using a risk based approach to align security
play

USING A RISK-BASED APPROACH TO ALIGN SECURITY ARCHITECTURE WITH THE - PowerPoint PPT Presentation

May 20, 2023 •162 likes •531 views

USING A RISK-BASED APPROACH TO ALIGN SECURITY ARCHITECTURE WITH THE BUSINESS FOR DLP DEPLOYMENT Jeff Bardin VP , CS O ITS olut ions j eff.bardin@ it solut ions-llc.com Insert presenter logo here on slide master AGENDA What is

  1. USING A RISK-BASED APPROACH TO ALIGN SECURITY ARCHITECTURE WITH THE BUSINESS FOR DLP DEPLOYMENT Jeff Bardin – VP , CS O ITS olut ions j eff.bardin@ it solut ions-llc.com Insert presenter logo here on slide master

  2. AGENDA What is Security Architecture Model for Security Architecture Development Role & Benefits of Enterprise Security Architecture Defense in Depth – A Military Comparison Sand Table Exercise What to Do Next Insert presenter logo here on slide master 2

  3. What is S ecurity Architecture Insert presenter logo here on slide master 3

  4. WHAT IS SECURITY ARCHITECTURE? WHO IS A SECURITY ARCHITECT? • The art and science of • A person qualified to design and designing and supervise the construction of supervising the secure business systems, construction of business usually secure business systems, usually information systems (using a business information risk-based approach). systems that are: – Free from danger and damage; – Free from fear and care; – In safe custody; – Not likely to fail; – Able to be replied upon; – Safe from attack. Insert presenter logo here on slide master 4

  5. THAT NEED TO BE ASKED • What type of information system is it I KEEP six honest serving-men and for what will it be used? (They taught me all I knew); Their names are What and Why and When And How and Where and Who. • Why will it be used? I send them over land and sea, I send them east and west; • How will it be used? But after they have worked for me, I give them all a rest. • Who will use it? I let them rest from nine till five, • Where will it be used? For I am busy then, As well as breakfast, lunch, and tea, For they are hungry men. • When will it be used But different folk have different views; I know a person small- She keeps ten million serving-men, Who get no rest at all! She sends 'em abroad on her own affairs, From the second she opens her eyes- One million Hows, two million Wheres, And seven million Whys! Kipling Insert presenter logo here on slide master 5

  6. RULES TO LIVE BY 1. 2. 3. 4. 5. 6. 7. 8. 9. 10. Insert presenter logo here on slide master 6

  7. CONFLICTING OBJECTIVES Security Cost Usability Control What does the business want compared regulatory and organizational requirements? Insert presenter logo here on slide master 7

  8. Model for Security Architecture Development (Aligning with the Business) Insert presenter logo here on slide master 8

  9. WHAT, WHY AND WHEN, HOW, WHERE AND WHO? Assets Motivation Process People Location Time (What) (Why) (How) (Who) (Where) (When) Contextual The Business Business Risk Business Business Business Business Time Model Process Model Organization and Geography Dependencies Relationships Conceptual Business Control Security Security Entity Security Security Attributes Objectives Strategies and Model and Trust Domain Model Related Profile Architectural Framework Lifetimes and Layering Deadlines Logical Business Security Security Entity Schema and Security Security Information Policies Services Privilege Profiles Domain Processing Model Definitions and Cycle Associations Business Security Rules, Security Users, Platform and Control Physical Data Model Practices and Mechanisms Applications and Network Structure Procedures the User Interface Infrastructure Execution Component Detailed Security Security Identities, Processes, Security Step Data Standards Products and Functions, Actions Nodes, Timing and Structures Tools and ACLs Addresses and Sequencing Protocols Assurance of Operational Security Service Application and Security of Security Operational Operational Risk Management User Sites, Operations Continuity Management and Support Management and Networks and Schedule Support Platforms Insert presenter logo here on slide master 9

