Presentation is loading. Please wait.

Presentation is loading. Please wait.

MIS 3580 Defending Against Cyber Crime

Published byJerome Booker Modified over 9 years ago

Similar presentations

Presentation on theme: "MIS 3580 Defending Against Cyber Crime"— Presentation transcript:

1 MIS 3580 Defending Against Cyber Crime
Professor Thu Nguyen

2 Let’s get to know each other
Get to know your neighbor Name Major Animal & Why? Why is he/she choose this class? What experiences has he/she has with IT Security? What does he/she want out of this class besides an “A”?

3 Key Learning Objectives
Understand the RISKS associated in Info Sec Understand basic Information technology risk concepts Understand components of an IT risk scenarios Understand Critical Security Controls Understand common threat vectors Field research/simulation and executive presentation

4 Review Syllabus Texts Read the assigned chapters before the class
Information Security Contemporary Cases by Marie Wright & John Kakalik The Executive Guide to Information Security Threats, Challenges and Solutions by Kark Egan w/ Tim Mather Read the assigned chapters before the class Pick your partners & date to present study case & questions Same partner to perform Lab work Adhere to the syllabus rules, however assignments may be subject to change. Mutual & Interactive Learning environment

5 Discussion Topics Why do Business need Information Security?
To provide consumer confidence to do business electronically To satisfy regulations / laws To protect company assets What skills will you need to navigate the business word as an Information Technology Professional?

6 Demands in Information Security Professionals
“The 5 (6) skills security pros need to be honing today in order to thrive in the years ahead” Big risk manage Data Analytics Be a business partner-collaborator Technical and business savviness Versatile – Can ware multiple hats (IT pros, Ops. manager, investigator/auditor, compliance, HR, etc.) Stay connected, current & relevant

7 INFO SEC Jobs Information Security Analysis-Director
Information Technology Consultants Information Technology Auditors/Director Information Security Chief Information Security Officers- CISOs Cyber Security Professionals IT Risk Manager/Director Compliance Manager/Director

8 20 Cool InfoSec & Cybersecurity Jobs from SANS
#1 Information Security Crime Investigator/Forensics Expert #2 System, Network, and/or Web Penetration Tester #3 Forensic Analyst #4 Incident Responder #5 Security Architect #6 Malware Analyst #7 Network Security Engineer #8 Security Analyst #9 Computer Crime Investigator #10 CISO/ISO or Director of Security #11 Application Penetration Tester #12 Security Operations Center Analyst #13 Prosecutor Specializing in Information Security Crime #14 Technical Director and Deputy CISO #15 Intrusion Analyst #16 Vulnerability Researcher/ Exploit Developer #17 Security Auditor #18 Security-savvy Software Developer #19 Security Maven in an Application Developer Organization #20 Disaster Recovery/Business Continuity Analyst/Manager

9 Skill Requirements BA/BS/MS/MBA degree in technology and financial related field Certifications ( CISA, CISM, CISSP, ISC, etc. ) Knowledge of Network, IT Operations, IT security, DBM, SQL, data analytics, etc. Knowledge of GLB (privacy), HIPPA, COSO, COBIT, CMMI Project management skills Knowledge of information security, law & regulations Knowledge of business operations & risk management Experience in IT security xx years. DO YOUR OWN RESEARCH ON THE JOB YOU WANT! Pursuit the studies & experiences need to full fill the post.

10 Certifications

11 Recent Headline Security News
8/14/14 “A Russian crime ring has amassed the largest known collection of stolen Internet credentials, including 1.2 billion user name and password combinations and more than 500 million addresses, security researchers say.” 8/15/2014 “The U.S.-based Supervalu supermarket chain is investigating a network intrusion that may have resulted in criminals compromising customer data from point-of-sale systems at 180 stores in 25 states” 8/18/14 “Community Health Systems, which owns 206 hospitals, says a network breach exposed 4.5 million patients' personal information. Forensics experts believe the attacker was an "advanced persistent threat group originating from China."

12 Challenges & Opportunities in Info Sec
Info Sec Pros are in demand for the immediate decade & beyond. ISACA “Cybersecurity attracts spur demand for CISO talents” August 14, 2014 article. Rapid changes. Consistently stay in-tune & updated. Get informed Cnet.com, SAN.org, Infragard.net, ISACA.org, etc. Stay ahead of the “bad guys”- Cyber War is real & here!

13 Info Sec Challenges when you are the CEO
Info security is a significant boardroom issue that executives need to understand to conduct business in modern time Security incidents have grown to a multi billion dollar industry globally in increasing speed, complexity and business impact. Information security market today is immature and opportunities for better solution. More regulations and governance will continue in a effort to protect consumers and enterprise that engages in ecommerce.

