Presentation is loading. Please wait.

Presentation is loading. Please wait.

INFORMATION SECURITY UPDATE Al Arboleda Chief Information Security Officer.

Published byMeghan Norton Modified over 9 years ago

Similar presentations

Presentation on theme: "INFORMATION SECURITY UPDATE Al Arboleda Chief Information Security Officer."— Presentation transcript:

1 INFORMATION SECURITY UPDATE Al Arboleda Chief Information Security Officer

2 Information Security Program  How did we do this year? 2014  Malware  Known Vulnerabilities/Known Threats  Security Policy Violations Copyright infringement Appropriate Use Unauthorized Network Device (wireless routers) Compromised Machine/ Spamming/botnets Loss of confidential/personal information investigations  Account Compromises

3 How did we do this year? Malware  Adware  P2P Zeus or Gameover Zeus  ZeroAccess Trojan malware  x # of Botnets used to spam other campuses  Managed machines versus unmanaged machines

4 How did we do this year? Known Vulnerabilities/ Known Threats  Heart bleed/Open SSL  Internet Explorer, Chrome, and Firefox Browser – remote access/control vulnerabilities  Windows XP

5 How did we do this year? 2014 Security Policy Violations  Copyright violations - 3  REN-ISAC compromised machine notice- 11  Loss of Confidential Data Investigations- 1

6 How did we do this year? 2014 Account Compromises  The use of stolen and/or misused credentials continues to be the source of most of our compromised accounts  Phishing emails  Users using the same passwords in multiple systems  Bronco Account compromises -25  Network Account compromises - 125

7 Malware Approach  Traditional Antivirus and Intrusion Prevention systems are not capable of blocking advance malware advanced targeted attacks that use Web-based attacks, spear phishing, and zero-day exploits  FireEye pilot mode deployment Summer 2014 Zero day signatures Ability to identify attacks with a lower false positive rate Outbound protection to stop call backs to botnets  Full deployment Fall 2014

8 Known Vulnerability/ Known Threat Approach  Antivirus software  McAfee/Intel Antivirus Software – on all managed desktops and lab computers  Patch management (Windows, Mac, Linux)  Dell Kace - on all managed desktops and lab computers  Domain Names Service (DNS) Malware protection – Evaluate solutions

9 Security Policy Violations Approach  Security Awareness Training  Data Security & Privacy  Family Education Rights and Privacy Act (FERPA)  Health Insurance Portability and Accountability Act (HIPAA)  Interim Policies  Level 1 Personal and Confidential Data  Request for Data

10 Account Compromises Approach  Password Expiration Rules  90 day - users with access to confidential data  1 year - all other users with a Bronco Account  Multi-Factor Authentication  All passwords are eventually going to be compromised  Evaluate solutions that offer a second factor to confirm identity – (Cell phone or security token)  Log Management System  Collect information from disparate systems  Evaluate solutions that will make discovery and identification of compromised accounts easier

11 Other Security Projects  Card Access System Consolidation  Multiple disparate systems  Video Camera Monitoring Consolidation  Multiple disparate systems  HIPAA IT Risk Assessment

Download ppt "INFORMATION SECURITY UPDATE Al Arboleda Chief Information Security Officer."

Similar presentations

CS898T Mobile and Wireless Network Handheld Device Security By Yuan Chen July 25 th, 2005.

CS898T Mobile and Wireless Network Handheld Device Security By Yuan Chen July 25 th, 2005.
INADEQUATE SECURITY POLICIES Each covered entity and business associate must have written polices that cover all the Required and Addressable HIPAA standards.

INADEQUATE SECURITY POLICIES Each covered entity and business associate must have written polices that cover all the Required and Addressable HIPAA standards.
Security Training Lunch ‘n Learn. Agenda  Threat Analysis  Legal Issues  Threat Mitigation  User Security  Mobile Security  Policy Enforcement.

Security Training Lunch ‘n Learn. Agenda  Threat Analysis  Legal Issues  Threat Mitigation  User Security  Mobile Security  Policy Enforcement.
Security for Today’s Threat Landscape Kat Pelak 1.

Security for Today’s Threat Landscape Kat Pelak 1.
Current Security Threats WMO CBS ET-CTS Toulouse, France 26-30 May 2008 Allan Darling, NOAA’s National Weather Service WMO CBS ET-CTS Toulouse, France.

Current Security Threats WMO CBS ET-CTS Toulouse, France May 2008 Allan Darling, NOAA’s National Weather Service WMO CBS ET-CTS Toulouse, France.
Information Security Confidential Two-Factor Authentication Solution Overview Shawn Fulton January 15th, 2015.

Information Security Confidential Two-Factor Authentication Solution Overview Shawn Fulton January 15th, 2015.
Security Controls – What Works

Security Controls – What Works
Defense-in-Depth Against Malicious Software Jeff Alexander IT Pro Evangelist Microsoft Australia

Defense-in-Depth Against Malicious Software Jeff Alexander IT Pro Evangelist Microsoft Australia
Data Security At Cornell Steve Schuster. Questions I’d like to Answer ► Why do we care about data security? ► What are our biggest challenges at Cornell?

Data Security At Cornell Steve Schuster. Questions I’d like to Answer ► Why do we care about data security? ► What are our biggest challenges at Cornell?
Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.

Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.
Controls for Information Security

Controls for Information Security
Introducing Quick Heal Endpoint Security 5.3. “Quick Heal Endpoint Security 5.3 is designed to provide simple, intuitive centralized management and control.

Introducing Quick Heal Endpoint Security 5.3. “Quick Heal Endpoint Security 5.3 is designed to provide simple, intuitive centralized management and control.
Network Infrastructure Security. LAN Security Local area networks facilitate the storage and retrieval of programs and data used by a group of people.

Network Infrastructure Security. LAN Security Local area networks facilitate the storage and retrieval of programs and data used by a group of people.
Morris Bennett Altman Director of Network Services Internet Security Officer Queens College, CUNY Are You Exposed? Network Security.

Morris Bennett Altman Director of Network Services Internet Security Officer Queens College, CUNY Are You Exposed? Network Security.
Citadel Security Software Presents Are you Vulnerable? Bill Diamond Senior Security Engineer

Citadel Security Software Presents Are you Vulnerable? Bill Diamond Senior Security Engineer
Ferst Center Incident Incident Identification – Border Intrusion Detection System Incident Response – Campus Executive Incident Response Team Incident.

Ferst Center Incident Incident Identification – Border Intrusion Detection System Incident Response – Campus Executive Incident Response Team Incident.
The Difficult Road To Cybersecurity Steve Katz, CISSP Security Risk Solutions 631-692-5175 Steve Katz, CISSP Security.

The Difficult Road To Cybersecurity Steve Katz, CISSP Security Risk Solutions Steve Katz, CISSP Security.
Information Security Information Technology and Computing Services Information Technology and Computing Services

Information Security Information Technology and Computing Services Information Technology and Computing Services
Internet Safety By Megan Wilkinson. Viruses If your computer haves a viruses on it, it will show one of them or a different one. All commuters have different.

Internet Safety By Megan Wilkinson. Viruses If your computer haves a viruses on it, it will show one of them or a different one. All commuters have different.
Internet safety By Lydia Snowden.

Internet safety By Lydia Snowden.

Similar presentations

Ads by Google