AlienVault, profile picture
Uploaded byAlienVault
641 views

Securing the ‘Wild Wild West’: USM for Universities

The document discusses the security challenges faced by colleges and universities, specifically focusing on Marquette University's approach to unified security management. It highlights the institution's decentralization, resource limitations, and the successes achieved through open-source security tools, including a significant reduction in DMCA violations and improved incident response. Key benefits of this approach include centralized visibility, customization, and the scalability of security solutions tailored to educational institutions.

Embed presentation

Securing the “Wild Wild West”: Unified Security Management for Colleges and Universities Justin P. Webb Information Security Officer GCIH, GPEN, GWEB, GCFA Marquette University Sandy Hawke, CISSP VP of Product Marketing AlienVault@alienvault #AlienIntel
Agenda Introductions Common IT Security Challenges for Higher Education Overview of Marquette University’s approach Security strategy –> Unified Security Management Key Use Cases for USM Benefits & Results Architecture / Deployment Discussion Summary 2
Introductions 3 Sandy Hawke, CISSP VP, Product Marketing AlienVault @sandybeachSF Justin’s Photo Justin Webb Information Security Officer Marquette University
Common IT Security Challenges for Universities Decentralized networks without centralized control or visibility Lean IT teams whose members wear lots of hats, security is just one piece of the puzzle Herds of digital natives as end-users (“the click generation”) Compliance pressures (PCI, HIPAA, FERPA, etc.) 4
POLLING QUESTION #1 What’s your biggest IT Security challenge? 5
Marquette University Founded in 1881 Wisconsin’s largest private university 11,800 students, 11 schools & colleges Hundreds of servers, thousands of student & lab computers = terabytes of log data across 10G network IT organization operates as the campus ISP IT staff = 60 IT security staff = ~3 (1 FTE, 2 PTE) At-a-glance 6
IT Security Challenges at Marquette Lack of security visibility Hard to detect and remediate threats Hard to analyze data from disparate sources, log rotation causes gaps in coverage Manual and time-intensive review of terabytes of log data Not scalable, not responsive enough 7
Marquette’s IT Security Monitoring Program Security Monitoring Solution Looked to open source/OSSIM at first Key Use Cases Log Management: Cisco ACS, Cisco PIX, Cisco ASA, Tripwire Detecting DMCA Policy Violations: NAT’ed IP address translation issues Incident Response: Customized built-in snort rules; Tripwire plug-in Compliance Reporting: PCI, HIPAA, FERPA 8
Unified Security Management: Benefits & Results Benefits: Centralized visibility Easily customizable Easier incident response / investigations Results: Rapid deployment - less than 2 weeks 80% YoY reduction in DMCA violations 15-25% cost reduction (through time-saving) 9
AV-USM: Dramatic Reduction in DMCA Violations 10 AV-USM implementation
Solution Architecture / Deployment 11 • Three-tier architecture (recently added the Logger) • 2-week deployment • Built-in security tools (OSSEC, OpenVAS, Nagios) • Consistent high quality tech support • Future plans • Suricata, more correlation
POLLING QUESTION #2 What’s your experience with open source security tools? 12
Key Take-aways Open source security tools may be right for teams who are trying to show need for more investment Consolidation and automation can help small security teams do more with less Configurability allows for novel uses without significant development time Scalability allows any educational institution to tailor system to the size of enterprise 13
Resources OSSIM Download and Community http://communities.alienvault.com/ AlienVault Repository of Knowledge (ARK) https://alienvault.bloomfire.com/ Marquette University case study http://alienvault.com/c-suite/case-studies/index.html “Five security tips IT personnel wish students knew”: http://www.msnbc.msn.com/id/48782952/ns/technology_and_sci ence-back_to_school/t/security-tips-it-personnel-wish-students- knew/ 14
Next Steps / Q&A Request an AlienVault USM demo at: www.alienvault.com/schedule-demo.html Request a free trial of AlienVault USM: http://www.alienvault.com/free-trial Not quite ready for all that? Test drive our open source project - OSSIM here: communities.alienvault.com/ Need more info to get started? Try our knowledge base here: alienvault.bloomfire.com These resources are also in the Attachments section Join the conversation! @alienvault #AlienIntel 15

