Upload File

patching the human element - evans & dixon presentation.pdf · 2016-05-02 · • security...

  • Home
  • Documents
  • PATCHING THE HUMAN ELEMENT - Evans & Dixon Presentation.pdf · 2016-05-02 · • Security Awareness Training • Senior Leadership Security Training • Executive and Board Security
9
We are Network Technology Partners Your Enterprise Security Force Welcome CONFIDENTIAL - ALL RIGHTS RESERVED l www.ntp-inc.com PATCHING THE HUMAN ELEMENT CONFIDENTIAL - ALL RIGHTS RESERVED l www.ntp-inc.com 2 The first line of defense in security cannot be the weakest link. WHY IS SECURITY IMPORTANT? The Internet allows a hacker to attack anyone from anywhere. Lack of user controls could result in: Damage to Brand Identity Data Breach Identity Theft Liability Copyright Violations Reputation Loss CONFIDENTIAL - ALL RIGHTS RESERVED l www.ntp-inc.com 3

Upload: others

Post on 15-Jul-2020

0 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: PATCHING THE HUMAN ELEMENT - Evans & Dixon Presentation.pdf · 2016-05-02 · • Security Awareness Training • Senior Leadership Security Training • Executive and Board Security

WeareNetworkTechnologyPartners

Your Enterprise Security Force

Welcome

CONFIDENTIAL-ALLRIGHTSRESERVEDlwww.ntp-inc.com

PATCHING THE HUMAN ELEMENT

CONFIDENTIAL-ALLRIGHTSRESERVEDlwww.ntp-inc.com 2

The first line of defense in security cannot be the weakest link.

WHY IS SECURITY IMPORTANT?•  The Internet allows a hacker to attack anyone from

anywhere.

•  Lack of user controls could result in: –  Damage to Brand Identity –  Data Breach –  Identity Theft –  Liability –  Copyright Violations –  Reputation Loss

CONFIDENTIAL-ALLRIGHTSRESERVEDlwww.ntp-inc.com 3

Page 2: PATCHING THE HUMAN ELEMENT - Evans & Dixon Presentation.pdf · 2016-05-02 · • Security Awareness Training • Senior Leadership Security Training • Executive and Board Security

WHAT ARE YOUR THREATS?

•  Questions to ask yourself: –  What is valuable and what is vulnerable?

–  What can we do to safeguard against and mitigate threats?

–  What can we do to prepare ourselves?

–  What can we do to educate our users?

CONFIDENTIAL-ALLRIGHTSRESERVEDlwww.ntp-inc.com 4

•  Threats come in all shapes and sizes.

CYBER THREATS

CONFIDENTIAL-ALLRIGHTSRESERVEDlwww.ntp-inc.com 5

•  Black Hat, Gray Hat &White Hat

•  Cracker

•  Cyber terrorist

•  Hacktivist

•  State-sponsored hacker

•  Spy hacker

•  Script kiddie

50 SHADES OF HACKER

Page 3: PATCHING THE HUMAN ELEMENT - Evans & Dixon Presentation.pdf · 2016-05-02 · • Security Awareness Training • Senior Leadership Security Training • Executive and Board Security

THREATS

CONFIDENTIAL-ALLRIGHTSRESERVEDlwww.ntp-inc.com 7

MALWARE

•  Worm

•  Trojan horse / Logic bomb

•  Virus

•  Rootkits

•  Botnets

CONFIDENTIAL-ALLRIGHTSRESERVEDlwww.ntp-inc.com 8

10 SIGNS THAT YOU ARE COMPROMISED1.  Antivirus software detects a problem 2.  Pop-ups suddenly appear (may be selling “security software”) 3.  New programs installed 4.  Computer passwords have changed 5.  E-mail spam being sent 6.  Increased network activity 7.  Unknown programs requesting access 8.  Security programs uninstalled 9.  Computer doing things by itself 10.  Internet browser home page changed or new toolbar

CONFIDENTIAL-ALLRIGHTSRESERVEDlwww.ntp-inc.com 9

Page 4: PATCHING THE HUMAN ELEMENT - Evans & Dixon Presentation.pdf · 2016-05-02 · • Security Awareness Training • Senior Leadership Security Training • Executive and Board Security

BEST PRACTICES FOR MALWARE THREATS

CONFIDENTIAL-ALLRIGHTSRESERVEDlwww.ntp-inc.com 10

SECURITY: DEFENSE IN DEPTH

CONFIDENTIAL-ALLRIGHTSRESERVEDlwww.ntp-inc.com 11

HUMAN THREATS

CONFIDENTIAL-ALLRIGHTSRESERVEDlwww.ntp-inc.com 12

Page 5: PATCHING THE HUMAN ELEMENT - Evans & Dixon Presentation.pdf · 2016-05-02 · • Security Awareness Training • Senior Leadership Security Training • Executive and Board Security

