Presentation is loading. Please wait.

Presentation is loading. Please wait.

Jeff Williams 2015.  Intro  Awesome Times  Security Briefing  Service with Security.

Published byPercival Houston Modified over 9 years ago

Similar presentations

Presentation on theme: "Jeff Williams 2015.  Intro  Awesome Times  Security Briefing  Service with Security."— Presentation transcript:

1 Jeff Williams 2015

2  Intro  Awesome Times  Security Briefing  Service with Security

3  Deloitte & Touché consultant during Y2K  Santa Clara County Office of Education  Supported Payroll, financial and human resource systems in 44 district, in two counties  California State University  9 year in Information Security and resent appoint to Director of Customer Service  Security experience from briefings (e.g. state, Infragard, Verizon), trainings (e.g. CISA, CISSP and Incident Handler), books (e.g. ) and most important from experience  Philosophy & MBA  All views, misquotes and materials out of context are the solely my fault; I’m here to paint you a picture and encourage you to grow

4 Meet the business goal with Changing Technology that is Fragile  Three stories  Big Data  Ted Talks on Machine Learning  Geekonomics

5  Even Data Changes  3rd Millennium BC  12th-16th century  14 th century

6 We solve our problems with the tools available  Rigid exactitude  Correlation  What, not why

7 “The wonderful and terrifying implication of computers that can learn” Jeremy Howard

8

9

10

11

12  Portland Cement  No Virtual Crash Test Dummies

13 Meet the business goal WITH Changing Technology THAT Is Fragile

14  Infragard Briefings  Verizon Report and Briefings  Dell SecureWorks Briefings  Microsoft Briefings  SANS.org training and Briefings

15

16

17  Pre-2008 – The lone wolfs…wolves are pack animals  2008 - roll up high profile Hackers  2009 - China hires Russian Hackers  steals cyber attack IP  2010 - Move to single high value target - multi-verification  2011 – Russian Hackers become patriots  2012 - Iran (mother of all cyber attacks, DDoS US banks)  Iran provided $$$ to hackers to DDoS; ineffective but lots of $$$  2014 – Disruption: data theft; Anonymous, protest to disrupted and embarrass; - Recon in network that to them are USA - relations between RU, China, Iran, N.K.; same code

18

19

20  Malicious actors go after those who have access to the data  Poor key implementation and management

21  Spear phishing  Social Engineering  Changing direct deposits  Downloading your emails  Humans can pivot and explore

22  What is the business goal?  What are the risks?  What are the threats?  What are the right security controls?

23

24 What they protect  Confidentiality  Integrity  Availability How they protect  Deter  Prevent  Detect  Recover  Reduce

25 We Live in Awesome Times Thank You

Download ppt "Jeff Williams 2015.  Intro  Awesome Times  Security Briefing  Service with Security."

Similar presentations

CUBIC DEFENSE APPLICATIONS Security Summit Discussions Jeff Snyder Vice President, Cyber Programs Cubic Defense Applications.

CUBIC DEFENSE APPLICATIONS Security Summit Discussions Jeff Snyder Vice President, Cyber Programs Cubic Defense Applications.
Security and Trust in E- Commerce. The E-commerce Security Environment: The Scope of the Problem  Overall size of cybercrime unclear; amount of losses.

Security and Trust in E- Commerce. The E-commerce Security Environment: The Scope of the Problem  Overall size of cybercrime unclear; amount of losses.
New trends on cyber security - Cyber Espionage & Identity theft By K S Yash, CRO 1.

New trends on cyber security - Cyber Espionage & Identity theft By K S Yash, CRO 1.
CUTTING OFF THE HYDRA HEADS OF ACH WIRE FRAUD Presented by: Eigen Heald, MsIA, CISA, CISSP, CGEIT, CEH, GCFA.

CUTTING OFF THE HYDRA HEADS OF ACH WIRE FRAUD Presented by: Eigen Heald, MsIA, CISA, CISSP, CGEIT, CEH, GCFA.
Social media threats. Warning! May contain mild peril.