More Related Content

PDF
Integrated Network Security Strategies
byCisco Security
 
PDF
Midsize Business Solutions: Cybersecurity
byCisco Security
 
PPTX
Enterprise Strategy Group: Security Survey
byCisco Security
 
PDF
Pervasive Security Across Your Extended Network
byCisco Security
 
PDF
Google peter logli & jake shea
byColloqueRISQ
 
PPTX
Nist
bypenetration Tester
 
PPSX
MEDS
bymielmarketing
 
DOCX
The NIST Cybersecurity Framework
byEMMAIntl
 
Integrated Network Security Strategies
byCisco Security
 
Midsize Business Solutions: Cybersecurity
byCisco Security
 
Enterprise Strategy Group: Security Survey
byCisco Security
 
Pervasive Security Across Your Extended Network
byCisco Security
 
Google peter logli & jake shea
byColloqueRISQ
 
Nist
bypenetration Tester
 
MEDS
bymielmarketing
 
The NIST Cybersecurity Framework
byEMMAIntl
 

What's hot

PPTX
Proposal for IT Security Team
byRishabh Gupta
 
PDF
Intel Security Endpoint Protection
byTrustmarque
 
PPTX
Webinar Ivanti Neurons For Patch Intelligence
byIvanti
 
PDF
Limitless xdr meetup
byDaliya Spasova
 
PDF
Conferencia principal: Evolución y visión de Elastic Security
byElasticsearch
 
PPTX
NTXISSACSC2 - Kid Proofing the Internet of Things by Monty McDougal
byNorth Texas Chapter of the ISSA
 
PPTX
Cloud Security using NIST guidelines
bySrishti Ahuja
 
PDF
General Data Protection Regulation and Compliance - GDPR: Sharique M Rizvi
bySharique Rizvi
 
PDF
Security Risks: The Threat is Real
byePlus
 
PPSX
Security policies
byNishant Pahad
 
PDF
Cyber Security Challenges: how are we facing them?
byCommunity Protection Forum
 
PPT
2008: Web Application Security Tutorial
byNeil Matatall
 
PDF
Secure your workloads with microsegmentation
byRasool Irfan
 
PDF
Sikkerhed & Compliance i en cloud-verden
byMicrosoft
 
PPT
Application Security
byMuhammad Faisal Naqvi, CISSP, CISA, AMBCI, ITIL, ISMS LA n Master
 
PPTX
Cyber Security and the CEO
byMicheal Axelsen
 
PPTX
Cybersecurity Framework - Introduction
byMuhammad Akbar Yasin
 
PDF
Upgrade Your SOC with Cortex XSOAR & Elastic SIEM
byElasticsearch
 
PPT
Metholodogies and Security Standards
byConferencias FIST
 
Proposal for IT Security Team
byRishabh Gupta
 
Intel Security Endpoint Protection
byTrustmarque
 
Webinar Ivanti Neurons For Patch Intelligence
byIvanti
 
Limitless xdr meetup
byDaliya Spasova
 
Conferencia principal: Evolución y visión de Elastic Security
byElasticsearch
 
NTXISSACSC2 - Kid Proofing the Internet of Things by Monty McDougal
byNorth Texas Chapter of the ISSA
 
Cloud Security using NIST guidelines
bySrishti Ahuja
 
General Data Protection Regulation and Compliance - GDPR: Sharique M Rizvi
bySharique Rizvi
 