SOCIAL ENGINEERING •  The art of deception that heavily relies on

psychological manipulation during human interaction to elicit confidential information. – Physical Attacks

•  Impersonation •  Tailgating •  Theft

– Electronic Attacks •  Email •  Telephone

CONFIDENTIAL-ALLRIGHTSRESERVEDlwww.ntp-inc.com 13

SOCIAL ENGINEERING CONT.•  Password Attacks:

–  Dictionary & Brute Force

•  Man-in-the-Middle

Attacks

•  Phishing

•  Pharming –  Typosquatting &

DNS spoofing

CONFIDENTIAL-ALLRIGHTSRESERVEDlwww.ntp-inc.com 14

“JebBush.comredirectstoTrump’sofficialwebsite”

E-Mail Phishing Examples

CONFIDENTIAL-ALLRIGHTSRESERVEDlwww.ntp-inc.com 15

Page 6: PATCHING THE HUMAN ELEMENT - Evans & Dixon Presentation.pdf · 2016-05-02 · • Security Awareness Training • Senior Leadership Security Training • Executive and Board Security

BEST PRACTICES FOR HUMAN THREATS

CONFIDENTIAL-ALLRIGHTSRESERVEDlwww.ntp-inc.com 16

THE HUMAN ELEMENT PATCH

A successful defense depends on having good policies in place ensuring that all employees follow them.

CONFIDENTIAL-ALLRIGHTSRESERVEDlwww.ntp-inc.com 17

CONFIDENTIAL-ALLRIGHTSRESERVEDlwww.ntp-inc.com 18

THE HUMAN ELEMENT PATCH CONT.

Page 7: PATCHING THE HUMAN ELEMENT - Evans & Dixon Presentation.pdf · 2016-05-02 · • Security Awareness Training • Senior Leadership Security Training • Executive and Board Security

ENFORCE PASSWORD POLICIES•  A good password is:

–  private: it is used and known by one person only

–  secret: it does not appear in plaintext in any file, program, or written on a piece of paper pinned to the terminal

–  easily remembered: so there is no need to write it down

–  complex: at least 8 characters in length and a mixture of uppercase letters, lowercase letters, numbers, and special characters

–  not guessable: no program in a reasonable amount of time could crack it

–  changed regularly: a good change policy is every 3 months

CONFIDENTIAL-ALLRIGHTSRESERVEDlwww.ntp-inc.com 19

PASSPHRASE SUGGESTIONS

CONFIDENTIAL-ALLRIGHTSRESERVEDlwww.ntp-inc.com 20

•  Combine 2 unrelated words (Mail + phone = m@!lf0n3)

•  Abbreviate a phrase (My favorite color is blue = Mfciblue)

•  Music lyric (Happy birthday to you, happy birthday to you, happy birthday dear John, happy birthday to you = hb2uhb2uhbdJhb2u)

SECURE ONLINE BANKING & BUSINESS

CONFIDENTIAL-ALLRIGHTSRESERVEDlwww.ntp-inc.com 21

Page 8: PATCHING THE HUMAN ELEMENT - Evans & Dixon Presentation.pdf · 2016-05-02 · • Security Awareness Training • Senior Leadership Security Training • Executive and Board Security

EMPOWER YOUR USERS•  To stop and question suspicious persons

and have them provide proof of identification.

•  Do they have access permission, i.e., a color-coded lanyard or badge?

CONFIDENTIAL-ALLRIGHTSRESERVEDlwww.ntp-inc.com 22

•  To take preventative and/or corrective action if the suspicious person is not cooperating.

•  Ask them to leave and escort them out of the building.

•  Empower every level on the business hierarchy–from the C-level to management and leadership to employees– to support one another in

providing security.

CONFIDENTIAL-ALLRIGHTSRESERVEDlwww.ntp-inc.com 23

SECURITY AWARENESS

CONFIDENTIAL-ALLRIGHTSRESERVEDlwww.ntp-inc.com 24

Page 9: PATCHING THE HUMAN ELEMENT - Evans & Dixon Presentation.pdf · 2016-05-02 · • Security Awareness Training • Senior Leadership Security Training • Executive and Board Security

IMPLEMENTING SECURITY AWARENESS

•  Real life social engineering exercises

– Suspicious persons

– Insider threats

•  Security Awareness Training

•  Senior Leadership Security Training

•  Executive and Board Security Training

CONFIDENTIAL-ALLRIGHTSRESERVEDlwww.ntp-inc.com 25

We are working to make the human

element the strongest link as our first line of

defense.

