michigan cybersecurity saaaba briefing · technology company… that focuses on e-commerce, cloud...
TRANSCRIPT
![Page 1: Michigan Cybersecurity SAAABA Briefing · technology company… that focuses on e-commerce, cloud computing, digital streaming, and artificial intelligence. ” (Source: Amazon website)](https://reader034.vdocument.in/reader034/viewer/2022050114/5f4af4701ed97844592ee198/html5/thumbnails/1.jpg)
Michigan CybersecuritySAAABA Briefing
Presenter:Laura Clark, Acting Chief Security Officer for the State, DTMB
Cybersecurity &Infrastructure Protection
![Page 2: Michigan Cybersecurity SAAABA Briefing · technology company… that focuses on e-commerce, cloud computing, digital streaming, and artificial intelligence. ” (Source: Amazon website)](https://reader034.vdocument.in/reader034/viewer/2022050114/5f4af4701ed97844592ee198/html5/thumbnails/2.jpg)
Cybersecurity &Infrastructure Protection
State of Cybersecurity: Attacks and Data Breaches• Identity theft impacts 60 million Americans• U.S. spent over $15 billion on cybersecurity in
2019 • Cost of the average data breach to a U.S.
company: $7.91 million• Federal Government phishing encounter rates
rose from 17% in the fourth quarter 2019 to 40% in the first quarter of 2020o The increase has been tied to COVID-19 but there has
been an upward trend in mobile phishing since the beginning of 2019
• Mobile phishing attacks rose 37 percent in the first quarter of 2020 from the last quarter of 2019
Source: Symantec 2019 Internet Security Threat Report
June 2020 – Slide 2
Source: Business InsiderSource: Wired Source: Reuters Source: WSJ
Hackers Stole Millions of Facebook Users' Highly Sensitive Data
Source: Business InsiderSource: MotherboardSource: Reuters
![Page 3: Michigan Cybersecurity SAAABA Briefing · technology company… that focuses on e-commerce, cloud computing, digital streaming, and artificial intelligence. ” (Source: Amazon website)](https://reader034.vdocument.in/reader034/viewer/2022050114/5f4af4701ed97844592ee198/html5/thumbnails/3.jpg)
“If we’re careful, we’ll be protected, right?”
![Page 4: Michigan Cybersecurity SAAABA Briefing · technology company… that focuses on e-commerce, cloud computing, digital streaming, and artificial intelligence. ” (Source: Amazon website)](https://reader034.vdocument.in/reader034/viewer/2022050114/5f4af4701ed97844592ee198/html5/thumbnails/4.jpg)
Cybersecurity &Infrastructure Protection
It CAN (and Will) Happen to Anyone
• Bezos is, of course, tech innovator & CEO of Amazon.com.
• Amazon describes itself as a “technology company… that focuses on e-commerce, cloud computing, digital streaming, and artificial intelligence.” (Source: Amazon website)
• His phone was reportedly hacked on January 22, 2020.
• This is the second hack after one in early 2019.
June 2020 – Slide 4
![Page 5: Michigan Cybersecurity SAAABA Briefing · technology company… that focuses on e-commerce, cloud computing, digital streaming, and artificial intelligence. ” (Source: Amazon website)](https://reader034.vdocument.in/reader034/viewer/2022050114/5f4af4701ed97844592ee198/html5/thumbnails/5.jpg)
Cybersecurity &Infrastructure Protection
From a WFSA-12 broadcast, “State warns about hackers stealing
data from personal phones.”
https://www.wsfa.com/2019/07/12/state-warns-about-hackers-stealing-data-personal-phones/
“At least 34 percent of U.S. consumers experienced a data compromise within 2018...”
![Page 6: Michigan Cybersecurity SAAABA Briefing · technology company… that focuses on e-commerce, cloud computing, digital streaming, and artificial intelligence. ” (Source: Amazon website)](https://reader034.vdocument.in/reader034/viewer/2022050114/5f4af4701ed97844592ee198/html5/thumbnails/6.jpg)
“We took a hacker to a café and, in 20 minutes, he knew where everyone else was born, what schools they attended, and the last five things they googled.”
