Data breaches the way forward

•Download as PPTX, PDF•

1 like•144 views

Srinivas Thimmaiah

What are the top data breaches and how to minimize the effect..

Technology

Data Breaches
–
The wayforward
By: Srinivas Thimmaiah
Date: 20 July 2018
Srinivas Thimmaiah | DB - TWF | 20 July 2017 1

Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 2
Source: https://youtu.be/O4TFXDniG9w

Definition
Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 3
Source: https://iapp.org/news/a/is-it-an-incident-or-a-breach-how-to-tell-and-why-it-matters/
National Institute of Standards and Technology defines an event as “any observable occurrencein a system or
network,” such as a server receivinga request for a web page, a user sending an e-mail message, or a firewall blocking
an attempt to establish a connection
A securityor electronic incident is anevent that violates anorganization’s securitypolicies and procedures. Incidentas a
“security event that compromises the confidentiality, integrity or availability of aninformation asset
A data breach is defined as an event in which an individual’s name and a medical record and/or a financial record or
debit card are potentially put at risk either inelectronic or paper format.

Topbreaches
Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 4
Source: https://www.csoonline.com/article/2130877/data-breach/the-biggest-data-breaches-of-the-21st-century.html
Employeecredentialtheft byphishingormalware
VulnerabilityinApachestruts
Gainedaccessthrough athird-partyHVAC vendorto its
point-of-sale(POS)payment cardreaders
Phishing email
Phishingattack
Uniquecustom builtmalwareposingasantivirussoftware
2017
2016
2015
2014
2013
2012
2011

Data breachesroot causes
Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 5
Source: https://public.dhe.ibm.com/common/ssi/ecm/se/en/sel03130wwen/security-ibm-security-services-se-research-report-sel03130wwen-20180122.pdf

Breaches sector wise - 2017
Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 6
Source: Verizon 2018 data breach report

Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 7
According to a study by KPMG, 19%consumers
would completely stop shopping at a retailer after
a breach
Breaches sector wise - 2017
Source: Verizon 2018 data breach report

Equifax- Casestudy
Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 8
Source: https://www.pbs.org/newshour/nation/equifax-hack-happened-according-ceo

Equifax- Timeliness
Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 9
Source: https://csrps.com/meticulous-timeline-equifax-data-breach

Identifying breaches
Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 10
Days to identify and contain the data breach over the past year
Source: https://public.dhe.ibm.com/common/ssi/ecm/se/en/sel03130wwen/security-ibm-security-services-se-research-report-sel03130wwen-20180122.pdf
Note: MTTI – Mean time to identify; MTTC – Mean time to contain

Identifying breaches
Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 11
Source: https://public.dhe.ibm.com/common/ssi/ecm/se/en/sel03130wwen/security-ibm-security-services-se-research-report-sel03130wwen-20180122.pdf
Days to identify and contain the data breach incidents by root cause
Note: MTTI – Mean time to identify; MTTC – Mean time to contain

Breach notificationsrequirements
Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 12
Source: https://csrps.com/meticulous-timeline-equifax-data-breach
To be
GDPR
HIPAA
60 days
72 hrs
Article 33
EU GDPR
Breach Notification
45 CFR 164.400-414

Proactivesteps before databreach
Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 13
Source: https://csrps.com/meticulous-timeline-equifax-data-breach
Information
Classification Zero trust
network
Deleteold,
irrelevantdata
Limittheplaces
youstoredata
Outdatedsoftware
andtechnology
Response planReducebring-your-
own-device
(BYOD)liability
Configuration
management
Robost security
awareness
training

Notto Do
Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 14
Source: https://csrps.com/meticulous-timeline-equifax-data-breach
Not conducting forensic investigation
Makingfalse or misleading statements
Response onthe fly
Going silent
Closing theincidents in an hurry

Do butNot
Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 15
Source: https://www.cio.com.au/article/580908/5-steps-respond-security-breach/
Activatetaskforce
Containment
Assess the
severity of breach
Notification
Lessons learned
Customer,
legal/regulators
Who and whathasbeen
affected
Isolatefromnetwork,password
reset
EnablingIncidentresponse
plan
Updatingincident
responseplan

Flipsideof breaches
Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 16
Source: https://csrps.com/meticulous-timeline-equifax-data-breach
It was extremelyproactive in its response, alerting customers evenbeforethey had a chanceto fully confirm the
breach.
Transparency
Abiding legal/regulatory obligations
Regularcommunication
Workas one team
TRUST

Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 17
Let’s communicate 
Source: https://www.headsup.org.au/training-and-resources/news/2015/04/24/seven-essentials-to-communicate-your-commitment-to-improving-workplace-mental-health

Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 18
Backupslides

Hackers focuson
Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 19
Source: https://en.wikipedia.orr
• Credit card details
• Bank accountnumbers and PINs
• Passport numbers
• Drivers licenses
• Usernames and passwords
• Birthdays and anniversaries
• Not prepared
• Don’t understand legal obligations
• Financial liability
• They arethe nexus for largercompany breaches

What's hot

MIRAI: What is It, How Does it Work and Why Should I Care?

Memoori

Funsec3e ppt ch03

Skillspire LLC

Cybersecurity and The Board

Paul Melson

Cyber risk tips for boards and executive teams

Wynyard Group

Hacking3e ppt ch13

Skillspire LLC

Blog secure channels inc

Secure Channels Inc.

Cybersecurity & the Board of Directors

Abdul-Hakeem Ajijola

Infocom security 2016 - Cromar Presentation

Ethos Media S.A.

Cybersecurity: Connectivity, Collaboration and Security Controls

Kristian Alisasis Pura

Role of The Board In IT Governance & Cyber Security-Steve Howse

CGTI

The CPAs Guide to Buying Cyber Insurance

Joseph Brunsman

Is Your Strategy in Place to Meet the NYS DFS Regulation? Understanding New York State’s required cybersecurity policies and procedures, how these new regulations apply to you, and what you need to do to become compliant can all be confusing and overwhelming. To help you through this process, Citrin Cooperman and Walker Wilcox Matousek, LLP hosted an informational webinar to walk you through the complexities of this new regulation. Key questions that were answered, include: What’s required under the new regulation? Does this new regulation apply to you? How will you comply with this new regulation? What are the consequences of not complying?

New York Cybersecurity Requirements for Financial Services Companies

Citrin Cooperman

2015 Secureworld_effectively_managing_information_risk

Doug Copley

Cybercrime - Stealing in the Connected Age

dlblumen

Developing advanced cyber security strategies for the creation of a layered cyber defence, Cyber Resilience: A New Perspective on Security shall explore the establishment of a comprehensive defence from contemporary cyber threats to critical national infrastructure As well as the strategies and architectures necessary for the establishment of this protection, the master class will explore optimal protocol for organizations of all sizes to take the necessary steps to prepare for the worst-case scenarios. Specifically, the ability to recover quickly in the event of a cyber-attack on their network and deal with the fall out of such an attack. WHY YOU SHOULD ATTEND: • Understand the contemporary threats to critical national infrastructure, the approaches of attackers and their intentions • Master cyber security strategies and architectures for a thorough 1st line of defence • from cyber threats, in doing so, build a more cyber resilient enterprise • Prepare for the event in which your organisation’s cyber security is breached, effectively respond and recover by minimizing its impact and restore the functions of your people, processes and systems as soon as possible EARLY BIRD DISCOUNT: Book by 29th January to save £100 – Book by 29th February to save £50 For more information and to register, please visit www.smi-online.co.uk/2016cyberresilience.asp or contact events@smi-online.co.uk.

Cyber Resilience: A New Perspective on Security

Ina Luft

Many business continuity practitioners are perceiving a higher level of risk than ever before in their careers. Unfortunately, these risks are more often resulting in real incidents which require emergency response and continuity of operations. Being prepared may be the most important thing an organization can do in 2018. But what should we prepare for, and how should we prepare for it? This discussion will walk through some of the emerging threats concepts, tools, and techniques that business continuity professionals can expect to see more of in 2018. Main points covered: - What should we prepare for in 2018? - How should we prepare? - The emerging threats, concepts, tools, and techniques expected in 2018 - Emerging threats creating new risks Presenter: David Feeney, CPP, PMP has 17 years of security industry experience assisting organizations with risk management matters specific to physical, personnel, and cyber security. He has 9 years of experience with service providers and 8 years of experience within enterprise security organizations. David has worked with industry leaders in the energy, technology, healthcare, and real estate sectors. Areas of specialization include Security Operations Center design and management, Security Systems design and implementation, and Enterprise Risk Management. David holds leadership positions in ASIS International and is also a member of the InfraGard FBI program. David holds Certification Protection Professional (CPP) and Project Management Professional (PMP) certifications. Andrea LeStarge, MS has over ten years of experience in program management, risk analysis and curriculum development. Being specialized in Homeland Security, Andrea leverages her experience in formerly managing projects to support various Federal Government entities in identifying, detecting and responding to man-made, natural and cyber incidents. She has an established track record in recognizing security gaps and corrective risk mitigation options, while effectively communicating findings to stakeholders, private sector owners and operators, and first-responder personnel within tactical, operational and strategic levels. Overall, Andrea encompasses analytical tradecraft and demonstrates consistent, repeatable and defensible methodologies pertaining to risk and the elements of threat, vulnerability and consequence. Organizer: Nevila Muka Date: January 17, 2018 Link to the recorded webinar:

