Presentation is loading. Please wait.

Presentation is loading. Please wait.

Objectives Telecommunications and Network Physical and Personnel

Published byJonah Allen Modified over 6 years ago

Similar presentations

Presentation on theme: "Objectives Telecommunications and Network Physical and Personnel"— Presentation transcript:

1 Objectives Telecommunications and Network Physical and Personnel
Recognize that physical security and cyber security are related Recognize that personnel security policies and procedures are related to cyber security Explain how awareness training strengthens cyber security practices Planning, Policies, and Procedures Physical and Personnel Telecommunications and Network System Application and Individual

2 Physical Security Addresses the protection of the organization’s assets: Personnel Property Information 2

3 Physical And Cyber Security
Disciplines merging Physical access can lead to compromise

4 Physical Security Threats
Most threats in this area are ‘physical’ Fire Flood Natural disasters The Human factor is an exception to this rule

5 Major Sources Of Physical Loss
Temperature extremes Gases Liquids Living organisms Excessive movement Energy anomalies Source: “Fighting Computer Crime” by Donn B. Parker 5

6 Physical Security Threat Categories
Natural and Environmental Man-made

7 Natural And Environmental Threats
Hurricanes Tornadoes Earthquakes Floods Lightning Mudslides Fire Electrical

8 Man-Made Threats Hackers Theft Human error

9 Physical Security Countermeasures
Property protection Structural hardening Physical access control Intrusion detection Physical security procedures Contingency plans Physical security awareness training

10 Property Protection Fences Gates Doors Locks and keys Lighting
Fire detection and suppression systems

11 Structural Hardening Robust construction Minimal penetration
Building complexity

12 Physical Access Control
Ensures only authorized individuals are allowed into certain areas Who What When Where How

13 Intrusion Detection Guards Dogs Electronic monitoring systems

14 Physical Security Procedures
Impose consequences for physical security violations Examples: Log personnel access to restricted areas Escort visitors, delivery, terminated personnel

15 Contingency Plans Considerations include Generators
Fire suppression and detection systems Water sensors Alternate facility Offsite storage facility

16 Physical Security Awareness Training
Train personnel what to do about Suspicious activities Unrecognized persons

17 Personnel Security Practices established to ensure the safety and security of personnel and other organizational assets

18 Personnel Security It’s all about the people
People are the weakest link An avenue to mold and define personnel behavior

19 Personnel Security Threat Categories
Insider threats Social engineering

20 Insider Threats One of the most common threats to any organization
More difficult to recognize Include Sabotage Unauthorized disclosure of information

21 Social Engineering Threats
Multiple techniques are used to gain information from authorized employees and using that information in conjunction with an attack Protect your password (even from the help desk) Protect personnel rosters

22 Dumpster Diving Rummaging through a company’s or individual’s garbage for discarded documents, information, and other precious items that could be used in an attack against that person or company

23 Phishing Usually takes place through fraudulent s requesting users to disclose personal or financial information appears to come from a legitimate organization

24

25 Security Awareness Recognizing what types of security issues might arise Knowing your responsibilities and what actions to take in case of a breach

26 Policies And Procedures
Acceptable use policy Personnel controls Hiring and termination practices

27 People And Places: What You Need To Know
Physical security Physical security threats and countermeasures Personnel security Personnel security threats and countermeasures

Download ppt "Objectives Telecommunications and Network Physical and Personnel"

Similar presentations

4 Information Security.

4 Information Security.
Computer Fraud Chapter 5.

Computer Fraud Chapter 5.
Computer Fraud Chapter 5.

Computer Fraud Chapter 5.
Copyright 2004 Foreman Architects Engineers School Security From Common Sense to High Tech.

Copyright 2004 Foreman Architects Engineers School Security From Common Sense to High Tech.
Physical and Environmental Security Chapter 5 Part 1 Pages 427 to 456.

Physical and Environmental Security Chapter 5 Part 1 Pages 427 to 456.
11 ASSESSING THE NEED FOR SECURITY Chapter 1. Chapter 1: Assessing the Need for Security2 ASSESSING THE NEED FOR SECURITY  Security design concepts 

11 ASSESSING THE NEED FOR SECURITY Chapter 1. Chapter 1: Assessing the Need for Security2 ASSESSING THE NEED FOR SECURITY  Security design concepts 
Lecture 1: Overview modified from slides of Lawrie Brown.

Lecture 1: Overview modified from slides of Lawrie Brown.
Dr. Bhavani Thuraisingham The University of Texas at Dallas (UTD) June 2011 Physical (Environmental) Security.

Dr. Bhavani Thuraisingham The University of Texas at Dallas (UTD) June 2011 Physical (Environmental) Security.
1 An Overview of Computer Security computer security.

1 An Overview of Computer Security computer security.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
Stephen S. Yau CSE 465 & CSE591, Fall 2006 1 Physical Security for Information Systems.

Stephen S. Yau CSE 465 & CSE591, Fall Physical Security for Information Systems.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Qualitative.

Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Qualitative.
This work is supported by the National Science Foundation under Grant Number DUE-0302909. Any opinions, findings and conclusions or recommendations expressed.

This work is supported by the National Science Foundation under Grant Number DUE Any opinions, findings and conclusions or recommendations expressed.
Information Security Principles and Practices

Information Security Principles and Practices
Lecture 11 Reliability and Security in IT infrastructure.

Lecture 11 Reliability and Security in IT infrastructure.
Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Information.

Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Information.
Physical and Cyber Attacks1. 2 Inspirational Quote Country in which there are precipitous cliffs with torrents running between, deep natural hollows,

Physical and Cyber Attacks1. 2 Inspirational Quote Country in which there are precipitous cliffs with torrents running between, deep natural hollows,
Session 3 – Information Security Policies

Session 3 – Information Security Policies

Similar presentations

Ads by Google