From a Medium.com article titled, “Maybe Better If You Don’t Read This
Story on Public WiFi” by Maurits Martijn
Source: https://medium.com/matter/heres-why-public-wifi-is-a-public-health-hazard-dd5b8dcb55e6
![Page 7: Michigan Cybersecurity SAAABA Briefing · technology company… that focuses on e-commerce, cloud computing, digital streaming, and artificial intelligence. ” (Source: Amazon website)](https://reader034.vdocument.in/reader034/viewer/2022050114/5f4af4701ed97844592ee198/html5/thumbnails/7.jpg)
“Mobile devices have LARGE VULNERABILITIES and without mobile threat defense, you can't see them and therefore, you can't defend against them.”
-John Michelsen, Zimperium CTO
![Page 8: Michigan Cybersecurity SAAABA Briefing · technology company… that focuses on e-commerce, cloud computing, digital streaming, and artificial intelligence. ” (Source: Amazon website)](https://reader034.vdocument.in/reader034/viewer/2022050114/5f4af4701ed97844592ee198/html5/thumbnails/8.jpg)
"Governments have long addressed physical security through public safety services,
Similar efforts could – and, in our view, should – help citizens cope with cyberthreats."
From The Conversation, “Swamped by cyberthreats, citizens
need government protection” by Karen Renaud and Merrill Warkentin
Source: http://theconversation.com/swamped-by-cyberthreats-citizens-need-government-protection-104827
like police and fire departments, as well as public health programs for water purification, sewage treatment and inoculation against infectious diseases.
![Page 9: Michigan Cybersecurity SAAABA Briefing · technology company… that focuses on e-commerce, cloud computing, digital streaming, and artificial intelligence. ” (Source: Amazon website)](https://reader034.vdocument.in/reader034/viewer/2022050114/5f4af4701ed97844592ee198/html5/thumbnails/9.jpg)
Cybersecurity &Infrastructure Protection
State Government is a Target
June 2020 – Slide 9
![Page 10: Michigan Cybersecurity SAAABA Briefing · technology company… that focuses on e-commerce, cloud computing, digital streaming, and artificial intelligence. ” (Source: Amazon website)](https://reader034.vdocument.in/reader034/viewer/2022050114/5f4af4701ed97844592ee198/html5/thumbnails/10.jpg)
Cybersecurity &Infrastructure Protection
Cyber Attacks Are Not Statistics
They have a genuine impact on businesses and people’s lives.
June 2020 – Slide 10
![Page 11: Michigan Cybersecurity SAAABA Briefing · technology company… that focuses on e-commerce, cloud computing, digital streaming, and artificial intelligence. ” (Source: Amazon website)](https://reader034.vdocument.in/reader034/viewer/2022050114/5f4af4701ed97844592ee198/html5/thumbnails/11.jpg)
Cybersecurity &Infrastructure Protection
Financial Losses On The Rise
June 2020 – Slide 11
![Page 12: Michigan Cybersecurity SAAABA Briefing · technology company… that focuses on e-commerce, cloud computing, digital streaming, and artificial intelligence. ” (Source: Amazon website)](https://reader034.vdocument.in/reader034/viewer/2022050114/5f4af4701ed97844592ee198/html5/thumbnails/12.jpg)
Cybersecurity &Infrastructure Protection
• Survey Question
June, 2020 – Slide 12
![Page 13: Michigan Cybersecurity SAAABA Briefing · technology company… that focuses on e-commerce, cloud computing, digital streaming, and artificial intelligence. ” (Source: Amazon website)](https://reader034.vdocument.in/reader034/viewer/2022050114/5f4af4701ed97844592ee198/html5/thumbnails/13.jpg)
Cybersecurity Ecosystem Overview
![Page 14: Michigan Cybersecurity SAAABA Briefing · technology company… that focuses on e-commerce, cloud computing, digital streaming, and artificial intelligence. ” (Source: Amazon website)](https://reader034.vdocument.in/reader034/viewer/2022050114/5f4af4701ed97844592ee198/html5/thumbnails/14.jpg)
Cybersecurity &Infrastructure Protection
In the past, the firewall was the security perimeter.
