Presentation is loading. Please wait.

Presentation is loading. Please wait.

Thomas Ianuzzi, CPP, CISSP, CFE, CCE Information Security Consultants, Inc.

Published byJerome Long Modified over 8 years ago

Similar presentations

Presentation on theme: "Thomas Ianuzzi, CPP, CISSP, CFE, CCE Information Security Consultants, Inc."— Presentation transcript:

1 Thomas Ianuzzi, CPP, CISSP, CFE, CCE Information Security Consultants, Inc.

2 It Evolved

3 DATA LOSS -- U.S. More on $275K Settlement The Register reports on ChoicePoint's settlement with the Federal Trade Commission. ChoicePoint will pay $275,000 and will get independent assessments of its data securitysettlement MD Bank Dumps Identities into Trash Reported by: Joce StermanJoce Sterman It's a local bank you trust with your money and your personal information. But the M&T branch in Rodgers Forge didn't shelter all of some peoples' secrets Lawsuits over Heartland data breach folded into one Banks, credit unions want to be compensated for breach- related costs Computerworld - A lawsuit consolidating 16 separate class- action complaints brought by financial institutions against Heartland Payment Systems Inc. has been filed in U.S. District Court for the Southern District of Texas. Federal Web sites knocked out by cyber attack Jul 7 10:04 PM US/Eastern By LOLITA C. BALDOR

4 Even if you have a comprehensive security program, there may be serious gaps.

5  You can stop haphazard development in its tracks  A proactive approach to security will reduce the risk level you experience. In addition, it can provide your organization with surprising benefits

6 Investors love it because it reduces their risk. A comprehensive security program is a major sales tool. Properly documented and presented, it can set you apart from the crowd and cinch crucial sales. A strong hiring program results in improved morale for all employees, higher productivity and may prevent you from making the costliest mistake a company can make. Hiring the wrong person. When your customers understand how well you protect their interests, your reputation soars.

7 When you manage information technology assets securely and proactively, your equipment costs and your downtime drop dramatically. When you work to protect your employees both on and off the job, their loyalty protects your business. When you are prepared for disaster, you strengthen your community as well as your company and your bottom line With a pervasive security culture, you will see the benefits on the bottom line. Your superior management capability will attract the best customers, investors and employees. Key people who want to be involved in your success

8 The first step to great security is to know exactly where you stand.

9  IT standards  ISO or others  Accounting controls  HR practices  Business continuity  Best practices

10

11 Levels of Maturity More Mature Less Mature Non Existent Ad hoc Repeatable but Intuitive Defined Process Managed & Measurable Optimized

12 Logical testing (vulnerability and penetration testing) Social engineering Testing of disaster recovery plans

13  Initial training and signoff  Refresher training  Training in protecting and using their laptops and home computers.

14 Internal Audit IT Auditor CPA Audit SAS 70 – Tier 1 – Tier 2

15

16 Contact Information Security Consultants, Inc. to thoroughly secure your business.

Download ppt "Thomas Ianuzzi, CPP, CISSP, CFE, CCE Information Security Consultants, Inc."

Similar presentations

© 2008 Cisco Systems, Inc. All rights reserved.Cisco Confidential 14854_10_2008_c1 1 Holistic Approach to Information Security Greg Carter, Cisco Security.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco Confidential 14854_10_2008_c1 1 Holistic Approach to Information Security Greg Carter, Cisco Security.
The Financial Modernization Act of 1999, also known as the Gramm-Leach-Bliley Act (GLBA) UNDERSTANDING AND DEVELOPING A STRATEGIC PLAN TO BECOME COMPLIANT.

The Financial Modernization Act of 1999, also known as the Gramm-Leach-Bliley Act (GLBA) UNDERSTANDING AND DEVELOPING A STRATEGIC PLAN TO BECOME COMPLIANT.
Securities Investor Protection in the context of the Recent Financial Crisis – Hong Kong’s Experience 2-3 November 2009 Irene Tang Associate Director,

Securities Investor Protection in the context of the Recent Financial Crisis – Hong Kong’s Experience 2-3 November 2009 Irene Tang Associate Director,
Information Security Jim Cusson, CISSP. Largest Breaches 110,000 2009-11-27 NorthgateArinso, Verity Trustees 6,400 2009-11-25 Aurora St. Luke's Medical.

