Presentation is loading. Please wait.

Presentation is loading. Please wait.

Pain Point Facilitation and Prioritization Exercise

Published byErik Craig Modified over 6 years ago

Similar presentations

Presentation on theme: "Pain Point Facilitation and Prioritization Exercise"— Presentation transcript:

1 Pain Point Facilitation and Prioritization Exercise
Jim Hietala

2 Question for Pain Point Discussion:
For each of these segments, what are the obstacles or pain points that prevent us from: defining what “good commercial products” are in that segment identifying and acquiring products that meet those definitions?

3 Pain Points Discussion Starter
Network Security Devices (e.g. firewall, NIPS, AV/spam gateways) Centralized Security Services (e.g. IAM, SIEM, log management) Cloud/SaaS Delivered Security Services (e.g. Managed VA/ scan, cloud A/V, spam) Vendors: Cost to develop, test, certify/accredit, deliver Timeframe to develop, test, certify/accredit, deliver Limited market for certified products given time to test required Uncertain market for “highly secure” vs. “highly functional” Customers: Lack of interoperability Supply chain security assurance Cost of secure, certified products Lack of software assurance, all types of software Lack of guidance on secure architectures Perimeter security model breaking down Lack of guidance on effective infosec management Threat/response, point solution nature of market Secure Platforms (e.g. SELinux, Trusted Solaris, TPM, Separation Kernel, et al) Acquisition: Globalization: R&D, manufacturing, software/hardware design (assurance of entire chain) Revised Common Criteria – Security certification standardization Approach to complexity where needed/can be eliminated Root cause analysis to feed policy updates Standardization (configurations and work with vendors before stipulating) System Assurance guidelines High Assurance – when will it be mandated? Swim-lanes and authorities across government Export control/ITAR, etc. Sensible policies for acquisition: scalable to program and place in architecture Redundant interoperability testing (and regimes) –need to overhaul certification policies Endpoint Security Software (e.g. A/V, F/W, anti-spam)

4 Contacts: Dave Lounsbury, VP, Collaboration Services Jim Hietala, VP, Security Sally Long, Project Management Joe Bergmann, Director, RTES Forum Administrative: Diane MacDonald

5 Thank you for your participation!
We look forward to seeing you in Seattle

Download ppt "Pain Point Facilitation and Prioritization Exercise"

Similar presentations

Rational Unified Process®

Rational Unified Process®
Impacts of 3 rd Party IaaS on broadband network operations and businesses Prabhat Kumar Managing Partner, i 3 m 3 Solutions.

Impacts of 3 rd Party IaaS on broadband network operations and businesses Prabhat Kumar Managing Partner, i 3 m 3 Solutions.
Which Cloud? Len Padilla Senior Technical Director NTT Europe.

Which Cloud? Len Padilla Senior Technical Director NTT Europe.
Copyright (C) The Open Group 2014 Securing Global IT Supply Chains and IT Products by Working with Open Trusted Technology Provider™ Accredited Companies.

Copyright (C) The Open Group 2014 Securing Global IT Supply Chains and IT Products by Working with Open Trusted Technology Provider™ Accredited Companies.
Www.cloudsecurityalliance.org Copyright © 2011 Cloud Security Alliance Trusted Cloud Initiative Work Group Session.

Copyright © 2011 Cloud Security Alliance Trusted Cloud Initiative Work Group Session.
Standards Certification Education & Training Publishing Conferences & Exhibits Using Outbound IP Connections for Remote Access EXPO 2005 Chicago, IL.

Standards Certification Education & Training Publishing Conferences & Exhibits Using Outbound IP Connections for Remote Access EXPO 2005 Chicago, IL.
© 2013 Cisco and/or its affiliates. All rights reserved. 1 Cisco Public Building Trustworthy Systems Overview and Strategy 2013 RSA Conference January.

© 2013 Cisco and/or its affiliates. All rights reserved. 1 Cisco Public Building Trustworthy Systems Overview and Strategy 2013 RSA Conference January.
Security that is... Ergonomic, Economical and Efficient! In every way! Stonesoft SSL VPN SSL VPN.

Security that is... Ergonomic, Economical and Efficient! In every way! Stonesoft SSL VPN SSL VPN.
© Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. HP Security Services Svetlana.

© Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. HP Security Services Svetlana.
Mechanics of Exporting Certificates of Origin presented by Amanda Barlow USCIB Export Expo December 10, 2013 USCIB Trade Services.

Mechanics of Exporting Certificates of Origin presented by Amanda Barlow USCIB Export Expo December 10, 2013 USCIB Trade Services.
Panorama Consulting Group LLC www.panorama-consulting.com +1.303.256.6253 1 ERP Assessment, Selection, and Planning SAMPLE APPROACH.

Panorama Consulting Group LLC ERP Assessment, Selection, and Planning SAMPLE APPROACH.
Asper School of Business University of Manitoba Systems Analysis & Design Instructor: Bob Travica System architectures Updated: November 2014.

Asper School of Business University of Manitoba Systems Analysis & Design Instructor: Bob Travica System architectures Updated: November 2014.
MIGRATION FROM SCREENOS TO JUNOS based firewall

MIGRATION FROM SCREENOS TO JUNOS based firewall
Cisco Confidential 1 © 2010 Cisco and/or its affiliates. All rights reserved.

Cisco Confidential 1 © 2010 Cisco and/or its affiliates. All rights reserved.
1 Past Present Future A Honeywell Company North America Sales Organization.

1 Past Present Future A Honeywell Company North America Sales Organization.
1 Introduction to Cloud Computing Jian Tang 01/19/2012.

1 Introduction to Cloud Computing Jian Tang 01/19/2012.
Chapter 20 20-1 © 2012 Pearson Education, Inc. Publishing as Prentice Hall.

Chapter © 2012 Pearson Education, Inc. Publishing as Prentice Hall.
NUAGA May 22, 2014.  IT Specialist, Utah Department of Technology Services (DTS)  Assigned to Department of Alcoholic Beverage Control  PCI Professional.

NUAGA May 22,  IT Specialist, Utah Department of Technology Services (DTS)  Assigned to Department of Alcoholic Beverage Control  PCI Professional.
The Cloud Identity Security Leader. © 2012 Ping Identity Corporation Nair the twain shall meet Enterprise Social Mobile.

The Cloud Identity Security Leader. © 2012 Ping Identity Corporation Nair the twain shall meet Enterprise Social Mobile.
Copyright © 2005 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 1 Open Standards for Network Access Control Trusted Network Connect.

Copyright © 2005 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 1 Open Standards for Network Access Control Trusted Network Connect.

Similar presentations

Ads by Google