Presentation is loading. Please wait.

Presentation is loading. Please wait.

Cybersecurity Trends for 2018

Published byBruce Lambert Modified over 6 years ago

Similar presentations

Presentation on theme: "Cybersecurity Trends for 2018"— Presentation transcript:

1 Cybersecurity Trends for 2018
Greg Blake Chief Information Officer Idaho Housing and Finance Association

2 Governance, Risk, and Compliance (GRC)

3 Making a proper risk assessments is important

4 Cybersecurity Program
Develop and enterprise-wide data security governance program Cybersecurity Program It is the responsibility of every manger to know what assets are in use so they can manage the associated risks. Average cost of Cybersecurity breach is $3.7 Million A formal Cybersecurity program can reduce the cost of a breach $325K Implementing a Cybersecurity program ranges from $50K - $300K Annual Cybersecurity cost is $50K

5 Steps to implement a Cybersecurity Program

6 Cloud security should be your focus
Develop security guidelines for cloud vendors Develop a cloud decision model Create a robust vendor management program

7 We all have the same behavior patterns
Limbic region in the brain “oh no” hands to their heads

8 Yeah! Raised their arms in celebration

9 CARTA – Continuous Adaptive Risk and Trust Assessment
Focus on protection to prevention CARTA – Continuous Adaptive Risk and Trust Assessment Deciding with certainty if an event is good or bad Behavioral Firewall (Preempt) Palo Alto Fortinet Checkpoint CISCO Juniper Forcepoint “All systems and devices must be considered potentially compromised and their behaviors continuously assessed for risk and trust.” “Users once authenticated, are given just enough trust to complete the action being requested, and their behaviors are continuously verified and assessed for risk.”

10 UEBA – User behavior and advanced Analytics
Focus on protection to prevention Balabit Dtex E8 Security Exabeam Forcepoint Fortscale Gurucul Haystax Technology HPE Niara Interset Microsoft Palo Alto Networks Preempt RedOwl Securonix Splunk Varonis Veriato ZoneFox UEBA – User behavior and advanced Analytics How UEBA solutions work “UEBA solutions identify patterns in typical user behavior and then pinpoint anomalous activities that do not match those patterns and could correspond with security incidents.”

11 Software Development Lifecycle Changes
DevOps to DevSecOps For its 2016 State of DevOps Report, Puppet Labs surveyed 4,600 technical professionals. Three type of organization High IT performers, which complete multiple deployments per day Medium IT performers, which deploy between once a week to once a month Low IT performers, which deploy once per month or less Study found that high IT performers deploy 200 time more frequently than low IT performers. Their lead ties are 2,555 times faster

12 Software Development Lifecycle Changes
Implement an Agile Development Methodology Add a security professional rol

13 Hack yourself first Privacy is not real anymore – Assume your PII has been compromised If a hackers want inside your system he will find a way Find your vulnerabilities before the hacker does Traditional way to attack cyber crime is outdated Keep an eye our for future cyber crime strategies Select the perfect team to do a penetration test

14 Test your defenses

15 Prince William at the Royal Air Force HQ
Prince William at a Royal Air Force Facility. Documentary was filmed and published online This media photo was widely distributed before someone zoomed in on the posted notices above the Prince.

16 RAF hacked by a major security blunder
MilFlip is the UK Military Flight Information system. Not necessarily a top secret web site, but not for general public use either!

Download ppt "Cybersecurity Trends for 2018"

Similar presentations

The Whole/Hole of Security Public (DoD) v. Corporate Carl Bourland US Army Judge Advocate Generals Corps.

The Whole/Hole of Security Public (DoD) v. Corporate Carl Bourland US Army Judge Advocate Generals Corps.
MSIT 458: Information Security & Assurance By Curtis Pethley.

MSIT 458: Information Security & Assurance By Curtis Pethley.
Know the Client Own the Problem Share the Solution The 2005 Case for Information Technology Security October 14, 2004.

Know the Client Own the Problem Share the Solution The 2005 Case for Information Technology Security October 14, 2004.
SEC835 Database and Web application security Information Security Architecture.

SEC835 Database and Web application security Information Security Architecture.
Information Security and YOU!. Information Assurance Outreach Information Security Online Security Remote Access with Demonstration The Cloud Email Social.

Information Security and YOU!. Information Assurance Outreach Information Security Online Security Remote Access with Demonstration The Cloud Social.
1 We’ve been p0wn’d? Review of 2015 Surface Transportation Cybersecurity Incidents 2015 TRB Session 850 Edward Fok USDOT/FHWA – Resource Center.

1 We’ve been p0wn’d? Review of 2015 Surface Transportation Cybersecurity Incidents 2015 TRB Session 850 Edward Fok USDOT/FHWA – Resource Center.
Data Security: Steps to Improved Information Security September 22, 2015 Presented by: Alex Henderson General Counsel and Chief Administrative Officer.

Data Security: Steps to Improved Information Security September 22, 2015 Presented by: Alex Henderson General Counsel and Chief Administrative Officer.
CUTTING COMPLEXITY – SIMPLIFYING SECURITY INSERT PRESENTERS NAME HERE XXXX INSERT DATE OF EVENT HERE XXXX.

CUTTING COMPLEXITY – SIMPLIFYING SECURITY INSERT PRESENTERS NAME HERE XXXX INSERT DATE OF EVENT HERE XXXX.
The Changing World of Endpoint Protection

The Changing World of Endpoint Protection
Cyber Insecurity Under Attack Cyber Security Past, present and future Patricia Titus Chief Information Security Officer Unisys Corporation.

Cyber Insecurity Under Attack Cyber Security Past, present and future Patricia Titus Chief Information Security Officer Unisys Corporation.
Enterprise Cybersecurity Strategy

Enterprise Cybersecurity Strategy
© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. State of Network Security.

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. State of Network Security.
Security and Resilience Pat Looney Brookhaven National Laboratory April 2016.

Security and Resilience Pat Looney Brookhaven National Laboratory April 2016.
CLOSE THE SECURITY GAP WITH IT SOLUTIONS FROM COMPUTACENTER AND CISCO AUGUST 2014.

CLOSE THE SECURITY GAP WITH IT SOLUTIONS FROM COMPUTACENTER AND CISCO AUGUST 2014.
Presented by: Mike Gerdes Director, Information Security Center of Expertise Cybersecurity State of the Union.

Presented by: Mike Gerdes Director, Information Security Center of Expertise Cybersecurity State of the Union.
© 2016 Global Market Insights, Inc. USA. All Rights Reserved Fuel Cell Market size worth $25.5bn by 2024 Advanced Persistent Threats.

© 2016 Global Market Insights, Inc. USA. All Rights Reserved Fuel Cell Market size worth $25.5bn by 2024 Advanced Persistent Threats.
Cybersecurity as a Business Differentiator

Cybersecurity as a Business Differentiator
Law Firm Data Security: What In-house Counsel Need to Know

Law Firm Data Security: What In-house Counsel Need to Know
Michael Wright • Chief Security Officer • Tech Lock

Michael Wright • Chief Security Officer • Tech Lock
Performing Risk Analysis and Testing: Outsource or In-house

Performing Risk Analysis and Testing: Outsource or In-house

Similar presentations

Ads by Google