Security event presentation 3.4.2016-final
1 like•350 views
This document provides information about Cal Net Technology Group (CNTG), a Southern California IT services provider. It discusses CNTG's mission to enable IT solutions for clients to focus on their core business. It outlines CNTG's managed services, professional services, and security offerings. It also highlights some of CNTG's industry awards and accomplishments working with clients in various sectors. Finally, it discusses current cybersecurity trends such as ransomware and the importance of defense in depth strategies.
Security event presentation 3.4.2016-final
- 2. Gavin Zimmer VicePresident of Sales Cal NetTechnology Group Southern California’s Premier IT Service Provider
- 3. Cal Net Technology Group (CNTG) 03 WE START WITH OUR MISSION AND PURPOSE…
- 4. MISSION Cal Net Technology Group (CNTG) 03 Our Mission is to Enable IT Solutions in our clients’ organizations to allow them to focus their business on what they do, and do what they do more effectively.
- 5. PURPOSE Cal Net Technology Group (CNTG) 03 to be AN Extension of your IT Department
- 6. Managed Services Remote & Onsite BPO NOC Security Pro Services Subject Matter Expertise Virtual CIO & CISO AdvancedTechnology Integration Physical, Virtual & Cloud Plan Design Acquire Deploy ORGANIZATION Cal Net Technology Group (CNTG) Shared Services Shared Resources Integrated Processes Separate P&L Integrated Into Specialist Sales Motion Three Autonomous Business Units 03
- 7. FLEXIBLE PATHS CNTG’s Differentiated GTM Model Direct Verticals Business Alignment Partner Based (Joint) Infrastructure/ISV Subcontracting Managed & Pro Services Private Label Managed/Pro Services/BPM Public Sector to Commercial (Vertical) Horizontal (Emerging Growth to Reserved Accounts) Plan, Build & Run Operating Model Joint Managed and Professional Services Engineers Coordinated Standardization where possible Lead Generation could be combined with Sub & Private Label Transactional to management of outcomes Leverage 75+ W2 Certified Professional Services Resources Non-circumvent and non-compete covenants Custom NOC & SOC Operations Tailored to Protecting Brand Include Managed Service Offerings, Security Offerings and Professional Services Non circumvent and non- compete covenants Certified and Capable: Industry Specific Accreditations 02 MAJOR VENDORS SPECIFIC SOLUTION VENDORS
- 9. ACCOMPLISHMENTS CNTG’s Success Stories 04 Industry Awards Manufacturing Finance & Legal Education & Non Profit Retail Entertainment Microsoft Partner of the Year 2013-2015 Marvin Engineering Fishman, Diamond & Block Goodwill Coffee Bean & Tea Leaf Director’s Guild of America LA Business Journal CIO’s IT Service Partner of the Year Kaiser Aluminum Hotchkis & Wiley LACMA Fox Rental Car Writer’s Guild of America MSP Mentor Top 150 Worldwide Meggitt ACLU Skirball Cultural Center True Religion Bunim-Murray Productions Best Places to Work Glenair Dignified Home Loans Harvard-Westlake Wolfgang Puck Worldwide NBC Universal Inc. 5000 Fastest Growing Companies in North America Kyocera Berkshire Hathaway Modern Health Care JetEdge Screen Actors Guild
- 10. Matt Lindley Director of Security Services Cal NetTechnology Group Southern California’s Premier IT Service Provider
- 11. CYBERCRIME TRENDS & TARGETS IT Security Budget & Level of Protection ValueofExploitableAssets Enterprise Small Business Cybercriminal Sweet SpotMid-size Business
- 12. 205 days is the average amount of time organizations had been compromised before they knew it – FireEye/Mandiant - 2015
- 13. You are just finding out today that your network was compromised on August 12th 2015
- 14. “There are only two types of companies: those that have been hacked and those that will be.” - 2012 Robert Mueller, Former FBI Director
- 15. VICTIM,VULNERABLE OR VAGUE Don’t Know They’ve Already Been Hacked Will Be Hacked Have Been Hacked More than 80 percent of U.S. companies have been successfully hacked, according to a Duke University/CFO Magazine Global Business Outlook Survey.
- 16. The average cost for detection and escalation only subsequent to a security breach is approximately $417,700* - Ponemon Institute & IBM 2015 – Cost of Data Breach Report * Cost does not include: Average Total Cost of Data Breach $3.8 Million Loss of business (Brand) Remediation and mitigation costs Notification Identity Protection
- 17. THE EVOLUTION OF THREATS “Never before in the history of human kind have people across the world been subjected to extortion on a massive scale as they are today”. -Symantec : The evolution of Ransomware 2015 20051989 2008 2011 2013 2014 2015
- 18. RANSOMWARE TODAY Cisco’s analysis of malware validated as “known bad” found that the majority of that malware—91.3 percent—use the Domain Name Service in one of these three ways: - To gain command and control - To exfiltrate data - To redirect traffic
- 20. “99.9% OF THE EXPLOITED VULNERABILITIES WERE COMPROMISED MORE THAN A YEAR AFTER THE CVE WAS PUBLISHED.” “About half of the CVEs exploited in 2014 went from publish to pwn in less than a month.” VERIZON 2015 DATA BREACH INVESTIGATIONS REPORT Common Vulnerabilities and Exposures (CVE®) is a dictionary of common names (i.e., CVE Identifiers) for publicly known cybersecurity vulnerabilities.
- 22. DEFENSE IN DEPTH
- 25. SECUREMANAGE ENTERPRISE Security Solutions View Identify Investigate Prioritize Remediate Managed SIEM Included Performance, Availability and Change Monitoring Included Threat Intelligence Center / Threat Feeds Included Asset Management (CMDB) Included Single Pane of Glass Portal with Unlimited Users* Included Customized Dashboards for Security, Performance and Compliance Included 24x7 Event Alerting (Email, Pager/SMS, Dashboard) Included Internal and External Vulnerability Scanning Included Vulnerability Remediation Prioritization Included System Hardening Checks Included Compliance Alerting, Dashboards and Reporting for PCI, GLBA, FFIEC Included Threat Monitoring, Analysis and Escalation Included Expert SOC Analyst Remediation Recommendation Escalation Included Security Event Remediation (Remote Only) Included SECUREManage for Enterprise - Compliance