive data Prevents copying to external media Prevents transfer with internetwork applications Prevents bypass of gateway security policy Internet Internet Internet Internet Hi Joan, Could you send those files over? Sure Bob, I’ll find a way to get those files to you!
Preventing Data Leakage and Disclosure Self-Defending Network Applied Data Center Employees Network Edge Tape Devices Application Server Cisco MDS 9000 C-Series E-Mail Security Appliance Internet Corporate Network Cisco ® Security Agent Prevents endpoint data loss Prevents bypass of Cisco IronPort network protection Inspects and classifies content (similar to Cisco IronPort) in a future release Partners Customers Remote Employees Storage Media Encryption Prevention of unauthorized access and loss of data at rest Full integration with SAN fabric and management Secure, highly available service IronPort Prevent data loss at network perimeter Inspect and control content Address privacy regulations Take advantage of existing anti-spam and anti-spyware infrastructure
Self-Defending Network in the Campus Centralized threat management, including correlation and mitigation Centralized policy and device management across entire Cisco infrastructure for IPS, VPN, and firewall Web and mail content scanning to reduce malware introduction and propagation Layer 3 – 7 inspection and traffic control Converged remote site and user IPsec and SSL VPN services Trojan horse and spyware to control channel monitoring and mitigation Gateway and Internet Services Prevent exploits of vulnerabilities on PCs and other endpoints Minimize the entrance and propagation of new threats on trusted PCs Enforce access controls to trusted, untrusted, and guest users Protect and isolate intra-LAN segments Policy Enforcement and Endpoint Protection Threat Management and Policy Control Cisco ® Security Management Suite Cisco ASA 5500 Firewall, VPN, and IPS Cisco IPS 4200 Series Sensors Network Admission Control FWSM and Cisco ASA 5500 Series Cisco IronPort Cisco ASA 5500 CSC Cisco Security Agent Endpoint Security Policy and Posture Centralized Policy and Threat Management Traffic and Admission Control Targeted Attack Protection Web and Mail Malware Scan Intra-LAN Policy Enforcement Internet Public WAN
Self-Defending Network in the Data Center Cisco ASA ACS Cisco Security MARS Cisco ® WAAS Web Servers Cisco ACE Cisco Security Agent Cisco Security Agent Cisco Security Agent Application Servers Database Servers AXG (Web Applications) Cisco Security Agent Cisco Security Agent Cisco MDS with SME Tier 1/2/3 Storage Tape/Offsite Backup AXG (B2B) CSM Cisco Security Agent-MC CW-LMN Data-Center Edge Firewall and IPS DoS protection Application protocol inspection Web Services security VPN termination E-mail and Web access control Cisco Catalyst 6000 FWSM Web Access Web security Application security Application isolation Content inspection SSL encryption and offload Server hardening Applications and Database XML, SOAP, and AJAX security DoS prevention Application-to-application security Server hardening Storage Data encryption In motion At rest Stored data access control Segmentation Management Tiered access Monitoring and analysis Role-based access AAA access control Cisco IronPort E-Mail Security AXG (DHTML to XML) Cisco IronPort Web Security Cisco IronPort Web Security
Access to the presentations http://www.newhorizons.bg/powerpoint/802.1x.ppt http://www.newhorizons.bg/powerpoint/Layer2_Attacks.ppt http://www.newhorizons.bg/powerpoint/ Ironport-DLP .ppt
New Horizons' Partners

More Related Content

PPTX
SIEM : Security Information and Event Management
bySHRIYARAI4
 
PPTX
Introduction to SIEM.pptx
byneoalt
 
PDF
Threat hunting 101 by Sandeep Singh
byOWASP Delhi
 
PPTX
IBM Security QRadar
byVirginia Fernandez
 
PDF
Rothke secure360 building a security operations center (soc)
byBen Rothke
 
PDF
Threat Hunting Report
byMorane Decriem
 
PDF
Understanding Cyber Attack - Cyber Kill Chain.pdf
byslametarrokhim1
 
PDF
Introduction to QRadar
byPencilData
 
SIEM : Security Information and Event Management
bySHRIYARAI4
 
Introduction to SIEM.pptx
byneoalt
 
Threat hunting 101 by Sandeep Singh
byOWASP Delhi
 
IBM Security QRadar
byVirginia Fernandez
 
Rothke secure360 building a security operations center (soc)
byBen Rothke
 
Threat Hunting Report
byMorane Decriem
 
Understanding Cyber Attack - Cyber Kill Chain.pdf
byslametarrokhim1
 
Introduction to QRadar
byPencilData
 

What's hot

PPTX
Purple Teaming with ATT&CK - x33fcon 2018
byChristopher Korban
 
PPTX
Role of Forensic Triage In Cyber Security Trends 2021
byAmrit Chhetri
 
PDF
What We’ve Learned Building a Cyber Security Operation Center: du Case Study
byPriyanka Aash
 
