Presentation is loading. Please wait.

Presentation is loading. Please wait.

Welcome Information Security Office Services Available to Counties Security Operations Center Questions.

Published byRichard Lester Modified over 8 years ago

Similar presentations

Presentation on theme: "Welcome Information Security Office Services Available to Counties Security Operations Center Questions."— Presentation transcript:

1 Welcome Information Security Office Services Available to Counties Security Operations Center Questions

2 Information Security Office (ISO) Background Mission: Promote the secure use of information technology resources and effectively manage the associated risks. Office of the Chief Information Officer (OCIO) Bob von Wolffradt, Chief Information Officer (CIO) Jeff Franklin, Chief Information Security Officer (CISO) Information Security Office (ISO) Staff of 14 Employees Supported by all of OCIO Staff Open 7-5 Monday thru Friday Incident On-Call (24/7) Duty Manager Duty Officer Full Service Information Security Office

3 Page 3 The CIS Critical Security Controls for Effective Cyber Defense

4 Services Available to Counties Iowa Homeland Security Grant Vulnerability Management Patch Management Intrusion Detection (IDS) Anti-Malware Security Operations Center

5 Vulnerability Management – CSC 4, 1, 2 IP360 Device Profiler Scans for every device on your network Lists vulnerabilities by importance Vulnerability scores to help prioritize Reduces Risk Current Iowa County Participation Total: 46

6 Patch Management – CSC 4 Asset Discovery Third Party Patching Auditing and Remediation Helps Prioritize Your Risk Current Iowa County Participation Total: 6

7 Malware Detection – CSC 8 Asset Discovery Third Party Patching Auditing and Remediation Helps Prioritize Your Risk Current Iowa County Participation Total: 6

8 Intrusion Detection – CSC 12 New Service For Participating Counties Open Source Solution Talos Rule Set (SourceFire) Initial Rollout to 13 Counties Alert Monitoring and Reporting by ISO SOC

9 Configuration Management – CSC 3, 11 Discover and Audit Configurations. Agentless Scans Network for Compliance Apply Compliance and security standards Reduces Risk Currently in Pilot

10 Security Operations Center – CSC 19 Why a Security Operation Center? Real Time Monitoring Identifying Attacks (Alerting) Respond Faster (Investigate) Remediation Recover

11 Vulnerability Management- The cyclical practice of identifying, classifying, remediating, and mitigating vulnerabilities", especially in software and firmware. Patch Management - Systems management that involves acquiring, testing, and installing multiple patches (code changes) to an administered computer system FireEye – NX and HX provides automated threat forensics and dynamic malware protection against advanced cyber threats. Intrusion Detection System – Systems that monitor for malicious activities, policy violations and suspicious traffic on a network. Configuration Management – A process for establishing and maintaining consistency of a computer, server, mobile devices performance, functional, and physical attributes with its requirements, design, and operational information throughout its life. Security Operation Center (SOC) - Provides situational awareness through the detection, containment, and remediation of IT threats. The SOC manages incidents for the enterprise, ensuring they are properly identified, analyzed, communicated, actioned/defended, investigated and reported. The SOC also monitors applications to identify a possible cyber- attack or intrusion (event) and determine if it is a real, malicious threat (incident), and if it could have a business impact. Information Security Office

12 Questions? Contact: Jeff Franklin Chief Information Security Officer (515) 281-4820 jeff.franklin@iowa.gov Contact: Dan Powers Manager, ISO (515) 725-2906 dan.powers@iowa.gov

Download ppt "Welcome Information Security Office Services Available to Counties Security Operations Center Questions."

Similar presentations

Incident Response Managing Security at Microsoft Published: April 2004.

Incident Response Managing Security at Microsoft Published: April 2004.
1 Chapter 7 Intrusion Detection. 2 Objectives In this chapter, you will: Understand intrusion detection benefits and problems Learn about network intrusion.

1 Chapter 7 Intrusion Detection. 2 Objectives In this chapter, you will: Understand intrusion detection benefits and problems Learn about network intrusion.
© BT PLC 2005 ‘Risk-based’ Approach to Managing Infrastructure a ‘Commercial Prospective’ Malcolm Page BT UK AFCEA Lisbon 2005.

