"Towards Value-Centric Big Data" e-SIDES Workshop - “You’re monitoring my what…?!” - Balancing privacy against enhanced security outcomes, Duncan Brown

•

1 like•59 views

The following presentation was given by Duncan Brown, EMEA Chief Security Strategist at Forcepoint, during the e-SIDES workshop "Towards Value-Centric Big Data" held on April 2, 2019 in Brussels.

Data & Analytics

“You’re monitoring my what…?!”
Balancing privacy against enhanced security outcomes
Duncan Brown
EMEA Chief Security Strategist

© 2019 Forcepoint | 2
What’s wrong with this picture?
2011 2012 2013 2014 2015 2016 2017 2018
Sources:
1. CVE List, The MITRE Corporation 2019
2. Information is Beautiful (Dec 18 update)
3. Accenture Ponemon 2017 Cost Of Cyber Crime Study
4. https://www.avtest.org/en/statistics/malware/
5. IDC Software Tracker Historical (2H17) & Forecast (2018): Security Software
6. IBM Ponemon Cost of a Data Breach Report 2018. Per capita cost = total cost of data breach
divided by the number of lost or stolen records.
CAGR 2011-18 except:
- 4. 2013-17
- 6. 2014-18
Breached PII
records1 (m), 51%
231m
4,202m
389m
New malicious
programs2 (m), 44%
65m
856m
Variablescale
CVE Vulns3, 22%
5,331
21,210
Average cost of cyber
crime4 ($m), 10%
$7.2m
$11.7m
Security software
spend5 ($b), 7.7%
$21b
$29b
Per capita cost of
data breach6(m), 1%$145
$148

Inadvertent
Behaviors
Poorly communicated
policies and user
awareness
Broken Business
Process
Data where it shouldn’t
be, not where it should
be
Rogue
Employee
Leaving the
company, poor
performance review
Criminal Actor
Employees
Corporate espionage,
national espionage,
organized crime
Malware
Infections
Phishing targets,
breaches, BYOD
contamination
Stolen
Credentials
Credential exfiltration,
social engineering,
device control hygiene
MALICIOUS INSIDER COMPROMIZED INSIDERACCIDENTAL INSIDER
TRUSTED USERS PUTTING ORGANISATIONS AT RISK

13%23%64%
MALICIOUS INSIDER COMPROMIZED INSIDERACCIDENTAL INSIDER
TRUSTED USERS PUTTING ORGANISATIONS AT RISK
Source: Ponemon 2018

© 2019 Forcepoint | 6
Risk-Adaptive In Action Senior sales rep,
Copenhagen, DK
Monday
January 21 @ 10am
Working while on PTO
+ Additional Context
Thursday
January 24 @ 1pm
Downloads customer records to Excel
+ Additional Context
Wednesday
January 30 @ 9pm
Copy multiple files to staging
area
+ Additional Context
Saturday
February 9 @ 6am
Bulk copy to USB drive
+ Additional Context
Forcepoint Proprietary
Risk Score: 30
Risk-Adaptive Protection
No enforcement action
Risk Score: 50
Risk-Adaptive Protection
Enhanced auditing activated
Evidence available for investigation later
Risk Score: 80
Risk-Adaptive Protection
Copy allowed but file encrypted
No corporate data at risk
Risk Score: 95
Risk-Adaptive Protection
Action is blocked & account is locked
Avoided $10M breach and forensic proof of
the attack is available

© 2019 Forcepoint | 7
Do privacy concerns outweigh security objectives?
You’re tracking my what???!!!

© 2019 Forcepoint | 8
Processing personal data for security is a legitimate
interest
“The processing of personal data to the extent strictly necessary and
proportionate for the purposes of ensuring network and information security …
constitutes a legitimate interest of the data controller concerned.”
GDPR Recital 49

© 2019 Forcepoint | 10
Where should companies strike the balance?
How bad is the Privacy risk
to employees?
How bad is the Security risk
to the firm?

