mo cashman director global defense solutions mcafee what
play

Mo Cashman Director, Global Defense Solutions McAfee What builds - PowerPoint PPT Presentation

Mo Cashman Director, Global Defense Solutions McAfee What builds Trust? RESILIENCE TRANSPARENCY GOVERNANCE WHY RESILIENCE ? Structured Adversaries HACKTAVIST ORG CRIME NATION-STATE What is Resilience? RESIST FAILURE RAPID RESPONSE


  1. Mo Cashman Director, Global Defense Solutions McAfee

  2. What builds Trust? RESILIENCE TRANSPARENCY GOVERNANCE

  3. WHY RESILIENCE ?

  4. Structured Adversaries HACKTAVIST ORG CRIME NATION-STATE

  5. What is Resilience? RESIST FAILURE RAPID RESPONSE SURVIVABILITY

  6. Who’s Talking Resilience?

  7. Stakeholders Government Industry Service Providers CERTs Standards Orgs

  8. Smart Grid Challenges Scale Life Cycle Culture Data Privacy Standards

  9. Current Grid Environment

  10. Resilience (Cyber) Framework INTEGRATED DECISION SUPPORT SYSTEMS CYBER OPERATIONS INTELLIGENCE MONITORING, ANALYTICS and CONTROL VISIBILITY INTELLIGENCE- CYBER MULTI-ZONE DRIVEN READINESS DEFENSES RESPONSE DEVELOP , ENFORCE CONTROLS STANDARDS GENERATE AWARENESS DESIGN GOVERNMENT STRATEGY

  11. Protected Environments OPERATIONS ENTERPRISE SUPPLY CHAIN ENVIRONMENT ENVIRONMENT ENVIRONMENT

  12. How important is Response? 6-9 months is average time an adversary maintains a presence on the network before they are detected

  13. What’s important in a Crisis?

  14. Response OODA Loop OBSERVE Detect that an incident occurred ORIENT Rapid Analysis and Comprehension DECIDE Validate with Intelligence & Context ACT Find, Contain, Fix and Prevent

  15. Speed = Survivability How fast can we FIND , CONTAIN and FIX a security breach to contain damage? How fast can we ACQUIRE and INTEGRATE new capability to maintain safety?

  16. Intelligence is Critical • Integrated intelligence and analytics allowed JSOC to increase hunt missions from a few a week to multiple per night

  17. Roles of Intelligence Prevent Something Bad from Happening 1 Proactive Defense Find Something Bad Inside the Network 2 Incident Response Find The Bad Guy 3 Root Cause Investigation

  18. Agile Intelligence Sharing “Speed of Paper” “Speed of the Network”

  19. Barriers to Intelligence Sharing Politics Standards Governance Classifications

  20. Summary of Key Points Stakeholders Trust Standards Resilience

Recommend


More recommend