Upload File

cyber security resilience esrm conference amsterdam 2016

  • Home
  • Technology
  • Cyber security resilience ESRM Conference Amsterdam 2016
7
ACHIEVING CYBER RESILIENCE: SECURING INFORMATION SHARING NIRAN SERIKI, C|CISO, CISM, MSC (RHUL) SENIOR CYBER SECURITY CONSULTANT, EU INSTITUTIONS CHIEF INFORMATION SECURITY OFFICER (CISO), SHEKINAH INFORMATION SECURITY CONSULTANCY LTD. UNITED KINGDOM. DISCLAIMER: All views expressed in these slides are strictly personal and do not represent the views of any organisation I consult for.

Upload: niran-seriki-cciso-cism

Post on 08-Jan-2017

451 views

Category:

Technology


0 download

Report

TRANSCRIPT

Page 1: Cyber security resilience ESRM Conference Amsterdam 2016

ACHIEVING CYBER RESILIENCE: SECURING INFORMATION SHARINGNIRAN SERIKI, C|CISO, CISM, MSC (RHUL)

SENIOR CYBER SECURITY CONSULTANT, EU INSTITUTIONS

CHIEFINFORMATIONSECURITYOFFICER(CISO),

SHEKINAHINFORMATIONSECURITYCONSULTANCYLTD.UNITEDKINGDOM.

DISCLAIMER:

Allviewsexpressedintheseslidesarestrictlypersonalanddonotrepresenttheviewsofanyorganisation Iconsultfor.

Page 2: Cyber security resilience ESRM Conference Amsterdam 2016

ACHIEVING CYBER RESILIENCE: SECURING INFORMATION SHARING

•Cyber Security, Cyber Threat, Cyber Response…Yes, Cyber Resilience!

•Cyber Resilience, the added Value

•Spell out R-E-S-I-L-I-E-N-C-E to achieve Cyber Resilience

•Partnering and sharing - how much, how long, how done?

Page 3: Cyber security resilience ESRM Conference Amsterdam 2016

CYBER SECURITY, CYBER THREAT, CYBER RESPONSE…YES, CYBER RESILIENCE!

•The whole idea of Cyber Resilience –•Not about achieving 100% security, which is practically impossible.

Page 4: Cyber security resilience ESRM Conference Amsterdam 2016

CYBER RESILIENCE, THE ADDED VALUE

•CyberResilienceisabouthavingarobust,testeddefenceandresponsesysteminplacetocombatcyberattacks.•Goalistominimisebusinessdisruptionbyallmeans.

Page 5: Cyber security resilience ESRM Conference Amsterdam 2016

SPELL OUT R-E-S-I-L-I-E-N-C-E TO ACHIEVE CYBER RESILIENCE • Registerorrecordallcorporateassets(AssetManagementProgram).Youcanonlyprotectwhatyouknoworawareexists.• Educationinformofregular&continuoususersecurityawarenesstraining• SIEM(SecurityIncident&EventsManagement)isa“greattohave”,thoughcomplextomanage.• IncidentResponseTeamandefficient,tested,practicalresponseplans&processes.• Learnfromothers,sharewithothers.• IntrusionDetectionsystemhelpswithmonitoring.• EffectiveVulnerabilityManagementSystemcoupledwithgood&timelypatchmanagement.• NewchangesgothroughtheChangeManagementcontrols&procedures.• ContinualImprovementwiththeCIA(Confidentiality,Integrity&Availability)focus.• ExternalDependency&properVendorsecurityvettingandmanagement.

Page 6: Cyber security resilience ESRM Conference Amsterdam 2016

PARTNERING AND SHARING - HOW MUCH, HOW LONG, HOW DONE?

•Great challenge is not necessarily in partnering but rather in SHARING.•We all face a common enemy! Today is my Organisation, but tomorrow

may be yours.• Suggestions:• Sharing based on common interests• Sharing based on same industry sector• Sharing based on other forms of collaboration.• Sharing is sometimes Vendor-based – the Vendor organising a forum

for clients to come together to share valuable information that could everyone.