Security Risks: The Threat is Real
byePlus
 
Security policies
byNishant Pahad
 
Cyber Security Challenges: how are we facing them?
byCommunity Protection Forum
 
2008: Web Application Security Tutorial
byNeil Matatall
 
Secure your workloads with microsegmentation
byRasool Irfan
 
Sikkerhed & Compliance i en cloud-verden
byMicrosoft
 
Application Security
byMuhammad Faisal Naqvi, CISSP, CISA, AMBCI, ITIL, ISMS LA n Master
 
Cyber Security and the CEO
byMicheal Axelsen
 
Cybersecurity Framework - Introduction
byMuhammad Akbar Yasin
 
Upgrade Your SOC with Cortex XSOAR & Elastic SIEM
byElasticsearch
 
Metholodogies and Security Standards
byConferencias FIST
 

Viewers also liked

PPTX
Customer Training: Detect and Respond to Threats More Quickly with USM v4.5
byAlienVault
 
PPTX
How to Detect SQL Injections & XSS Attacks with AlienVault USM
byAlienVault
 
PPTX
How to Simplify PCI DSS Compliance with AlienVault USM
byAlienVault
 
PPT
OSSIM and OMAR in the DoD/IC
byJoshua L. Davis
 
PPTX
Practioners Guide to SOC
byAlienVault
 
PPTX
Insider Threats: How to Spot Trouble Quickly with AlienVault USM
byAlienVault
 
PPTX
Malware detection how to spot infections early with alien vault usm
byAlienVault
 
PPTX
Watering Hole Attacks: Detect End-User Compromise Before the Damage is Done
byAlienVault
 
PPTX
AlienVault Threat Alerts in Spiceworks
byAlienVault
 
PPTX
New OSSIM v5.0 - Get Security Visibility Faster & Easier Than Ever
byAlienVault
 
PPTX
How to Detect a Cryptolocker Infection with AlienVault USM
byAlienVault
 
PPTX
New USM v5.0 - Get Complete Security Visibility Faster & Easier Than Ever
byAlienVault
 
PPTX
How to Detect System Compromise & Data Exfiltration with AlienVault USM
byAlienVault
 
PPTX
Security Operations Center (SOC) Essentials for the SME
byAlienVault
 
PPTX
Best Practices for Configuring Your OSSIM Installation
byAlienVault
 
Customer Training: Detect and Respond to Threats More Quickly with USM v4.5
byAlienVault
 
How to Detect SQL Injections & XSS Attacks with AlienVault USM
byAlienVault
 
How to Simplify PCI DSS Compliance with AlienVault USM
byAlienVault
 
OSSIM and OMAR in the DoD/IC
byJoshua L. Davis
 
Practioners Guide to SOC
byAlienVault
 
Insider Threats: How to Spot Trouble Quickly with AlienVault USM
byAlienVault
 
Malware detection how to spot infections early with alien vault usm
byAlienVault
 
Watering Hole Attacks: Detect End-User Compromise Before the Damage is Done
byAlienVault
 
AlienVault Threat Alerts in Spiceworks
byAlienVault
 
New OSSIM v5.0 - Get Security Visibility Faster & Easier Than Ever
byAlienVault
 
How to Detect a Cryptolocker Infection with AlienVault USM
byAlienVault
 
New USM v5.0 - Get Complete Security Visibility Faster & Easier Than Ever
byAlienVault
 
How to Detect System Compromise & Data Exfiltration with AlienVault USM
byAlienVault
 
Security Operations Center (SOC) Essentials for the SME
byAlienVault
 
Best Practices for Configuring Your OSSIM Installation
byAlienVault
 

Similar to Securing the ‘Wild Wild West’: USM for Universities

PPT
How Technology, People, And Processes Converged To Achieve A 95 Percent Reduc...
byTammy Clark
 
PPTX
Improve Situational Awareness for Federal Government with AlienVault USM
byAlienVault
 
PDF
Council rock-school-case-study
byCMR WORLD TECH
 
PDF
Incident Response Whitepaper - AlienVault
byJermund Ottermo
 
PPTX
Tech 2 Tech: increasing security posture and threat intelligence sharing
byJisc
 
