Presentation is loading. Please wait.

Presentation is loading. Please wait.

Fourth ICT Security Conference 2017

Published byBerenice Turner Modified over 7 years ago

Similar presentations

Presentation on theme: "Fourth ICT Security Conference 2017"— Presentation transcript:

1 Fourth ICT Security Conference 2017
IT Security Controls Endpoint Security Luka Milinković, IT Auditor Komercijalna banka AD Beograd

2 If we want to protect access to corporate resources and information, we need to properly manage security endpoints. We need to define and implement the necessary IT security controls. IT security controls

3 problems Malicious software Data leakage
What can happen if IT security controls are not well-defined or non-existent? problems

4 Rules and Exceptions We have rules and exceptions
Sometimes rules are not a problem But exceptions can be Rules and Exceptions

5 Examples BYOD, BYOPC, BYOP, BYOT
Corporate computers and mobile devices Personal computer and mobile device Work in cloud Examples

6 Computer protection basic rules
Lock the computer (automatic) Antivirus protection (send boxing) Computer protection basic rules

7 Computer protection AdvanceD rules
Protection of interfaces – USB and memory slots are locked Hard disk encryption – laptop, notebook Computer protection AdvanceD rules

8 Computer protection AdvanceD rules
Restriction of internet traffic – Security Web Gateway (proxy server), LAN, IP addresses WiFi in the company – Out of the corporate network Internet (LAN, WiFi) out of the company through the VPN Computer protection AdvanceD rules

9 Computer protection Exceptions
It is necessary to know who is delegated (owner) to approve requirements that different from the rules and when is it justified Internet traffic – Bypassing of SWG Computer protection Exceptions

10 Computer protection Exceptions
USB flash memory is allowed, but disabled functions are read, write or delete Company’s USB flash memory Restriction of USB flash memory by serial number Hardware encryption of USB flash memory Computer protection Exceptions

11 Corporate e-mail E-mail protection (spam, phishing…)
Internal or external server OWA (Outlook Web Access) service on the phone PIN for mobile – Exchange can force the screen lock on the devices Mobile Device Management (MDM) Corporate

12 Mobile Devices phones and tablets
Lock the devices (automatic) Data protection – encryption Disable installation of applications Remotely delete phone data Internet traffic through APN (automatic VNP) – service by mobile provider Mobile Devices phones and tablets

13 Mobile Devices phones and tablets
Protection of conversation and attachments on the phone PIN for mobile – Exchange can force the screen lock on the devices Mobile Device Management (MDM) Mobile Devices phones and tablets

14 SOLUTIONS Malicious software protection
Protection of interfaces – USB and memory slots are locked Read, write, delete functions USB flash memory with hardware encryption SOLUTIONS Malicious software protection

15 SOLUTION Data leakage protection
Unintentional data leakage Hard disk encryption USB flash memory encryption and/or restriction of USB flash memory by serial number SOLUTION Data leakage protection

16 Education of employees
Our company is secure as much as secure our weakest employee Education of employees

17 IT Security Controls – Endpoint Security
Fourth ICT Security Conference 2017 Thank you! IT Security Controls – Endpoint Security Luka Milinković, IT Auditor Komercijalna banka AD Beograd

Download ppt "Fourth ICT Security Conference 2017"

Similar presentations

Software Bundle ViPNet Secure Remote Access Arrangement using ViPNet Mobile © Infotecs.

Software Bundle ViPNet Secure Remote Access Arrangement using ViPNet Mobile © Infotecs.
!! Are we under attack !! Consumer devices continue to invade *Corporate enterprise – just wanting to plug in* Mobile Device Management.

!! Are we under attack !! Consumer devices continue to invade *Corporate enterprise – just wanting to plug in* Mobile Device Management.
External Storage Devices 1. In what devices will you find flash memory? (collage of images) 2. Identify the costs/capacity of typical flash memory for.

External Storage Devices 1. In what devices will you find flash memory? (collage of images) 2. Identify the costs/capacity of typical flash memory for.
The Enterprise Guide to Video Conferencing Created using iThoughts [...] [...]

The Enterprise Guide to Video Conferencing Created using iThoughts [...] [...]
Avoid data leakage, espionage, sabotage and other reputation and business risks without losing employee performance and mobility.

Avoid data leakage, espionage, sabotage and other reputation and business risks without losing employee performance and mobility.
Personal Data Protection and Security Measures Justin Law IT Services - Information Security Team 25 & 27 November 2013.

Personal Data Protection and Security Measures Justin Law IT Services - Information Security Team 25 & 27 November 2013.
Imation Mobile Security Research Presentation August 2013 What is happening with our data?

Imation Mobile Security Research Presentation August 2013 What is happening with our data?
Networks. User access and levels Most network security involves users having different levels of user access to the network. The network manager will.

Networks. User access and levels Most network security involves users having different levels of user access to the network. The network manager will.
For further information computersecurity.wlu.ca

For further information computersecurity.wlu.ca
Avoid data leakage, espionage, sabotage and other reputation and business risks without losing employee performance and mobility. Simplify authentication.

Avoid data leakage, espionage, sabotage and other reputation and business risks without losing employee performance and mobility. Simplify authentication.
Firewall Configuration Strategies

Firewall Configuration Strategies
Personal Data Protection and Security Measures Justin Law IT Services - Information Security Team 18, 20 & 25 March 2015.

Personal Data Protection and Security Measures Justin Law IT Services - Information Security Team 18, 20 & 25 March 2015.
MCDST 70-271: Supporting Users and Troubleshooting a Microsoft Windows XP Operating System Chapter 14: Troubleshooting Remote Connections.

MCDST : Supporting Users and Troubleshooting a Microsoft Windows XP Operating System Chapter 14: Troubleshooting Remote Connections.
Topics 1.Security options and settings 2.Layer 2 vs. Layer 3 connection types 3.Advanced network and routing options 4.Local connections 5.Offline mode.

Topics 1.Security options and settings 2.Layer 2 vs. Layer 3 connection types 3.Advanced network and routing options 4.Local connections 5.Offline mode.
HIPAA Data Security PCF Data Security Update May 1 st, 2015.

HIPAA Data Security PCF Data Security Update May 1 st, 2015.
IOS 8 for MDM/EMM Greg Elliott Shiv Chandra Kumar.

IOS 8 for MDM/EMM Greg Elliott Shiv Chandra Kumar.
Topics 1.Taking the Lock into use – physical serialization 2.Detailed setup options 3.Using mobile broadband 4.Taking the Key into use.

Topics 1.Taking the Lock into use – physical serialization 2.Detailed setup options 3.Using mobile broadband 4.Taking the Key into use.
Firewall and Proxy Server Director: Dr. Mort Anvari Name: Anan Chen Date: Summer 2000.

Firewall and Proxy Server Director: Dr. Mort Anvari Name: Anan Chen Date: Summer 2000.
Kaspersky Open Space Security: Release 2 World-class security solution for your business.

Kaspersky Open Space Security: Release 2 World-class security solution for your business.
Printer Installation Ben Wu A&S IT 09/18/2007. Outline  Preparation  Local Printer Installation  Network Printer Installation  Printer Sharing  Other.

Printer Installation Ben Wu A&S IT 09/18/2007. Outline  Preparation  Local Printer Installation  Network Printer Installation  Printer Sharing  Other.

Similar presentations

Ads by Google