PPTX
Security operation center (SOC)
byAhmed Ayman
 
PDF
Vulnerability and Patch Management
byn|u - The Open Security Community
 
PDF
Trend Micro Solutions Overview
byJohn D. Haden
 
PDF
QRadar Architecture.pdf
byPencilData
 
PDF
Cybersecurity Frameworks | NIST Cybersecurity Framework | Cybersecurity Certi...
byEdureka!
 
PDF
Combating Cyber Security Using Artificial Intelligence
byInderjeet Singh
 
PDF
Cyber threat intelligence ppt
byKumar Gaurav
 
PDF
Extended Detection and Response (XDR) An Overhyped Product Category With Ulti...
byRaffael Marty
 
PDF
Threat Hunting
bySplunk
 
PPTX
Security Operations Center (SOC) Essentials for the SME
byAlienVault
 
PPSX
2 Security Architecture+Design
byAlfred Ouyang
 
PPTX
An introduction to SOC (Security Operation Center)
byAhmad Haghighi
 
PDF
Cybersecurity roadmap : Global healthcare security architecture
byPriyanka Aash
 
PPT
Perimeter security solutions
bybappyni
 
PPT
IT Security management and risk assessment
byCAS
 
PDF
Cyber Threat Intelligence
bymohamed nasri
 
PDF
Cybersecurity Roadmap Development for Executives
byKrist Davood - Principal - CIO
 
Purple Teaming with ATT&CK - x33fcon 2018
byChristopher Korban
 
Role of Forensic Triage In Cyber Security Trends 2021
byAmrit Chhetri
 
What We’ve Learned Building a Cyber Security Operation Center: du Case Study
byPriyanka Aash
 
Security operation center (SOC)
byAhmed Ayman
 
Vulnerability and Patch Management
byn|u - The Open Security Community
 
Trend Micro Solutions Overview
byJohn D. Haden
 
QRadar Architecture.pdf
byPencilData
 
Cybersecurity Frameworks | NIST Cybersecurity Framework | Cybersecurity Certi...
byEdureka!
 
Combating Cyber Security Using Artificial Intelligence
byInderjeet Singh
 
Cyber threat intelligence ppt
byKumar Gaurav
 
Extended Detection and Response (XDR) An Overhyped Product Category With Ulti...
byRaffael Marty
 
Threat Hunting
bySplunk
 
Security Operations Center (SOC) Essentials for the SME
byAlienVault
 
2 Security Architecture+Design
byAlfred Ouyang
 
An introduction to SOC (Security Operation Center)
byAhmad Haghighi
 
Cybersecurity roadmap : Global healthcare security architecture
byPriyanka Aash
 
Perimeter security solutions
bybappyni
 
IT Security management and risk assessment
byCAS
 
Cyber Threat Intelligence
bymohamed nasri
 
Cybersecurity Roadmap Development for Executives
byKrist Davood - Principal - CIO
 

Viewers also liked

PDF
Green Storage 1: Economics, Environment, Energy and Engineering
bydigitallibrary
 
PPTX
Agile Product Management Basics
byRich Mironov
 
PPTX
Practical introduction to hadoop
byinside-BigData.com
 
PDF
Improving Utilization of Infrastructure Cloud
byIJASCSE
 
DOCX
college assignment on Applications of ipsec
bybigchill29
 
PDF
Basics of print planning
byPhilip Vantassel, C.P.M.
 
