advertisement

Security Awareness: 360 empowerment for cyber defense

33 %
67 %
advertisement
Information about Security Awareness: 360 empowerment for cyber defense
Education

Published on March 6, 2014

Author: evanderburg

Source: slideshare.net

advertisement

Security Awareness: 360 degree empowerment for cyber defense February 27, 2014 Dr. Eric Vanderburg Director, Cybersecurity and Information Systems eav@jurinnov.com @evanderburg 216-664-1100 © 2014 JurInnov, Ltd. All Rights Reserved

JurInnov: We know data. We… Protect it from harm Document it for evidence Cyber Security Forensics Obtain for discovery Organize it for litigation eDiscovery © 2014 JurInnov, Ltd. All Rights Reserved Lit Support 1

Cybersecurity Maturity: Where are You? Elements of Effective Cybersecurity Culture of Security Legal Requirements Training and Education Policy, Procedure and Controls Monitor and Auditing Response and Documentation Information Management Accountability Leading Optimizing Practicing Developing Ad Hoc • Defined controls • Documented standards • Consistent performance • Likely repeatable • Some consistency • Lacks rigorous process discipline • Informal • Reactive • Inconsistent performance © 2014 JurInnov, Ltd. All Rights Reserved • Effective controls • Uses process metrics • Targeted improvement 2 • Integrated strategies • Innovative changes • Seamless controls

How Security is comprised 90% People Process Technology 10% © 2014 JurInnov, Ltd. All Rights Reserved 3

Computer Use • • • • Secure browsing Popups and warnings Certificate errors Suspicious links © 2014 JurInnov, Ltd. All Rights Reserved 4

It’s ok to discriminate against data • You can’t treat it all the same – PHI – Personal information – Financial information – Trade secrets – Public information • Where is all the data? – Head, paper, computer, server, backup, email • What if we got rid of it? © 2014 JurInnov, Ltd. All Rights Reserved 5

Malware • Viruses – Detection – Defense © 2014 JurInnov, Ltd. All Rights Reserved 6

Phishing • • • • • Email Text Chat Craigslist Dating sites © 2014 JurInnov, Ltd. All Rights Reserved 7

Passwords • Passwords are like underwear – Change them often – Showing them to others can get you in trouble – Don’t leave them lying around • • • • Use different passwords for different purposes Complexity Passphrase http://www.passwordmeter.com/ © 2014 JurInnov, Ltd. All Rights Reserved 8

Things your mother probably told you • Don’t accept candy from strangers – Infected devices • It’s ok to ask questions – Challenge • Don’t leave your things lying around – Clean desk and locked screen • Be careful who your friends are – Social networking © 2014 JurInnov, Ltd. All Rights Reserved 9

Business Integration InfoSec Strategy Business Strategy • Priorities • Roles and responsibilities • Targeted capabilities • Specific goals (timeframe) © 2014 JurInnov, Ltd. All Rights Reserved • • • • • • • • • 10 Core values Purpose Capabilities Client promise Business targets Specific goals Initiatives Action items Assignments and accountabilities

Q&A Don’t be shy… © 2014 JurInnov, Ltd. All Rights Reserved 11

Add a comment

Related presentations

Related pages

Cybersecurity Situation Awareness | The MITRE Corporation

... or "command and control," to maintain continuity and ensure security. Creating Cyber ... To achieve cyber situation awareness ... Cyber Defense;
Read more

Special Report: Cyber Strategy - United States Department ...

DARPA Director Discusses Cyber Security ... Defense Cyber Strategy (July 14, 2011) Deputy Defense ... Awareness Month, 2014; National Cyber Security ...
Read more

Awareness/Training/Events | New York State Office of ...

Awareness/Training/Events. ... Cyber Security Awareness Toolkits. ... Cyberterrorism Defense Initiative (Formerly Sentinel) ...
Read more

Glossary of Security Terms - A - SANS Information Security ...

Glossary of Security Terms ... or empowerment for someone or something to do something. ... Security Awareness Training; Cyber Defense;
Read more

Cyber Security Awareness training - Curricular Affairs ...

Cyber Security Awareness Training Cyber ... What is Cyber Security Awareness? "Cyber Security Awareness" is the ... Take an active role in virus defense:
Read more

Information Security Awareness | Cybersecurity Awareness ...

Information and cyber security awareness training and ... The information here is similar to the lessons learned in Securing Your Kids, ... Cyber Defense;
Read more

Cybersecurity - Center for Development of Security Excellence

Cybersecurity Awareness CI130.16 ... Cyber Insider Threat [GO »] Cybersecurity ... CDSE courses are intended for use by Department of Defense and other U ...
Read more

Cybersecurity | Homeland Security

... economic vitality, and national security ... from cyber threats. Cyber ... Homeland Security Subcommittee on Cybersecurity and House ...
Read more

DoD Center for Development of Security Excellence

DoD Center for Development of Security Excellence • Defense Security ... Cybersecurity Awareness ... It provides a working knowledge of cyber ...
Read more