Thank you
duncan.brown@forcepoint.com
© 2019 Forcepoint | 11Forcepoint Proprietary

The high cost of data breaches for companies is outlined. In 2015, the average cost of a data breach in the US was $6.5 million, a 10% increase over 2014. Small business cyber attacks nearly doubled from 2011 to 2014. The healthcare and financial services sectors experience the most breaches, with hacking and stolen devices being the most common causes of data loss. Stringent laws and regulations, advances in technology, global outsourcing, and user error all contribute to why companies need cyber liability and security protection.

Adapted from an ESG report - Seeing Is Securing - Protecting Against Advanced...

Proofpoint

Overview of Recorded Future Intel Cards

Recorded Future

Best practices for_implementing_security_awareness_training

wardell henley

- Security professionals are most concerned about data breaches, phishing, spearphishing, and ransomware attacks. These threats can be addressed through effective security awareness training. - The vast majority of surveyed organizations had experienced security incidents like phishing attacks delivering malware, targeted email attacks, or data breaches in the past year. - Over 90% of organizations report that phishing and spearphishing attempts reaching end users have increased or stayed the same over the past 12 months, indicating ongoing threats.

Cyber Risk Management in the New Digitalisation Age - Mitigating Risk with Cy...

Netpluz Asia Pte Ltd

This document discusses cyber insurance and common misconceptions about cyber risk. It provides statistics about Chubb's global cyber practice and the types of cyber incidents experienced by companies. The average costs of responding to cyber events are shown by expense category. Case studies demonstrate how Chubb assists clients that experience ransomware attacks, data breaches, and other cyber incidents. Coverage includes incident response costs, data recovery, business interruption, and liability protection. The role of cyber insurance is to provide an expert response and help minimize impacts of cyber attacks.

Cyber Security index

sukiennong.vn

This document discusses cyber security trends based on data collected by IBM from monitoring over 3,700 clients in 130+ countries. Some key points: - On average, organizations experience 73,400 attacks, 90 security incidents, and 81.9 million security events annually. - Manufacturing and finance face the most incidents, accounting for nearly 50% of incidents. - Malicious code and sustained probes/scans make up over 60% of incident categories. Most incidents are attributed to end-user error and misconfigured systems. - Opportunistic attacks motivated by opportunity account for nearly 50% of attackers. Outsiders instigate around half of all attacks.

Cyber Risk Management in the New Digitalisation Age - eSentinel™

Netpluz Asia Pte Ltd

Infographic - Three steps to stopping advanced email threats

Proofpoint

Phishing remains a significant threat according to the 2017 Verizon Data Breach Investigation Report. The report found that 28% of phishing attacks are targeted at specific individuals or groups, 66% of malware is installed via malicious email attachments, and 43% of security breaches involve social tactics like phishing. Phishing also played a role in 75% of ransomware attacks and 90% of social tactics used in breaches. The document recommends that businesses test their employees' ability to identify phishing attempts using available software tools.

Top 5 Cybersecurity Threats in Retail Industry

Seqrite

The document discusses cybersecurity threats facing the retail industry. It notes that the retail industry suffered 215 data breaches in 2016, with an average cost of $172 per compromised record. Common cyber attacks on retail companies include malware, data theft, distributed denial of service (DDoS) attacks, phishing, and vulnerabilities from internet of things devices. Seqrite provides cybersecurity solutions like endpoint security, unified threat management, mobile device management, and data loss prevention to help mitigate these threats.

5 Cybersecurity threats in Public Sector

Seqrite

The document discusses several cybersecurity threats facing the public sector, including data loss, insider threats, cyber espionage, phishing, and ransomware. It provides statistics on data breaches and security incidents affecting the public sector in areas like personal data compromised, compliance issues, and responsibility for incidents. The top 5 threats are identified as ransomware, insider threats, distributed denial of service attacks, cyber espionage, and phishing. Solutions from Seqrite that can help mitigate these threats include endpoint security, unified threat management, mobile device management, and data loss prevention.

Cybersecurity in Banking Sector

Quick Heal Technologies Ltd.

