1. Informa(on System Integra(on
1
The Three R’s of Cybersecurity
Ellio4 Franklin, CISSP, CISM

2. Informa(on System Integra(on
Why?
2 www.isicg.com . (866) 788-2354 . info@isicg.com
• Increased Competition
• Speed to Market
• Increased Cloud/Outsourcing
• Instant Access Appetite

3. Informa(on System Integra(on
3 www.isicg.com . (866) 788-2354 . info@isicg.com
Why?
• Security Breaches Continue
• Too Many Vendors
• Lack of Consistent Security Standards
• ITIL for Service Management
• PCI, HIPAA, SOX, ISO 27000
• NIST Cybersecurity Framework – Feb 2014
• Requires Accountability
• Baseline Policies and Procedures
• Establishes a common language

4. Informa(on System Integra(on
Readiness
4 www.isicg.com . (866) 788-2354 . info@isicg.com
What is your ability to:
• Identify
Risks to resources supporting critical functions
• Protect
These resources and limiting the impact of security events
• Detect
Incidents that have occurred
Cyber Security Spending to
Hit $170Bn by 2020
InfoSecurity Today Jul 13, 2015

5. Informa(on System Integra(on
5 www.isicg.com . (866) 788-2354 . info@isicg.com
Readiness
IDENTIFY
PROTECT
DETECT
RESPOND
RECOVER
Func%on Category Iden%fier Category
IDENTIFY
(ID)
ID.AM Asset Management
ID.BE Business Environment
ID.GV Governance
ID.RA Risk Assessment
ID.RM Risk Management Strategy

6. Informa(on System Integra(on
6 www.isicg.com . (866) 788-2354 . info@isicg.com
Readiness

7. Informa(on System Integra(on
7 www.isicg.com . (866) 788-2354 . info@isicg.com
Readiness
Func%on Category Iden%fier Category
PROTECT
(PR)
PR.AC Access Control
PR.AT Awareness and Training
PR.DS Data Security
PR.IP
Informa(on Protec(on Processes and
Procedures
PR.MA Maintenance
PR.PT Protec(ve Technology
IDENTIFY
PROTECT
DETECT
RESPOND
RECOVER

8. Informa(on System Integra(on
8 www.isicg.com . (866) 788-2354 . info@isicg.com
Readiness
IDENTIFY
PROTECT
DETECT
RESPOND
RECOVER
Func%on Category Iden%fier Category
DETECT
(DE)
DE.AE Anomalies and Events
DE.CM Security Con(nuous Monitoring
DE.DP Detec(on Processes

9. Informa(on System Integra(on
9 www.isicg.com . (866) 788-2354 . info@isicg.com
Response
IDENTIFY
PROTECT
DETECT
RESPOND
RECOVER
Func%on Category Iden%fier Category
RESPOND
(RS)
RS.RP Response Planning
RS.CO Communica(ons
RS.AN Analysis
RS.MI Mi(ga(on
RS.IM Improvements

10. Informa(on System Integra(on
10 www.isicg.com . (866) 788-2354 . info@isicg.com
Recovery
IDENTIFY
PROTECT
DETECT
RESPOND
RECOVER
Func%on Category Iden%fier Category
RECOVER
(RC)
RC.RP Recovery Planning
RC.IM Improvements
RC.CO Communica(ons

11. Informa(on System Integra(on
11 www.isicg.com . (866) 788-2354 . info@isicg.com
Summary
People
Connecting People in
More Relevant,
Valuable Ways
Process
Delivering the Right
Information
to the Right Person (or
Machine)
at the Right Time
Data
Leveraging Data into
More Useful
Information for
Decision Making
Things
Physical Devices and
Objects Connected to the
Internet and
Each Other for Intelligent
Decision Making
Innova%on
Security

12. Informa(on System Integra(on
12 www.isicg.com . (866) 788-2354 . info@isicg.com
Summary
• Free Tools
– http://www.nist.gov/cyberframework/
– Roadmap
– Excel
• Break into small phases
• Communication with Executives
– What is the benefit to the business?

13. Informa(on System Integra(on
Washington
601 Pennsylvania Ave. NW
Suite 900 Washington, D.C. 20004
(202) 465-4880
California
5000 Birch Street
Suite 3000 Newport Beach, CA 92660
(949) 356-6390
North Texas South Texas
15150 Preston Road 517 Forest Street Yoakum, TX 77995
Suite 300 Dallas, TX 75248 (346) 980-4694
(469) 458-2862
13 www.isicg.com . (866) 788-2354 . info@isicg.com
Contact Us

14. Informa(on System Integra(on
14
Thank You