Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 مديريت فناوري اطلاعات و ارتباطات نشست تخصصي كاربرد ارتباطات ماهواره اي در مديريت بحران و راهكارهاي نوين محافظت اطلاعات سازمان ها 27 مهرماه 1390 مديريت.

Published byBenjamin Walsh Modified over 9 years ago

Similar presentations

Presentation on theme: "1 مديريت فناوري اطلاعات و ارتباطات نشست تخصصي كاربرد ارتباطات ماهواره اي در مديريت بحران و راهكارهاي نوين محافظت اطلاعات سازمان ها 27 مهرماه 1390 مديريت."— Presentation transcript:

1 1 مديريت فناوري اطلاعات و ارتباطات نشست تخصصي كاربرد ارتباطات ماهواره اي در مديريت بحران و راهكارهاي نوين محافظت اطلاعات سازمان ها 27 مهرماه 1390 مديريت فناوري اطلاعات و ارتباطات شرکت ملي نفت ايران

2 2 مديريت فناوري اطلاعات و ارتباطات كاربرد ارتباطات ماهواره اي در مديريت بحران و راهكارهاي نوين محافظت اطلاعات سازمان ها Innovative Security Solutions for Enterprises Protection Against Internal Threats DPI DLP Admin Auditing Protection Against External Threats UTM Vulnerability Management and Compliance Web and Email Guard

3 3 مديريت فناوري اطلاعات و ارتباطات كاربرد ارتباطات ماهواره اي در مديريت بحران و راهكارهاي نوين محافظت اطلاعات سازمان ها Internal Security Threats Internet Abuse Staff Malicious Activities Unauthorized Access to Valuable Information Disclosure of Intellectual Property Admin Malicious activities

4 4 مديريت فناوري اطلاعات و ارتباطات كاربرد ارتباطات ماهواره اي در مديريت بحران و راهكارهاي نوين محافظت اطلاعات سازمان ها Deep Packet Inspection (DPI) Form of computer network packet inspection Examine the data part of packets Block packet or pass it Collect statistical information Inspect beyond OSI layer 2 & 3 Classify traffic based on signature database Classify traffic based on statistical values

5 5 مديريت فناوري اطلاعات و ارتباطات كاربرد ارتباطات ماهواره اي در مديريت بحران و راهكارهاي نوين محافظت اطلاعات سازمان ها 01010004C100 192.168.1.1 BitTorrent, eMule, Skype,... HTTP,SMTP, SQL Server, Oracle, MSN, Y! Link Layer IP TCP/UDP Static Port Dynamic Port Router/Switch Firewall DPIIPS Stateful Inspection String matching with bit offsets Application Control Engine

6 6 مديريت فناوري اطلاعات و ارتباطات كاربرد ارتباطات ماهواره اي در مديريت بحران و راهكارهاي نوين محافظت اطلاعات سازمان ها L2-L4 L7 Link Layer Traffic IP Layer Traffic UDP Layer TrafficTotal Traffic DOYBITORRENTOUKNOW SIGNATURE UDP Layer Traffic Up Layer Traffic L5-L6

7 7 مديريت فناوري اطلاعات و ارتباطات كاربرد ارتباطات ماهواره اي در مديريت بحران و راهكارهاي نوين محافظت اطلاعات سازمان ها Application Group User Group User Time

8 8 مديريت فناوري اطلاعات و ارتباطات كاربرد ارتباطات ماهواره اي در مديريت بحران و راهكارهاي نوين محافظت اطلاعات سازمان ها DPI Usage Policy definition and enforcement Quality of service Marking Shaping Traffic analysis Behavior auditing Statistical reports

9 9 مديريت فناوري اطلاعات و ارتباطات كاربرد ارتباطات ماهواره اي در مديريت بحران و راهكارهاي نوين محافظت اطلاعات سازمان ها Data Loss Prevention (DLP) Most of data leakages occur by staff Digital data is an asset of organizations Identify, monitor and protect Data in use Data in motion Data in rest Network DLP Endpoint DLP Datacenter DLP

10 10 مديريت فناوري اطلاعات و ارتباطات كاربرد ارتباطات ماهواره اي در مديريت بحران و راهكارهاي نوين محافظت اطلاعات سازمان ها Network DLP Reduce the risk of sensitive data leaving the network perimeter via e-mail, web, instant messaging and telnet Audit, encrypt, quarantine or block unauthorized transmissions of compliance-driven information or intellectual property in real- time as defined by policy Involve end users in data security processes and remediation to build awareness and reduce administrative cost Maintain competitive advantage and brand value through comprehensive protection of corporate data

11 11 مديريت فناوري اطلاعات و ارتباطات كاربرد ارتباطات ماهواره اي در مديريت بحران و راهكارهاي نوين محافظت اطلاعات سازمان ها Endpoint DLP Reduce risk by discovering and protecting sensitive data on laptops and desktops Minimize the time, costs and staff required to comply with regulations Monitor and control how end users interact with sensitive information in real-time as defined by policy Involve end users in remediation to build awareness of data security policies and reduce administrative costs