PDF
Compulsory motor third party liability in Mozambique
byhttps://logisticscompanies.co.za
 
PDF
Informatica transformation guide
bysonu_pal
 
PPTX
Top 8 print production manager resume samples
bykelerdavi
 
PPTX
Optimized Learning and Development
byAIESEC
 
PDF
How to measure illumination
byajsatienza
 
PDF
6 May 2015 - INCREASING BANKING SALES PRODUCTIVITY - Management Excellence
byChange Management Institute
 
KEY
User Behavior Tracking with Google Analytics, Garb, and Vanity
byTony Pitale
 
PDF
Software QA Metrics Dashboard Benchmarking
byJohn Carter
 
PPTX
Promotion in the internet marketing mix
byNadiaElSamsam
 
PPTX
INTEL
byNIDA Business School
 
PPTX
IHC
byDrShrikant Sonune
 
PPTX
Advertising photography
byRyan Broome
 
PPTX
Revenue cycle management presentation
byfernan716
 
PPTX
E learning Implementation strategy
byG-Cube: Custom e-learning service provider
 
Green Storage 1: Economics, Environment, Energy and Engineering
bydigitallibrary
 
Agile Product Management Basics
byRich Mironov
 
Practical introduction to hadoop
byinside-BigData.com
 
Improving Utilization of Infrastructure Cloud
byIJASCSE
 
college assignment on Applications of ipsec
bybigchill29
 
Basics of print planning
byPhilip Vantassel, C.P.M.
 
Compulsory motor third party liability in Mozambique
byhttps://logisticscompanies.co.za
 
Informatica transformation guide
bysonu_pal
 
Top 8 print production manager resume samples
bykelerdavi
 
Optimized Learning and Development
byAIESEC
 
How to measure illumination
byajsatienza
 
6 May 2015 - INCREASING BANKING SALES PRODUCTIVITY - Management Excellence
byChange Management Institute
 
User Behavior Tracking with Google Analytics, Garb, and Vanity
byTony Pitale
 
Software QA Metrics Dashboard Benchmarking
byJohn Carter
 
Promotion in the internet marketing mix
byNadiaElSamsam
 
INTEL
byNIDA Business School
 
IHC
byDrShrikant Sonune
 
Advertising photography
byRyan Broome
 
Revenue cycle management presentation
byfernan716
 
E learning Implementation strategy
byG-Cube: Custom e-learning service provider
 

Similar to Ironport Data Loss Prevention

PDF
IronPort
byNetwax Lab
 
PDF
Mcafee 3
bypunjab college of technical education ,ludihana
 
PDF
Presentation cisco iron port product family
byxKinAnx
 
PPTX
SIA311 Better Together: Microsoft Exchange Server 2010 and Microsoft Forefron...
byLouis Göhl
 
PDF
Microsoft Forefront - Secure Messaging Solution Datasheet
byMicrosoft Private Cloud
 
DOCX
Microsoft Forefront - Online Security For Exchange Whitepaper
byMicrosoft Private Cloud
 
PPTX
Video - FortiMail and FortiMail Cloud - April 2021.pptx
byEsminGadalaKattnMart
 
PPTX
brif enpoint.pptx
byVSAM Technologies India Private Limited
 
PPT
Microsoft Unified Communications - Exchange 2010 Advanced Security with Foref...
byMicrosoft Private Cloud
 
PDF
Cisco iron port_email_data_loss_prevention_overview
byIlyanna
 
PPTX
Email Security: The Threat Landscape
byNuspire Networks
 
PPTX
FortiMail-Email-Secure-Gateway-May-2018_v1.pptx
byjuliopradobol
 
PDF
Email Security: Protecting Your Business from Cyber Threats | Infographic | U...
byUnited States Cybersecurity Institute (USCSI®)
 
PDF
Implementing Application Security
byInformation Technology
 
PDF
Presentation cisco iron port email & web security
byxKinAnx
 
PPT
Exchange Conference (Philadelphia) - Exchange 2007 Security
byHarold Wong
 
PDF
Email Security Overview
by- Mark - Fullbright
 
PPTX
Email: still the favourite route of attack
byClaranet UK
 
PDF
MessageLabs_Investor_Presentation
byfinance40
 
PPT
Microsoft Forefront - Secure Messaging & Online Protection for Exchange Over...
byMicrosoft Private Cloud
 
IronPort
byNetwax Lab
 
Mcafee 3
bypunjab college of technical education ,ludihana
 
Presentation cisco iron port product family
byxKinAnx
 
SIA311 Better Together: Microsoft Exchange Server 2010 and Microsoft Forefron...
byLouis Göhl
 
Microsoft Forefront - Secure Messaging Solution Datasheet
byMicrosoft Private Cloud
 
Microsoft Forefront - Online Security For Exchange Whitepaper
byMicrosoft Private Cloud
 