What trends will 2018 bring for Business Continuity Professionals?

PECB

Investing in Cybersecurity, 2020 outlook for Mexico

Whiteboard Venture Partners

The ever increasing threat of cyber crime

Nathan Desfontaines

In response to the rapidly evolving threat landscape, Boards of Directors (BoDs) and executives are now more aware of today’s cyber threats and how they might adversely affect their business. However, most executives are nonetheless limited in their knowledge of security and do not know what to ask their security teams. It is therefore up to security professionals to help their executives become more cyber security literate and thereby assist in framing security considerations as an integral part of any risk/opportunity discussion, as well as a wider enterprise risk management strategy. Acknowledging this responsibility on the part of information security personnel, Tripwire has asked a number of prominent experts in the field how security teams can improve their executives’ cyber security literacy.

Improving Cyber Security Literacy in Boards & Executives

Tripwire

The Proactive Approach to Cyber Security

Nathan Desfontaines

What's hot (20)

MIRAI: What is It, How Does it Work and Why Should I Care?

Funsec3e ppt ch03

Cybersecurity and The Board

Cyber risk tips for boards and executive teams

Hacking3e ppt ch13

Blog secure channels inc

Cybersecurity & the Board of Directors

Infocom security 2016 - Cromar Presentation

Cybersecurity: Connectivity, Collaboration and Security Controls

Role of The Board In IT Governance & Cyber Security-Steve Howse

The CPAs Guide to Buying Cyber Insurance

New York Cybersecurity Requirements for Financial Services Companies

2015 Secureworld_effectively_managing_information_risk

Cybercrime - Stealing in the Connected Age

Cyber Resilience: A New Perspective on Security

What trends will 2018 bring for Business Continuity Professionals?

Investing in Cybersecurity, 2020 outlook for Mexico

The ever increasing threat of cyber crime

Improving Cyber Security Literacy in Boards & Executives

The Proactive Approach to Cyber Security

Similar to Data breaches the way forward

November 2017: Part 6

seadeloitte

1212018 SafeAssign Originality Reporthttpswilmu.black.docx

moggdede

2017 Security Report Presentation

ixiademandgen

A Comprehensive Review of Cyber Security, Threats and Cyber Attacks

IRJET Journal

Third party risk management with cyber threat intelligence

Charles Steve

This webinar will provide more information on the importance of information security and how you can take security well beyond compliance, an approach on building strong information security, privacy and data governance programs, and the importance of strong data governance in relation to privacy and information security requirements. The webinar covers • Information Security • Importance Of Information Security Today • Taking Information Security Beyond A Compliance First • Importance Of Data Governance In Information Security • Privacy • Changing And Evolving Privacy Requirements • Importance Of Data Governance In Privacy • Data Governance And Data Privacy • Data Privacy - Data Processing Principles Presenters: Moji is a Senior Business Process Analyst working with GemaltoThales, a leading firm in the IT industry. Moji has over fifteen years of experience in leading projects to improve processes, create and implement processes leading to increased revenue generation and eliminate redundancies. She has a zeal for adding value and increasing revenue for organizations. Moji is very passionate about Data Privacy and its application in business and consumer rights. Hardeep Mehrotara has 20+ years of senior leadership experience in Information Technology and Cyber Security working for public and private organizations building security programs from the ground up. He has been featured on Canadian television as a cyber expert and provided advice to various communities on implementing cybersecurity strategy, best practices and controls. He has been a co-author on numerous leading industry security control frameworks, technical benchmarks and industry best practice standards. ------------------------------------------------------------------------------- Find out more about ISO training and certification services Training: https://pecb.com/whitepaper/iso-27001-information-technology--security-techniques-information-security--management-systems---requirements https://pecb.com/en/education-and-certification-for-individuals/iso-iec-27701 Webinars: https://pecb.com/webinars Articles: https://pecb.com/article Whitepapers: https://pecb.com/whitepaper ------------------------------------------------------------------------------- For more information about PECB: Website: https://pecb.com/ LinkedIn: https://www.linkedin.com/company/pecb/ Facebook: https://www.facebook.com/PECBInternational/ Slideshare: http://www.slideshare.net/PECBCERTIFICATION YouTube video: https://youtu.be/aQcS5-RFIEY Website link: https://pecb.com/

Information Security vs. Data Governance vs. Data Protection: What Is the Rea...