Legacy Security
On-Premises/Private Cloud
Users Devices
Apps Data
June 2020 – Slide 14
![Page 15: Michigan Cybersecurity SAAABA Briefing · technology company… that focuses on e-commerce, cloud computing, digital streaming, and artificial intelligence. ” (Source: Amazon website)](https://reader034.vdocument.in/reader034/viewer/2022050114/5f4af4701ed97844592ee198/html5/thumbnails/15.jpg)
Cybersecurity &Infrastructure Protection
The New Digital RealityNow there are blended boundaries, more data, & more complexity.
Users Devices
Apps Data
June 2020 – Slide 15
![Page 16: Michigan Cybersecurity SAAABA Briefing · technology company… that focuses on e-commerce, cloud computing, digital streaming, and artificial intelligence. ” (Source: Amazon website)](https://reader034.vdocument.in/reader034/viewer/2022050114/5f4af4701ed97844592ee198/html5/thumbnails/16.jpg)
Cybersecurity &Infrastructure Protection
DTMB Michigan
Cyber Security
Other DTMB
Departments
MI Cyber Civilian Corps
MEDC
State Agencies
Michigan National
Guard
Michigan State Police NGA
NASCIO
CSO Kitchen CabinetCyber
Partners Collaboration
MIFCC
MIHCC
Other States
Other Countries
Dept. of Homeland
Security
Other Federal Depts.
FEMA
FBI
Cybersecurity Ecosystem
June 2020 – Slide 16
![Page 17: Michigan Cybersecurity SAAABA Briefing · technology company… that focuses on e-commerce, cloud computing, digital streaming, and artificial intelligence. ” (Source: Amazon website)](https://reader034.vdocument.in/reader034/viewer/2022050114/5f4af4701ed97844592ee198/html5/thumbnails/17.jpg)
Cybersecurity &Infrastructure Protection
• First annual Michigan Cyber Summit.
• Cyber Initiative created.
• Michigan Cyber Range launched.
• NGA Cyber Resource Center for States.
• Cyber Support at DNC.
• CSO Kitchen Cabinet formed.
• The Michigan Cyber Command Center opened.
• Michigan Cyber Disruption Response Strategy published.
• NASCIO Cybersecurity Award.
• Michigan Financial and Healthcare Cybersecurity Councils formed.
• Michigan Cyber Civilian Corps launched.
• Michigan and Israel signed bilateral cooperation agreement on cybersecurity.
• Various cyber hubs opened around SOM.
2011
2012
2013
2014Michigan Stepping Up to Cybersecurity
June 2020 – Slide 17
![Page 18: Michigan Cybersecurity SAAABA Briefing · technology company… that focuses on e-commerce, cloud computing, digital streaming, and artificial intelligence. ” (Source: Amazon website)](https://reader034.vdocument.in/reader034/viewer/2022050114/5f4af4701ed97844592ee198/html5/thumbnails/18.jpg)
Cybersecurity &Infrastructure Protection
• Michigan Cyber Disruption Response Plan published.
• State Emergency Operations Center (SEOC) opened.
• Statewide Risk Mgmt. program launched.
• MING Army CPT.
• Regional Cybersecurity Education Collaboration piloted.
• High School Cyber Challenge formed.
• MING Air CPT.
• CSO50 awarded the Cyber Disruption Response Plan to SOM.
• MiC3 was awarded the State Scoop IT Innovation of the Year Award.
• DTMB successfully finishes the CISOaaSpilot.
• PA 132 “Cyber Civilian Act” passed, providing a framework for MiC3.
• DTMB embarked on SOC 2.0 project.
• DTMB established a Security Accreditation Process (MiSAP) for IT Assets.
2015
2016
20172018
Michigan Stepping Up to Cybersecurity
June 2020 – Slide 18
![Page 19: Michigan Cybersecurity SAAABA Briefing · technology company… that focuses on e-commerce, cloud computing, digital streaming, and artificial intelligence. ” (Source: Amazon website)](https://reader034.vdocument.in/reader034/viewer/2022050114/5f4af4701ed97844592ee198/html5/thumbnails/19.jpg)
Cybersecurity &Infrastructure Protection
• Launched Cyber Partners Collaboration Forum.
• Cyber Functional Exercise held with activation of State Emergency Operations Center (SEOC) opened.
• Homeland Security Grant Funding to provide cyber training to local government.
• Expanding the Marshall Plan to secure public schools.
• Initial Innovative Readiness Training (IRT) event.
• Revising the CDRP.• Enhance the Security
Awareness Program.
