STKISummit2013 Infra PINI SIGALTechnologies v5 Final

IT at the crossroads:
Lead, follow or get out of the way
Changing Data Center
STKI Summit 2013
Pini Cohen Sigal Russin
Security and Networking
Customers Main Issues in 2012

Cyber security -Smarter & Complexity attacks,
APT, DDOS BYOD - Security on Mobile MDM Network monitoring -SIEM NAC network access control WI-FI as a service Control & Monitoring of Administrative Unauthorized Device Detection DLP- Data loss prevention Cloud security Regulation ISO
Pini Cohen and Sigal Russins work/ Copyright@2013
Do not remove source or attribution from any slide, graph or portion of graph
Security
Security 2013 Social engineering Identity management Cloud storage services

Security
Pini Cohen and Sigal Russin's work Copyright@2013 Do not remove source or attribution from any slide, graph or portion of graph 4
Industry groups represented by percent of breaches
Security
Source: Verison , 2012 DATA BREACH INVESTIGATIONS REPORT
Social tactics by percent of breaches within Social
Security
Source: Verison , 2012 DATA BREACH INVESTIGATIONS REPORT
Security
Source: Ponemon Institute
3
1
Pini Cohen and Sigal Russin's work Copyright@2013 Do not remove source or attribution from any slide, graph or portion of graph
Security

Identity & Access Management
Security

11

Source: veracode
12
Forrester: Most data breaches caused by employees"

30% - 'simple loss or theft 27% - 'inadvertant misuse by an employee 25% - 'external attack 12% - 'malicious insiders
Security
Source: information week 2012

Pini Cohen and Sigal Russin's work Copyright@2013 Do not remove source or attribution from any slide, graph 13 or portion of graph
Turn Insiders Into Assets - Security Awareness Program

Focus on changing user behavior- training your employee (videos)
Test and retest - testing employee reaction to an actual test

like: phishing e-mails.
Teach the individual- tailored training to the company and

the individuals who work there (USB devices).
Even a failure can be a success- employee reports, susceptible

to social engineering.
Source: information week 2012
14
Most Intellectual Property Theft Involves Company Insiders

Perimeter defenses do not absolutely protect a network, vetting
suppliers is not a sure way to protect against compromised hardware. You should monitor for anomalies in your network.
Keep Policy Up To Date!
Security
Source: information week 2012, Verison
15
Best Practices for Defending Yourself

Out of office replies- do not give a stranger personally identifiable information. Email Links and Attachments-never open a link or an attachment from someone you dont know. Phone Calls-requiring that employees use verbal code words to verify their identity. On-Premise Badge and Security- use cameras, guards and mantraps before a secure doorway.
Unlocked Computers and Laptops- always be vigilant!

Source: http://blog.neustar.biz/dont/social-engineering-5-tips-and-best-practices-for-defending-against-it/
16
Security

17
Security

18
Dont risk your Data!

19
Cloud Storage Services Definition

A network of distributed data centers which typically uses cloud
computing technologies like virtualization, and offers some kind of interface for storing data.
To increase the availability of the data, it may be redundantly

stored at different locations.
Many cloud storage providers are active on the market, offering

various kinds of services to their customers.
Security
Source: https://www.sit.fraunhofer.de/fileadmin/dokumente/studien_und_technical_reports/Cloud-Storage-Security_a4.pdf
20
Cloud Storage Features
Security
Source: https://www.sit.fraunhofer.de/fileadmin/dokumente/studien_und_technical_reports/Cloud-Storage-Security_a4.pdf
21
Case Study : DROPBOX

Browser API
Security
Dropbox uses Amazon Web Services (AWS) for storage and transfer. Dropbox does not verify the email address at registration, hence it is open for incrimination attacks. Client-side encryption is not supported. It is unclear which flavor of sharing is used if non-subscribers are included (closed user group vs. publication). In 2011 accounts could be accessed without a password, and in 2012 spam emails were sent to Dropbox users.
SouIe: https://www.sit.fraunhofer.de/fileadmin/dokumente/studien_und_technical_reports/Cloud-Storage-Security_a4.pdf
22
Security
Source: The FixYa Cloud Storage Report. Novmber 2012

23
Security Concerns
SkyDrive uses SSL to encrypt files during transport, but files are
unencrypted once at rest on Microsofts servers.
Data Leak

24
Secured Alternative Solutions

Use Local encryption for protecting your data IBM Collaboration Cloud Box.net 67% viewed third-party SpiderOak applications as a significant Sharefile Citrix risk second to mobile WatchDox security risk. Acronis Application Rapping Security Symantec F5
25
WatchDox ACCESS documents on any device SHARE documents across organizations CONTROL documents at all times
Security

26
WatchDox Makes Document Security Easy

Email Sharing
WatchDox Exchange
Group Collaboration
WatchDox Workspaces
Cross-Device Sync
WatchDox Sync Security is added seamlessly, automatically Documents encrypted at all times: rest, transit, use
Recommendations

Review your security policy related to social engineering DO NOT allow using free cloud storage OR
Allow employee BYOA but secure it with encryption tools

Use a collaboration tool for better productivity & security
Start Identity & access management project

Education ,awareness Training!
Data Leakage Prevention -Israeli Market Positioning 1Q13