Information Security Jim Cusson, CISSP. Largest Breaches 110, NorthgateArinso, Verity Trustees 6, Aurora St. Luke's Medical.
Managing Your Credit 2014/2015 Office of Student Financial Assistance.

Managing Your Credit 2014/2015 Office of Student Financial Assistance.
Section 6.3 Protecting Your Credit. Billing Errors and Disputes Notify your creditor in writing Notify your creditor in writing Pay the portion of the.

Section 6.3 Protecting Your Credit. Billing Errors and Disputes Notify your creditor in writing Notify your creditor in writing Pay the portion of the.
E-Commerce Security Issues. General E-Business Security Issues Any E-Business needs to be concerned about network security. The Internet is a “ public.

E-Commerce Security Issues. General E-Business Security Issues Any E-Business needs to be concerned about network security. The Internet is a “ public.
Security Concerns at Offshore Development Centers MIS Practicum Presentation Week 6 Ashish Bahety.

Security Concerns at Offshore Development Centers MIS Practicum Presentation Week 6 Ashish Bahety.
1 Outsourcing Contract and Service Level Issues Sharon O’Bryan Week 5 November 2, 2004.

1 Outsourcing Contract and Service Level Issues Sharon O’Bryan Week 5 November 2, 2004.
Security Controls – What Works

Security Controls – What Works
What Should You Do If OSHA Knocks Mark McDaniel, INSafe Consultant.

What Should You Do If OSHA Knocks Mark McDaniel, INSafe Consultant.
Cash and Internal Control

Cash and Internal Control
Chapter 12 Auditing the Human Resource Management Process McGraw-Hill/Irwin ©2008 The McGraw-Hill Companies, All Rights Reserved.

Chapter 12 Auditing the Human Resource Management Process McGraw-Hill/Irwin ©2008 The McGraw-Hill Companies, All Rights Reserved.
Why Comply with PCI Security Standards?

Why Comply with PCI Security Standards?
Security Posture Assessment (SPA) Headquarters: Ofisgate Sdn Bhd (610820-A), 2-15 Jalan Jalil Perkasa 13 Aked Esplanad, Bukit Jalil, 57000 Kuala Lumpur,

Security Posture Assessment (SPA) Headquarters: Ofisgate Sdn Bhd ( A), 2-15 Jalan Jalil Perkasa 13 Aked Esplanad, Bukit Jalil, Kuala Lumpur,
Forensic Accountant Steven Auerbach. Forensic Accountant  Forensic accountants are experienced auditors and investigators of financial documents who.

Forensic Accountant Steven Auerbach. Forensic Accountant  Forensic accountants are experienced auditors and investigators of financial documents who.
Introduction to Management Information Systems I Overview of Business Processes.

Introduction to Management Information Systems I Overview of Business Processes.
INTERNAL AUDIT - ACCOUNTS RECEIVABLE AND COLLECTIONS AUDIT University of Washington August 11, 2011 Kim Herrenkohl, Director Western Washington University.

INTERNAL AUDIT - ACCOUNTS RECEIVABLE AND COLLECTIONS AUDIT University of Washington August 11, 2011 Kim Herrenkohl, Director Western Washington University.
1 Careers in the field of FINANCE: It’s all about the MONEY! Compiled by Dotty Harshberger Paul V. Moore High School.

1 Careers in the field of FINANCE: It’s all about the MONEY! Compiled by Dotty Harshberger Paul V. Moore High School.
How to be successful in business. Student: Bâlbâe Ioana ROMANIA.

How to be successful in business. Student: Bâlbâe Ioana ROMANIA.

Similar presentations

Ads by Google