The document summarizes the top 5 security risks in banking: 1. Insider threats from employees or third parties with access pose the main risk, responsible for 82% of breaches. A notable example is the 2015 Morgan Stanley data theft. 2. Poor cybersecurity investments, with most banks focusing on products rather than comprehensive defense strategies, leave them vulnerable to unknown threats. 3. Legacy technology systems, which 92% of banks say will hamper combating financial crime. Attackers have benefited from banks' outdated systems. 4. Malware, frauds, and data breaches have increased significantly. 40% of financial transactions now occur on mobile devices, increasing fraud risks. 5. Un

Cybersecurity Challenges in Retail 2020: How to Prevent Retail Theft

Intellias

4 Facts Every Business Should Know About Phishing

PhishingBox

It's Time to Rethink Your Endpoint Strategy

Lumension

The document discusses the need to rethink traditional endpoint security strategies. It notes that the threat landscape has evolved, with intellectual property and sophisticated attacks becoming bigger risks. Traditional antivirus and threat-centric approaches are no longer sufficient. The document recommends implementing a trust-centric, defense-in-depth strategy with integrated technologies to reduce complexity. It emphasizes taking a holistic people, policy and technology approach to endpoint security.

Example presentation

aturnock

NetGain Technologies provides best-in-class managed security solutions for businesses of all sizes. Their solutions help prevent security breaches which have compromised over 500 million records since 2005 and can help block over 48% of web-borne threats, saving companies the substantial costs of security breaches which average $214,000 per incident. NetGain's managed security solutions also cost less over three years than annual security audits alone.

Top 5 Cybersecurity Risks in Banking

Seqrite

Hackmageddon stats: 4 Year of Cyber Attacks

Paolo Passeri

www.lucky-bet.site => Bet on Sports - 50% Deposit Bonus www.lucky-bet.site/casino => Online Casino - 5000$ Welcome Bonus www.lucky-bet.site/lotto247 => Lotto247 - Win Big, Live Free A quick overview of the Cyber Attacks on Hackmageddon since the beginning of 2011 to date. The presentation has been prepared for the 'XV Jornada Internacional de ISMS Forum: La Sociedad Digital, entre Confianza y Ciber-riesgos' organised by ISMS Forum Spain.

Security/Compliance - Advanced Threat Detection and Compliance

Advanced Technology Consulting (ATC)

Trying to prioritize and roadmap effective cyber security investment—people and technology—without fully understanding the cyber threat landscape is like driving 70 MPH in the dark with the lights off while wearing sunglasses. Learn what trends and cyber threats CenturyLink sees globally and get ideas on how to shine a light on your corporation’s technical environment. Rick Burger, Senior Solutions Architect, CenturyLink; Louie Hollmeyer, Moderator, ATC

Insider Threat Summit - The Future of Insider Threat Detection

ObserveIT

The use of insider threat management software has grown dramatically over the last two years, but we’ve only started to scratch the surface of innovation. This presentation will not only show you where insider threat technology is today, but also where's it's headed over the next 18 months. See what’s capable with leading insider threat software and how it can be applicable for your organization.

Data security for healthcare industry

Seqrite

This document provides an overview of enterprise security solutions by Data Security for the healthcare industry. It discusses how healthcare information is in high demand by cybercriminals for various fraudulent activities. The top 5 healthcare security threats are identified as ransomware, insider threats, advanced persistent threats, mobile devices, and employee negligence. The solutions offered by Data Security to mitigate these threats include Seqrite endpoint security, unified threat management, mobile device management, and data loss prevention. It also provides an overview of QuickHeal, the parent company of Seqrite, outlining its global presence and brand recognition in the cybersecurity industry.