PECB

Old security approaches are based on finding malware and data leaks. This is like "boiling the ocean," since you are “patching” all possible data paths and data stores, and you may not even find a trace of an attack. New security approaches assume that you are under attack and focus instead on protecting the data itself, even in computer memory (the “target” for a growing number of attacks). This session discusses what companies can do now to prevent what happened to Target and others processing PII, PHI and PCI data. The Oracle Big Data Appliance is a critical part of the solution.

Key note in nyc the next breach target and how oracle can help - nyoug

Ulf Mattsson

With the exponential growth of data generation and collection stemming from new business models fueled by Big Data, cloud computing and the Internet of Things, we are potentially creating a cybercriminal's paradise where there are more opportunities than ever for that data to end up in the wrong hands. The biggest challenge in this interconnected world is merging data security with data value and productivity. If we are to realize the benefits promised by these new ways of doing business, we urgently need a data-centric strategy to protect the sensitive data flowing through these digital business systems. In this webinar, Ulf Mattsson explores these issues and provides solutions to bring together data insight and security to safely unlock the power of digital business.

Data centric security key to digital business success - ulf mattsson - bright...

Ulf Mattsson

Who is the next target and how is big data related ulf mattsson

Ulf Mattsson

Keep your data safe and be compliant via a 360° approach

Nagib Aouini

Data Privacy & Security

Eryk Budi Pratama

cybersecurity - You Are Being Targeted Business executive with high-level management and hands-on analytical skill sets and over 27 years of professional experience in technical solutions and service offering development and implementation, organizational strategies for efficiency, cost controls, and bottom-line profitability, multi-million dollar enterprise-wide client engagements, compliance with schedule, budget, and quality requirements, hiring and leadership of high-performance IT employees. Keyven Lewis, CMIT SOLUTIONS- Cybersecurity - You Are Being Targeted. An overview to help SMB owners understand the dynamics (exp. the who, the why, and the how) of cybersecurity as it relates to their business.

Cybersecurity - you are being targeted -Keyven Lewis, CMIT SOLUTIONS

Randall Chase

Singapore Cybersecurity Strategy and Legislation (for SMU Law School 2019)

Benjamin Ang

The landscape of threats to sensitive data is changing. New technologies bring with them new vulnerabilities, and organizations like Target are failing to adapt to the shifts around them. What’s needed is an approach equal to the persistent, advanced attacks companies face every day. The sooner we start adopting the same proactive thinking hackers are using to get at our data, the better we will be able to protect it. In this webinar, Protegrity CTO and data security thought leader Ulf Mattsson integrates new information from the Verizon 2014 Data Breach Investigation Report (DBIR) into his analysis on what is driving data breaches today, and how we can prevent them in the future. KEY TOPICS INCLUDE: • The changing threat landscape • The effects of new technologies on breaches • Analysis of recent breaches, including Target • Compliance vs. security • The importance of shifting from reactive to proactive thinking • Preparing for future attacks with new technology & techniques

Verizon 2014 data breach investigation report and the target breach

Ulf Mattsson

https://ssimeetup.org/ssi-trillion-dollar-business-opportunity-webinar-34/ This webinar, based on a panel of the same name held at Seattle Devcon in July 2019, will feature four experts from different areas of the digital identity industry explaining why they believe Self-Sovereign Identity (SSI) is one of the most significant applications of blockchain technology to enable all kind of new business model for the digital economy. Panelists will include Chris Spanton, Principal Architect—Blockchain at T-Mobile; Vaughan Emery, CEO of Datafi Labs; and Drummond Reed, Chief Trust Officer at Evernym and a Trustee of the Sovrin Foundation.

SSI: The Trillion Dollar Business Opportunity

SSIMeetup

Outlook Briefing 2016: Cyber Security

Mastel Indonesia

Cyber - it's all now a matter of time!