Page 7: Cyber security resilience ESRM Conference Amsterdam 2016

SOME USEFUL RESOURCES•https://www.us-cert.gov/ccubedvp/assessments

•Cyber Security Information Sharing: An Overview of Regulatory and Non-regulatory Approaches

•MISP Malware Information Sharing Platform and Threat Sharing.

•http://www.misp-project.org


Combining Risk, Response and Resilience In an ESRM model€¦ · Risk Incident Response Root Cause Ongoing Risk Assessment ESRM is a strategic security program management approach

Plant Propagation Protocol for Maianthemum dilatatum ESRM

ESRM 304 - courses.washington.edu

Enno D. Osinga from Amsterdam Schipol Airport; ‘Attain Supply Chain Resilience’

ESRM 410 Forest Soils and Site Productivity 2013

Economics in Forestry John Perez-Garcia Guest Lecture ESRM 101 – May 22, 2007

Environmental Science and Resource Management ESRM R100

ESRM 426 / SEFS 525 Wildland Hydrology

Guidelines on Environmental & Social Risk Management (ESRM

ENTERPRISE SECURITY RISK MANAGEMENT · 2018-05-02 · ASIS PROGRAM UPDATE ESRM Board Initiative. ESRM Board Initiative –Charter Executive Summary ... the business across all relevant

Surgimate Practice - User Guide - esrm-support.com

ESRM 450 Wildlife Ecology and Conservation ECOLOGICAL DISTURBANCE Concepts, Approaches, and Applications

ESRM 450 Wildlife Ecology and Conservation FOREST PATTERN Managing Stands, Landscapes, and Habitat

ESRM 250/CFR 520 Autumn 2009 Phil Hurvitz

ESRM 350 - University of Washington

Building resilience trough integrated city climate change strategy shelter academy, amsterdam 2014 case study

ESRM 452, Lab 1 Anseriformes Galliformes Gaviiformes Podicepidiformes Procellariiformes

ROGEP ENVIRONMENTAL AND SOCIAL RISK MANAGEMENT (ESRM) STRATEGY

ASIS Guideline on ESRM: First Look

ESRM 452, Lab 3

Keystone Species Kirsten Randolph, Kelly Spady, Lindsey Kirschman, Sarah Martin ESRM 201

ESRM 452, Lab 2 Pelicaniformes Ciconiformes Falconiformes Gruiformes Charadriiformes

ESRM 450 Wildlife Ecology and Conservation FOREST PATTERN Managing Stands, Landscapes, and Habitat

Social Science & Natural Resources Research Design, Methods & Measures ESRM 304 Environmental and Resource Assessment ESRM 304 Environmental and Resource

ESRM 100 2010Feb10 Ch12bEnergy Web

How ESRM is Making a Difference - Map Your Show

Environmental Legislation Affecting Use of Forests ESRM 101 Forests and Society

ESRM 304 Environmental & Resource Assessment ESRM 304 Environmental & Resource Assessment

ESRM 450 Wildlife Ecology and Conservation MANAGING DYNAMIC LANDSCAPES

BIOL/ESRM 331/SEFS 590B Landscape Plant Recognitioncourses.washington.edu/esrm331/2016/331 1st lecture 2016.pdf · BIOL/ESRM 331/SEFS 590B Landscape Plant Recognition Sarah Reichard

ESRM 350 - University of Washingtonfaculty.washington.edu/wirsinga/350_19.pdf · 11/18/14 1 ESRM 350 Consumptive and Non-Consumptive Exploitation of Wildlife Autumn 2014 "I wanted

Building Resilience in East African ... - greenpeace.to · c Greenpeace International, Ottho Heldringstraat 5, 1066 AZ Amsterdam, The Netherlands. Citation suggestion: Thompson K,

ESRM 410 Forest Soils and Site Productivity 2011 Nutrient Limitation ‘What if Scenario’

ESRM 350 - faculty.washington.edu

ESRM 450 Wildlife Ecology and Conservation FOREST STRUCTURE AND DEVELOPMENT