Integrated cyber defense

kajal kumari

This document provides an overview of cyber threats and ransomware prevention. It defines a cyber threat as an activity intended to compromise the security of an information system by altering the availability, integrity, or confidentiality of the system. It notes that in today's connected world, new risks emerge daily and connecting to the internet opens the possibility of hacker attacks. The document outlines different types of attacks like phishing, man-in-the-middle attacks, and ransomware. Ransomware is defined as malicious software that restricts access to a device and demands ransom payment, usually in cryptocurrency. The document recommends defensive steps to prevent ransomware like using malware detection, backup solutions, forensic analysis with machine learning, and not paying

ESG Validates Proofpoint’s Ability to Stop Advanced Email-based Attacks

Proofpoint

See How Proofpoint Measures Up: Preventing, Detecting, and Responding to Advanced Email-based Attacks. Email threats are evolving. Are your defenses? Ransomware, Email Fraud, and email downtime threaten your business—and your bottom line. You need defenses to solve your entire email threat problem, not just parts of it. Read what Enterprise Strategy Group (ESG) has to say about Proofpoint Advanced Email Security. Learn why you need a multilayered email security defense to stop the broadest range of threats targeting your organization: - Quickly and simply identify and prioritize threats - Gain visibility into every aspect of a threat - Remediate potential threats before they can do harm Download the report to for an in-depth review of how you can stop email attacks: https://www.proofpoint.com/us/resources/analyst-reports/esg-proofpoint-advanced-email-security

Importance of cyber security in education sector

Seqrite

The Seven Kinds of Security

Veracode

The document discusses the 7 layers of security in a computer security ecosystem according to the OSI model: physical, data link, network, transport, session, presentation, and application. It describes attacks that can occur at each layer and how lower layer security measures like firewalls and intrusion detection systems are not sufficient to prevent application layer attacks. The growth of applications and their vulnerabilities has increased risks to the entire security ecosystem. Implementing application security is necessary to proactively reduce vulnerabilities and better protect the ecosystem.

Reinforcing the Revolution: The Promise and Perils of Digital Transformation

Proofpoint

Cyber Security for Financial Institutions

Khawar Nehal khawar.nehal@atrc.net.pk

This document provides recommendations for improving cyber security practices in financial institutions. It discusses the need to properly address cyber threats, develop effective security policies, and continuously monitor and improve weak areas of systems. Specific threats like insider misuse, errors, denial of service attacks, and crimeware are examined, and recommendations are given for mitigating each threat. Additional techniques suggested include implementing redundant systems, secure communications, browser addons, software updates, bounty programs, backups, authentication, encryption, and secure development practices. Real-world examples like the Carbanak attack demonstrate the ongoing risks, emphasizing the importance of proactive cyber security measures.

[Infographic] 5 Security Threats in Healthcare Industry

Seqrite

Ransomware was the top security threat in healthcare in 2016, accounting for 72% of malware attacks. Insiders and advanced persistent threats were also significant risks. Mobile devices posed a threat as 68% of healthcare breaches were due to lost or stolen devices. While cyberattacks were a leading cause of breaches, employee negligence through actions like clicking phishing emails or using infected USB devices also contributed to 91% of incidents starting with a phishing attack. Ransomware demands, lost productivity from downtime, and costs per leaked record added up to huge financial impacts for healthcare organizations from these top 5 security threats.

Segurinfo2014 Santiago Cavanna

Santiago Cavanna

Presentacion realizada en Argentina y Paraguay Durante Marzo 2014. En Argentina por Faustino Sanchez. En Paraguay por Santiago Cavanna. Trata sobre el problema de la presencia de vulnerabilidades en aplicaciones, el impacto que tiene en las organizaciones y la forma que se encuentra disponible para descubrirlas en forma temprana y facilitar su remediacion Links disponibles en http://www.santiagocavanna.com/segurinfo-2014-el-costo-oculto-de-las-aplicaciones-vulnerables/

Security Awareness Training from KnowBe4

Carol Montgomery Adams

KnowBe4 helps you keep your network secure with Kevin Mitnick security awareness training. You are able to send simulated phishing attacks before and after the training. Created ‘by admins for admins’, a minimum of time is needed with visible proof the security awareness training works. Find out what your email attack footprint looks like and ask for our free Email Exposure Check. Based on Kevin’s 30+ year unique first-hand hacking experience, you are now able to train employees with next-generation web-based training and testing, to quickly solve the increasingly urgent security problem of Social Engineering.