Gloucestershire Professionals

Data Analytics for Security Intelligence

Data Driven Innovation

${d1a164b5-f3a5-4840-96b1-16dd83ccdda9}_Wells_Fargo_GIB_Cyber_security_100615_...$ ${d1a164b5-f3a5-4840-96b1-16dd83ccdda9}_Wells_Fargo_GIB_Cyber_security_100615_...$

{d1a164b5-f3a5-4840-96b1-16dd83ccdda9}_Wells_Fargo_GIB_Cyber_security_100615_...

Taiye Lambo

Cyber Security Threats | IIA Boise Chapter

Patricia M Watson

Similar to Data breaches the way forward (20)

November 2017: Part 6

1212018 SafeAssign Originality Reporthttpswilmu.black.docx

2017 Security Report Presentation

A Comprehensive Review of Cyber Security, Threats and Cyber Attacks

Third party risk management with cyber threat intelligence

Information Security vs. Data Governance vs. Data Protection: What Is the Rea...

Key note in nyc the next breach target and how oracle can help - nyoug

Data centric security key to digital business success - ulf mattsson - bright...

Who is the next target and how is big data related ulf mattsson

Keep your data safe and be compliant via a 360° approach

Data Privacy & Security

Cybersecurity - you are being targeted -Keyven Lewis, CMIT SOLUTIONS

Singapore Cybersecurity Strategy and Legislation (for SMU Law School 2019)

Verizon 2014 data breach investigation report and the target breach

SSI: The Trillion Dollar Business Opportunity

Outlook Briefing 2016: Cyber Security

Cyber - it's all now a matter of time!

Data Analytics for Security Intelligence

${d1a164b5-f3a5-4840-96b1-16dd83ccdda9}_Wells_Fargo_GIB_Cyber_security_100615_...$ ${d1a164b5-f3a5-4840-96b1-16dd83ccdda9}_Wells_Fargo_GIB_Cyber_security_100615_...$

{d1a164b5-f3a5-4840-96b1-16dd83ccdda9}_Wells_Fargo_GIB_Cyber_security_100615_...

Cyber Security Threats | IIA Boise Chapter

Recently uploaded

AI mind or machine power point presentation

yogeshlabana357357

This our Twelfth semiannual report on the global Cryptocurrency mining industry. Bitcoin is the world’s largest special purpose supercomputer. And it is globally decentralized. Millions of nodes all run the same open-source code to secure the Bitcoin network, create value, and put new transactions onto the distributed ledger. The latest Top500 list has just been announced at the ISC 2024 conference in Hamburg, and once again the Frontier supercomputer with 1.2 Exaflops peak performance is number one on the list. If assigned to SHA-256 hashing, Frontier would provide only the equivalent hash rate of about three cabinets of the latest high-end Bitcoin mining systems, costing less than 0.1% of Frontier’s cost. Michael Saylor, Chairman of MicroStrategy, has pointed out that GPUs are two orders of magnitude slower than the 5-nanometer technology of custom ASICs used for Bitcoin mining today. He makes the point that the Bitcoin network is unassailable by all of the hyperscale computing resources combined in AWS, Google, and Microsoft Azure cloud data centers today.

TopCryptoSupers 12thReport OrionX May2024

Stephen Perrenod

Frisco Automating Purchase Orders with MuleSoft IDP- May 10th, 2024.pptx.pdf

AnubhavMangla3

Explore the latest trends and insights on JavaScript usage with Pixlogix's informative blog. Discover key statistics and facts about JavaScript's role in web development, its popularity among developers, and its impact on modern websites. Stay updated with the evolving landscape of JavaScript frameworks and libraries, and learn how they're shaping the future of web development. Gain valuable insights to enhance your JavaScript skills and stay ahead in the digital realm.

JavaScript Usage Statistics 2024 - The Ultimate Guide

Pixlogix Infotech

Intro to Passkeys and the State of Passwordless.pptx

FIDO Alliance

ADP Passwordless Journey Case Study.pptx

FIDO Alliance

Ruby has a lot of standard libraries from Ruby 1.8. I promote them democratically with GitHub today via default and bundled gems. So, I'm working to extract them for Ruby 3.4 continuously and future versions. It's long journey for me. After that, some versions may suddenly happen LoadError at require when running bundle exec or bin/rails, for example matrix or net-smtp. We need to learn what's difference default/bundled gems with standard libraries. In this presentation, I will introduce what's the difficult to extract bundled gems from default gems and the details of the functionality that Ruby's require and bundle exec with default/bundled gems. You can learn how handle your issue about standard libraries.