  10. SECURITY SERVICE MANAGEMENT – OPERATIONAL SECURITY ARCHITECTURE SECURITY SERVICE MANAGEMENT Assets Motivation Process (How) People Location Time (When) (What) (Why) (Who) (Where) Business Business Risk Business-driven Business Security BusinessField Business Calendar Contextual Requirements Assessment – Information Security Organization Operations and Timetable Collection – Corporate Policy ManagementProgram Management Program Management Information Making Classification Business Security Audit, Change/Release Security Training, Security Domain Security Conceptual Continuity Corporate Control, Incident Awareness, Management Operations Management Compliance, Management , Disaster Cultural Schedule Metrics, Measures Recovery Development Management & Benchmarks, SLAs Logical Information Detailed Security Intrusion Access Control Application Applications Security , Policy Making, Detection/Prevention, Security Deadlineand System Integrity Compliance, Event Monitoring, Privilege and Administration Cutoff Monitoring, Security Process Profile and Management Management Intelligence Development, Security Administration Gathering Service Management, System Dev Controls, Config Management Database Vulnerability Rule Definition, Key User Support, Network Security User Account Physical Security Assessment, Management, ACL Security HelpDesk Management,Site Aging, Password Software Penetration Maintenance, Backup Security Aging, CryptoKey Integrity Testing, Threat Admin, Computer Management Aging, Admin of Assessment Forensics, Event Log Access Control Admin,Anti-Virus Time Windows Admin Product and Threat Research, Product Procurement, PersonnelVetting, Platform, Time-out Component Tool Security Vulnerability Project Management, Supplier Vetting, Workstation and Configuration, and Integrity Research, CERT Operations User Admin Equipment DetailedSecurity Insert presenter logo Notifications Management Security Operations here on slide master 10 10 Management Sequencing

  11. What is Data Loss Prevention Insert presenter logo here on slide master 11

  12. RAPID RISK – WORKING WITH THE BUSINESS Insert presenter logo here on slide master 12

  13. WHAT IS DATA LOSS PREVENTION? • Data Loss Prevention ( DLP ) refers to systems that – identify, – monitor, and – protect data • in use (e.g., endpoint actions), • data in motion (e.g., network actions), and • data at rest (e.g., data storage) through deep content inspection and with a centralized management framework. • The systems are designed to detect and prevent the unauthorized use and transmission of confidential information. Insert presenter logo here on slide master 13

  14. DLP CAN ANSWER 3 QUESTIONS 14 Insert presenter logo here on slide master

  15. DLP CAPABILITIES – FOR THE BUSINESS (NOT FOR INFOSEC) Discover Protect Find business specific Proactively control data data based upon their per business rules and business rules policy Create inventory of Prevent sensitive data sensitive data (or not) from loss Determine if data Enforce business data cleanup is wanted policies Monitor Understand how the business uses their data Understand the content in contextual form Gain visibility into policy violations Manage Define business data policies across the enterprise or as desired by the business Report on and remediate incidents and issues Insert presenter logo Detect business sensitive data accurately here on slide master 15

  16. DETECT, PREVENT, MEASURE, COMMUNICATE, ALIGN Find it and fix it Educate users with automated responses Empower users to self remediate Prevent copying to removable media Block or allow based upon sensitive business rules As defined by the business, for the business Insert presenter logo here on slide master 16

  17. WHO IS RESPONSIBLE? - RACI(S) Insert presenter logo here on slide master 17

  18. RESPONSIBLE, ACCOUNTABLE, CONSULTED, INFORMED, SUPPORTING Insert presenter logo here on slide master 18

  19. Role & Benefit of Enterprise Security Architecture (With the Business in Mind) Insert presenter logo here on slide master 19

  20. ROLE OF ENTERPRISE SECURITY ARCHITECTURE Architecture takes a wider more holistic approach to solving the business problem of security by ensuring that all of the components are specifically designed, procured, engineered, and managed to work together for the benefit of the business based upon risk. It considers: Do we have all of the components? Do these components work together? Do they form an integrated system? Does the system run smoothly? Are we assured that it is properly assembled? Is the system properly tuned? Do we operate the system correctly? Do we maintain the system? Insert presenter logo here on slide master 20

  21. ARCHITECTURAL CONSIDERATIONS FOR DLP • What is the scope of creating and successfully implementing a DLP program? • How will you determine the risk appetite of your organization? • What policies do you need to establish or modify before you move forward • Who will create the awareness and training plan? • What will you do about data classification? • Will you announce the DLP program to all employees? • What are the key roles and responsibilities that need to be defined? • How will you (or somebody) govern the process? Insert presenter logo here on slide master 21

Recommend

Protective Security Requirements A Risk Based Approach UNCLASSIFIED What is the PSR? .a

Protective Security Requirements A Risk Based Approach UNCLASSIFIED What is the PSR? .a

UNCLASSIFIED Protective Security Requirements A Risk Based Approach UNCLASSIFIED What is the PSR? .a new framework of New Zealand Protective Security Requirements which provides clear guidance and support for State sector departments

353 views • 17 slides
A Risk-based Security Program Approach: Security Enables Digital Transformation and Compliance

A Risk-based Security Program Approach: Security Enables Digital Transformation and Compliance

A Risk-based Security Program Approach: Security Enables Digital Transformation and Compliance Michael Gutsche, Cybersecurity Strategy Peter Bronson, Cybersecurity Strategy #MicroFocusCyberSummit This document contains forward looking

245 views • 21 slides
Risk-based Security BARRY KOUNS CEO AT RISK BASED SECURITY Session Overview Warm-up Quiz

