Presentation is loading. Please wait.

Presentation is loading. Please wait.

BizSmart Lunch & Learn Webinar Information Security and Protecting your business With the increased risk of some sort of cyber- attack over the past few.

Published byBranden Wells Modified over 8 years ago

Similar presentations

Presentation on theme: "BizSmart Lunch & Learn Webinar Information Security and Protecting your business With the increased risk of some sort of cyber- attack over the past few."— Presentation transcript:

1 BizSmart Lunch & Learn Webinar Information Security and Protecting your business With the increased risk of some sort of cyber- attack over the past few years, it is now more important than ever to look over your computer network and identify the risks within your organisation. In this webinar we’ll look at the basic principles to protect your data and also how you can take it one step further by assessing and minimising risk. There is a link at the end of this deck to the associated blog and webinar recording

2 I.T Support Consultancy

3 Who am I? Matthew Parsons – Director – Surf Tech IT Working in IT Services for 14 Years

4 Information Security | Protecting your business Identifying Risks Assessing your assets Securing your information ISO 27001 : Information Security

5 Identifying Risks Everything / Everyone within your business is a risk Hardware Laptops, Desktops, Phones, External Hard drive Software E-Mail, Cloud Solutions i.e Office 365 Employees

6 Assessing your assets Risk/AssetThreatLikelihoodSeverityRating

7 Assessing your assets Risk/AssetThreatLikelihoodSeverityRating LaptopStolen/Lost224 EmailSecurity Compromised224 EmployeesRelease of unauthorised data236 Rating = Likelihood x Severity

8 Assessing your assets Risk/AssetThreatLikelihoodSeverityRating LaptopStolen/Lost224 EmailSecurity Compromised224 EmployeesRelease of unauthorised data236 Rating = Likelihood x Severity Rating Low1 to 4 Medium5 to 10 High11+

9 Control Action Risk/AssetControlLikelihoodSeverityRating Laptop Company policy not to store customer data on local drive 212 Email Complex passwords, change password every 90 days and enable two factor authentication 122 Employees Employment contract states the release to information classified as 'confidential' will result in disciplinary action 133 Rating = Likelihood x Severity Rating Low1 to 4 Medium5 to 10 High11+

10 Control Action Other Control Actions may include: Additional hardware appliances (such as Firewalls, Web Filtering) Additional software (such as Anti-Virus, AntiSpam) Computer policies (Locking down users abilities on computers, what software can be installed) Why assess these threats? If you can identify the threats to your business, access the risk it may cause and identify it as a high risk. You will be able to make changes within your business to best protect your data and customer data

11 ISO 27001 | Information Security ISO 27001 is a standard created by the International Organisation for Standardisation (ISO) for implementing an Information Security Management System (ISMS). ISO 27001 is not required by every industry, but if you can incorporate just a few elements of ISO 27001 in to your business it should assist in protecting your important data. We work with businesses to assess these risks for them and then advise how any potential risk can be addressed and minimized. As an IT Support and Solutions provider our customers depend on us to keep their data safe. Our clients like the reassurance knowing that our systems and processes are audited, when you partner with a company like us we have the complete control of your IT systems.

12 Thank you for listening! Any Questions?!?

13 BizSmart – Where Smart people go to surround themselves with other Smart people, to gain business success.

Download ppt "BizSmart Lunch & Learn Webinar Information Security and Protecting your business With the increased risk of some sort of cyber- attack over the past few."

Similar presentations

CS898T Mobile and Wireless Network Handheld Device Security By Yuan Chen July 25 th, 2005.

CS898T Mobile and Wireless Network Handheld Device Security By Yuan Chen July 25 th, 2005.
INADEQUATE SECURITY POLICIES Each covered entity and business associate must have written polices that cover all the Required and Addressable HIPAA standards.