Long journey of Ruby Standard library at RubyKaigi 2024

Hiroshi SHIBATA

Introduction To Iamnobody89757 the vast expanse of the online realm, where anonymity and individuality intertwine, a phenomenon has emerged that captivates the collective curiosity – Iamnobody89757. This enigmatic entity, once a mere username, has transcended its humble origins to become a symbol of the intricate dance between privacy and expression in the digital age. Through this exploration, we delve into the origins, evolution, and far-reaching implications of this intriguing moniker, shedding light on the profound questions it raises about our digital selves. The Origins of iamnobody89757 The origins of iamnobody89757 are shrouded in the virtual mists of the wide internet. The term gained popularity on a niche discussion group that examined the most puzzling puzzles on the internet. In this instance, iamnobody89757 surfaced as a mysterious character who captivated other users with a conversation that was both mysterious and perceptive. These initial interactions were nuanced, filled with veiled references and subtle hints that painted a picture of someone—or something—with an intricate understanding of the digital domain’s darker corners. Although initially dismissed by many as just another anonymous user, the accuracy of certain predictions shared by iamnobody89757 soon captured the collective imagination. The iamnobody89757 enigma began with this shift from an unnoticed commenter to a fascinating subject, laying the groundwork for a growing tale that would weave its way through the fabric of online communities. The Birth of a Digital Persona Tracing the Roots The inception of Iamnobody89757 can be traced back to the early days of online forums and chat rooms, where users sought a delicate balance between anonymity and connectivity. In a world where personal information was a coveted commodity, this seemingly random assemblage of words and numbers became a shield, protecting the user’s identity while allowing them to engage in discourse without fear of judgment or repercussions.

“Iamnobody89757” Understanding the Mysterious of Digital Identity.pdf

Muhammad Subhan

(Explainable) Data-Centric AI: what are you explaininhg, and to whom?

Paolo Missier

How to Check CNIC Information Online with Pakdata cf

danishmna97

Harnessing Passkeys in the Battle Against AI-Powered Cyber Threats.pptx

FIDO Alliance

Overview of Hyperledger Foundation

Hyperleger Tokyo Meetup

Design and Development of a Provenance Capture Platform for Data Science

Paolo Missier

In the ever-evolving landscape of data management, Zero-ETL is an approach that is reshaping how businesses handle and integrate their data. This webinar explores Zero-ETL, a paradigm shift from the traditional Extract, Transform, Load (ETL) process, offering a more streamlined, efficient, and real-time data integration method. We will begin with an introduction to the concept of Zero-ETL, including how it allows direct access to data in its native environment and real-time data transformation, providing up-to-date information with significantly reduced data redundancy. Next, we'll take you through several demonstrations showing how Zero-ETL can deliver real-time data and enable the free movement of data between systems. We will also discuss the various tools that support all aspects of Zero-ETL, providing attendees with an understanding of how they can adopt this innovative approach in their organizations. Lastly, the session will conclude with an interactive Q&A segment, allowing participants to gain deeper insights into how Zero-ETL can be tailored to their specific business needs and how they can get started today. Join us to discover how Zero-ETL can elevate your organization's data strategy.