Video - FortiMail and FortiMail Cloud - April 2021.pptx
byEsminGadalaKattnMart
 
brif enpoint.pptx
byVSAM Technologies India Private Limited
 
Microsoft Unified Communications - Exchange 2010 Advanced Security with Foref...
byMicrosoft Private Cloud
 
Cisco iron port_email_data_loss_prevention_overview
byIlyanna
 
Email Security: The Threat Landscape
byNuspire Networks
 
FortiMail-Email-Secure-Gateway-May-2018_v1.pptx
byjuliopradobol
 
Email Security: Protecting Your Business from Cyber Threats | Infographic | U...
byUnited States Cybersecurity Institute (USCSI®)
 
Implementing Application Security
byInformation Technology
 
Presentation cisco iron port email & web security
byxKinAnx
 
Exchange Conference (Philadelphia) - Exchange 2007 Security
byHarold Wong
 
Email Security Overview
by- Mark - Fullbright
 
Email: still the favourite route of attack
byClaranet UK
 
MessageLabs_Investor_Presentation
byfinance40
 
Microsoft Forefront - Secure Messaging & Online Protection for Exchange Over...
byMicrosoft Private Cloud
 

More from dkaya

PPTX
Mitigating worm attacks
bydkaya
 
PPTX
Ccna security
bydkaya
 
PPT
Hacking Cisco Networks and Countermeasures
bydkaya
 
PPT
Sniffing SSL Traffic
bydkaya
 
PPT
Intrusion Discovery on Windows
bydkaya
 
PPT
Implementing Cisco AAA
bydkaya
 
PPT
Cisco Ccna Certification
bydkaya
 
PPT
Cisco Switch Security
bydkaya
 
PPT
Mitigating Layer2 Attacks
bydkaya
 
PPTX
Microsoft Days 09 Windows 2008 Security
bydkaya
 
PPT
Implementing 802.1x Authentication
bydkaya
 
Mitigating worm attacks
bydkaya
 
Ccna security
bydkaya
 
Hacking Cisco Networks and Countermeasures
bydkaya
 
Sniffing SSL Traffic
bydkaya
 
Intrusion Discovery on Windows
bydkaya
 
Implementing Cisco AAA
bydkaya
 
Cisco Ccna Certification
bydkaya
 
Cisco Switch Security
bydkaya
 
Mitigating Layer2 Attacks
bydkaya
 
Microsoft Days 09 Windows 2008 Security
bydkaya
 
Implementing 802.1x Authentication
bydkaya
 

Recently uploaded

PPTX
UiPath Autonomous Agents | Building and Orchestrating Agents End-to-End
byUiPathCommunity
 
PPTX
Unit-4-ARTIFICIAL NEURAL NETWORKS.pptx ANN ppt Artificial neural network
byssuserd4481a
 
PPTX
Technology Consulting _ by Slidesgo.pptx
byfh82277
 
PDF
Real-Time Data Insight Using Microsoft Forms for Business
byElevate
 
PDF
Dev Dives: AI that builds with you - UiPath Autopilot for effortless RPA & AP...
byUiPathCommunity
 
PPTX
Building Cyber Resilience for 2026: Best Practices for a Secure, AI-Driven Bu...
byYasir Naveed Riaz
 
PDF
The major tech developments for 2026 by Pluralsight, a research and training ...
byChris Skinner
 
PDF
Day 5 - Red Team + Blue Team in the Cloud - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
DOCX
iRobot Post‑Mortem and Alternative Paths - Discussion Document for Boards and...
byDave Litwiller
 
PPTX
AI in Cybersecurity: Digital Defense by Yasir Naveed Riaz
byYasir Naveed Riaz
 
PDF
Making Sense of Raster: From Bit Depth to Better Workflows
bySafe Software
 
PDF
Data Virtualization in Action: Scaling APIs and Apps with FME
bySafe Software
 
PPTX
Cybercrime in the Digital Age: Risks, Impact & Protection
byYasir Naveed Riaz
 
PDF
AI Meets Integration: Delivering AI-Ready Data in Real Time.pdf
byPrecisely
 
PDF
Session 1 - Solving Semi-Structured Documents with Document Understanding
byDianaGray10
 
PDF
DevFest El Jadida 2025 - Product Thinking
byElmehdi AMLOU
 
PDF
Cross-Cultural Agile Development -Challenges and Strategies for Overcoming Them-
byTakashi Makino
 