12 12 مديريت فناوري اطلاعات و ارتباطات كاربرد ارتباطات ماهواره اي در مديريت بحران و راهكارهاي نوين محافظت اطلاعات سازمان ها Datacenter DLP Prioritize your security projects with the fastest and most accurate way to profile your risk across file shares, databases, storage systems (SAN/ NAS) and other data repositories. Reduce risk through a rich set of automated actions such as move, quarantine, change access control, and eDRM encryption Identify sensitive information in collaborative environments such as Microsoft SharePoint®, Documentum® and Lotus Notes®

13 13 مديريت فناوري اطلاعات و ارتباطات كاربرد ارتباطات ماهواره اي در مديريت بحران و راهكارهاي نوين محافظت اطلاعات سازمان ها Admin Audit Challenge Security and audit requirement to inspect all incoming traffic to the critical secured datacenter How to inspect encrypted connections? Solution: Guardian Guardian combined with existing Intrusion Detection System provides a solution that enables customer to inspect and control all the incoming connections, encrypted or not

14 14 مديريت فناوري اطلاعات و ارتباطات كاربرد ارتباطات ماهواره اي در مديريت بحران و راهكارهاي نوين محافظت اطلاعات سازمان ها

15 15 مديريت فناوري اطلاعات و ارتباطات كاربرد ارتباطات ماهواره اي در مديريت بحران و راهكارهاي نوين محافظت اطلاعات سازمان ها

16 16 مديريت فناوري اطلاعات و ارتباطات كاربرد ارتباطات ماهواره اي در مديريت بحران و راهكارهاي نوين محافظت اطلاعات سازمان ها

17 17 مديريت فناوري اطلاعات و ارتباطات كاربرد ارتباطات ماهواره اي در مديريت بحران و راهكارهاي نوين محافظت اطلاعات سازمان ها External Security Threats Malicious code (Viruses, Malwares,…) DoS/DDoS attacks Web server attacks Email attacks VoIP attacks Application attacks Wireless Attacks,…

18 18 مديريت فناوري اطلاعات و ارتباطات كاربرد ارتباطات ماهواره اي در مديريت بحران و راهكارهاي نوين محافظت اطلاعات سازمان ها Unified Threat Management (UTM) It is the evolution of the traditional firewall into an all-inclusive security product that has the ability to perform multiple security functions in one single appliance: Network firewalling, network intrusion prevention, gateway antivirus, application filtering, application control, monitoring & event log. A single UTM appliance simplifies management of a company's security strategy, with just one device taking the place of multiple layers of hardware and software.

19 19 مديريت فناوري اطلاعات و ارتباطات كاربرد ارتباطات ماهواره اي در مديريت بحران و راهكارهاي نوين محافظت اطلاعات سازمان ها Firewall A firewall is a device or set of devices designed to permit or deny network transmissions based upon a set of rules and is frequently used to protect networks from unauthorized access while permitting legitimate communications to pass. IPS Intrusion Prevention Systems is network security appliance that monitor network and/or system activities for malicious activity. The main functions of intrusion prevention systems are to identify malicious activity, log information about said activity, attempt to block/stop activity, and report activity.

20 20 مديريت فناوري اطلاعات و ارتباطات كاربرد ارتباطات ماهواره اي در مديريت بحران و راهكارهاي نوين محافظت اطلاعات سازمان ها Key Advantages of UTM Reduced complexity: Single security solution Single Vendor Simplicity: Avoidance of multiple software installation and maintenance Easy Management: Plug & Play Architecture, Web-based GUI for easy management Reduced technical training requirements, one product to learn

21 21 مديريت فناوري اطلاعات و ارتباطات كاربرد ارتباطات ماهواره اي در مديريت بحران و راهكارهاي نوين محافظت اطلاعات سازمان ها Security Unified Management (SUM) More than 95% of security incidents result from exploitation of known vulnerabilities! Despite the countermeasures were available

22 22 مديريت فناوري اطلاعات و ارتباطات كاربرد ارتباطات ماهواره اي در مديريت بحران و راهكارهاي نوين محافظت اطلاعات سازمان ها IT Security Challenges High costs of standards implementation (ISO27001, PCI) High costs of maintaining these standards Asset risk status that is often out of date Complexity of IT structures Different scanning engines, and policies Disintegrated individual vulnerability management tools

23 23 مديريت فناوري اطلاعات و ارتباطات كاربرد ارتباطات ماهواره اي در مديريت بحران و راهكارهاي نوين محافظت اطلاعات سازمان ها Where you want to be at! Things to know Security measures The current levels of security of your IT systems The required investment for improving security Impacts of current IT investments The performance of IT security

24 24 مديريت فناوري اطلاعات و ارتباطات كاربرد ارتباطات ماهواره اي در مديريت بحران و راهكارهاي نوين محافظت اطلاعات سازمان ها SUM Overview Unified management for all known and custom scan engines and recommending remedy. Standards-compatible Risk Assessment Compliance with all international and custom standards Effective reporting and auditing Unified Vulnerability Assesment, Risk Management, Audit & Reporting and Compliance.