INADEQUATE SECURITY POLICIES Each covered entity and business associate must have written polices that cover all the Required and Addressable HIPAA standards.
Helping our customers keep their computers safe.  Using your pet’s, business, family, friend’s names  Using number or letter sequences (0123, abcd)

Helping our customers keep their computers safe.  Using your pet’s, business, family, friend’s names  Using number or letter sequences (0123, abcd)
Mr C Johnston ICT Teacher

Mr C Johnston ICT Teacher
© 2005, QEI Inc. all characteristics subject to change. For clarity purposes, some displays may be simulated. Any trademarks mentioned remain the exclusive.

© 2005, QEI Inc. all characteristics subject to change. For clarity purposes, some displays may be simulated. Any trademarks mentioned remain the exclusive.
Security Controls – What Works

Security Controls – What Works
Nevada Digital Summit David Podwojski Director, Public Sector Citrix Systems, Inc.

Nevada Digital Summit David Podwojski Director, Public Sector Citrix Systems, Inc.
Securing Your Networks Personal Safety Rules Apply Here Too. Corporate Identity Theft SPAM.

Securing Your Networks Personal Safety Rules Apply Here Too. Corporate Identity Theft SPAM.
Security Management IACT 918 July 2004 Gene Awyzio SITACS University of Wollongong.

Security Management IACT 918 July 2004 Gene Awyzio SITACS University of Wollongong.
Security Management IACT 418/918 Autumn 2005 Gene Awyzio SITACS University of Wollongong.

Security Management IACT 418/918 Autumn 2005 Gene Awyzio SITACS University of Wollongong.
Contact Center Security Strategies Grant Sainsbury Practice Director, Dimension Data.

Contact Center Security Strategies Grant Sainsbury Practice Director, Dimension Data.
Factors to be taken into account when designing ICT Security Policies

Factors to be taken into account when designing ICT Security Policies
Small Business Security By Donatas Sumyla. Content Introduction Tools Symantec Corp. Company Overview Symantec.com Microsoft Company Overview Small Business.

Small Business Security By Donatas Sumyla. Content Introduction Tools Symantec Corp. Company Overview Symantec.com Microsoft Company Overview Small Business.
Developing a Security Policy Chapter 2. Learning Objectives Understand why a security policy is an important part of a firewall implementation Determine.

Developing a Security Policy Chapter 2. Learning Objectives Understand why a security policy is an important part of a firewall implementation Determine.
Title: The Internet LO: Security risks. Security risks Types of risks: 1.Phishing 2.Pharming 3.Spamming 4.Spyware 5.Cookies 6.Virus.

Title: The Internet LO: Security risks. Security risks Types of risks: 1.Phishing 2.Pharming 3.Spamming 4.Spyware 5.Cookies 6.Virus.
Joel Garmon, Director, Information Security Mike Rollins, Security Architect Jeff Teague, Security Analyst, Senior 1

Joel Garmon, Director, Information Security Mike Rollins, Security Architect Jeff Teague, Security Analyst, Senior 1
PCM2U Presentation by Paul A Cook IT SERVICES. PCM2U Our History  Our team has been providing complete development and networking solutions for over.

PCM2U Presentation by Paul A Cook IT SERVICES. PCM2U Our History  Our team has been providing complete development and networking solutions for over.
365 IT CONSULTANCY AND PROJECTS PTY (LTD) 04 Smuts Park Corner Northey & Smuts Ave Witbank 1039 Phone: 078-568-0732 Fax: 086-598-8274

365 IT CONSULTANCY AND PROJECTS PTY (LTD) 04 Smuts Park Corner Northey & Smuts Ave Witbank 1039 Phone: Fax:
©2012 Check Point Software Technologies Ltd. | [Confidential] For Check Point users and approved third parties Building Your Security Strategy with 3D.

©2012 Check Point Software Technologies Ltd. | [Confidential] For Check Point users and approved third parties Building Your Security Strategy with 3D.
1 Managed Security. 2 Managed Security provides a comprehensive suite of security services to manage and protect your network assets –Managed Firewall.

1 Managed Security. 2 Managed Security provides a comprehensive suite of security services to manage and protect your network assets –Managed Firewall.

Similar presentations

Ads by Google