Websense
Local Support
Fidelis
Verdasys
Symantec
Player Worldwide Leader
GTB CA
McAfee
Safend Checkpoint EMC Market Presence/Perception
Security Consultants -Israeli Market View 1Q13 (Partial List)
Source: STKI
*DataSec, **Oasis-Tech
Security System Integrators -Israeli Market
View 1Q13 (Partial List)
*Netcom **Spider ^Oasis-Tech ^^Decimus
Source: STKI
Networking General trends-2013
Softwaredefined networking will replace current NAC
Wireless local area network (WLAN) for guests and BYOD (VoWLAN)
Network visibility in virtualized environments
Network Visibility Benefits

Improve the performance of your network with cloud computing,
video streaming, mobility etc.
Utilize security issues and application performance management. Good view of your network traffic down to the packet level. You dont need to go through an emergency change control at the
start of the incident just to get these taps!
Networking
Port Mirroring
Requires an engineer to configure the switch or switches. Eliminate corrupt packets or packets which below a minimum size. Switches may drop layer 1 and select layer 2 errors depending on high
priority. Need to troubleshoot common physical layer problems such as faulty NIC. A network devices can support a restricted number of port mirrors. It is very important for security and analysis the same data with many devices.
Cyber Security Challenges No Visibility

NETWORK INFRASTRUCTURE
Traffic Growth
Number of links, Size of links, amount of traffic
Traffic
New Applications
New Protocols, Encrypted Traffic
Data Center
BYOD
Mixture of devices, Policies & Compliance
Device
Cloud / Virtualization
Applications go virtual, Inter-VM traffic
Solution - Visibility with NPB

NETWORK INFRASTRUCTURE MONITORING TOOLS
Network Packet Broker

Traffic
Data Center
Device
Traffic Visibility Fabric Gigamon - Market Maker, Market Leader
Data Leakage Prevention -Israeli Market Positioning 1Q13

Websense
Local Support
Fidelis
Verdasys
Symantec
GTB CA
McAfee
Safend Checkpoint EMC Market Presence/Perception
Customer Center Infrastructure -Israeli Market Positioning 1Q13
Local Support
Player
Cisco Aspect
Avaya
Worldwide Leader
Cosmocom
Alcatel-Lucent
Interactive Intelligence Siemens EC Market Presence/Perception

Network Access Control -Israeli Market Positioning 1Q13
Access Layers
Player
Local Support
Juniper
Checkpoint HP Microsoft Enterasys Symantec Cisco Wise-Mon
Fore Scout
Worldwide Leader
Market Presence/Perception
42
Output Management-Israeli Market Positioning 1Q13

Vendors to watch : HP
Consist
Local Support
Auto font Adobe
Aman
ISIS-Papyrus
Market Presence/Perception
HP Exstream
Thanks for your patience and hope you enjoyed
45

STKISummit2013 Infra PINI SIGALTechnologies v5 Final

Uploaded by

Document Information

Copyright

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

STKISummit2013 Infra PINI SIGALTechnologies v5 Final

Uploaded by

Copyright:

IT at the crossroads:

Lead, follow or get out of the way

Changing Data Center

STKI Summit 2013

Pini Cohen Sigal Russin

Security and Networking

Customers Main Issues in 2012

Pini Cohen and Sigal Russins work/ Copyright@2013

Industry groups represented by percent of breaches

Social tactics by percent of breaches within Social

Pini Cohen and Sigal Russins work/ Copyright@2013

Identity & Access Management

Pini Cohen and Sigal Russins work/ Copyright@2013

Pini Cohen and Sigal Russins work/ Copyright@2013

Forrester: Most data breaches caused by employees"

Source: information week 2012

Turn Insiders Into Assets - Security Awareness Program

Test and retest - testing employee reaction to an actual test

Teach the individual- tailored training to the company and

Even a failure can be a success- employee reports, susceptible

Most Intellectual Property Theft Involves Company Insiders

Keep Policy Up To Date!

Best Practices for Defending Yourself

Unlocked Computers and Laptops- always be vigilant!

Pini Cohen and Sigal Russins work/ Copyright@2013

Pini Cohen and Sigal Russins work/ Copyright@2013

Dont risk your Data!

Source: Ponemon Institute

Cloud Storage Services Definition

To increase the availability of the data, it may be redundantly

Many cloud storage providers are active on the market, offering

Cloud Storage Features

Case Study : DROPBOX

Source: The FixYa Cloud Storage Report. Novmber 2012

Source: Ponemon Institute

Secured Alternative Solutions

Pini Cohen and Sigal Russins work/ Copyright@2013

WatchDox Makes Document Security Easy

Allow employee BYOA but secure it with encryption tools

Start Identity & access management project

Data Leakage Prevention -Israeli Market Positioning 1Q13

Player Worldwide Leader

Security Consultants -Israeli Market View 1Q13 (Partial List)

Security System Integrators -Israeli Market

View 1Q13 (Partial List)

*Netcom **Spider ^Oasis-Tech ^^Decimus

Networking General trends-2013

Softwaredefined networking will replace current NAC

Network visibility in virtualized environments

Network Visibility Benefits

Cyber Security Challenges No Visibility

Solution - Visibility with NPB

Network Packet Broker

Traffic Visibility Fabric Gigamon - Market Maker, Market Leader

Data Leakage Prevention -Israeli Market Positioning 1Q13

Player Worldwide Leader

Customer Center Infrastructure -Israeli Market Positioning 1Q13

Interactive Intelligence Siemens EC Market Presence/Perception

Network Access Control -Israeli Market Positioning 1Q13

Output Management-Israeli Market Positioning 1Q13

Auto font Adobe

Player Worldwide Leader

Thanks for your patience and hope you enjoyed

You might also like