Risk-based Security BARRY KOUNS CEO AT RISK BASED SECURITY Session Overview Warm-up Quiz

Risk Assessment the Heart of Risk-based Security BARRY KOUNS CEO AT RISK BASED SECURITY Session Overview Warm-up Quiz Introduction to our security challenge What is Risk-based Security? The language of risk some

787 views • 53 slides
The Risk-based approach for ATMP Introduction Risks & Risk factors Methodology

The Risk-based approach for ATMP Introduction Risks & Risk factors Methodology

www.pei.de The Risk-based approach for ATMP Introduction Risks & Risk factors Methodology Risk profiling Ficitious Examples for TEP, CT, GT Consequences for MAA dossier Egbert Flory Paul-Ehrlich-Institut, Germany 1.

279 views • 17 slides
Application of Flow Modelling to a Risk-based Approach to Well Decommissioning Caroline Johnson,

Application of Flow Modelling to a Risk-based Approach to Well Decommissioning Caroline Johnson,

Application of Flow Modelling to a Risk-based Approach to Well Decommissioning Caroline Johnson, Morteza Haghighat Sefat, David Davies Institute of Petroleum Engineering Risk-based approach to Well P&A Design UK well P&A expenditure

366 views • 7 slides
Integrated Approach of Risk-based Compliance-based Performance-based Audit and Surveillance

Integrated Approach of Risk-based Compliance-based Performance-based Audit and Surveillance

Civil Aviation Department The Government of the Hong Kong Special Administrative Region Integrated Approach of Risk-based Compliance-based Performance-based Audit and Surveillance Programme George WAI, Airworthiness Officer Flight Standards

394 views • 26 slides
Same Risk Area Concept An area based approach to exemptions Can ships operating solely in a

Same Risk Area Concept An area based approach to exemptions Can ships operating solely in a

Same Risk Area Concept An area based approach to exemptions Can ships operating solely in a specified area be exempted from the discharge criteria of the BWMC? Is the area based approach for risk assessment and exemption a feasible way

483 views • 17 slides
Re-Emphasizing Risk Management by George Huff November 9, 2011 2 Risk Management and Supply

Re-Emphasizing Risk Management by George Huff November 9, 2011 2 Risk Management and Supply

Re-Emphasizing Risk Management by George Huff November 9, 2011 2 Risk Management and Supply Chain Security ISO 28000s Risk-Based Approach to Management Systems ISO Format adopted from ISO 14001:2004 Environmental Performance, but

450 views • 13 slides
Reliability Engineering in Information Security: A Novel Approach to Risk Assessment Chris

Reliability Engineering in Information Security: A Novel Approach to Risk Assessment Chris

Reliability Engineering in Information Security: A Novel Approach to Risk Assessment Chris Woods, CISSP Mount Holyoke College Disclaimer This talk is: Speculative Additive Not intended to replace the advice of a competent

765 views • 42 slides
Information Security A Fresh Approach [Based on material from Kevin Day's book: Inside the

Information Security A Fresh Approach [Based on material from Kevin Day's book: Inside the

Information Security A Fresh Approach [Based on material from Kevin Day's book: Inside the Security Mind: Making the Tough Decisions , Prentice-Hall, 2003, ISBN: 0-13-111829-3] Why? Why concentrate on Information Security (or IT Security) when

152 views • 11 slides
A simulation-optimization approach for information security risk management Elmar Kiesling,

A simulation-optimization approach for information security risk management Elmar Kiesling,

A simulation-optimization approach for information security risk management Elmar Kiesling, Andreas Ekelhart, Bernhard Grill, Christine Strau, Christian Stummer International Conference on Operations Research September 4, 2013; Rotterdam

1.12k views • 81 slides
Morena Stanley Training Accreditation Council Secretariat Overview Risk based approach

Morena Stanley Training Accreditation Council Secretariat Overview Risk based approach

Morena Stanley Training Accreditation Council Secretariat Overview Risk based approach Annual regulatory strategy Education Program TAE Implementation - Provider and Systemic Risk - Regulatory Responses TAC Risk Framework -

414 views • 14 slides
Risk-Based Coding and Reimbursement What is Risk-Based Coding? Risk-Based Coding Overview A

Risk-Based Coding and Reimbursement What is Risk-Based Coding? Risk-Based Coding Overview A

Risk-Based Coding and Reimbursement What is Risk-Based Coding? Risk-Based Coding Overview A diagnosis coding methodology utilized in risk adjustment models to adjust cost for all patients within a health plan or group Risk

385 views • 23 slides
RISK BASED INSPECTION APPROACH NEW INSPECTION PROCESS ODOT Division of Construction Management

RISK BASED INSPECTION APPROACH NEW INSPECTION PROCESS ODOT Division of Construction Management

