Presentation is loading. Please wait.

Presentation is loading. Please wait.

A Board-Level Business Risk

Published byMichael Anderson Modified over 6 years ago

Similar presentations

Presentation on theme: "A Board-Level Business Risk"— Presentation transcript:

0 WEBINAR Security Automation September 21, 2017 SPONSORED BY:

1 A Board-Level Business Risk
$100M $5.3B 2/3 150% Stolen By One Person Spoofing Trusted Business Partners Reported Losses to BEC Fraud Across 40,203 Victims Of All Impostor s Are Domain-spoofing Attacks YoY Increase Of Consumer Phishing Campaigns (Proofpoint research) (APWG) (United States Department of Justice) (FBI)

2 BL PA LT FW: Vendor payment, URGENT! Accounting changes, action rq’d
Bryan Littlefair Friday, 30th June 2017 at 4.47 pm Thomas Stoddard BL FW: Vendor payment, URGENT! Thomas, please see below – I authorise this and we need it done by 5.30 today. Call Iain if you need details. Bryan Sent from my iPhone – please excuse brevity Paul Auville Monday, 19th June 2017 at 09.13 John Parry PA Accounting changes, action rq’d Hi John, We’re making some banking changes ahead of the Hong Kong project completion.Please update the account details for final payments: China Merchants Bank, H. O. Shenzhen (SWIFT CODE: CMBCCNBSXXX) Lufthansa Ticketing Monday, 19th June 2017 at 09.13 Bob Fisher LT Confirmation of itinerary, San Jose California 07/09/2017 It’s my pleasure to confirm your ticket purchase for flights to San Jose, California, on the 7th of September 2017. Please find attached full details including your credit card transaction record. Regards, The Lufthansa Team. Customize this slide to show a logical pairing of individuals from the clients organization – one with authority to request a transfer and the other

3

4 State of Average Security Operations
Core Processes (41%): Investigation, Escalation, Notification, Reporting Repetitive Processes (52%): Context/Intel Enrichment, Incident Confirmation (41%) Response Actions (11%) Based on a survey done by Ponemon Institute, most security teams spend majority of their times (>50%) in repetitive tasks such as getting contextual information about users, threats and assets. As a result, Proactive Processes (such as hunting) don’t get enough attention. A security automation platform can enable organizations to automate the boring repetitive tasks so that security analysts can focus on Core and Proactive processes. Proactive Processes (5%): Source: Ponemon Institute.

5 Security incident response is a slow, labor-intensive
Addressing security incidents can take hours or days as manual clean-up can be a chore. Dealing with delivered with malware, bad URLs, or credential phishes involves many steps, including: Connecting an address to an internal identity Searching and finding selected malicious messages on the server Removing a malicious message out of a user’s inbox or other folders Identifying which malicious messages were forwarded and moving those to quarantine

6 Email Cleaning “Gotchas”
cleanup for malicious messages is often a manual process that starts with an alert or complaint that a malicious got through. Is the only in the inbox or was it moved to another folder? Should you check other folders for copies of the message? Has the message been internally forwarded? If so to whom and how many copies? Is there an audit trail or record of all the actions taken?

7

8

9

10

11

12

13

14

15 Live Demonstration

16 Have questions?

Download ppt "A Board-Level Business Risk"

Similar presentations

State of Louisiana and Short’s Travel

State of Louisiana and Short’s Travel
Https://secure.utah.gov/abr/abr Utah – 2014. Business Fraud Alert notifies business owners and registered agents when a change has been made to a business’

Utah – Business Fraud Alert notifies business owners and registered agents when a change has been made to a business’
Supplied on \web site. on January 10 th, 2008 Customer Security Management Reducing Internet fraud June 1 st, 2008 eSAC Walk Thru © Copyright Prevx Limited.

Supplied on \web site. on January 10 th, 2008 Customer Security Management Reducing Internet fraud June 1 st, 2008 eSAC Walk Thru © Copyright Prevx Limited.
Breaking Trust On The Internet

Breaking Trust On The Internet
1 Payables Efficiency Through… Access Online PAYMENT PLUS.

1 Payables Efficiency Through… Access Online PAYMENT PLUS.
Online Banking Fraud Prevention Recommendations and Best Practices This document provides you with fraud prevention best practices that every employee.

Online Banking Fraud Prevention Recommendations and Best Practices This document provides you with fraud prevention best practices that every employee.
The Ecommerce Security Environment For most law-abiding citizens, the internet holds the promise of a global marketplace, providing access to people and.

The Ecommerce Security Environment For most law-abiding citizens, the internet holds the promise of a global marketplace, providing access to people and.
U.S. Bank Corporate Payment Systems Payment Plus.

U.S. Bank Corporate Payment Systems Payment Plus.
U.S. Bank Payment Analytics Overview. Payment Fraud Trends 2 Reference: Association of Financial Professionals (AFP), 2011 Payments Fraud and Control.

U.S. Bank Payment Analytics Overview. Payment Fraud Trends 2 Reference: Association of Financial Professionals (AFP), 2011 Payments Fraud and Control.
Delivering significant, measurable reductions within Retail’s Greatest Area of Loss 18 th September 2014.

Delivering significant, measurable reductions within Retail’s Greatest Area of Loss 18 th September 2014.
Secure Electronic Transactions (SET). SET SET is an encryption and security specification designed to protect credit card transactions on the Internet.

Secure Electronic Transactions (SET). SET SET is an encryption and security specification designed to protect credit card transactions on the Internet.
Norman SecureTide Powerful cloud solution to stop spam and threats before it reaches your network.

Norman SecureTide Powerful cloud solution to stop spam and threats before it reaches your network.
© Affiliated Computer Services, Inc. (ACS) 2010 ACS Email Encryption.

© Affiliated Computer Services, Inc. (ACS) 2010 ACS Encryption.
Cyber Security Issues in South Korea and CSIRTs Cooperation September 17, 2014 Eunju Pak

Cyber Security Issues in South Korea and CSIRTs Cooperation September 17, 2014 Eunju Pak
INTRODUCTION Coined in 1996 by computer hackers. Hackers use e-mail to fish the internet hoping to hook users into supplying them the logins, passwords.

INTRODUCTION Coined in 1996 by computer hackers. Hackers use to fish the internet hoping to hook users into supplying them the logins, passwords.
First Community Bank www.fcbnm.com Prevx Safe Online Rollout & Best Practice Presentation.

First Community Bank Prevx Safe Online Rollout & Best Practice Presentation.
Information Security 2013 Roadshow. Roadshow Outline  Why We Care About Information Security  Safe Computing Recognize a Secure Web Site (HTTPS) How.

Information Security 2013 Roadshow. Roadshow Outline  Why We Care About Information Security  Safe Computing Recognize a Secure Web Site (HTTPS) How.
INTRODUCTION  Soch Solutions has launched an innovative e-queue system for crowd management.  Using the online advance queue web application, visitors.

INTRODUCTION  Soch Solutions has launched an innovative e-queue system for crowd management.  Using the online advance queue web application, visitors.
Reporting Phishing Incidents Heather Kimley June 13, 2012.

Reporting Phishing Incidents Heather Kimley June 13, 2012.
The impact of email-borne threats Why companies should recognise and embrace the need for change.

The impact of -borne threats Why companies should recognise and embrace the need for change.

Similar presentations

Ads by Google