The Zero-ETL Approach: Enhancing Data Agility and Insight

Safe Software

Using IESVE for Room Loads Analysis - UK & Ireland

IES VE

Webinar Recording: https://www.panagenda.com/webinars/alles-neu-macht-der-mai-wir-durchleuchten-den-verbesserten-notes-eigenschaftendialog/ Haben Sie sich schon einmal über den zu kleinen Eigenschaftendialog in Notes geärgert? Mussten Sie einen Agenten oder eine Aktion erstellen, um schnell mal ein Feld zu ändern? Haben Sie jedes mal endlos nach dem zu vergleichenden Feld gesucht, nachdem Sie ein neues Dokument ausgewählt haben? Wollten Sie das verdammte Ding einfach nur größer machen? Zum Glück gibt es dafür eine Lösung – und sie ist wahrscheinlich bereits installiert! Mit dem kostenlosen panagenda Document Properties (Pro) erhalten Sie den Eigenschaftendialog, den Sie schon immer haben wollten. Größer, anpassbar, und im Volltext durchsuchbar. Sehen Sie mehrere Dokumente gleichzeitig oder vergleichen Sie mit einem Diff-Viewer. Ändern Sie beliebige Felder und haben Sie endlich eine einfache Möglichkeit, Profildokumente für alle Benutzer zu verwalten. Entdecken Sie mit HCL Ambassador Marc Thomas, wie Document Properties Ihre Arbeit vereinfachen und Sie bei der täglichen Verwendung von Domino-Anwendungen unterstützen kann – im Client oder im Designer. Sie werden es nicht bereuen! Für Sie in diesem Webinar - Was Document Properties ist, welche Editionen es gibt und wo es in Notes und Domino Designer zu finden ist - Wie Sie nach einem beliebigen Feld suchen und es bearbeiten, Dokumente vergleichen oder alle Daten per CSV exportieren können - Suchen, Bearbeiten und auch Löschen von Profildokumenten - Welche Konfigurationseinstellungen verfügbar sind, um Funktionen anzupassen - Wie Ihre Endbenutzer davon profitieren - Sehen Sie alles in einer Live-Demo

Easier, Faster, and More Powerful – Alles Neu macht der Mai -Wir durchleuchte...

panagenda

In today’s fast-paced digital world, harnessing the power of artificial intelligence (AI) can significantly enhance productivity and creativity across various domains. With the advent of advanced language models like ChatGPT, developers, marketers, data analysts, and professionals in numerous other fields can now leverage AI-generated prompts to spark innovative ideas and streamline their workflows.

1111 ChatGPT Prompts PDF Free Download - Prompts for ChatGPT

iSEO AI

Hyatt driving innovation and exceptional customer experiences with FIDO passw...

FIDO Alliance

Portal Kombat : extension du réseau de propagande russe

中央社

In the dynamic field of DevOps, the quest for efficiency and productivity is endless. This talk introduces a revolutionary toolkit: Large Language Models (LLMs), including ChatGPT, Gemini, and Claude, extending far beyond traditional coding assistance. We'll explore how LLMs can automate not just code generation, but also transform day-to-day operations such as crafting compelling cover letters for TPS reports, streamlining client communications, and architecting innovative DevOps solutions. Attendees will learn effective prompting strategies and examine real-life use cases, demonstrating LLMs' potential to redefine productivity in the DevOps landscape. Join us to discover how to harness the power of LLMs for a comprehensive productivity boost across your DevOps activities.

ChatGPT and Beyond - Elevating DevOps Productivity

VictorSzoltysek

Recently uploaded (20)

AI mind or machine power point presentation

TopCryptoSupers 12thReport OrionX May2024

Frisco Automating Purchase Orders with MuleSoft IDP- May 10th, 2024.pptx.pdf

JavaScript Usage Statistics 2024 - The Ultimate Guide

Intro to Passkeys and the State of Passwordless.pptx

ADP Passwordless Journey Case Study.pptx

Long journey of Ruby Standard library at RubyKaigi 2024

“Iamnobody89757” Understanding the Mysterious of Digital Identity.pdf

(Explainable) Data-Centric AI: what are you explaininhg, and to whom?

How to Check CNIC Information Online with Pakdata cf

Harnessing Passkeys in the Battle Against AI-Powered Cyber Threats.pptx

Overview of Hyperledger Foundation

Design and Development of a Provenance Capture Platform for Data Science

The Zero-ETL Approach: Enhancing Data Agility and Insight

Using IESVE for Room Loads Analysis - UK & Ireland

Easier, Faster, and More Powerful – Alles Neu macht der Mai -Wir durchleuchte...

1111 ChatGPT Prompts PDF Free Download - Prompts for ChatGPT

Hyatt driving innovation and exceptional customer experiences with FIDO passw...

Portal Kombat : extension du réseau de propagande russe

ChatGPT and Beyond - Elevating DevOps Productivity

Data breaches the way forward

1. Data Breaches – The wayforward By: Srinivas Thimmaiah Date: 20 July 2018 Srinivas Thimmaiah | DB - TWF | 20 July 2017 1

2. Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 2 Source: https://youtu.be/O4TFXDniG9w

3. Definition Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 3 Source: https://iapp.org/news/a/is-it-an-incident-or-a-breach-how-to-tell-and-why-it-matters/ National Institute of Standards and Technology defines an event as “any observable occurrencein a system or network,” such as a server receivinga request for a web page, a user sending an e-mail message, or a firewall blocking an attempt to establish a connection A securityor electronic incident is anevent that violates anorganization’s securitypolicies and procedures. Incidentas a “security event that compromises the confidentiality, integrity or availability of aninformation asset A data breach is defined as an event in which an individual’s name and a medical record and/or a financial record or debit card are potentially put at risk either inelectronic or paper format.