PDF
Secure your network to secure your reputation and your income
byUnify
 
PPTX
CyberSecurity Portfolio Management
byPriyanka Aash
 
PPT
Giving The Heave Ho To Worms, Spyware, And Bots!
byTammy Clark
 
PPTX
How to Solve Your Top IT Security Reporting Challenges with AlienVault
byAlienVault
 
PPT
The EDUCAUSE Security Professionals Experience [ppt]
byVideoguy
 
PDF
CHIME LEAD Fourm Houston - "Creating an Effective Cyber Security Strategy: Ke...
byHealth IT Conference – iHT2
 
PDF
Atlantic Security Conference 2015 (AtlSecCon) Presentation on IT Security @UNB
byDavid Shipley
 
PPTX
CS5300 class presentation on managing information systems
byzenhubris
 
PDF
Today's Cyber Challenges: Methodology to Secure Your Business
byJoAnna Cheshire
 
PDF
Alienvault how to build a security operations center (on a budget) (2017, a...
byAl Syihab
 
PPT
Security Lifecycle Management
byBarry Caplin
 
DOCX
Network Security Proposal TemplateNetwork Security Proposal.docx
byvannagoforth
 
PDF
Community IT Innovators - IT Security Best Practices
byCommunity IT Innovators
 
PPTX
The Cost Of Preventing Breaches Educause Nat Conf Denver Nov 09
byTammy Clark
 
PPTX
Ea sy presentation4
bybenjaminUWStout
 
How Technology, People, And Processes Converged To Achieve A 95 Percent Reduc...
byTammy Clark
 
Improve Situational Awareness for Federal Government with AlienVault USM
byAlienVault
 
Council rock-school-case-study
byCMR WORLD TECH
 
Incident Response Whitepaper - AlienVault
byJermund Ottermo
 
Tech 2 Tech: increasing security posture and threat intelligence sharing
byJisc
 
Secure your network to secure your reputation and your income
byUnify
 
CyberSecurity Portfolio Management
byPriyanka Aash
 
Giving The Heave Ho To Worms, Spyware, And Bots!
byTammy Clark
 
How to Solve Your Top IT Security Reporting Challenges with AlienVault
byAlienVault
 
The EDUCAUSE Security Professionals Experience [ppt]
byVideoguy
 
CHIME LEAD Fourm Houston - "Creating an Effective Cyber Security Strategy: Ke...
byHealth IT Conference – iHT2
 
Atlantic Security Conference 2015 (AtlSecCon) Presentation on IT Security @UNB
byDavid Shipley
 
CS5300 class presentation on managing information systems
byzenhubris
 
Today's Cyber Challenges: Methodology to Secure Your Business
byJoAnna Cheshire
 
Alienvault how to build a security operations center (on a budget) (2017, a...
byAl Syihab
 
Security Lifecycle Management
byBarry Caplin
 
Network Security Proposal TemplateNetwork Security Proposal.docx
byvannagoforth
 
Community IT Innovators - IT Security Best Practices
byCommunity IT Innovators
 
The Cost Of Preventing Breaches Educause Nat Conf Denver Nov 09
byTammy Clark
 
Ea sy presentation4
bybenjaminUWStout
 

More from AlienVault

PPTX
Meltdown and Spectre - How to Detect the Vulnerabilities and Exploits
byAlienVault
 
PDF
Malware Invaders - Is Your OS at Risk?
byAlienVault
 
PPTX
Simplify PCI DSS Compliance with AlienVault USM
byAlienVault
 
PDF
SIEM for Beginners: Everything You Wanted to Know About Log Management but We...
byAlienVault
 
PDF
Insider Threat Detection Recommendations
byAlienVault
 
PPTX
Alienvault threat alerts in spiceworks
byAlienVault
 
PDF
Open Source IDS Tools: A Beginner's Guide
byAlienVault
 
PDF
Security operations center 5 security controls
byAlienVault
 
PDF
PCI DSS Implementation: A Five Step Guide
byAlienVault
 
PPTX
Improve threat detection with hids and alien vault usm
byAlienVault
 
PDF
The State of Incident Response - INFOGRAPHIC
byAlienVault
 
PPTX
Incident response live demo slides final
byAlienVault
 
PPTX
Improve Security Visibility with AlienVault USM Correlation Directives
byAlienVault
 
