Larry Clinton Operations Officer Internet Security Alliance lclinton@isalliance.org 703-907-7028 202-236-0001
The Internet Security Alliance The Internet Security Alliance is a collaborative effort between Carnegie Mellon University’s Software Engineering Institute (SEI) and its CERT Coordination Center (CERT/CC) and the Electronic Industries Alliance (EIA ), a federation of trade associations with over 2,500 members.
Sponsors
The Past
The Present Source: http://cm.bell-labs.com/who/ches/map/gallery/index.html
Growth in Incidents Reported to the CERT/CC 120000 110,000 100000 80000 55,100 60000 40000 21,756 20000 9,859 2,340 2,412 2,573 132 2,134 3,734 252 6 1,334 406 773 0 1992 1993 1994 1995 1996 1997 1988 1989 1990 1991 1998 1999 2000 2001 2002
1. Invest in Cyber Security 2.Consider Risk Mitigation 3.Become Involved in the Policy Debate 4. Implement Best practices 5.Join an Information Sharing Organization
Step 4. Adopt and Implement ISAlliance Best Practices • Cited in US National Draft Strategy to Protect Cyber Space (September 2002) • Endorsed by TechNet for CEO Security Initiative (April 2003) • Endorsed US India Business Council (April 2003)
Common Sense Guide Top Ten Practice Topics • Practice #1: General Management • Practice #2: Policy • Practice #3: Risk Management • Practice #4: Security Architecture & Design • Practice #5: User Issues • Practice #6: System & Network Management • Practice #7: Authentication & Authorization • Practice #8: Monitor & Audit • Practice #9: Physical Security • Practice #10: Continuity Planning & Disaster Recovery
ISAlliance/CERT Training • Concepts and Trends In Information Security • Information Security for Technical Staff • OCTAVE Method Training Workshop • Overview of Managing Computer Security Incident Response Teams • Fundamentals of Incident Handling • Advanced Incident Handling for Technical Staff • Information Survivability an Executive Perspective
CERT Knowledgebase Examples
Larry Clinton Operations Officer Internet Security Alliance lclinton@isalliance.org 703-907-7028 202-236-0001
Recommend
More recommend