Presentation is loading. Please wait.

Presentation is loading. Please wait.

Telephone : +234 (0) 1 815 8152 | Website : Registered company : 985937 Telephone : +234.

Published byCarol Williamson Modified over 8 years ago

Similar presentations

Presentation on theme: "Telephone : +234 (0) 1 815 8152 | Website : Registered company : 985937 Telephone : +234."— Presentation transcript:

1 Telephone : +234 (0) 1 815 8152 Email : info@infoprive.com | Website : www.infoprive.comwww.infoprive.com Registered company : 985937 Telephone : +234 (0) 1 815 8152 Email : info@infoprive.com | Website : www.infoprive.comwww.infoprive.com Registered company : 985937 Aligning information security operations and management for an effective information security program Insights Africa 2013

2 Infoprive Overview Information Security Advisory and Consulting Managed Compliance and Services Security Technology Implementation and Integration Information Security Advisory and Consulting Managed Compliance and Services Security Technology Implementation and Integration Clients Service Offering Banks Government Oil and Gas firms Payment Companies Educational Institutions Electronic payment firms Banks Government Oil and Gas firms Payment Companies Educational Institutions Electronic payment firms Infoprive Limited is a core Business Information Security Company that delivers and maintains trusted and enabling Information Security services and solutions for its clients giving them the confidence to focus on their core business objectives

3 Outline  Why an Information Security Program  Aspects of an Information Security Program  Challenges  Alignment

4 Why an Information security Program ? © 2012 Skybox Security4 To protect critical information assets

5 Most importantly … © 2012 Skybox Security5 Current State Desired State Short- term initiatives Medium- term Initiatives Long- term Initiatives Information Security program Information Security Objectives Information Security Strategy

6 Information Security Management Aspects of an Information Security Program Strategic Tactical Information Security Operations

7 © 2012 Skybox Security7 So Why is alignment Hard ? Simply…….

8 Security Management Challenges Complexity Change Network changes - virtualization, cloud, acquisitions Applications changes - agile development People changes – behavioural, roles/functions Compliance Complex regulations and internal mandates Time-consuming audits Communication Disconnect between application, security and operation teams Terminology gaps Challenges Thousands of security access rules and configurations Highly-connected business critical applications Technology solution sprawl

9 Security Operations Challenges Projects Threat Prevention Change threat Landscape Third party, supplier or customer Technology Risk Management Disaster Recovery and Business Continuity Incidence Response Architecture Disparate platforms Integration gaps Challenges Too many commissioned projects Lack of ROI

10 ManagementOperations Risk Assessment Threat Prevention ProjectsArchitectureComplianceChangesCommunicationComplexity Alignment ….. Becomes striking a balance

11 ManagementOperations ComplianceChangesCommunicationComplexityArchitecture Alignment ?....... What we must understand

12 ManagementOperations ComplianceChangesCommunicationComplexityProjects Alignment ?....... What we must understand

13 ManagementOperations ComplianceChangesCommunicationComplexity Threat Prevention Alignment ?....... What we must understand

14 ManagementOperations ComplianceChangesCommunicationComplexityRisk Assessment Alignment ?....... What we must understand

15 ManagementOperations Risk AssessmentThreat PreventionProjectsArchitectureComplianceChangesCommunicationComplexity Alignment becomes striking a balance……. based on Organizational Structure People Policies Drivers Products Services Processes Procedures Business Goals Lines of Business

16 Thank You

17 Questions?

Download ppt "Telephone : +234 (0) 1 815 8152 | Website : Registered company : 985937 Telephone : +234."

Similar presentations

Life Science Services and Solutions

Life Science Services and Solutions
Max Shirshov +7-967-0693828 AlgoSec Security Management Suite.

Max Shirshov AlgoSec Security Management Suite.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco Confidential 14854_10_2008_c1 1 Holistic Approach to Information Security Greg Carter, Cisco Security.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco Confidential 14854_10_2008_c1 1 Holistic Approach to Information Security Greg Carter, Cisco Security.
ISS IT Assessment Framework

ISS IT Assessment Framework
Symantec Vision and Strategy for the Information-Centric Enterprise Muhamed Bavçiç Senior Technology Consultant SEE.

Symantec Vision and Strategy for the Information-Centric Enterprise Muhamed Bavçiç Senior Technology Consultant SEE.
Security Offering. Cyber Security Solutions 2 Assessment Analysis & Planning Design & Architecture Development & Implementation O&M Critical Infrastructure.

Security Offering. Cyber Security Solutions 2 Assessment Analysis & Planning Design & Architecture Development & Implementation O&M Critical Infrastructure.
© 2014 AT&T Intellectual Property. All rights reserved. AT&T, the AT&T logo and all other AT&T marks contained herein are trademarks of AT&T Intellectual.

© 2014 AT&T Intellectual Property. All rights reserved. AT&T, the AT&T logo and all other AT&T marks contained herein are trademarks of AT&T Intellectual.
Saks Gloweli Consulting Management Consulting and Market Entry in China.

Saks Gloweli Consulting Management Consulting and Market Entry in China.
© 2012 AT&T Intellectual Property. All rights reserved. AT&T, the AT&T logo and all other AT&T marks contained herein are trademarks of AT&T Intellectual.

© 2012 AT&T Intellectual Property. All rights reserved. AT&T, the AT&T logo and all other AT&T marks contained herein are trademarks of AT&T Intellectual.
Consultancy.

Consultancy.
Chapter 20 20-1 © 2012 Pearson Education, Inc. Publishing as Prentice Hall.

Chapter © 2012 Pearson Education, Inc. Publishing as Prentice Hall.
The Evergreen, Background, Methodology and IT Service Management Model

The Evergreen, Background, Methodology and IT Service Management Model
Evolving IT Framework Standards (Compliance and IT)

Evolving IT Framework Standards (Compliance and IT)
© 2001 Carnegie Mellon University S8A-1 OCTAVE SM Process 8 Develop Protection Strategy Workshop A: Protection Strategy Development Software Engineering.

© 2001 Carnegie Mellon University S8A-1 OCTAVE SM Process 8 Develop Protection Strategy Workshop A: Protection Strategy Development Software Engineering.
Cyber Security & Fraud – The impact on small businesses.

Cyber Security & Fraud – The impact on small businesses.
IT Governance: COBIT, ISO17799 & ITIL. Introduction COBIT ITIL ISO17799Others.

IT Governance: COBIT, ISO17799 & ITIL. Introduction COBIT ITIL ISO17799Others.
Connecting with Your Peers IT Challenges and Opportunities in 2012 A Facilitated Group Discussion Thursday, January 12, 2012.

Connecting with Your Peers IT Challenges and Opportunities in 2012 A Facilitated Group Discussion Thursday, January 12, 2012.
Consulting Information Technology Agency Your IT Outsourcing Partner.

Consulting Information Technology Agency Your IT Outsourcing Partner.
Vendor Management from a Vendor’s Perspective. Agenda Regulatory Updates and Trends Examiner Trends Technology and Solution Trends Common Issues and Misconceptions.

Vendor Management from a Vendor’s Perspective. Agenda Regulatory Updates and Trends Examiner Trends Technology and Solution Trends Common Issues and Misconceptions.
© 2012 IBM Corporation IBM Security Systems 1 © 2012 IBM Corporation Cloud Security: Who do you trust? Martin Borrett Director of the IBM Institute for.

© 2012 IBM Corporation IBM Security Systems 1 © 2012 IBM Corporation Cloud Security: Who do you trust? Martin Borrett Director of the IBM Institute for.

Similar presentations

Ads by Google