Professional Documents
Culture Documents
Outsourcing
Michael Levin, Optum
Stephen Moore, Anthem
Jeff Schilling, Armor
2016 HITRUST Alliance.
Introduction
Michael J. Levin, JD, CISSP,
EnCE, GLEG, GSLC
Director of Cyber Defense for
Optum
Former Director of Security Design
and Innovation with U.S. Dept. Health
and Human Services, Senior Associate with Deloitte, and
Investigative Counsel with U.S. Office of Special Counsel
https://www.linkedin.com/in/michaellevin/
2016 HITRUST Alliance.
Cyber Defense
Provides Cyber Security Services to UnitedHealth
Group, monitoring security for over 150,000 endpoints
Cyber Defense consists of
CFI
PTA
ACD
DASI
CIS
In-House vs Outsourcing
Pros:
Organizational Data maintained within org.
Better organizational knowledge, access, and expertise, all inhouse
No contract re-negotiation or arguments when specific security
work is needed
Immediate Incident Response activity
Cons:
Significant initial capital investment
Upfront and on-going talent acquisition and retention
2016 HITRUST Alliance.
Great guide
Carson Zimmerman
MITRE
Free!!!
DETECT
CYBER &
PHYSICAL
SECURITY
RECOVER
RESPOND
RECONNAISSANCE
WEAPONIZATION
DISTRIBUTION
& STRATEGY
EXPLOITATION
PERSIST/LATERAL
MOVEMENT
COMMAND
& CONTROL
ACTION
ON TARGET
Phishing email
Website drive by
SQL inject script
Malware or
compromised system
reaches out for
instructions
Options
TALENT
TECHNOLOGY
TECHNIQUES
Functions to assess
Security OperaCon
Center
Threat
Intelligence
Threat assessment
Threat Intel data analysis
TradecraL analysis
Threat trending
Custom signature wriCng
Advanced Threat HunCng
PenetraCon tesCng
IndicaCons and
Warnings
Incident
Response and
Forensics
Memory analysis
Host analysis
Network analysis
Malware Rev Eng
Containment
EradicaCon
Security
Infrastructure
Management
Vulnerability
Threat
Management
Managing CMDB
Scanning the environment
IdenCfying vulnerabiliCes
RemediaCon/patch mgt
QUESTIONS?