Presentation is loading. Please wait.

Presentation is loading. Please wait.

A Defense-in-Depth Strategy

Published byJemimah Murphy Modified over 9 years ago

Similar presentations

Presentation on theme: "A Defense-in-Depth Strategy"— Presentation transcript:

1 A Defense-in-Depth Strategy
Presented by Richard Gancze

2 Information Assurance
Information security What does every Internet user who uses the web to make purchases, bank online or utilize services of an application service provider (e.g. salesforce.com) want? Information Assurance

3 What is information assurance?
A proportional balance of Data Confidentiality + Data Availability + Data Integrity = Information assurance

4 Achieve information assurance?
Defense-in-depth strategy

5 Layers Multiple layers of security are better than a single protection mechanism If one layer fails there are multiple layers behind it to protect the organization If all layers fail, then the organization must be able to react

6 Defense-in-breadth Multiple layers of protection with different configuration mechanisms

7 3 Key Elements People are the first line of defense and the most important asset in an organization

8 A Defense-in-Depth implementation

9 References Official (ISC)2 Guide to the CISSP Exam, Susan Hansche and John Berti, Chris Hare, Auerbach Publications, 2004 Security+ Certification Training Kit, Microsoft Corporation with Andy Ruth and Kurt Hudson, Microsoft Press, 2003 “Defense in Depth”, National Security Agency,

Download ppt "A Defense-in-Depth Strategy"

Similar presentations

Training Guide. `

Training Guide. `
Purchasing Assets with a P-CARD Presented by: David Bonola Tom Vaughan.

Purchasing Assets with a P-CARD Presented by: David Bonola Tom Vaughan.
3SKey 3SKey.

3SKey 3SKey.
SAFE Blueprint and the Security Ecosystem. 2 Chapter Topics  SAFE Blueprint Overview  Achieving the Balance  Defining Customer Expectations  Design.

SAFE Blueprint and the Security Ecosystem. 2 Chapter Topics  SAFE Blueprint Overview  Achieving the Balance  Defining Customer Expectations  Design.
Microsoft Security Solutions A Great New Way of Making $$$ !!! Jimmy Tan Platform Strategy Manager Microsoft Singapore.

Microsoft Security Solutions A Great New Way of Making $$$ !!! Jimmy Tan Platform Strategy Manager Microsoft Singapore.
Security and Personnel

Security and Personnel
Smart Grid - Cyber Security Small Rural Electric George Gamble Black & Veatch

Smart Grid - Cyber Security Small Rural Electric George Gamble Black & Veatch
ISA 562 Summer 2008 1 Information Security Management CISSP Topic 1 ISA 562 Internet Security Theory and Practice.

ISA 562 Summer Information Security Management CISSP Topic 1 ISA 562 Internet Security Theory and Practice.
Planning and Managing Information Security Randall Sutton, President Elytra Enterprises Inc. April 4, 2006.

Planning and Managing Information Security Randall Sutton, President Elytra Enterprises Inc. April 4, 2006.
Exam 70-315: Developing and Implementing Web Applications with Microsoft Visual C#.NET and Microsoft Visual Studio.NET Neoh Kee Lin,

Exam : Developing and Implementing Web Applications with Microsoft Visual C#.NET and Microsoft Visual Studio.NET Neoh Kee Lin,
© 2008 Prentice Hall Business Publishing Accounting Information Systems, 11/e Romney/Steinbart1 of 222 C HAPTER 7 Information Systems Controls for Systems.

© 2008 Prentice Hall Business Publishing Accounting Information Systems, 11/e Romney/Steinbart1 of 222 C HAPTER 7 Information Systems Controls for Systems.
Cybersecurity Summit 2004 Andrea Norris Deputy Chief Information Officer/ Director of Division of Information Systems.

Cybersecurity Summit 2004 Andrea Norris Deputy Chief Information Officer/ Director of Division of Information Systems.
Access Controls Supervised by: Dr.Lo’ai Tawalbeh Prepared by: Abeer Saif.

Access Controls Supervised by: Dr.Lo’ai Tawalbeh Prepared by: Abeer Saif.
IT Governance: Simultaneously Empowers and Controls Source: IT Governance, Chapter 1.

IT Governance: Simultaneously Empowers and Controls Source: IT Governance, Chapter 1.
Stephen S. Yau CSE 465-591, Fall 2006 1 Security Strategies.

Stephen S. Yau CSE , Fall Security Strategies.
Data and Applications Security Developments and Directions Dr. Bhavani Thuraisingham The University of Texas at Dallas Secure Knowledge Management: and.

Data and Applications Security Developments and Directions Dr. Bhavani Thuraisingham The University of Texas at Dallas Secure Knowledge Management: and.
Microsoft Office Project Training Materials Jon Jaffe Information Worker Product Managent Group Microsoft Corporation.

Microsoft Office Project Training Materials Jon Jaffe Information Worker Product Managent Group Microsoft Corporation.
Introduction to Security Architecture

Introduction to Security Architecture
Principles of Information Security, 2nd Edition1 Introduction.

Principles of Information Security, 2nd Edition1 Introduction.
Module 10: Designing an AD RMS Infrastructure in Windows Server 2008.

Module 10: Designing an AD RMS Infrastructure in Windows Server 2008.

Similar presentations

Ads by Google