What's hot

Verizon Data Breach Investigations Report (DBIR) 2017

PhishingBox

Top 5 Cybersecurity Threats in Retail Industry

Seqrite

5 Cybersecurity threats in Public Sector

Seqrite

Cybersecurity in Banking Sector

Quick Heal Technologies Ltd.

Cybersecurity Challenges in Retail 2020: How to Prevent Retail Theft

Intellias

4 Facts Every Business Should Know About Phishing

PhishingBox

It's Time to Rethink Your Endpoint Strategy

Lumension

Example presentation

aturnock

Top 5 Cybersecurity Risks in Banking

Seqrite

Hackmageddon stats: 4 Year of Cyber Attacks

Paolo Passeri

Security/Compliance - Advanced Threat Detection and Compliance

Advanced Technology Consulting (ATC)

Insider Threat Summit - The Future of Insider Threat Detection

ObserveIT

Data security for healthcare industry

Seqrite

Integrated cyber defense

kajal kumari

ESG Validates Proofpoint’s Ability to Stop Advanced Email-based Attacks

Proofpoint

Importance of cyber security in education sector

Seqrite

The Seven Kinds of Security

Veracode

Reinforcing the Revolution: The Promise and Perils of Digital Transformation

Proofpoint

Cyber Security for Financial Institutions

Khawar Nehal khawar.nehal@atrc.net.pk

[Infographic] 5 Security Threats in Healthcare Industry

Seqrite

What's hot (20)

Verizon Data Breach Investigations Report (DBIR) 2017

Top 5 Cybersecurity Threats in Retail Industry

5 Cybersecurity threats in Public Sector

Cybersecurity in Banking Sector

Cybersecurity Challenges in Retail 2020: How to Prevent Retail Theft

4 Facts Every Business Should Know About Phishing

It's Time to Rethink Your Endpoint Strategy

Example presentation

Top 5 Cybersecurity Risks in Banking

Hackmageddon stats: 4 Year of Cyber Attacks

Security/Compliance - Advanced Threat Detection and Compliance

Insider Threat Summit - The Future of Insider Threat Detection

Data security for healthcare industry

Integrated cyber defense

ESG Validates Proofpoint’s Ability to Stop Advanced Email-based Attacks

Importance of cyber security in education sector

The Seven Kinds of Security

Reinforcing the Revolution: The Promise and Perils of Digital Transformation

Cyber Security for Financial Institutions

[Infographic] 5 Security Threats in Healthcare Industry

Similar to "Towards Value-Centric Big Data" e-SIDES Workshop - “You’re monitoring my what…?!” - Balancing privacy against enhanced security outcomes, Duncan Brown

Segurinfo2014 Santiago Cavanna

Santiago Cavanna

Security Awareness Training from KnowBe4

Carol Montgomery Adams

Cyber Security Trends - Where the Industry Is Heading in an Uncertainty

Organization

The document discusses cyber security trends for 2021. Key points include: - Cyber threats increased during the pandemic as remote work became standard. Hackers targeted vulnerabilities from limited remote security and careless employees. - Companies need to implement data access plans to restrict what information employees can access and send. - Threats like phishing, RDP attacks, weak passwords, and DDoS attacks expanded in scope and became more dangerous. - Addressing the global cyber skills gap and developing cyber security professionals with both technical and leadership skills is a priority.

CS Sakerhetsdagen 2015 IBM Feb 19

IBM Sverige

Cisco 2014 Midyear Security Report

Cisco Security

Securing the Cloud

GGV Capital

Paul Henry’s 2011 Malware Trends

Lumension

Join security and forensics expert, Paul Henry, to learn about the latest malware trends and more importantly, practical steps you can take to better protect your organization from evolving threats. Learn: • How social media and removable devices have become new, targeted paths into your network • Why traditional defenses are not effective in the unending arms race with financially motivated “bad guys” • How to ensure an effective depth-in-defense security strategy that includes application whitelisting

Presentación AMIB Los Cabos

Juan Carlos Carrillo

The document discusses security risks and regulations for Mexican brokerage firms. It highlights key findings from an IBM security report, including that attacks continue across security domains like vulnerabilities, malware, and phishing. The document also discusses IBM security solutions like intrusion prevention, data security products, and security consulting services that can help firms address risks and regulatory requirements.

