Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Building securable infrastructures

305 views

Published on

This was a presentation I did in 2014 about some of the systematic causes of poor IT security

Published in: Technology
  • Be the first to comment

  • Be the first to like this

Building securable infrastructures

  1. 1. 1. (YOUR MAIN PAY CHECK COMES FROM SECURITY WORK?) 2. 3. 4.
  2. 2. • • • • • •
  3. 3. 24TH MAY 2013
  4. 4. HTTP://WWW.TED.COM/TALKS/BRUCE_SCHNEIER.HTML HTTP://WWW.YOUTUBE.COM/WATCH?V=NMV6MEXCKQO
  5. 5. 60 BILLION DOLLARS
  6. 6. Cool Jobs Lame Jobs PEN TESTER PATCH MGMT RUN IDS/IPS, or HONEY POTS LOG REVIEW INCIDENT RESPONSE BACKUPS QSA (kinda cool???) AUDITOR
  7. 7. HTTP://WWW.THEREGISTER.CO.UK/2011/09/28/WINDOW_MALWARE_INFECTION_EXPOSED/
  8. 8. HTTP://SEARCHSECURITY.TECHTARGET.COM/DEFINITION/ATTACK-VECTOR
  9. 9. DATA
  10. 10. True story
  11. 11. <3
  12. 12. Classification Description Sensitive Data that is to have the most limited access and requires a high degree of integrity. Most damage to the organization should it be disclosed Confidential Might cause damage if disclosed Private Might not do the company damage but must be keep private for other reasons Proprietary Disclosed outside the company on a limited basis Public Public data least sensitive
  13. 13. • • • •
  14. 14. HTTP://CISCOBASICS.BLOGSPOT.COM/2010/04/TIME-BASED-ACCESS-CONTROL-LISTS.HTML HTTP://TECHNET.MICROSOFT.COM/EN-US/LIBRARY/CC781861(V=WS.10).ASPX
  15. 15. CHEAP FREE HTTP://WWW.TECHOTOPIA.COM/INDEX.PHP/AUDITING_WINDOWS_SERVER_2008_FILE_AND_FOLDER_ACCESS HTTP://WWW.WINDOWSECURITY.COM/ARTICLES-TUTORIALS/AUTHENTICATION_AND_ENCRYPTION/ATTACHING-TASKS-EVENT- VIEWER-LOGS-EVENTS.HTML
  16. 16. • HTTP://OVERWORKEDADMIN.COM/ • HTTP://WINSRVTUTS.COM/2011/10/99-PERCENT-MORE-SECURE/ • HTTP://WINSRVTUTS.COM/2011/12/CONFIGURE-WINDOWS-FOR-SYSLOG-USING-SNARE/ • HTTP://WINSRVTUTS.COM/2012/08/CONFIGURE-FAILED-LOGIN-WARNINGS-WITH-WINDOWS-POWERSHELL/
  17. 17. • •
  18. 18. STEVEN@OVERWORKEDADMIN.COM

×