Helping Corporations Defend Enterprise Attacks through Security Awareness & Desktop Security

Transcription

1 Helping Corporations Defend Enterprise Attacks through Security Awareness & Desktop Security

2 The Problem Statement Increasing incidents of crime & attacks (including cyber) with Potential to cause severe financial damage & loss of human life Threats changing everyday - from simple thefts to complex bio-terror attacks 45% of all security breaches occur from within the enterprise Static security programs have failed and are expensive to implement, monitor & measure Absence of Centralized means to communicate, track, prioritize threats and measure awareness level. Compliance with Privacy laws (Gramm-Leach-Bliley & HIPAA)

3 The Consequences Lack of knowledge or ignorance among Employees Increased Potential Employer Liability Direct Indirect Increased Downtime Productivity Loss

4 The Solution Security Awareness Content must be Dynamic based on: Threat Severity Enterprise-specific vulnerability Enterprise physical Location Enterprise business vertical

5 Mission DEVELOP, MARKET & SUPPORT SECURITY AWARENESS CONTENT TECHNOLOGY TO TRACK/DELIVER AWARENESS CONTENT IMPROVE EMPLOYEE AWARENESS HIGHLY SECURE ENTERPRISES

6 develops the technology to Communicate Track Prioritize Security Education Content

7 develops Security Education Content in the form of: Flash Presentations Screen Savers Posters & Flyers Intranet Content Servers

8 Target Markets SecureGURU TM standard & custom solutions are applicable to: Health Sector Hospitals Pharmacies Health clubs & resorts Financial Sectors Banks Insurance Firms Utility Companies Nuclear Power Plants Electric Companies Telephone Companies Defense companies & Contractors Pharmaceutical Companies Auditing Firms Mutual Funds

9 SecureGURU TM Concept Is your staff capable enough to handle a threat? How does one positively identify a threat? 1 SecureGURU Enterprise Security Awareness IDENTIFY REPORT 2 Who do you report to? Threat Eliminated 3 DEFEND

10 ROI Realization- Tangible & Intangible Reduced Corporate Thefts & Damages Increased Employee Confidence Stronger Infrastructure Increased Productivity

11 SecureGURU TM Security Education Content SecureGURU TM Education Themes Identity Theft Information Theft Privacy Protection Desktop Security Virus & Worms Education Social Attacks & Defense Bio-terror Defense Work Place Theft Prevention PDA/Laptop Security Wireless Security HIPAA (scheduled 02/2003) SecureGURU TM Education Compliance Gramm-Leach-Bliley Act, 1999 Health Insurance Portability and Accountability Act (HIPAA), 1998 European Privacy Act Germany s financial accounting and auditing law (KonTrag) At least 5 new Education Themes released every month, downloadable via SecureGURU Live Update

12 Enterprise Based Content Distribution Security Content Server IT Non-IT Administrative Middle Management Management Security Content Classification High Priority Normal Low Priority Security Content Priority SecureGURU Client SecureGURU Client SecureGURU Client SecureGURU Client Security Content Distribution Result: Effective Education across all levels of an Enterprise

13 SecureGURU TM LiveUpdate Architecture Dynamic Content Delivery - Demand based PULL Internet/Intranet Content Server Dynamic Content Update Demand based Request SecureGURU Client SecureGURU Live Update

14 Advantages of SecureGURU Architecture Minimal use of Internet bandwidth Reduced or no Intranet Traffic Offline Tracking with no load on network resources Lesser Connection time Screen Savers Least CPU Utilization SecureGURU Online Scheduled Content Delivery Live Update SecureGURU Advisor

15 Tracking of Viewership *Communicating Urgent Threat Alerts Server PUSH Technology Dynamic Push-based Threat Alert What are Urgent Threat Alerts?! Fire/Natural Calamity Emergency/War Evacuation Bio-Hazards Emergency Centralized SecureGURU Content Server Internet Virus Spread Cybercrime Warning SecureGURU Clients on Corporate LAN Cyber Terrorism Warning *SecureGURU Version 3.0 & future releases only

16 SecureGURU TM Desktop Security How Breach Notification System works? 2 Corporate SMTP Server receives Breach Notification Message Breach detected by SecureGURU 1 Unauthorized Breach attempt on SecureGURU Client 3 Owner of Client Workstation receives Breach Notification Message

17 Desktop Security and more SecureGURU TM Features Capture/Log Breach Info. to log files Automatic/Configurable facility to backup log files on: Local Machine Intranet Automatic Event Log Backup, Clearing and Notification System Automatic Live Update Scheduling SecureGURU Configuration Panel

18 What FootPath offers SecureGURU Security Awareness Server, Clients, LiveUpdate SecureGURU Awareness Content as Flash Presentations, Screen Savers, or SecureGURU Intranet Servers Customized Awareness Content Development for client s business Customized Awareness Training Seminars Awareness Posters Awareness Flyers

19 Complete Solutions For Successful Enterprise Security Awareness FootPath