Not to Make You Paranoid, But … An Update on Cybersecurity Threats and Prevention

Mirazon Network Engineering Manager Mirazon Systems Engineer Nice to Meet You Jay King Mirazon Network Engineering Manager Justin Cottrell Mirazon Systems Engineer

Agenda Threat landscape Malware Ransomware Intrusion methods Approaches to preventing these threats The end users UTM “Defense in depth” Monitoring Q&A

Threat Landscape Phishing/spear phishing Malicious ads in legitimate places Intrusion methods Ransomware

Security Approaches: Educating End Users Often overlooked yet important Update them frequently on what to look for Encourage them to approach IT with anything suspicious without fear of retribution Remediation planning Access controls Arm them with antivirus, endpoint protection, content filtering, spam filtering Policies: AUP, DAR, site/physical Dedicated resource for security, policy, planning, remediation

Unified Threat Management Endpoint protection Content filtering Deep packet inspection Application control/cloud access security inspection Intrusion Prevention Spam filtering DNS filtering SSO DLP

Defense in Depth Edge firewalls Interior segmentation Internal security Device hardening NAC/Onboarding Wi-Fi Load balancing/WAF Backups DR

Monitoring Have baselines Can catch suspicious behavior Log retention policies Importance of careful analysis Can catch suspicious behavior Splunk, FortiAnalyzer, PRTG, SolarWinds http://www.mirazon.com/rules-to-restore- sanity-to-your-it-monitoring-tools/

Questions?