© BT PLC 2005 ‘Risk-based’ Approach to Managing Infrastructure a ‘Commercial Prospective’ Malcolm Page BT UK AFCEA Lisbon 2005.
August 9, 2005 UCCSC -- 2005 IT Security at the University of California A New Initiative Jacqueline Craig. Director of Policy Information Resources and.

August 9, 2005 UCCSC IT Security at the University of California A New Initiative Jacqueline Craig. Director of Policy Information Resources and.
Cybersecurity Summit 2004 Andrea Norris Deputy Chief Information Officer/ Director of Division of Information Systems.

Cybersecurity Summit 2004 Andrea Norris Deputy Chief Information Officer/ Director of Division of Information Systems.
Know the Client Own the Problem Share the Solution The 2005 Case for Information Technology Security October 14, 2004.

Know the Client Own the Problem Share the Solution The 2005 Case for Information Technology Security October 14, 2004.
Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Qualitative.

Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Qualitative.
The Way Ahead for Information Systems Security: What You Don’t Know Can Hurt You Christopher Baum Research Vice President Global Government NYSCIO Conference.

The Way Ahead for Information Systems Security: What You Don’t Know Can Hurt You Christopher Baum Research Vice President Global Government NYSCIO Conference.
Security Offering. Cyber Security Solutions 2 Assessment Analysis & Planning Design & Architecture Development & Implementation O&M Critical Infrastructure.

Security Offering. Cyber Security Solutions 2 Assessment Analysis & Planning Design & Architecture Development & Implementation O&M Critical Infrastructure.
CISCO CONFIDENTIAL – DO NOT DUPLICATE OR COPY Protecting the Business Network and Resources with CiscoWorks VMS Security Management Software Girish Patel,

CISCO CONFIDENTIAL – DO NOT DUPLICATE OR COPY Protecting the Business Network and Resources with CiscoWorks VMS Security Management Software Girish Patel,
Security Risk Management Marcus Murray, CISSP, MVP (Security) Senior Security Advisor, Truesec

Security Risk Management Marcus Murray, CISSP, MVP (Security) Senior Security Advisor, Truesec
Website Hardening HUIT IT Security | Sep 30 2011.

Website Hardening HUIT IT Security | Sep
The Difficult Road To Cybersecurity Steve Katz, CISSP Security Risk Solutions 631-692-5175 Steve Katz, CISSP Security.

The Difficult Road To Cybersecurity Steve Katz, CISSP Security Risk Solutions Steve Katz, CISSP Security.
1 Managed Security. 2 Managed Security provides a comprehensive suite of security services to manage and protect your network assets –Managed Firewall.

1 Managed Security. 2 Managed Security provides a comprehensive suite of security services to manage and protect your network assets –Managed Firewall.
Information Security Update CTC 18 March 2015 Julianne Tolson.

Information Security Update CTC 18 March 2015 Julianne Tolson.
© TecSec® Incorporated 2003 Threat Notification Model for Federal, State and Local Authorities Threat Notification Model for Federal, State and Local Authorities.

© TecSec® Incorporated 2003 Threat Notification Model for Federal, State and Local Authorities Threat Notification Model for Federal, State and Local Authorities.
Network Security Policy Anna Nash MBA 737. Agenda Overview Goals Components Success Factors Common Barriers Importance Questions.

Network Security Policy Anna Nash MBA 737. Agenda Overview Goals Components Success Factors Common Barriers Importance Questions.
Thursday, January 23, 2014 10:00 am – 11:30 am. Agenda  Cyber Security Center of Excellence  Project Phase  Implementation  Next Steps 2.

Thursday, January 23, :00 am – 11:30 am. Agenda  Cyber Security Center of Excellence  Project Phase  Implementation  Next Steps 2.
Thomas Levy. Agenda 1.Aims: Reducing Cyber Risk 2.Information Risk Management 3.Secure Configuration 4.Network Security 5.Managing User Access 6.Education.

Thomas Levy. Agenda 1.Aims: Reducing Cyber Risk 2.Information Risk Management 3.Secure Configuration 4.Network Security 5.Managing User Access 6.Education.
Security Professional Services. Security Assessments Vulnerability Assessment IT Security Assessment Firewall Migration Custom Professional Security Services.

Security Professional Services. Security Assessments Vulnerability Assessment IT Security Assessment Firewall Migration Custom Professional Security Services.

Similar presentations

Ads by Google