25 25 مديريت فناوري اطلاعات و ارتباطات كاربرد ارتباطات ماهواره اي در مديريت بحران و راهكارهاي نوين محافظت اطلاعات سازمان ها SUM: Governance Real-time asset inventory Real-time asset and department risk status Clear view of organizational structure, responsible personnel, controlled assets Department-wise risk mitigation, investment, disaster recovery, or business continuity plans Department-wise compliance status

Download ppt "1 مديريت فناوري اطلاعات و ارتباطات نشست تخصصي كاربرد ارتباطات ماهواره اي در مديريت بحران و راهكارهاي نوين محافظت اطلاعات سازمان ها 27 مهرماه 1390 مديريت."

Similar presentations

1 SANS Technology Institute - Candidate for Master of Science Degree 1 Automating Crosswalk between SP 800, 20 Critical Controls, and Australian Government.

1 SANS Technology Institute - Candidate for Master of Science Degree 1 Automating Crosswalk between SP 800, 20 Critical Controls, and Australian Government.
Managed Premises Firewall. 2 Common IT Security Challenges Does my network security protect my IT environment and sensitive data and meet the regulatory.

Managed Premises Firewall. 2 Common IT Security Challenges Does my network security protect my IT environment and sensitive data and meet the regulatory.
Current Security Threats WMO CBS ET-CTS Toulouse, France 26-30 May 2008 Allan Darling, NOAA’s National Weather Service WMO CBS ET-CTS Toulouse, France.

Current Security Threats WMO CBS ET-CTS Toulouse, France May 2008 Allan Darling, NOAA’s National Weather Service WMO CBS ET-CTS Toulouse, France.
Smart Grid - Cyber Security Small Rural Electric George Gamble Black & Veatch

Smart Grid - Cyber Security Small Rural Electric George Gamble Black & Veatch
Nada Abdulla Ahmed.  SmoothWall Express is an open source firewall distribution based on the GNU/Linux operating system. Designed for ease of use, SmoothWall.

Nada Abdulla Ahmed.  SmoothWall Express is an open source firewall distribution based on the GNU/Linux operating system. Designed for ease of use, SmoothWall.
Building Your Own Firewall Chapter 10. Learning Objectives List and define the two categories of firewalls Explain why desktop firewalls are used Explain.

Building Your Own Firewall Chapter 10. Learning Objectives List and define the two categories of firewalls Explain why desktop firewalls are used Explain.
© 2008 McAfee, Inc. “Endpoint” Security Defining the endpoints and how to protect them.

© 2008 McAfee, Inc. “Endpoint” Security Defining the endpoints and how to protect them.
Defense-in-Depth Against Malicious Software Jeff Alexander IT Pro Evangelist Microsoft Australia

Defense-in-Depth Against Malicious Software Jeff Alexander IT Pro Evangelist Microsoft Australia
6/4/2015National Digital Certification Agency1 Security Engineering and PKI Applications in Modern Enterprises Mohamed HAMDI National.

6/4/2015National Digital Certification Agency1 Security Engineering and PKI Applications in Modern Enterprises Mohamed HAMDI National.
Chapter 12 Network Security.

Chapter 12 Network Security.
Sophos / Utimaco Data Loss Prevention Peter Szendröi, SOPHOS Nordics Jan 20, 2010.

Sophos / Utimaco Data Loss Prevention Peter Szendröi, SOPHOS Nordics Jan 20, 2010.
IS Network and Telecommunications Risks

IS Network and Telecommunications Risks
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
Cybersecurity Summit 2004 Andrea Norris Deputy Chief Information Officer/ Director of Division of Information Systems.

Cybersecurity Summit 2004 Andrea Norris Deputy Chief Information Officer/ Director of Division of Information Systems.
Network Access Management Trends in IT Applications for Management Prepared by: Ahmed Ibrahim S09761197.

Network Access Management Trends in IT Applications for Management Prepared by: Ahmed Ibrahim S
Contact Center Security Strategies Grant Sainsbury Practice Director, Dimension Data.

Contact Center Security Strategies Grant Sainsbury Practice Director, Dimension Data.
Security Overview. 2 Objectives Understand network security Understand security threat trends and their ramifications Understand the goals of network.

Security Overview. 2 Objectives Understand network security Understand security threat trends and their ramifications Understand the goals of network.
Brian Bradley.  Data is any type of stored digital information.  Security is about the protection of assets.  Prevention: measures taken to protect.

Brian Bradley.  Data is any type of stored digital information.  Security is about the protection of assets.  Prevention: measures taken to protect.
Network Infrastructure Security. LAN Security Local area networks facilitate the storage and retrieval of programs and data used by a group of people.

Network Infrastructure Security. LAN Security Local area networks facilitate the storage and retrieval of programs and data used by a group of people.
Department Of Computer Engineering

Department Of Computer Engineering

Similar presentations

Ads by Google