4. Topbreaches Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 4 Source: https://www.csoonline.com/article/2130877/data-breach/the-biggest-data-breaches-of-the-21st-century.html Employeecredentialtheft byphishingormalware VulnerabilityinApachestruts Gainedaccessthrough athird-partyHVAC vendorto its point-of-sale(POS)payment cardreaders Phishing email Phishingattack Uniquecustom builtmalwareposingasantivirussoftware 2017 2016 2015 2014 2013 2012 2011

5. Data breachesroot causes Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 5 Source: https://public.dhe.ibm.com/common/ssi/ecm/se/en/sel03130wwen/security-ibm-security-services-se-research-report-sel03130wwen-20180122.pdf

6. Breaches sector wise - 2017 Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 6 Source: Verizon 2018 data breach report

7. Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 7 According to a study by KPMG, 19%consumers would completely stop shopping at a retailer after a breach Breaches sector wise - 2017 Source: Verizon 2018 data breach report

8. Equifax- Casestudy Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 8 Source: https://www.pbs.org/newshour/nation/equifax-hack-happened-according-ceo

9. Equifax- Timeliness Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 9 Source: https://csrps.com/meticulous-timeline-equifax-data-breach

10. Identifying breaches Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 10 Days to identify and contain the data breach over the past year Source: https://public.dhe.ibm.com/common/ssi/ecm/se/en/sel03130wwen/security-ibm-security-services-se-research-report-sel03130wwen-20180122.pdf Note: MTTI – Mean time to identify; MTTC – Mean time to contain

11. Identifying breaches Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 11 Source: https://public.dhe.ibm.com/common/ssi/ecm/se/en/sel03130wwen/security-ibm-security-services-se-research-report-sel03130wwen-20180122.pdf Days to identify and contain the data breach incidents by root cause Note: MTTI – Mean time to identify; MTTC – Mean time to contain

12. Breach notificationsrequirements Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 12 Source: https://csrps.com/meticulous-timeline-equifax-data-breach To be GDPR HIPAA 60 days 72 hrs Article 33 EU GDPR Breach Notification 45 CFR 164.400-414

13. Proactivesteps before databreach Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 13 Source: https://csrps.com/meticulous-timeline-equifax-data-breach Information Classification Zero trust network Deleteold, irrelevantdata Limittheplaces youstoredata Outdatedsoftware andtechnology Response planReducebring-your- own-device (BYOD)liability Configuration management Robost security awareness training

14. Notto Do Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 14 Source: https://csrps.com/meticulous-timeline-equifax-data-breach Not conducting forensic investigation Makingfalse or misleading statements Response onthe fly Going silent Closing theincidents in an hurry

15. Do butNot Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 15 Source: https://www.cio.com.au/article/580908/5-steps-respond-security-breach/ Activatetaskforce Containment Assess the severity of breach Notification Lessons learned Customer, legal/regulators Who and whathasbeen affected Isolatefromnetwork,password reset EnablingIncidentresponse plan Updatingincident responseplan

16. Flipsideof breaches Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 16 Source: https://csrps.com/meticulous-timeline-equifax-data-breach It was extremelyproactive in its response, alerting customers evenbeforethey had a chanceto fully confirm the breach. Transparency Abiding legal/regulatory obligations Regularcommunication Workas one team TRUST

17. Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 17 Let’s communicate  Source: https://www.headsup.org.au/training-and-resources/news/2015/04/24/seven-essentials-to-communicate-your-commitment-to-improving-workplace-mental-health

18. Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 18 Backupslides

19. Hackers focuson Srinivas Thimmaiah | DB - TWF | 20 July 2017 Page 19 Source: https://en.wikipedia.orr • Credit card details • Bank accountnumbers and PINs • Passport numbers • Drivers licenses • Usernames and passwords • Birthdays and anniversaries • Not prepared • Don’t understand legal obligations • Financial liability • They arethe nexus for largercompany breaches

Data breaches the way forward

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Similar to Data breaches the way forward

Similar to Data breaches the way forward (20)

Recently uploaded

Recently uploaded (20)

Data breaches the way forward