PDF
TrustArc Webinar - Looking Ahead: The 2026 Privacy Landscape
byTrustArc
 
PPTX
Software Analysis &Design ethiopia chap-2.pptx
byAbbas484771
 
PPTX
cybercrime in Information security .pptx
byismaeelsahib032
 
UiPath Autonomous Agents | Building and Orchestrating Agents End-to-End
byUiPathCommunity
 
Unit-4-ARTIFICIAL NEURAL NETWORKS.pptx ANN ppt Artificial neural network
byssuserd4481a
 
Technology Consulting _ by Slidesgo.pptx
byfh82277
 
Real-Time Data Insight Using Microsoft Forms for Business
byElevate
 
Dev Dives: AI that builds with you - UiPath Autopilot for effortless RPA & AP...
byUiPathCommunity
 
Building Cyber Resilience for 2026: Best Practices for a Secure, AI-Driven Bu...
byYasir Naveed Riaz
 
The major tech developments for 2026 by Pluralsight, a research and training ...
byChris Skinner
 
Day 5 - Red Team + Blue Team in the Cloud - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
iRobot Post‑Mortem and Alternative Paths - Discussion Document for Boards and...
byDave Litwiller
 
AI in Cybersecurity: Digital Defense by Yasir Naveed Riaz
byYasir Naveed Riaz
 
Making Sense of Raster: From Bit Depth to Better Workflows
bySafe Software
 
Data Virtualization in Action: Scaling APIs and Apps with FME
bySafe Software
 
Cybercrime in the Digital Age: Risks, Impact & Protection
byYasir Naveed Riaz
 
AI Meets Integration: Delivering AI-Ready Data in Real Time.pdf
byPrecisely
 
Session 1 - Solving Semi-Structured Documents with Document Understanding
byDianaGray10
 
DevFest El Jadida 2025 - Product Thinking
byElmehdi AMLOU
 
Cross-Cultural Agile Development -Challenges and Strategies for Overcoming Them-
byTakashi Makino
 