Social media threats. Warning! May contain mild peril.
Network Security aka CyberSecurity Monitor and manage security risks at the network level for the entire Johns Hopkins Network.

Network Security aka CyberSecurity Monitor and manage security risks at the network level for the entire Johns Hopkins Network.
HALDEBIQUE Geoffroy ROYER Johan  Crime motivated attacks  Hacktivism  Cyber Warfare.

HALDEBIQUE Geoffroy ROYER Johan  Crime motivated attacks  Hacktivism  Cyber Warfare.
Akamai Confidential©2011 Akamai. In the Cloud Security Highlighting the Need for Defense-in-Depth R. H. Powell IV Director, Government Solutions CISSP.

Akamai Confidential©2011 Akamai. In the Cloud Security Highlighting the Need for Defense-in-Depth R. H. Powell IV Director, Government Solutions CISSP.
Cyber X-Force-SMS alert system for E-mail threats.

Cyber X-Force-SMS alert system for threats.
CHAPTER 4 Information Security. Announcements Project 2 – due today before midnight Tuesday Class Quiz 1 – Access Basics Questions/Comments.

CHAPTER 4 Information Security. Announcements Project 2 – due today before midnight Tuesday Class Quiz 1 – Access Basics Questions/Comments.
Brooke Banks Information Security. Security is your business.

Brooke Banks Information Security. Security is your business.
Nate Olson-Daniel Director of Strategic Development & Principal Engineer The Inevitable Attack.

Nate Olson-Daniel Director of Strategic Development & Principal Engineer The Inevitable Attack.
Geneva, Switzerland, 15-16 September 2014 Overview of Kenya’s Cybersecurity Framework Michael K. Katundu Director, Information Technology Communications.

Geneva, Switzerland, September 2014 Overview of Kenya’s Cybersecurity Framework Michael K. Katundu Director, Information Technology Communications.
Small Business Security By Donatas Sumyla. Content Introduction Tools Symantec Corp. Company Overview Symantec.com Microsoft Company Overview Small Business.

Small Business Security By Donatas Sumyla. Content Introduction Tools Symantec Corp. Company Overview Symantec.com Microsoft Company Overview Small Business.
The Difficult Road To Cybersecurity Steve Katz, CISSP Security Risk Solutions 631-692-5175 Steve Katz, CISSP Security.

The Difficult Road To Cybersecurity Steve Katz, CISSP Security Risk Solutions Steve Katz, CISSP Security.
Lecture 11 Electronic Business (MGT-485). Recap – Lecture 10 Transaction costs Network Externalities Switching costs Critical mass of customers Pricing.

Lecture 11 Electronic Business (MGT-485). Recap – Lecture 10 Transaction costs Network Externalities Switching costs Critical mass of customers Pricing.
Oklahoma Chapter Information Systems Security Association Oklahoma Chapter, Tulsa Oklahoma City Chapter, OKC Student Chapter, Okmulgee Oklahoma Chapter,

Oklahoma Chapter Information Systems Security Association Oklahoma Chapter, Tulsa Oklahoma City Chapter, OKC Student Chapter, Okmulgee Oklahoma Chapter,
External Threats to Healthcare Data Joshua Spencer, CPHIMS, C | EH.

External Threats to Healthcare Data Joshua Spencer, CPHIMS, C | EH.
 Jonathan Trull, Deputy State Auditor, Colorado Office of the State Auditor  Travis Schack, Colorado’s Information Security Officer  Chris Ingram,

 Jonathan Trull, Deputy State Auditor, Colorado Office of the State Auditor  Travis Schack, Colorado’s Information Security Officer  Chris Ingram,
11 Canal Center Plaza, Alexandria, VA 22314 T 800.663.7138 F 703.684.5189 www.robbinsgioia.com Enterprise Computing Conference (ECC) Workshop Alma R. Cole,

11 Canal Center Plaza, Alexandria, VA T F Enterprise Computing Conference (ECC) Workshop Alma R. Cole,

Similar presentations

Ads by Google