PPTX
How Malware Works
byAlienVault
 
PPTX
AWS Security Best Practices for Effective Threat Detection & Response
byAlienVault
 
PPTX
Improve Threat Detection with OSSEC and AlienVault USM
byAlienVault
 
PPTX
IDS for Security Analysts: How to Get Actionable Insights from your IDS
byAlienVault
 
PDF
Alien vault sans cyber threat intelligence
byAlienVault
 
PPTX
Security by Collaboration: Rethinking Red Teams versus Blue Teams
byAlienVault
 
PPTX
Prepare to Be Breached: How to Adapt your Security Controls to the “New Normal”
byAlienVault
 
Meltdown and Spectre - How to Detect the Vulnerabilities and Exploits
byAlienVault
 
Malware Invaders - Is Your OS at Risk?
byAlienVault
 
Simplify PCI DSS Compliance with AlienVault USM
byAlienVault
 
SIEM for Beginners: Everything You Wanted to Know About Log Management but We...
byAlienVault
 
Insider Threat Detection Recommendations
byAlienVault
 
Alienvault threat alerts in spiceworks
byAlienVault
 
Open Source IDS Tools: A Beginner's Guide
byAlienVault
 
Security operations center 5 security controls
byAlienVault
 
PCI DSS Implementation: A Five Step Guide
byAlienVault
 
Improve threat detection with hids and alien vault usm
byAlienVault
 
The State of Incident Response - INFOGRAPHIC
byAlienVault
 
Incident response live demo slides final
byAlienVault
 
Improve Security Visibility with AlienVault USM Correlation Directives
byAlienVault
 
How Malware Works
byAlienVault
 
AWS Security Best Practices for Effective Threat Detection & Response
byAlienVault
 
Improve Threat Detection with OSSEC and AlienVault USM
byAlienVault
 
IDS for Security Analysts: How to Get Actionable Insights from your IDS
byAlienVault
 
Alien vault sans cyber threat intelligence
byAlienVault
 
Security by Collaboration: Rethinking Red Teams versus Blue Teams
byAlienVault
 
Prepare to Be Breached: How to Adapt your Security Controls to the “New Normal”
byAlienVault
 

Recently uploaded

PDF
AI TOOLS FOR PRODUCTIVITY IN MODERN TIMES.pdf
bySantunu
 
PDF
TrustArc Webinar - From Trends to Action: Fitting AI Governance into Privacy Ops
byTrustArc
 
PPTX
Spacecraft Guidance Quick Research Guide by Arthur Morgan
byArthur Morgan
 
PDF
final.pdf
byomarbishtawi04
 
PDF
HOW TO OVERCOME THE THREATS OF ARTIFICIAL INTELLIGENCE AGAINST HUMANITY.pdf
byFaga1939
 
PDF
apidays Paris 2025 | API Layer7 Security: Real-World Use Cases (BBVA & Nexi)
byapidays
 
PDF
GDG Cloud Southlake #49: Pradeep R Kumar: Implications of Agentic AI for Iden...
byJames Anderson
 
PPTX
PPTX game guess the logo with a twistppt
byAdrianAnig
 
PDF
Escape from the Forbidden Zone: Smuggling green and inclusive tech past the g...
byBookNet Canada
 
PDF
UiPath Modern Automation Playbook -Session 2
bysuhanisingh58689
 
PDF
apidays New York 2025 | AI in Application Security
byapidays
 
PPTX
GenerationAI Paris 2025 | AI in Tech: Beyond Expectations, Into Execution
byapidays
 