RISK BASED INSPECTION APPROACH NEW INSPECTION PROCESS ODOT Division of Construction Management OVERVIEW FHWA Requirements Need to document the inspection activities for quality of workmanship Risk Based Inspection prioritization

275 views • 12 slides
Risk Based Approach to Inspection Frequency Doreene Kohalmi Senior GMP Inspector Manufacturing

Risk Based Approach to Inspection Frequency Doreene Kohalmi Senior GMP Inspector Manufacturing

Risk Based Approach to Inspection Frequency Doreene Kohalmi Senior GMP Inspector Manufacturing Quality Branch GMP Forum 26 June 2018 TGA compliance risk framework Low compliance risk

378 views • 7 slides
An Ontology-based Approach to the Formalization of Information Security Policies Fernando Nufel

An Ontology-based Approach to the Formalization of Information Security Policies Fernando Nufel

An Ontology-based Approach to the Formalization of Information Security Policies An Ontology-based Approach to the Formalization of Information Security Policies Fernando Nufel do Amaral Carlos Bazlio Geiza Maria Hamazaki da Silva

878 views • 46 slides
GUARDIANS AT THE GATE: THE GATEKEEPER INITIATIVE AND THE RISK-BASED APPROACH FOR TRANSACTIONAL

GUARDIANS AT THE GATE: THE GATEKEEPER INITIATIVE AND THE RISK-BASED APPROACH FOR TRANSACTIONAL

GUARDIANS AT THE GATE: THE GATEKEEPER INITIATIVE AND THE RISK-BASED APPROACH FOR TRANSACTIONAL LAWYERS Kevin L. Shepherd Editors Synopsis: In this Article, the author outlines the history and development of the Financial Action Task Force

761 views • 65 slides
An Operational Perspective on BGP Security Geoff Huston GROW WG IETF 63 August 2005 Risk

An Operational Perspective on BGP Security Geoff Huston GROW WG IETF 63 August 2005 Risk

An Operational Perspective on BGP Security Geoff Huston GROW WG IETF 63 August 2005 Risk Management Operational security is not about being able to create and maintain absolute security. Its about a pragmatic approach to risk

494 views • 14 slides
A Risk-Based Approach to Identifying Contaminants of Most Concern from Oil Shale Development

A Risk-Based Approach to Identifying Contaminants of Most Concern from Oil Shale Development

A Risk-Based Approach to Identifying Contaminants of Most Concern from Oil Shale Development Thomas R. Wood, Carl D. Palmer, Earl Mattson Idaho National Laboratory www.inl.gov 30 th Oil Shale Symposium October 18-22, 2010 Objective: To

812 views • 20 slides
Perspectives on Environmental Assessment: A risk based approach to managing environmental

Perspectives on Environmental Assessment: A risk based approach to managing environmental

Perspectives on Environmental Assessment: A risk based approach to managing environmental liability I NT NTROD ODUCT CTION ON On One aspect of HSE that is often not well developed in plans and pr procedures is the he E: Environment En

399 views • 38 slides
Portfolio Selection with Estimation Risk: a Test-based Approach Bertille Antoine Simon Fraser

Portfolio Selection with Estimation Risk: a Test-based Approach Bertille Antoine Simon Fraser

The 11th Annual Financial Econometrics Conference "Econometric Modeling in Risk Management" Portfolio Selection with Estimation Risk: a Test-based Approach Bertille Antoine Simon Fraser University, Vancouver March 27th, 2009

624 views • 28 slides
Risk Assessment and its risk-based approach Prof. Dr. Reiner Wittkowski Federal Institute for

Risk Assessment and its risk-based approach Prof. Dr. Reiner Wittkowski Federal Institute for

FOR RISK ASSESSMENT FEDERAL INSTITUTE The Federal Institute for Risk Assessment and its risk-based approach Prof. Dr. Reiner Wittkowski Federal Institute for Risk Assessment (BfR) founded in November 2002 within the portfolio of the

644 views • 16 slides
Component-based approach Discovery exercise conducted last year on overall approach to social

Component-based approach Discovery exercise conducted last year on overall approach to social

SS Programme Board 5 - 24/10/2017: Agenda item 5 Paper 5.5 Component-based approach Discovery exercise conducted last year on overall approach to social security This underpins the approach to estimating costs set out in the financial

480 views • 8 slides
Understanding Risk: towards an evidence based approach to regulatory policy development Claire

Understanding Risk: towards an evidence based approach to regulatory policy development Claire

www.gdc-uk.org www.gdc-uk.org Understanding Risk: towards an evidence based approach to regulatory policy development Claire Herbert & Guy Rubin General Dental Council IAMRA London 2014 11th INTERNATIONAL CONFERENCE ON MEDICAL REGULATION

393 views • 27 slides

More recommend