Presentation is loading. Please wait.

Presentation is loading. Please wait.

Out of sight, out of….. control?

Published byWilla Kelley Modified over 6 years ago

Similar presentations

Presentation on theme: "Out of sight, out of….. control?"— Presentation transcript:

1 Out of sight, out of….. control?
The enhanced risk of teams away from the office Securing the Law Firm February 13th 2013 Martin Baldock

2 What is Security – reminder Pre-Travel security
Agenda What is Security – reminder Pre-Travel security In-country physical security In-country electronic security Security of meetings Secure telephony Post-travel security

3 What is Security?

4 What is Security?

5 Pre-travel

6 In-country physical security
Physically protect equipment Avoid confidential conversations in hotel rooms Computer monitors Code names – agreed at briefing Electronic eavesdropping, avoid using identical routes Nondescript carrier bags

7 In-country physical security
Diagrams and analysis on walls Access to Project rooms Clear desk policy Waste Shredding Backups Do not discuss the project in public

8 In-country physical security
3rd parties BAD GOOD

9 In-country electronic security
Turn laptops off Power down properly, un-mount encrypted volumes Use multi-factor authentication “thin client”-type devices Avoid using public Wi-Fi connections (e.g., hot spots) Always use an encrypted VPN/Citrix-like solution to access the Internet

10 In-country electronic security
Do not reproduce confidential documents on machines that are not under your control, this includes copy and fax machines in hotel business centres. Do not lend or borrow an electronic device from anyone (including the client). Avoid local purchases if possible Use a surge protector in conjunction with a laptop power supply BYOD

11 Meetings

12 Meetings Location of meeting rooms
Remove all electronic devices from meeting rooms Consider Technical Security Countermeasures (i.e., bug-sweeping) in high-risk countries Conference calls Flip charts Hand-outs “Need to know”

13 Secure telephony Protect mobile phones including SIM card
Use Blackberries for calls, and SMS Passwords and auto-delete Turn off Wi-Fi and Bluetooth Do not load non-approved applications Turn off mobile phones (remove battery) when in transit Beware that phone calls may be monitored Eavesdropping and shoulder surfing

14 Post-travel Forensic examination of laptop activity
Forensically wipe hard drive before reconnection Data retrieval Debrief staff returning from high-risk countries and document anomalous incidents Maintain a database of risk information by county/client/project

Download ppt "Out of sight, out of….. control?"

Similar presentations

Aspire Vertical Markets Retail Store. Retail Store Solution.

Aspire Vertical Markets Retail Store. Retail Store Solution.
Presented by the San Diego Industrial CI Awareness Working Group, an Affiliate of the Industrial Security Awareness Council.

Presented by the San Diego Industrial CI Awareness Working Group, an Affiliate of the Industrial Security Awareness Council.
HIPAA Security.

HIPAA Security.
Chapter 7: Physical & Environmental Security

Chapter 7: Physical & Environmental Security
Computer and Mobile Device Equipment Security Brief May 29, 2008 Presented by: Kevin G. Sutton, Chief, Information Technology Unit.

Computer and Mobile Device Equipment Security Brief May 29, 2008 Presented by: Kevin G. Sutton, Chief, Information Technology Unit.
Office Layout and Working Practices Unit 2a. Click to go to Sum up page Cellular Office Layout Traditional method of organising the office area Traditional.

Office Layout and Working Practices Unit 2a. Click to go to Sum up page Cellular Office Layout Traditional method of organising the office area Traditional.
HIPAA: An Overview of Transaction, Privacy and Security Regulations Training for Providers and Staff.

HIPAA: An Overview of Transaction, Privacy and Security Regulations Training for Providers and Staff.
© 2006 Consumer Jungle Wi-Fi Computing. © 2006 Consumer Jungle What is Wi-Fi? Term is short for Wireless Fidelity –Technical standard for short-range.

© 2006 Consumer Jungle Wi-Fi Computing. © 2006 Consumer Jungle What is Wi-Fi? Term is short for Wireless Fidelity –Technical standard for short-range.
Supporting The Mobile Client: Expanding Our Borders John Guidone Manager, Desktop Technologies and Dawn E. Colonese Manager, Help Desk & Client Access.

Supporting The Mobile Client: Expanding Our Borders John Guidone Manager, Desktop Technologies and Dawn E. Colonese Manager, Help Desk & Client Access.
Vodacom Microsoft Hosted Lync

Vodacom Microsoft Hosted Lync
HIPAA Basic Training for Privacy & Information Security Vanderbilt University Medical Center VUMC HIPAA Website: www.mc.vanderbilt.edu/HIPAA.

HIPAA Basic Training for Privacy & Information Security Vanderbilt University Medical Center VUMC HIPAA Website:
WORKFORCE CONFIDENTIALITY HIPAA Reminders. HIPAA 101 The Health Insurance Portability and Accountability Act (HIPAA) protects patient privacy. HIPAA is.

WORKFORCE CONFIDENTIALITY HIPAA Reminders. HIPAA 101 The Health Insurance Portability and Accountability Act (HIPAA) protects patient privacy. HIPAA is.
Springfield Technical Community College Security Awareness Training.

Springfield Technical Community College Security Awareness Training.
Information Systems Services Protecting Data – Keeping Safe Kevin Darley, IT Security Co-ordinator 8 th November 2012.

Information Systems Services Protecting Data – Keeping Safe Kevin Darley, IT Security Co-ordinator 8 th November 2012.
1 Electronic Information Security – What Researchers Need to Know University of California Office of the President Office of Research May 2005.

1 Electronic Information Security – What Researchers Need to Know University of California Office of the President Office of Research May 2005.
OPSEC Awareness Briefing Man-In-The-Middle Attacks (MITM)

OPSEC Awareness Briefing Man-In-The-Middle Attacks (MITM)
9/20/07 STLSecurity is Everyone's Responsibility 1 FHDA Technology Security Awareness.

9/20/07 STLSecurity is Everyone's Responsibility 1 FHDA Technology Security Awareness.
Locking the Backdoor: Computer Security and Medical Office Practice Dr. Maury Pinsk, FRCPC University of Alberta Division of Pediatric Nephrology.

Locking the Backdoor: Computer Security and Medical Office Practice Dr. Maury Pinsk, FRCPC University of Alberta Division of Pediatric Nephrology.
DATA SECURITY Social Security Numbers, Credit Card Numbers, Bank Account Numbers, Personal Health Information, Student and/or Staff Personal Information,

DATA SECURITY Social Security Numbers, Credit Card Numbers, Bank Account Numbers, Personal Health Information, Student and/or Staff Personal Information,
Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Qualitative.

Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Qualitative.

Similar presentations

Ads by Google