NNIT Cybersecurity. A new threat landscape requires a new approach

Transcription

1 NNIT Cybersecurity A new threat landscape requires a new approach

2 Effective cybersecurity is not about spending more money. It s about aligning your security initiatives with the threats and priorities for your business in order to protect it from financial and reputational damage. NNIT

3 NNIT CYBERSECURITY Cyber criminals increasingly targeting businesses Businesses today are faced with serious challenges regarding cybersecurity, where cyber threats are increasing at an alarming rate. These developments require new ways of thinking in order to achieve effective security protection. NNIT has developed a range of services that can help businesses to achieve the right level of security protection to protect the business from financial and reputational damage. NNIT s cybersecurity services are based on three core principles that help us ensure that we deliver the right quality and value that matches the needs and demands of our customers. NNIT Cybersecurity core principles 1 NNIT IS A FULL RANGE CYBERSECURITY PROVIDER We provide end to end security services suited to all customers. 2 COST EFFECTIVE SECURITY We take pride in ensuring that we deliver the right level of security, tailored to each customer. 3 PROTECTING BUSINESS CRITICAL SYSTEMS We specialize in protecting our customers business critical systems, and safeguarding business operations.

4 Security Advisory Mapping out your route to effective security protection Whilst organizations may be aware of the need to take action regarding information security, it may not be clear where to start or what activities to embark on. Without a clear direction, initiatives could be misplaced, unstructured, and ultimately not lead to the desired reduction in the organization s risk profile. By combining knowledge and expertise from our consulting and security operations activities, NNIT is uniquely placed to offer a range of security advisory services. We start with an initial security assessment, where we assist you in gaining an understanding of your current threat landscape, pain points, and your desired risk profile. Following this, we work with you to develop a roadmap for implementation of the identified security initiatives, and we are able to advise and manage across all aspects of the security landscape, including the people, process and technology areas. You will benefit from full access to our team of both consulting and technical handson subject matter experts on your journey to achieve an optimized cybersecurity operation. Security maturity 4 5 MANAGED OPTIMIZED 3 DEFINED 2 REPEATABLE 1 INITIAL Time

5 NNIT CYBERSECURITY NNIT CERT Let us be your first call Sophisticated cybersecurity threats and targeted attacks have fundamentally changed the way we prioritize and invest in protecting our businesses. Preventing attacks is still the primary strategy for securing your business, but as breaches become inevitable, so does the need for fast and effective breach detection and response. With attack sophistication comes detection complexity. Breach detection and response are high complexity tasks, requiring skilled and experienced security professionals, which are both hard to come by and expensive to keep on 24/7 rotation. Extend your existing protection with true enterprise class detection and response capabilities with NNIT CERT one of only a few non-state owned certified CERT teams. NNIT CERT is our standing 24/7 breach detection and response team which continuously monitor your systems for breaches and can be activated immediately in case of an intrusion.

6

7 NNIT CYBERSECURITY Identity & Access Management Who has access to your confidential data? A fundamental part of protecting your data is knowing who has access to what at all times and to be able to ensure the adequate governance on top of it. Today s business world is changing fast, and so are your IAM requirements. Maybe you are moving applications into the cloud. Maybe you are rethinking security and access management to include Bring your own device and other trends. Or maybe you are simply trying to ensure compliance with the newest legal requirements. As businesses embrace new technology to boost productivity and cut costs, organisations have never been more vulnerable to security related threats. Managing user identities and accesses has never been more important and challenging. NNIT can support you in the journey to establish the policies, processes and the right IAM system, that will help you safely administrate and protect your IT infrastructure and sensitive information assets in the future.

8 With more than 15 years of experience in IAM design, implementation and operation, we know the methods and the best practices that make your activities successful.

9 NNIT CYBERSECURITY From our years of experience in protecting business critical systems and data for some of the R&D heaviest companies in Denmark, NNIT has designed a comprehensive approach to critical systems security.

10 Critical Systems Security It is not all of your belongings that are equally valuable to you. That s why the padlock on your tool shed or garage is a lot easier to breach than the lock on your safe. It is also why your alarm system doesn t cover your garden. Why spend the extra money? The same can be said for your computer systems and data. Although computer and network security is still important as the first line of defence, breaches will inevitably occur, regardless of how much you invest in perimeter security. So how do you protect the data, integrity and availability of the systems that are critical to your business? NNIT are experts in identifying critical systems and data, and designing advanced, layered security mechanisms that protect from both external and internal threats. We have proven experience in designing and implementing advanced security controls for both information systems, operational technology, data and custom applications.

11 NNIT CYBERSECURITY Quality is in our DNA Being a company born within the pharmaceutical industry ensures that the elements of quality, compliance and security are a natural part of our DNA. We understand the importance of delivering the right level of security protection to provide our customers with peace of mind, so they can focus their efforts on core business activities.

12 For further information, please contact NNIT A/S by phone or visit

13 NNIT CYBERSECURITY A comprehensive cybersecurity portfolio We add value to our customers businesses through our portfolio of cybersecurity offerings, spanning from governance and advisory services, to security management, managed security services, and specialized cybersecurity services. All delivered by our team of subject matter experts. With deep roots in the pharmaceutical industry, we are highly experienced in delivering compliance management, servicing heavily regulated industries, and comprehensive business continuity management. Our experience extends into a solid and well-proven delivery organization that operates and manages security services for a wide range of customers, providing cost-effective standardized managed security services such as endpoint protection, web protection and encryption. Encompassing our range of services is our broad span of cybersecurity consultants, covering governance, management and operational levels, as well as specialized fields such as cloud, IoT, production IT and compliance management. One of NNIT s key focus areas is identifying and securing critical customer data and infrastructure. As businesses intellectual property as well as the supply chain becomes digital, the need to protect critical systems and prevent data leakage is imperative to ensure the reputation and continuity of the business. With our specialized NNIT CERT, Identity and Access Management, and Critical Systems Security teams, we have both the expertise and experience to address the specific cybersecurity risks for your business.

14 Security Advisory Providing value adding advisory services focused at reaching the right level of security for the business Critical Systems Security Specialized protection of the most critical systems and data Compliance Assurance Advisory, review and analysis of security policies, compliance, outsourcing contracts as well as policy and compliance testing Identity & Access Management NNIT has extensive experience in advising on, designing and implementing IAM systems Business Continuity Management Advisory, design and test of technical recovery plans, disaster recovery and business continuity strategies Managed Security Services Cost-effective management and monitoring of security solutions such as endpoint & web protection, authentication, encryption and firewall management NNIT CERT 24/7 breach detection and response service, based on experienced specialists and effective process frameworks

15 About us IT advisory, development and outsourcing We are passionate people building winning teams with our customers. With deep roots in the pharmaceutical industry, we supply services that meet the highest requirements for quality, security and standardization. NNIT is one of Denmark s leading consultancies in IT development, implementation and operations. For over a decade, we have applied the latest advances in technology to make software development, business processes and communication significantly more effective. NNIT s service offerings include advising, building, implementing, managing and supporting IT solutions and operating IT systems for customers. In 2014 our revenue was DKK 2.4 billion. Today, NNIT has more than 2,400 employees around 900 employees work outside the borders of Denmark in China, the Czech Republic, the Philippines, Switzerland and in the US.