TrustArc Webinar - Looking Ahead: The 2026 Privacy Landscape
byTrustArc
 
Software Analysis &Design ethiopia chap-2.pptx
byAbbas484771
 
cybercrime in Information security .pptx
byismaeelsahib032
 

Ironport Data Loss Prevention

  • 1.
    Securing Your Email- Data Loss Prevention Deniz Kaya Microsoft, Cisco, Ironport, Mile2 Instructor CCSI, CCNP, MCT, MCSE, ICSI, ICSP, CPTS
  • 2.
    IronPort ® Gateway Security Products Web Security | Email Security | Security Management | Encryption EMAIL Security Appliance WEB Security Appliance Security MANAGEMENT Appliance IronPort SenderBase APPLICATION-SPECIFIC SECURITY GATEWAYS CLIENTS BLOCK Incoming Threats PROTECT Corporate Assets Data Loss Prevention Encryption CENTRALIZE Administration Internet ENCRYPTION Appliance
  • 3.
    IronPort + CiscoMarket Leadership Customer Leadership - Over 6,000 customers globally - 99% customer retention rate Technology Leadership - Industry leading email and Web security applications and management tools Global Leadership - Worldwide business operations - Global technology infrastructure
  • 4.
    The IronPort SenderBase® Network Global Reach Yields Benchmark Accuracy 5B+ queries daily 150+ Email and Web parameters 35% of the World’s Traffic IronPort EMAIL Security Appliances IronPort WEB Security Appliances IronPort SenderBase Combines Email & Web Traffic Analysis View into both Email & Web traffic dramatically improves efficacy 80% of spam contains URLs Email is a key distribution vector for Web-based malware
  • 5.
    IronPort Consolidates theNetwork Perimeter For Security, Reliability and Lower Maintenance After IronPort Groupware Firewall IronPort Email Security Appliance Internet Users Before IronPort Anti-Spam Anti-Virus Policy Enforcement Mail Routing Internet Firewall Groupware Users Encryption Platform MTA DLP Scanner DLP Policy Manager
  • 6.
    IronPort Architecture Multi-Layered Email Security MANAGEMENT TOOLS THE IRONPORT A SYNC OS™ EMAIL PLATFORM SPAM DEFENSE VIRUS DEFENSE DATA LOSS PREVENTION EMAIL ENCRYPTION
  • 7.
    IronPort AsyncOS Unmatched Scalability and Security • IronPort AsyncOS is a scalable and secure operating system, optimized for messaging • Advanced Email Controls protect reputation and downstream systems • Standards-based Integration replaces legacy systems with ease MANAGEMENT TOOLS THE IRONPORT A SYNC OS™ EMAIL PLATFORM SPAM DEFENSE VIRUS DEFENSE DATA LOSS PREVENTION EMAIL ENCRYPTION
  • 8.
    Multi-layer Spam DefenseBest-of-Breed Protection at the Gateway • IronPort Reputation Filters™: the outer layer defense • IronPort Anti-Spam ™ : stops the broadest array of threats – spam, phishing, fraud and more MANAGEMENT TOOLS THE IRONPORT A SYNC OS™ EMAIL PLATFORM SPAM DEFENSE VIRUS DEFENSE DATA LOSS PREVENTION EMAIL ENCRYPTION
  • 9.
    SenderBase ® Data Makes the Difference • Complaint Reports •  Spam Traps • Message Composition Data • Global Volume Data • URL Lists • Compromised Host Lists • Web Crawlers • IP Blacklists & Whitelists • Additional Data SenderBase Data Data Analysis/ Security Modeling SenderBase Reputation Scores -10 to +10 Parameters Threat Prevention in Realtime
  • 10.
    Introducing IronPort SpamDefense Multi-layer spam defense designed to: Stop spam quickly Stop spam accurately Reputation Worlds first and best sender based reputation service - Blocks 80% of spam at gateway - World class accuracy SBRS IPAS Who? How? What? Where? World’s most accurate content based spam engine - 98% catch rate - World class accuracy
  • 11.
    IronPort Anti-Spam AccuracyPowered By Context Adaptive Scanning Engine WHAT? HOW? WHO? WHERE? All text inside an image Random dots appear within the message Nearly identical color scheme in 100,000’s spamtrap msgs Verdict BLOCK IP address recently started sending email Message originated from dial-up IP address Sending IP address located in Russia Message leaves trace of spamware tool
  • 12.
    IronPort Reputation Filters Dell Case Study Dell’s challenge: Dell currently receives 26M messages per day Only 1.5M are legitimate messages 68 existing gateways running Spam Assassin were not accurate IronPort solution: Reputation Filters block over 19M messages per day 5.5M messages per day scanned by anti-spam engine Replaced 68 servers with 8 IronPort C60s Accuracy of spam filtering increased 10x Servers consolidated by 70% Operating costs reduced by 75% “ IronPort has increased the quality and reliability of our network operations, while reducing our costs.” -- Tim Helmsetetter Manager, Global Collaborative Systems Engineering and Service Management, DELL CORPORATION
  • 13.
    Multi-layer Virus DefenseBest-of-Breed Protection at the Gateway • IronPort Virus Outbreak Filters  : stop outbreaks 13 hours ahead of traditional signatures • McAfee and Sophos Anti-Virus: signature-based solutions with industry leading accuracy MANAGEMENT TOOLS THE IRONPORT A SYNC OS™ EMAIL PLATFORM SPAM DEFENSE VIRUS DEFENSE DATA LOSS PREVENTION EMAIL ENCRYPTION
  • 14.
    IronPort Outbreak Filters Close the Reaction Time Gap
  • 15.
    How Virus OutbreakFilters Work Dynamic Quarantine In Action T = 0 zip (exe) files T = 5 mins -zip (exe) files -Size 50 to 55 KB. T = 10 mins zip (exe) files Size 50 to 55KB “ Price” in the name file T = 8 hours Release messages if signature update is in place Messages Scanned & Deleted Fine-grained Rules, Multiple Parameters: Attachment Type, Attachment Size, URLs, Filenames & More
  • 16.
    Industry Leading Signaturesfrom Sophos and McAfee Anti-Virus Integrated Sophos ® anti-virus engine High performance in-line scanning Easy to deploy and manage Intuitive user interface Single view with Mail Flow Monitor Auto updates Lower TCO with integrated solution
  • 17.
    IronPort Data LossPrevention Inbound/Outbound Policy Enforcement • Integrated Scanning makes DLP deployments quick & easy • Integrated Remediation eases work flow burden MANAGEMENT TOOLS THE IRONPORT A SYNC OS™ EMAIL PLATFORM SPAM DEFENSE DATA LOSS PREVENTION VIRUS DEFENSE EMAIL ENCRYPTION
  • 18.
    Data Loss PreventionMulti-Faceted Problem Regulatory Compliance HIPAA, GLBA, PCI, SOX Regulations Scan for sensitive information and block infractions Secure business partner communication Acceptable Use Block offensive content Enforce messaging policy (attachment size, etc) Add legal disclaimers to outgoing mails Intellectual Property Protection Block messages containing confidential data Prevent email communications with competitor
  • 19.
    PCI Applies toNearly Every Industry PCI Not Just for Retail Utilities E-Commerce Transportation Restaurant Financial/ Insurance Retail Service Provider Healthcare Federal Mobile Universities Sports and Entertainment State Agencies
  • 20.
    The Payment CardIndustry (PCI) Data Security Standard Published January 2005 Impacts ALL who process, transmit, or store cardholder data Also applies to 3 rd -party hosting companies, information storage companies, etc. Monthly fines ranging from $5,000 to $50,000 for missed deadlines Has global reach Source: pcisecuritystandards.org Not Published yet Latin American CEMEA 2008 TBD 2008 TBD 2008 TBD Canada DEC 2009 DEC 2009 DEC 2009 Asia MAR-DEC 2008 MAR-DEC 2008 Negotiated individually Western Europe DEC 2008 DEC 2007 SEP 2007 US Level 3 Level 2 Level 1 Theater
  • 21.
    Data Loss PreventionFoundation Integrated Scanning Users Integrated Scanning Makes DLP Deployments Quick & Easy Outbound Mail Weighted Content Dictionaries Compliance Dictionaries Attachment Scanning Custom Content Filters Smart Identifiers
  • 22.
    Data Loss PreventionFoundation Integrated Remediation Users Integrated Remediation Eases Work Flow Burden Outbound Mail Remediation: Quarantine Remediation Notification Remediation: Reporting Encrypt The Message
  • 23.
    IronPort Email Encryption Don’t Remediate…Accelerate MANAGEMENT TOOLS THE IRONPORT A SYNC OS™ EMAIL PLATFORM SPAM DEFENSE DATA LOSS PREVENTION VIRUS DEFENSE EMAIL ENCRYPTION
  • 24.
    Encryption Market EvolutionThe Technical View    Encryption technology is the foundation for business class email Secure Envelopes S/MIME, PGP, Secure Webmail Single, Integrated Platform No Certificate Complexity Universal Reach Multi-Platform Deployment Certificate Requirements Sender/Receiver Plug-Ins IronPort PXE ™ Legacy Encryption Solutions
  • 25.
    IronPort PXE: Sendinga Message Instant Deployment, Zero Management Costs IronPort Hosted Keys  Gateway encrypts message  User opens IronPort PXE in browser  User authenticates & gets message key Password  Decrypted message displayed Message pushed to Recipient Key Stored
  • 26.
    IronPort PXE: Receivinga Message Seamless End-User Experience  View message  Enter password  Open Attachment   
  • 27.
    Management for Organizationsof All Sizes IronPort Email Security Manager  – unified policy management IronPort Email Security Monitor  – enterprise-class reporting system Management Interfaces – simple integration and increased productivity MANAGEMENT TOOLS THE IRONPORT A SYNC OS™ EMAIL PLATFORM SPAM DEFENSE VIRUS DEFENSE DATA LOSS PREVENTION EMAIL ENCRYPTION
  • 28.
    IronPort Email SecurityManager Single view of policies for the entire organization IT SALES LEGAL Mark and Deliver Spam Delete Executables Archive all mail Virus Outbreak Filters disabled for .doc files Allow all media files Quarantine executables “ Email Security Manager serves as a single, versatile dashboard to manage all the services on the appliance.” -- PC Magazine 2/22/05 Categories: by Domain, Username, or LDAP
  • 29.
    Cisco Self-Defending Network(SDN) Cisco Security- Portfolio @ a Glance Network & End-point Security Content & Application Security Systems & Security Management
  • 30.