ISACA ISSA Presentation

Marc Crudgington, MBA

The document provides an agenda for maturing an information security (IS) program using the NIST Cybersecurity Framework and FFIEC Cybersecurity Maturity Assessment. It discusses reasons to mature cybersecurity posture such as data breaches and their impact on the economy. It then outlines the NIST Cybersecurity Framework including its functions, categories, and subcategories. It also describes the FFIEC Maturity Assessment Tool and its domains for evaluating an organization's cybersecurity maturity. The document shares details about how one organization used these frameworks to improve their cybersecurity program over time from an initial assessment to continuous improvement.

Secure Web Apps Training at Corporate College

WorkSmart Integrated Marketing

The document summarizes the Security F.I.R.M. program which provides security training. It is led by David Kennedy who works in security profiling and electronic discovery and Chuck Mackey, the executive director of TSI, who created the Security F.I.R.M. program. The program covers topics like secure web application development through a foundation, immersion, reinforcement, and mastery approach. It highlights that the majority of security vulnerabilities and breaches are caused by flaws in software applications. The document advertises an upcoming secure web application development training event that is part of the Security F.I.R.M. program.

Security Firm Program - Corporate College

WorkSmart Integrated Marketing

Why care about secure web apps? - 7 out of 10 web apps were vulnerable to the use of a hyperlink with a malicious code embedded to it - 1 in 3 web apps aided hackers through information leakage: when a website unintentionally or unknowingly reveals sensitive information such as error messages or developer comments. With Web 2.0 technologies and other development platforms, applications are becoming increasingly powerful and complex

The State of Data Security

Razor Technology

Cyber Risk Quantification | Safe Security

Rahul Tyagi

Today, the delegation of risk decisions to the IT team cannot be the only solution and has to be a shared responsibility. The board and business executives are expected to incorporate the management of cyber risk as part of their business strategy since they are accountable to stakeholders, regulators and customers. For the CROs, CISOs, and Security and Risk Management Professionals to be on the same page, there has to be a single source of truth for communicating the impact that cyber risk has on business outcomes, in a language that everyone can understand.

Key Findings from the 2015 IBM Cyber Security Intelligence Index

IBM Security

View on-demand presentation: http://securityintelligence.com/events/ibm-2015-cyber-security-intelligence-index/ The cyber threat landscape is increasing in complexity and frequency. Organizations that have historically not been the target of cyber attacks now make headline news with large data losses and compromised transactions. Organizations need a clear point of view on how to respond to these threats, and one that incorporates not only the relevant technology but also the organizational changes needed. Nick Bradley, Practice Leader of the IBM Threat Research Group and the X-Force Threat Analysis Team, and Nick Coleman, Global Head Cyber Security Intelligence Services outline what organizations need to do now and in the future to stay ahead of the growing cyber security threat.

Rapport X force 2014

Patrick Bouillaud

The document discusses vulnerable web applications as a serious threat vector for attackers. It analyzes data from over 900 web application scans conducted in 2013 which found that injection attacks, broken authentication, and cross-site scripting were still common issues. Broken authentication, such as failing to update session IDs during login, was one of the most prevalent issues, putting sites at risk for session fixation attacks. The document provides tips for safe production scanning and ensuring proper test coverage to identify vulnerabilities before applications are deployed.

IBM Cyber Threat Analysis

IBM Government

Today’s cyber criminals are more sophisticated, more agile and more aggressive than traditional security measures can protect against. One simply needs to open a news source today to find a headline on a new breach - Office of Management Personal, Sony, Target are just a few examples of note. The increase in attacks and breaches can be attributed to a variety of factors, not the least of which include: a rise in asymmetric threats, commoditization of threats/attacks and incomplete security strategies. By incorporating cyber threat analysis in your security strategy, however, you can better counter and mitigate these threats.