14 Next Week’s Assignments
Review Appendix D of the Executive Guide manual. Research your 1st job requirements Review Chapter 2 of the Executive Guide manual Team 1 – Read & present the SRA International Inc. case study from the Information Security Contemporary Cases manual Power Point Presentation must include: Executive Summary of the case Answer Questions: 2, 3, 6, 8, 9, & 10

15 Questions?

Download ppt "MIS 3580 Defending Against Cyber Crime"

Similar presentations

Philippine Cybercrime Efforts

Philippine Cybercrime Efforts
Chapter 1 We’ve Got Problems…. Four Horsemen  … of the electronic apocalypse  Spam --- unsolicited bulk email o Over 70% of email traffic  Bugs ---

Chapter 1 We’ve Got Problems…. Four Horsemen  … of the electronic apocalypse  Spam --- unsolicited bulk o Over 70% of traffic  Bugs ---
2 whoami The OWASP Foundation Nahidul Kibria Co-Leader, OWASP Bangladesh, Senior Software Engineer, KAZ Software Ltd.

2 whoami The OWASP Foundation Nahidul Kibria Co-Leader, OWASP Bangladesh, Senior Software Engineer, KAZ Software Ltd.
Security and Personnel

Security and Personnel
1www.skyboxsecurity.com Skybox Cyber Security Best Practices Three steps to reduce the risk of Advanced Persistent Threats With continuing news coverage.

1www.skyboxsecurity.com Skybox Cyber Security Best Practices Three steps to reduce the risk of Advanced Persistent Threats With continuing news coverage.
A Covenant University Presentation By Favour Femi-Oyewole, BSc, MSc (Computer Science), MSc (Information Security) Certified COBIT 5 Assessor /Certified.

A Covenant University Presentation By Favour Femi-Oyewole, BSc, MSc (Computer Science), MSc (Information Security) Certified COBIT 5 Assessor /Certified.
© 2006 IBM Corporation Introduction to z/OS Security Lesson 9: Standards and Policies.

© 2006 IBM Corporation Introduction to z/OS Security Lesson 9: Standards and Policies.
Security Offering. Cyber Security Solutions 2 Assessment Analysis & Planning Design & Architecture Development & Implementation O&M Critical Infrastructure.

Security Offering. Cyber Security Solutions 2 Assessment Analysis & Planning Design & Architecture Development & Implementation O&M Critical Infrastructure.
Cyber Security Finance Forum 2012 Michael DuBose Managing Director & Practice Leader Cyber Investigations.

Cyber Security Finance Forum 2012 Michael DuBose Managing Director & Practice Leader Cyber Investigations.
1 Group-IB: Digital investigations and forensic Ilya Sachkov Group-IB

1 Group-IB: Digital investigations and forensic Ilya Sachkov Group-IB
Staying Ahead of the Curve in Cyber Security Bill Chang CEO, SingTel Group Enterprise.

Staying Ahead of the Curve in Cyber Security Bill Chang CEO, SingTel Group Enterprise.
Cybersecurity nexus (CSX)

Cybersecurity nexus (CSX)
Eleventh Edition 1 Introduction to Information Systems Essentials for the Internetworked E-Business Enterprise Irwin/McGraw-Hill Copyright © 2002, The.

Eleventh Edition 1 Introduction to Information Systems Essentials for the Internetworked E-Business Enterprise Irwin/McGraw-Hill Copyright © 2002, The.
Confidentiality Integrity Accountability Communications Data Hardware Software Next.

Confidentiality Integrity Accountability Communications Data Hardware Software Next.
Resources to Support Training Programs for CSIRTs.

Resources to Support Training Programs for CSIRTs.
Contact Center Security Strategies Karl Walder Director - Solutions Noble Systems.

Contact Center Security Strategies Karl Walder Director - Solutions Noble Systems.
Security Professional Services. Security Assessments Vulnerability Assessment IT Security Assessment Firewall Migration Custom Professional Security Services.

Security Professional Services. Security Assessments Vulnerability Assessment IT Security Assessment Firewall Migration Custom Professional Security Services.
Can your team outwit, outplay and outlast your opponents to be the ultimate CyberSurvivor?

Can your team outwit, outplay and outlast your opponents to be the ultimate CyberSurvivor?
Assessment Presentation Philip Robbins - July 14, 2012 University of Phoenix Hawaii Campus Fundamentals of Information Systems Security.

Assessment Presentation Philip Robbins - July 14, 2012 University of Phoenix Hawaii Campus Fundamentals of Information Systems Security.
Nata Raju Gurrapu Agenda What is Information and Security. Industry Standards Job Profiles Certifications Tips.

Nata Raju Gurrapu Agenda What is Information and Security. Industry Standards Job Profiles Certifications Tips.

Similar presentations

Ads by Google