PDF
AI Vector Search Best Practices Multicloud Feb 2026
bySandesh Rao
 
PDF
Automated Governance for FME Flow: Smarter Admin at Scale
bySafe Software
 
PDF
Explaining specific examples of purpose-specific BOM
byakipii ogaoga
 
PDF
20260212 Security-JAWS activity results for 2025 and activity goals for 2026
byTyphon 666
 
PDF
Explaining the flow of purpose-specific BOM
byakipii ogaoga
 
PDF
How AI Can Help Platform Engineers Build Better Platforms
byAll Things Open
 
PDF
shayk.online - Anonymous chat with Sinatra and WebSockets
byEleanor McHugh
 
PPTX
apidays Paris 2025 | Building Agentic Workflows
byapidays
 
AI TOOLS FOR PRODUCTIVITY IN MODERN TIMES.pdf
bySantunu
 
TrustArc Webinar - From Trends to Action: Fitting AI Governance into Privacy Ops
byTrustArc
 
Spacecraft Guidance Quick Research Guide by Arthur Morgan
byArthur Morgan
 
final.pdf
byomarbishtawi04
 
HOW TO OVERCOME THE THREATS OF ARTIFICIAL INTELLIGENCE AGAINST HUMANITY.pdf
byFaga1939
 
apidays Paris 2025 | API Layer7 Security: Real-World Use Cases (BBVA & Nexi)
byapidays
 
GDG Cloud Southlake #49: Pradeep R Kumar: Implications of Agentic AI for Iden...
byJames Anderson
 
PPTX game guess the logo with a twistppt
byAdrianAnig
 
Escape from the Forbidden Zone: Smuggling green and inclusive tech past the g...
byBookNet Canada
 
UiPath Modern Automation Playbook -Session 2
bysuhanisingh58689
 
apidays New York 2025 | AI in Application Security
byapidays
 
GenerationAI Paris 2025 | AI in Tech: Beyond Expectations, Into Execution
byapidays
 
