The document discusses creating armor to protect personal data and information in organizations. It talks about the risks of using mobile devices and storing sensitive data on them, as they can easily be lost, stolen, or have their wireless communications intercepted. It provides best practices for mobile data security, including not storing sensitive data on mobile devices, being wary of unknown wireless networks, and avoiding leaving portable storage devices unsecured.

1. การสร้างเกราะป้องกันภัยคุกคาม
ต่อข้อมูลความเป็นส่วนบุคคลในองค์กร
Assoc.Prof. Dr. Thanachart Numnonda
Director
Software Park Thailand
14 March 2012
1

2. 2

3. 3

4. 6 Million SmartPhones in
Thailand
(4)

5. More than 400,000 Tablets sold in Thailand
5

6. Source: wikipedia
6

7. 7

8. iCloud
8

9. www.facebook.com/softwareparkthailand
9

10. Dropbox
10

11. Open Environment
11

12. The New Reality for Users
Apps & Data Diverse Access
Everywhere Points
Universal App
Windows Catalog and Browser
Workflow
Legacy Apps
Windows
SaaS
Services
Mac
Broker
Mobile iOS
Apps
Android
Entitlements, Policies
and Reporting
Data
Services
Source : From Datacenter to Device: Security in the Enterprise 2012 and Beyond : VMWare
12

13. Work Life Balance
Blurred Boundaries
Anywhere Anytime
Productivity
Strengths, Interested, Choices
13

14. Security
Data Loss
Virus
Identity Loss
Internet Security
Social Media Security
Mobile Security
14

15. Data Loss Prevention
Where is my confidential data stored?
Where is my confidential data being sent?
How is my confidential data being used?
How do I enforce my data loss policies
15
Source : Vontu: Security for a wide open world.

16. Have You Deployed?
16
Source : Vontu: Security for a wide open world.

17. Content Awareness Protection
17
Source : Vontu: Security for a wide open world.

18. Mobile Devices
Notebook
Smartphones
Tablets
Portable Harddisk
ThumbDrive
18

19. Risks
Mobile devices are easy to lose or steal
Can carry large amount of data
Often unprotected
Data may be “sniffed” during unprotected
wireless communications
Results
– Broken device
– Infections from viruses, spyware, malware
– Privacy and personal security concerns
Source : CYBER SECURITY ON THE GO: TCU Information 19
Security Services

20. Best Practices
Never store sensitive or confidential information
on a mobile device.
Rule of thumb – do not trust wireless to be
secure!
Avoid joining unknown Wi-fi networks
Most apps offer privacy controls
– But privacy controls are not always easy to
access
Avoid portable harddisk, usb, thumbdrive
20

21. Data Loss Protection
Develop a plan and work with it
Develop a policy
Reduce the initial scope
Understand why you need it, business, HR and
Legal aligned
Avoid band-aid solutions - integration is key
21

22. Social Media Security Treats
Mobile Apps
Social Engineering
Social Networking Sites
Your Employees
Lack of a Social Media Policy
Source : 5 Top Social Media Security Threats: Network World 22

23. Internet Security Treats
Advise Your Employees on Safe Internet
Conduct
Be Wary of Social Engineering
Maintain Security Options
Password Security
Back-up Data
Source : 5 simple internet security tips: Evan Godfrey 23

24. Smart Phone Security Tips
Beware of Text Message Spam
Use Anti-Virus Software
Mind Your Moblie Apps
Avoid Wi-Fi Hotspots
Keep Your Phone in Jail
Source : Top 10 Smartphone Security Tips: Joseph Morah 24

25. Smart Phone Security Tips
Turn off Bluetooth Discovery Mode
Apply OS update
Backup or Sync Your Data Frequently
Enable Remote Locate, Lock and Wipe
Screen Lock Your Phone
Source : Top 10 Smartphone Security Tips: Joseph Morah 25

26. Case Studies
26

27. Thank you
thanachart@swpark.or.th
twitter.com/thanachart
www.facebook.com/thanachart
www.swpark.or.th
www.facebook.com/softwareparkthailand
27