CONFIDENTIAL-ALLRIGHTSRESERVEDlwww.ntp-inc.com 26

27

Questions?

CONFIDENTIAL-ALLRIGHTSRESERVEDlwww.ntp-inc.com


Beyond Patching Dean Iacovelli Chief Security Advisor – State and Local Government Microsoft Corporation [email protected]

Course 1 Learning Plan Security overview and patching Public vulnerability databases and resources Secure software engineering Security assessment

patching whitepaper.pdf

Bringing Cloud Security Down to Earth · SaaS - Browser patching, endpoint security, access reports PaaS –Browser patching, hardening, endpoint security, access reports and vulnerability

Sustainable Software Patching: Critical for Solid Security

Microsoft Security "Beyond Patching" Security Challenges, Part II

Virtual Patching

Patching Strategies and Best Practices - Parallel Patching

Floor Patching

the challenge in patching large SCADA/EMS/DMS systems Ranft.pdf · the challenge in patching large SCADA/EMS/DMS systems Sebastian Ranft, Product Manager IT-Security, Siemens AG

IOS Application Security Part 26 – Patching IOS Applications Using IDA Pro and Hex Fiend

Beyond The Basics of Patching (Patching 201)

Online Patching

Getting Started with Patching (Patching 101)

G-Cloud SERVICE DEFINITION GUIDE€¦ · Drupal content management system optimisation, upgrades, maintenance, hosting, Drupal security patching, development, training and 24/7/365

Spring Security Reference - Spring Framework · Spring Security Reference vi ... 7.1. Security Database Schema ... patching, personnel vetting, audits, change control,

Security Patching Using Windows Server Update Services Jeff Alexander IT Pro Evangelist Microsoft Australia

Phoenix - Patching Support Service · 2019-07-03 · IT SUPPORT MANAGED SERVICE PATCHING SUPPORT Keeping systems up to date is essential in today’s world where security threats

HP Server Automation Security Target · Server Automation Ultimate v10.10.002 Security Target Evaluation Assurance Level (EAL): EAL2+ ... baseline, patching, configuration management,

CookiExt: Patching the Browser Against Session Hijacking Attackscalzavara/papers/jcs15.pdf · 2015-10-21 · Journal of Computer Security 0 (2015) 1{0 1 IOS Press CookiExt: Patching

1.Security Overview And Patching

The Core Rule Set - OWASP...Three Protection Strategies for WAFs 1. External patching Also known as "just-in-time patching" or "virtual patching". 2. Positive security model An independent

APPLICATION OF DECEPTION TO SOFTWARE SECURITY PATCHING … · APPLICATION OF DECEPTION TO SOFTWARE SECURITY PATCHING A Dissertation Submitted to the Faculty of Purdue University by

Patching Potholes

Patching,*AlerFng,*BYOD*and* More:*Managing*Security*in ... · Agenda! LifebeforeSplunk* BYOD*and*the*Patching*Problem* Integrang* Splunk*Enterprise*with*the*CMDB* Firewall*and*IDP*IP*Address*IdenFficaon*

JBoss security: penetration, protection and patching security: penetration, protection and patching ... • Fixed in Tomcat/JBoss Web by no longer using ... • Cross Site Request

Accelerate Patching Progress in the Enterprise...Patch Management • Patches fix functional and security problems (vulnerabilities) on Operating Systems and Applications • Patching

DBA as Cloud Security Engineer€¦ · 3.By design, Oracle provides security of cloud infrastructure and operations (cloud operator access controls, infrastructure security patching,

Patching 11

Experiences with Honey-Patching in Active Cyber Security ... · Experiences with Honey-Patching in Active Cyber Security Education Frederico Araujo Mohammad Shapouri Sonakshi Pandey

Patching a Patch Software Updates Using Horizontal Patching

JBoss security: penetration, protection and patching · JBoss security: penetration, protection and patching David Jorm [email protected]. Contents • The problem • Background

Self-defending software: Automatically patching security vulnerabilities Michael Ernst University of Washington

practical-linux-security-cookbookdiskcontent.imagine-publishing.co.uk.s3.amazonaws.com › lud... · 2016-06-29 · practical-linux-security-cookbook . Patching a Bash Vulnerability

Security White Paper Version 3.0 Last Updated: December … · 1 Security White Paper Version 3.0 ... Scanning and Patching ... , see their Overview on Security Paper