Enhance Security with Windows 10 and Office 365 - Infographic

ChristyChurch1

This really useful short slide introduces some basic facts, that highlight what Windows 10 and the up to date Office 365 applications can do. As a small business, the threat of a cyber attack is larger than ever. Don't fall prey to this viscous attack on your income. CHS Networks is a Microsoft Partner, ensuring all security features are working efficiently, correctly, and backed up by all-important infrastructure security and support.

Federal IT Initiatives - BDPA Conference Executive Panel

BDPA Education and Technology Foundation

Forensics

Laura Aviles

The document discusses the importance of computer forensics and computer security. It notes that as technology advances, security needs to advance as well to protect vital information from unauthorized access. Computer forensics is used to investigate cyber crimes and digital evidence in order to strengthen legal systems and network security. Both computer forensics and computer security are crucial fields within IT that work together to develop more efficient security measures and prevent cyber crimes from increasing.

Mobile Security: 5 Steps to Mobile Risk Management

DMIMarketing

Hundreds of companies, and the most demanding Federal agencies rely on DMI for Mobile Security services and solutions. And with more than 500,000 devices under management, we know how to do it right. Now we’ve distilled 9 years of Mobile Security best practices into a white paper you can download. The paper lays out a smart, sensible approach to managing mobile risk without unnecessary cost and business disruption. Please be our guest and check out the white paper. You’ll learn: How to identify and protect against the threats that matter the most What to do about “the hottest new technologies” How to get the most protection for the least cost and disruption The key differences and similarities between Mobile and traditional cybersecurity - See more at: http://dminc.com/solutions/enterprise-mobility-services/mobilesecuritywp/#sthash.yTptNZRw.dpuf

Similar to "Towards Value-Centric Big Data" e-SIDES Workshop - “You’re monitoring my what…?!” - Balancing privacy against enhanced security outcomes, Duncan Brown (20)

Segurinfo2014 Santiago Cavanna

Security Awareness Training from KnowBe4

Cyber Security Trends - Where the Industry Is Heading in an Uncertainty

CS Sakerhetsdagen 2015 IBM Feb 19

Cisco 2014 Midyear Security Report

Securing the Cloud

Paul Henry’s 2011 Malware Trends

Presentación AMIB Los Cabos

ISACA ISSA Presentation

Secure Web Apps Training at Corporate College

Security Firm Program - Corporate College

The State of Data Security

Cyber Risk Quantification | Safe Security

Key Findings from the 2015 IBM Cyber Security Intelligence Index

Rapport X force 2014

IBM Cyber Threat Analysis

Enhance Security with Windows 10 and Office 365 - Infographic

Federal IT Initiatives - BDPA Conference Executive Panel

Forensics

Mobile Security: 5 Steps to Mobile Risk Management

More from e-SIDES.eu

BDVe Webinar Series - Why are privacy-preserving technologies not used more w...

e-SIDES.eu

Beyond Privacy: Learning Data Ethics - European Big Data Community Forum 2019...

e-SIDES.eu

"Towards Value-centric Big Data: Community Position Paper" Daniel Bachlechner...

e-SIDES.eu

The document summarizes the work of the e-SIDES community towards developing a position paper on responsible and value-centric big data. It discusses the community's goals of identifying ethical issues, technologies, and opportunities related to big data. It also outlines the structure and purpose of the position paper in documenting challenges, stakeholders perspectives, and recommendations. Next steps include finalizing a draft of the paper by September and presenting it at a conference in November.

e-SIDES Community Position Paper User Manual

e-SIDES.eu

e-SIDES is collecting community opinions related to the debate on how big data solutions can be developed and used in a responsible way, paying particular attention to the potential of privacy-preserving technologies. By bringing together the viewpoints of stakeholders from different domains and with different expertise, we aim to complement our research and stimulate further dialogue around responsible big data innovation. This presentation introduces the Community Position Paper, and provides detailed instruction about the collaborative editing process.