• Establish SecureMIprograms.
• Continue to grow the Cyber Partnership Readiness Assessments.
• Enhanced IRT events.• Refine Standard
Operating Procedures to be used during cyber events.
• Continue to explore projects that provide preventative protection to threats in the cyber ecology.
• Track and manage cyber threats as they happen.
2019
2020
20212022+Michigan Stepping Up to Cybersecurity
January 2020 – Slide 19
June 2020 – Slide 19
![Page 20: Michigan Cybersecurity SAAABA Briefing · technology company… that focuses on e-commerce, cloud computing, digital streaming, and artificial intelligence. ” (Source: Amazon website)](https://reader034.vdocument.in/reader034/viewer/2022050114/5f4af4701ed97844592ee198/html5/thumbnails/20.jpg)
Cybersecurity &Infrastructure Protection
• Survey Question
June, 2020 – Slide 20
![Page 21: Michigan Cybersecurity SAAABA Briefing · technology company… that focuses on e-commerce, cloud computing, digital streaming, and artificial intelligence. ” (Source: Amazon website)](https://reader034.vdocument.in/reader034/viewer/2022050114/5f4af4701ed97844592ee198/html5/thumbnails/21.jpg)
Cybersecurity &Infrastructure Protection
Cybersecurity and Infrastructure Protection
Risk Mgmt. & Compliance
(RMC)
Michigan Security Operations Center
(MiSOC) ExternalEngagement
Contractors: 2
FTEs: 29
Budget: $9.5 million
Security Guards: 76 Contractors: 35
FTEs: 45
Budget: $23.2 million
Michigan Cyber Security (MCS)
Office of Infrastructure
Protection (OIP)
Contractors: 37
Total FTEs: 74
Budget: $33.7 millionCyber Security
& Infrastructure
Protection (CIP)
June 2020 – Slide 21
![Page 22: Michigan Cybersecurity SAAABA Briefing · technology company… that focuses on e-commerce, cloud computing, digital streaming, and artificial intelligence. ” (Source: Amazon website)](https://reader034.vdocument.in/reader034/viewer/2022050114/5f4af4701ed97844592ee198/html5/thumbnails/22.jpg)
Cybersecurity &Infrastructure Protection
MCS – MiSOC Functions
Vulnerability Management
Threat Analytics
Proactively monitors
external threats and identifies
potential impact on the
SOM.
Forensics & eDiscovery
Security Operations
Incident Response
Analyzes security events and escalates
incidents based on impact. Coordinates
root-cause analysis and
incident gathering.
Acquires, validates, and
analyzes electronic data to reconstruct
security incidents.
Identifies and remediates
vulnerabilities to the SOM
security infrastructure.
June 2020 – Slide 22
![Page 23: Michigan Cybersecurity SAAABA Briefing · technology company… that focuses on e-commerce, cloud computing, digital streaming, and artificial intelligence. ” (Source: Amazon website)](https://reader034.vdocument.in/reader034/viewer/2022050114/5f4af4701ed97844592ee198/html5/thumbnails/23.jpg)
Cybersecurity &Infrastructure Protection
MCS – Risk Management and Compliance Functions
Security Accreditation
Process (MiSAP)
General Agency Support
Sets and enforces SOM policies and
standards for security.
Information Security
Policies & Standards
Awareness & Training
Advises and provides best practices for
SOM cyber and physical security.
Provides learning resources to
educate SOM on policies and standards.Identifies control
activities and related gaps in
applications and documents remedy
strategy.
June 2020 – Slide 23
![Page 24: Michigan Cybersecurity SAAABA Briefing · technology company… that focuses on e-commerce, cloud computing, digital streaming, and artificial intelligence. ” (Source: Amazon website)](https://reader034.vdocument.in/reader034/viewer/2022050114/5f4af4701ed97844592ee198/html5/thumbnails/24.jpg)
Cybersecurity &Infrastructure Protection
External Engagements
CSO Kitchen Cabinet
• Monthly meetings• Partnerships: Regional
businesses• Actions: Develop
cybersecurity and incident response strategies.
Michigan Health Care Cybersecurity (MIHCC)
• Monthly meetings• Partnerships: Health care
industry professionals• Actions: Develop
actionable recommendations for healthcare-specific security threats and challenges.