    The Portfolio ata Glance… Content and Application Security Content Security Reputation based, zero-day defense Capability to address diverse attacks types and techniques Secure all sources of attack Application Security Layer 7 protection for application and data vulnerabilities XML traffic validation and inspection Enhanced deep packet inspection Product Highlights: Ironport Email Ironport Web Intrusion Prevention Systems Product Highlights: ACE XML Gateway Web Application Firewall
  • 31.
    Systems Approach toStop Malware: Visibility and Control Intrusion Prevention Detection Precision response Content Security Email SPAM Web filtering Endpoint Security Host IPS AV solutions Firewall and VPN Traffic access control Encryption Centralized Policy Management and Monitoring
  • 32.
    Cisco’s Security Portfolio—Offers End-to-End Compliance with PCI Requirements
  • 33.
    Cisco Data LossPrevention Solution NAC, CSA, IronPort, and TrustSec IronPort NAC Appliance ASA printer IronPort Prevent data loss at perimeter Mail policy verification Logs transaction Encrypts mail message and notifies recipient NAC Appliance Verifies CSA and endpoint posture TrustSec TrustSec Enforces data policy through role-based access control Cisco Security Agent Scan files for sensitive data Prevents copying to external media Prevents transfer with internetwork applications Prevents bypass of gateway security policy Internet Internet Internet Internet Hi Joan, Could you send those files over? Sure Bob, I’ll find a way to get those files to you!
  • 34.
    Preventing Data Leakageand Disclosure Self-Defending Network Applied Data Center Employees Network Edge Tape Devices Application Server Cisco MDS 9000 C-Series E-Mail Security Appliance Internet Corporate Network Cisco ® Security Agent Prevents endpoint data loss Prevents bypass of Cisco IronPort network protection Inspects and classifies content (similar to Cisco IronPort) in a future release Partners Customers Remote Employees Storage Media Encryption Prevention of unauthorized access and loss of data at rest Full integration with SAN fabric and management Secure, highly available service IronPort Prevent data loss at network perimeter Inspect and control content Address privacy regulations Take advantage of existing anti-spam and anti-spyware infrastructure
  • 35.
    Self-Defending Network inthe Campus Centralized threat management, including correlation and mitigation Centralized policy and device management across entire Cisco infrastructure for IPS, VPN, and firewall Web and mail content scanning to reduce malware introduction and propagation Layer 3 – 7 inspection and traffic control Converged remote site and user IPsec and SSL VPN services Trojan horse and spyware to control channel monitoring and mitigation Gateway and Internet Services Prevent exploits of vulnerabilities on PCs and other endpoints Minimize the entrance and propagation of new threats on trusted PCs Enforce access controls to trusted, untrusted, and guest users Protect and isolate intra-LAN segments Policy Enforcement and Endpoint Protection Threat Management and Policy Control Cisco ® Security Management Suite Cisco ASA 5500 Firewall, VPN, and IPS Cisco IPS 4200 Series Sensors Network Admission Control FWSM and Cisco ASA 5500 Series Cisco IronPort Cisco ASA 5500 CSC Cisco Security Agent Endpoint Security Policy and Posture Centralized Policy and Threat Management Traffic and Admission Control Targeted Attack Protection Web and Mail Malware Scan Intra-LAN Policy Enforcement Internet Public WAN
  • 36.
    Self-Defending Network inthe Data Center Cisco ASA ACS Cisco Security MARS Cisco ® WAAS Web Servers Cisco ACE Cisco Security Agent Cisco Security Agent Cisco Security Agent Application Servers Database Servers AXG (Web Applications) Cisco Security Agent Cisco Security Agent Cisco MDS with SME Tier 1/2/3 Storage Tape/Offsite Backup AXG (B2B) CSM Cisco Security Agent-MC CW-LMN Data-Center Edge Firewall and IPS DoS protection Application protocol inspection Web Services security VPN termination E-mail and Web access control Cisco Catalyst 6000 FWSM Web Access Web security Application security Application isolation Content inspection SSL encryption and offload Server hardening Applications and Database XML, SOAP, and AJAX security DoS prevention Application-to-application security Server hardening Storage Data encryption In motion At rest Stored data access control Segmentation Management Tiered access Monitoring and analysis Role-based access AAA access control Cisco IronPort E-Mail Security AXG (DHTML to XML) Cisco IronPort Web Security Cisco IronPort Web Security
  • 37.
    Access to thepresentations http://www.newhorizons.bg/powerpoint/802.1x.ppt http://www.newhorizons.bg/powerpoint/Layer2_Attacks.ppt http://www.newhorizons.bg/powerpoint/ Ironport-DLP .ppt
  • 38.