The enemies ashore Vulnerabilities & hackers: A relationship that works

Transcription

1 The enemies ashore Vulnerabilities & hackers: A relationship that works Alexandros Charvalias, Manager CISSP, CISA, ACDA Assurance & Enterprise Risk Services

2 Cyber security maturity model How effectively does your organisation prepare for, become aware of, and respond to cyber threats? Proactive Threat Management Media & SMEs Consumer Business & Life Sciences Retail Banks & Energy Providers Investment Banks Military & Defence Shipping Blissful Ignorance Basic Network Protection IT Service Desk & Whistleblowing Acceptable Usage Policy IT BC & DR Exercises Transformation Ad Hoc Infrastructure & Application Protection Security Log Collection & Ad Hoc Reporting Ad Hoc System / Malware Forensics Ad-hoc Threat Intelligence Sharing with Peers Commercial & Open Source Threat Intelligence Feeds Network & System Centric Activity Profiling General Information Security Training & Awareness IT Cyber Attack Simulations Enterprise-Wide Infrastructure & Application Protection 24x7 Technology Centric Security Event Reporting Operational Excellence Basic Online Brand Monitoring Automated Malware Forensics & Manual Electronic Discovery Government / Sector Threat Intelligence Collaboration Criminal / Hacker Surveillance Workforce / Customer Behaviour Profiling Targeted Intelligence-Based Cyber Security Awareness Business-Wide Cyber Attack Exercises Identity-Aware Information Protection External & Internal Threat Intelligence Correlation Situational Awareness of Cyber Threats Online Brand & Social Media Policing Automated Electronic Discovery & Forensics Global Cross-Sector Threat Intelligence Sharing Baiting & Counter-Threat Intelligence Real-time Business Risk Analytics & Decision Support Business Partner Cyber Security Awareness Sector-Wide & Supply Chain Cyber Attack Exercises Adaptive & Automated Security Control Updates Cross-Channel Malicious Activity Detection Brand Monitoring E-Discovery & Forensics Intelligence Collaboration External Threat Intelligence Behavioural Analytics Training & Awareness Cyber Attack Preparation Asset Protection Security Event Monitoring Traditional Signature-Based Security Controls Periodic IT Asset Vulnerability Assessments Automated IT Asset Vulnerability Monitoring Targeted Cross-Platform User Activity Monitoring Tailored & Integrated Business Process Monitoring Internal Threat Intelligence Cyber Security Maturity Levels Level 1 Level 2 Level 3 Level 4 Level 5 1

3 Module Technology 1: Introduction to for Security Business and Privacy in the Cloud Threats 2

4 What were the most common ways in which the breach(es) occurred in the past 12 months? Source: Forrester Research Understand The State Of Data Security And Privacy: 2012 To 2013

5 A t t a c k e r S o p h i s t i c a t i o n Accidental Discovery Malware Insider Lone Hacker / Hobbyist Business Partner Script kiddy Disgruntled ex - IT Administrator Competitor Disgruntled Customer Disgruntled ex - Employee State - sponsored Cyber Warfare Organised Crime Hacker Collectives Cyber Terrorism Hacktivism Attacker Determination

6 Guiding principles Five principles should underpin Cyber Security, and promote a cohesive approach to protection from cyber threats. Only when you have fully understood your assets, the risks that threaten them, and how these fit into the overall threat landscape can you determine what level of threat maturity you need to defend against, and where you draw the line to focus on limiting the impact of a successful attack. It is not practical to prevent all forms of cyber attack, especially those that are particularly sophisticated and targeted. You should ensure you have the organisational and technical capability to rapidly detect and respond to a successful attack in order to limit its impact. Your security is only as strong as the weakest link; ensure that the risks associated with cyber security, and the steps that your organisation is taking to combat these risks are understood across the organisation, from the board and senior management, to all staff, partners and third parties. 1. Understand your risk appetite 2. Ensure close alignment with business goals 3. Prepare for the worst 4. Share intelligence 5. Instil a broad awareness of cyber security Ensure that your strategic direction for cyber security is in close alignment with business goals, and the organisation s strategy for achieving these. Focus effort on defending the most strategically important parts of the business, or those that are being delivered in the riskiest way. Collaborate and share intelligence with industry, national and international cyber threat intelligence organisations. By sharing intelligence with other organisations you will be in a position to receive the benefit of shared wisdom. 5

7 Vulnerabilities Exposure over Time 100 Server upgrade Audit Findings Remediation Etc. Exposure to Vulnerabilities Patching Assessment Assessment Assessment Assessment Etc Ad hoc Assessments Periodic Assessments Continuous Assessments Time 6

8 Appetizers Menu 7

9 Why Deloitte? Our security, privacy, and risk management services are independently recognised as world leading. Independent analyst recognition Global footprint Depth and breadth of skills Expertise and experience across a range of sectors Investment in innovation Forrester Wave : Information Security And Risk Consulting, Q3 10 In Forrester s 75-criteria evaluation of information security and risk consulting service providers, we found that Deloitte led the pack because of its maniacal customer focus and deep technical expertise. Deloitte Member Firm Accreditations Strategic Partners ISC 2 ISACA BSI IAPP Specialty Over 1,100 CISSPs Over 2,000 certified as CISA, CISM, & CGEIT Over 150 trained lead system auditors Privacy certified practitioners Wide range of domain specific certifications 8

10 Questions? Hadjipavlou Sofianos & Cambanis S.A. Alexandros Charvalias CISSP, CISA, ACDA Manager Assurance & Enterprise Risk Services 3a Fragoklissias & Granikou str. GR Maroussi Athens, Greece Tel: Mob: Member of Deloitte Touche Tohmatsu Limited 9

11 About Deloitte Deloitte Greece is a member of Deloitte Touche Tohmatsu Limited (DTTL), a private UK company limited by guarantee, the world s largest professional services firm, with approximately 182,000 people, in more than 150 countries, and annual turnover of USD 28.8 bn. (2011). Deloitte combines world-class capabilities with deep local expertise to help clients succeed. It s tens of thousands of professionals, are committed to becoming the standard of excellence. In Greece, Deloitte Hadjipavlou Sofianos & Cambanis S.A. provides audit services, Deloitte Business Solutions Hadjipavlou Sofianos & Cambanis S.A. financial advisory, tax and consulting services and Direct Accounting Compliance & Reporting Services SA accounting outsourcing services. With a staff of 400 professionals and offices in Athens and Thessaloniki, Deloitte focuses on all major industries including financial services; shipping; energy; consumer business; life sciences & health care and government services. Deloitte clients include most of the leading private and public, commercial, financial and industrial companies. For more information, please visit our website at 3a Fragoklissias & Granikou Str., Maroussi, Athens-Greece, Tel: