Presentation is loading. Please wait.

Presentation is loading. Please wait.

White Paper: Enterprise Encryption and Key Management Strategy 1 Vormetric Contact: Name: Tina Stewart (send traffic.

Published byNathan Patrick Modified over 8 years ago

Similar presentations

Presentation on theme: "White Paper: Enterprise Encryption and Key Management Strategy 1 Vormetric Contact: Name: Tina Stewart (send traffic."— Presentation transcript:

1 White Paper: Enterprise Encryption and Key Management Strategy 1 Vormetric Contact: Name: Tina Stewart Email: Tina-Stewart@vormetric.com (send traffic to a registration page on Vormetric site for whitepaper download) THE TIME IS NOW Enterprise Encryption and Key Management Strategy Download ESG Whitepaper

2 White Paper: Enterprise Encryption and Key Management Strategy 2 In this presentation we share key insights from EGS’s whitepaper on: Enterprise Encryption and Key Management Strategy The Time Is Now, Enterprise Encryption and Key Management Strategy The Time Is Now, By Jon Oltsik Vormetric is the leader in enterprise encryption and key management. Our Data Security solution encrypts any file, any database, any application, anywhere.encryptionkey managementData Security This ESG white paper was commissioned by Vormetric, Inc. and is distributed under license from ESG. Overview “ “ Large organizations need an enterprise encryption strategy. This should include central command and control, distributed policy enforcement, tiered administration, and an enterprise-class key management service. i i “ “

3 White Paper: Enterprise Encryption and Key Management Strategy 3 The Time is Now Your Business Data is Everywhere and Accessed by Everyone Ad hoc Data Security = increased risk and business exposure Large organizations need an enterprise encryption strategy – Central Command and Control – Distributed Policy Enforcement – Tiered Administration – Enterprise-class key management service

4 White Paper: Enterprise Encryption and Key Management Strategy 4 Drivers of Enterprise-Class Data Security Solutions State, industry and international privacy regulations require or recommend encryption for data security. Regulatory Compliance Advanced Persistent Threats (APTs) resulting in IP theft are forcing enterprises to aggressively respond with data encryption technologies. Intellectual Property Protection 126 breaches and 1.5Million personal records reported in 2012 alone. Including well known names – Arizona State University and Zappos.com. Publically Disclosed Breaches

5 White Paper: Enterprise Encryption and Key Management Strategy 5 Top Investment: Data Encryption Which of the following security technology products/solutions has your organization purchased in response to APTs? (Percent of respondents, N=95, multiple responses accepted) Data encryption technologies Web gateway for blocking suspicious URLs and web based content Application firewalls Specific technology defenses designed to detect and prevent APT attacks Database security technologies Managed security services DLP (data loss prevention) technologies New types of user authentication/access controls Endpoint white-list/black-list enforcement technologies Third-party penetration testing service from specialty firm 0%10% 20% 30% 40% 50%60% 54% 49% 44% 43% 39% 35% 31% 24% 21% Source: Enterprise Strategy Group,2012

6 White Paper: Enterprise Encryption and Key Management Strategy 6 Data Security Growing Pains Source: enterprise Strategy Group, 2012 Each tool has its own administration and key management ! !

7 White Paper: Enterprise Encryption and Key Management Strategy 7 Lack of standards Redundancy- processes, tools, licenses, training High risk of data loss or a security breach. No central command and control Redundancy- processes, tools, licenses, training No central view for risk management or measurement of KPIs. Increased security risk. Multiple key management systems Redundancy- processes, training Encryption keys exposure. Organizational misalignment Additional/ unfamiliar tasks for functional IT staff Human intervention increases security risks. Issue Cost Risk Data Security Growing Pains All of these issues create operational overhead and increased risk. ! !

8 White Paper: Enterprise Encryption and Key Management Strategy Provides Executive Visibility 8 Encryption must fit into existing infrastructure and processes without altering or affecting existing systems and application. Transparent Key Management responsibilities must reside with specific, trained staff dedicated to this function. Owned by the security team CISO’s should be able to assess risk across the enterprise at all times and keep executive management informed. Considerations for Enterprise Strategy

9 White Paper: Enterprise Encryption and Key Management Strategy 9 Key Enterprise Architectural Features Central Command & Control Distributed Policy Enforcement Tiered Administration Enterprise-class Key Management 1 2 3 4 1 2 3 4

10 White Paper: Enterprise Encryption and Key Management Strategy 10 The Bigger Truth – The Time is Now. DEFINE the ideal encryption solution for your needs ASSESS what you have in place today IDENTIFY gaps in your current implementations AUGMENT current ad hoc solutions 1 23 4 “ One of your most valuable assets, sensitive data, faces an increasing level of risk … ESG highly recommends that CISOs develop an enterprise encryption strategy as soon as possible. i i “ “ 1 2 34

11 White Paper: Enterprise Encryption and Key Management Strategy 11 Vormetric Contact: Tina Stewart Tina-Stewart@vormetric.com THE TIME IS NOW Enterprise Encryption and Key Management Strategy Download ESG Whitepaper @Vormetric Click - to - tweet

Download ppt "White Paper: Enterprise Encryption and Key Management Strategy 1 Vormetric Contact: Name: Tina Stewart (send traffic."

Similar presentations

!! Are we under attack !! Consumer devices continue to invade *Corporate enterprise – just wanting to plug in* Mobile Device Management.

!! Are we under attack !! Consumer devices continue to invade *Corporate enterprise – just wanting to plug in* Mobile Device Management.
1 SANS Technology Institute - Candidate for Master of Science Degree 1 Automating Crosswalk between SP 800, 20 Critical Controls, and Australian Government.

1 SANS Technology Institute - Candidate for Master of Science Degree 1 Automating Crosswalk between SP 800, 20 Critical Controls, and Australian Government.
Www.cleo.com Steve Jordan Director. Industry Solutions 05/05/14 Managing Chaos: Data Movement in 2014.

Steve Jordan Director. Industry Solutions 05/05/14 Managing Chaos: Data Movement in 2014.
Introducing WatchGuard Dimension. Oceans of Log Data The 3 Dimensions of Big Data Volume –“Log Everything - Storage is Cheap” –Becomes too much data –

Introducing WatchGuard Dimension. Oceans of Log Data The 3 Dimensions of Big Data Volume –“Log Everything - Storage is Cheap” –Becomes too much data –
The Future of Social Collaboration Randy Williams Enterprise Trainer and Evangelist AvePoint.

The Future of Social Collaboration Randy Williams Enterprise Trainer and Evangelist AvePoint.
SPEAKER BLITZ ERIC BROWN Senior Systems Engineer NICK JAVANOVIC DoD Regional Sales Manager.

SPEAKER BLITZ ERIC BROWN Senior Systems Engineer NICK JAVANOVIC DoD Regional Sales Manager.
Compliance in Office 365 Edge Pereira Sandy Millar From Avanade Australia OSS304.

Compliance in Office 365 Edge Pereira Sandy Millar From Avanade Australia OSS304.
Know the Client Own the Problem Share the Solution The 2005 Case for Information Technology Security October 14, 2004.

Know the Client Own the Problem Share the Solution The 2005 Case for Information Technology Security October 14, 2004.
Copyright 2011 Trend Micro Inc. Trend Micro Web Security- Overview.

Copyright 2011 Trend Micro Inc. Trend Micro Web Security- Overview.
Data Governance Data Architecture Data Development Database Operations Data Security Management Referene & MDM DW & BI Document & Content Mgmt Meta.

Data Governance Data Architecture Data Development Database Operations Data Security Management Referene & MDM DW & BI Document & Content Mgmt Meta.
Www.encase.com Mel Pless, Sr. Director, Solutions Consulting Guidance Software, Inc. Let’s Get Right To The Endpoint Leveraging Endpoint Data to Expose,

Mel Pless, Sr. Director, Solutions Consulting Guidance Software, Inc. Let’s Get Right To The Endpoint Leveraging Endpoint Data to Expose,
Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.

Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.
1 Managed Security. 2 Managed Security provides a comprehensive suite of security services to manage and protect your network assets –Managed Firewall.

1 Managed Security. 2 Managed Security provides a comprehensive suite of security services to manage and protect your network assets –Managed Firewall.
Information Security– SNO International Zanzibar, Tanzania Joe Beaulac, Sr. Manager – Cyber Defense Center & Risk/Vulnerability Management 23 September.

Information Security– SNO International Zanzibar, Tanzania Joe Beaulac, Sr. Manager – Cyber Defense Center & Risk/Vulnerability Management 23 September.
A First Course in Information Security

A First Course in Information Security
How STERIS is using Cloud Technology to Protect Web Access Presented By: Ed Pollock, CISSP-ISSMP, CISM CISO STERIS Corporation “Enabling Business”

How STERIS is using Cloud Technology to Protect Web Access Presented By: Ed Pollock, CISSP-ISSMP, CISM CISO STERIS Corporation “Enabling Business”
PROJECT PAPER ON BLUEFIRE MOBILE SECURITY. BY PONNURU VENKATA DINESH KUMAR STUDENT ID # A0815 PROFESSOR – VICKY HSU CS-426.

PROJECT PAPER ON BLUEFIRE MOBILE SECURITY. BY PONNURU VENKATA DINESH KUMAR STUDENT ID # A0815 PROFESSOR – VICKY HSU CS-426.
What Keeps You Awake at Night Compliance Corporate Governance Critical Infrastructure Are there regulatory risks? Do employees respect and adhere to internal.

What Keeps You Awake at Night Compliance Corporate Governance Critical Infrastructure Are there regulatory risks? Do employees respect and adhere to internal.
1 CISCO SAFE: VALIDATED SECURITY REFERENCE ARCHITECTURE What It Is Business Transformation Top Questions To Ask To Initiate The Sale Where It Fits KEY.

1 CISCO SAFE: VALIDATED SECURITY REFERENCE ARCHITECTURE What It Is Business Transformation Top Questions To Ask To Initiate The Sale Where It Fits KEY.
ISO17799 Maturity. Confidentiality Confidentiality relates to the protection of sensitive data from unauthorized use and distribution. Examples include:

ISO17799 Maturity. Confidentiality Confidentiality relates to the protection of sensitive data from unauthorized use and distribution. Examples include:

Similar presentations

Ads by Google