AI Vector Search Best Practices Multicloud Feb 2026
bySandesh Rao
 
Automated Governance for FME Flow: Smarter Admin at Scale
bySafe Software
 
Explaining specific examples of purpose-specific BOM
byakipii ogaoga
 
20260212 Security-JAWS activity results for 2025 and activity goals for 2026
byTyphon 666
 
Explaining the flow of purpose-specific BOM
byakipii ogaoga
 
How AI Can Help Platform Engineers Build Better Platforms
byAll Things Open
 
shayk.online - Anonymous chat with Sinatra and WebSockets
byEleanor McHugh
 
apidays Paris 2025 | Building Agentic Workflows
byapidays
 

Securing the ‘Wild Wild West’: USM for Universities

  • 1.
    Securing the “WildWild West”: Unified Security Management for Colleges and Universities Justin P. Webb Information Security Officer GCIH, GPEN, GWEB, GCFA Marquette University Sandy Hawke, CISSP VP of Product Marketing AlienVault@alienvault #AlienIntel
  • 2.
    Agenda Introductions Common IT SecurityChallenges for Higher Education Overview of Marquette University’s approach Security strategy –> Unified Security Management Key Use Cases for USM Benefits & Results Architecture / Deployment Discussion Summary 2
  • 3.
    Introductions 3 Sandy Hawke, CISSP VP,Product Marketing AlienVault @sandybeachSF Justin’s Photo Justin Webb Information Security Officer Marquette University
  • 4.
    Common IT SecurityChallenges for Universities Decentralized networks without centralized control or visibility Lean IT teams whose members wear lots of hats, security is just one piece of the puzzle Herds of digital natives as end-users (“the click generation”) Compliance pressures (PCI, HIPAA, FERPA, etc.) 4
  • 5.
    POLLING QUESTION #1 What’syour biggest IT Security challenge? 5
  • 6.
    Marquette University Founded in1881 Wisconsin’s largest private university 11,800 students, 11 schools & colleges Hundreds of servers, thousands of student & lab computers = terabytes of log data across 10G network IT organization operates as the campus ISP IT staff = 60 IT security staff = ~3 (1 FTE, 2 PTE) At-a-glance 6
  • 7.
    IT Security Challengesat Marquette Lack of security visibility Hard to detect and remediate threats Hard to analyze data from disparate sources, log rotation causes gaps in coverage Manual and time-intensive review of terabytes of log data Not scalable, not responsive enough 7
  • 8.
    Marquette’s IT SecurityMonitoring Program Security Monitoring Solution Looked to open source/OSSIM at first Key Use Cases Log Management: Cisco ACS, Cisco PIX, Cisco ASA, Tripwire Detecting DMCA Policy Violations: NAT’ed IP address translation issues Incident Response: Customized built-in snort rules; Tripwire plug-in Compliance Reporting: PCI, HIPAA, FERPA 8
  • 9.
    Unified Security Management:Benefits & Results Benefits: Centralized visibility Easily customizable Easier incident response / investigations Results: Rapid deployment - less than 2 weeks 80% YoY reduction in DMCA violations 15-25% cost reduction (through time-saving) 9
  • 10.
    AV-USM: Dramatic Reductionin DMCA Violations 10 AV-USM implementation
  • 11.
    Solution Architecture /Deployment 11 • Three-tier architecture (recently added the Logger) • 2-week deployment • Built-in security tools (OSSEC, OpenVAS, Nagios) • Consistent high quality tech support • Future plans • Suricata, more correlation
  • 12.
    POLLING QUESTION #2 What’syour experience with open source security tools? 12
  • 13.
    Key Take-aways Open sourcesecurity tools may be right for teams who are trying to show need for more investment Consolidation and automation can help small security teams do more with less Configurability allows for novel uses without significant development time Scalability allows any educational institution to tailor system to the size of enterprise 13
  • 14.
    Resources OSSIM Download andCommunity http://communities.alienvault.com/ AlienVault Repository of Knowledge (ARK) https://alienvault.bloomfire.com/ Marquette University case study http://alienvault.com/c-suite/case-studies/index.html “Five security tips IT personnel wish students knew”: http://www.msnbc.msn.com/id/48782952/ns/technology_and_sci ence-back_to_school/t/security-tips-it-personnel-wish-students- knew/ 14
  • 15.
    Next Steps /Q&A Request an AlienVault USM demo at: www.alienvault.com/schedule-demo.html Request a free trial of AlienVault USM: http://www.alienvault.com/free-trial Not quite ready for all that? Test drive our open source project - OSSIM here: communities.alienvault.com/ Need more info to get started? Try our knowledge base here: alienvault.bloomfire.com These resources are also in the Attachments section Join the conversation! @alienvault #AlienIntel 15

Editor's Notes

  • #6 POLLING QUESTION:What’s your biggest IT Security challenge?Concern about audits (either pre- or post-)Lack of security visibilityNot sure how to handle incidents (or suspected ones)Executive management doesn’t “get” securityDoing too many things at once
  • #9 Log Management – Cisco ACS, Cisco PIX, Cisco ASA, TripwireDetecting DMCA Policy Violations – needed easier way to translate NAT’ed address back to external IPIncident Response – data center protection – Snort, custom written (by Alienvault) Tripwire pluginCompliance Reporting (PCI, HIPAA, FERPA)
  • #10 Benefits:Centralized visibility – network events/threats, user activity, policy violations, etc.Easily customizable (adding data sources, configuring event correlation rules, etc.)Faster, less painful auditsEasier incident response / investigationsResults:Rapid deployment – X weeks80% YoY reduction in malware infections (drop chart in next slide?)15-25% cost reduction – based on the TechValidate survey
  • #13 Polling Question #2What’s your experience with open source security tools?I have little to no experience with open sourceI’ve played a little bit with open source, but nothing substantialI use open source security tools (e.g. snort) to show management where the holes areExecutive management won’t let us rely on open source due to lack of support