Cyber Partners Collaboration
• Quarterly meetings• Partnerships: Local
Governments• Actions: Develops best
practices in security budget, workforce, & training.
North American Int’l Cyber Summit
• Annual summit• Partnerships: Regional,
national, and international
• Actions: Provide a forum for leaders, professionals, and others to share cybersecurity knowledge and best practices.
June 2020 – Slide 24
![Page 25: Michigan Cybersecurity SAAABA Briefing · technology company… that focuses on e-commerce, cloud computing, digital streaming, and artificial intelligence. ” (Source: Amazon website)](https://reader034.vdocument.in/reader034/viewer/2022050114/5f4af4701ed97844592ee198/html5/thumbnails/25.jpg)
Cybersecurity &Infrastructure Protection
MSP Highlights• Michigan Cyber Command Center (MC3)
o MC3 is the resource for cybersecurity and cybercrime awareness for critical infrastructure; federal, state, and local government entities; other public and private sectors; and citizens of the State of Michigan
• Computer Crimes Unit (CCU)o CCU is the statewide leader in responding to
and investigating technology digital crimes and in providing forensic data recovery assistance
• Internet Crimes Against Children Task Force (ICAC)o In partnership with the CCU, the ICAC is a
collection of state, local, and federal partners concentrating on child sexually abusive material trafficking as well as child sex exploitation investigations.
25June 2020 – Slide 25
![Page 26: Michigan Cybersecurity SAAABA Briefing · technology company… that focuses on e-commerce, cloud computing, digital streaming, and artificial intelligence. ” (Source: Amazon website)](https://reader034.vdocument.in/reader034/viewer/2022050114/5f4af4701ed97844592ee198/html5/thumbnails/26.jpg)
DMVA – National Guard Highlights• Army and Air Force Cyber Protection Teams
‒ Responsible to defend military networks ‒ Identify, defend and counter cyber threats ‒ Train, advise, and assist state or local government‒ Members engaged around the US for past 3 years
‒ Expanding support to include state critical infra-structure inspections, vulnerability assessments, remediation
‒ Partners DoD, USAF, USA, USCC, DHS Sister States/Nations
• Canada, Latvia, Estonia, Lithuania Industry, citizen Soldiers/Airmen Academia, Cyber Patriot
• Technical Expertise• Business Acumen• Industry Leadership
SkillsIT Pro
• Military Training & Expertise• Military Leadership• Dedication, Esprit de Corps• Patriotism
Airman/Soldier
• Well-rounded and Dynamic
• Technically Savvy• Seasoned Longevity
Citizen
June 2020 – Slide 26
![Page 27: Michigan Cybersecurity SAAABA Briefing · technology company… that focuses on e-commerce, cloud computing, digital streaming, and artificial intelligence. ” (Source: Amazon website)](https://reader034.vdocument.in/reader034/viewer/2022050114/5f4af4701ed97844592ee198/html5/thumbnails/27.jpg)
• Survey Question
June, 2020 – Slide 27
![Page 28: Michigan Cybersecurity SAAABA Briefing · technology company… that focuses on e-commerce, cloud computing, digital streaming, and artificial intelligence. ” (Source: Amazon website)](https://reader034.vdocument.in/reader034/viewer/2022050114/5f4af4701ed97844592ee198/html5/thumbnails/28.jpg)
Cybersecurity &Infrastructure Protection
Importance of DTMB’s Continued Cyber InvestmentContinued Investment Needs:• Reduce vulnerabilities by scanning and patching software
and hardware.• Ensure custom applications and commercial systems are
secure.• Invest in security tools to detect threats and defend the
State of Michigan network.• Train DTMB resources in security and recruit security talent.• Deploy tools to discover sensitive data and address
vulnerabilities.• Implement tools to better manage access to systems and
data.
June 2020 – Slide 28
![Page 29: Michigan Cybersecurity SAAABA Briefing · technology company… that focuses on e-commerce, cloud computing, digital streaming, and artificial intelligence. ” (Source: Amazon website)](https://reader034.vdocument.in/reader034/viewer/2022050114/5f4af4701ed97844592ee198/html5/thumbnails/29.jpg)
Cybersecurity &Infrastructure Protection
Questions?
June 2020 – Slide 29