"Legal implementation barriers of privacy-preserving technologies" eLAW prese...

e-SIDES.eu

"Towards Value-Centric Big Data" e-SIDES Workshop - Slide-deck

e-SIDES.eu

This document summarizes a workshop session on value-centric big data. The session included presentations on several projects aiming to develop big data technologies and applications in an ethical manner that respects privacy and provides value. Speakers discussed challenges around privacy, profiling, and ensuring equitable and fair treatment when using big data. They also shared proposed solutions and best practices for addressing these challenges developed through their projects. The session concluded with an open discussion on experiences and approaches to overcoming barriers to responsible big data innovation.

"Towards Value-Centric Big Data" e-SIDES Workshop - "Privacy Preserving Techn...

e-SIDES.eu

"Towards Value-Centric Big Data" e-SIDES Workshop - "A win-win initiative for...

e-SIDES.eu

This document provides an overview of the AEGIS project, which aims to create a curated repository of public safety and personal security big data. It discusses the project objectives, including identifying and semantically linking diverse data sources and developing improved data handling and analysis tools. Three demonstrators are described that focus on automotive safety, smart homes, and smart insurance. The document outlines the project's commitment to ethics, including an Ethics Advisory Board and strategies to ensure privacy, data protection, and balance of interests. Requirements and frameworks for the technical platform emphasize privacy by design. Assessments of the system and demonstrators found them compliant with ethical and legal standards.

"Towards Value-Centric Big Data" e-SIDES Workshop - "The dangers of tech-dete...

e-SIDES.eu

"Towards Value-Centric Big Data" e-SIDES Workshop - "Responsible Research: An...

e-SIDES.eu

"Towards Value-Centric Big Data" e-SIDES Workshop - "Safe and secure data mar...

e-SIDES.eu

The Safe-DEED project received Horizon 2020 funding to develop secure data marketplaces. The 36-month project involves 8 partners across Europe developing privacy-preserving technologies like secure multi-party computation. The project aims to address barriers to data sharing by enhancing trust and assessing data value to incentivize sharing. If successful, the project expects to see at least 30 companies using the software in new revenue streams within 3 years.

"Towards Value-Centric Big Data" e-SIDES Workshop - Slide-deck

e-SIDES.eu

e-SIDES presentation at NordSteva Conference, 11/12/2018

e-SIDES.eu

e-SIDES presentation at WISP 2018, San Francisco 13/12/2018

e-SIDES.eu

e-SIDES workshop at ICT 2018, Vienna 5/12/2018

e-SIDES.eu

This document summarizes a session discussing how to build the next privacy and security research agenda for big data. The session included an introduction, a discussion of the e-SIDES community position paper and process for providing input, a mentimeter voting activity, and a panel on ensuring responsible research and innovation responds to real needs. The panel featured representatives from universities and research organizations discussing issues like integrating privacy from the start, understanding cultural and regional differences, and ensuring research aligns with societal values and needs. The position paper and future research agenda aim to provide recommendations for an ethically sound approach to big data.

e-SIDES workshop at EBDVF 2018, Vienna 14/11/2018

e-SIDES.eu

e-SIDES workshop at BDV Meet-Up, Sofia 14/05/2018

e-SIDES.eu

e-SIDES presentation at Leiden University 21/09/2017

e-SIDES.eu

e-SIDES workshop at ICE-IEEE Conference, Madeira 28/06/2017

e-SIDES.eu

This document summarizes an e-SIDES workshop on societal and ethical challenges in the era of big data. The workshop was held on June 28, 2017 in Madeira, Portugal and included presentations on ethical and legal issues by Gabriella Cattaneo and societal and economic issues by Daniel Bachlechner. It also outlined an interactive session on these topics and next steps for the e-SIDES project, which aims to improve dialogue around big data technologies and address related ethical concerns.

More from e-SIDES.eu (19)