Jason Clark, profile picture
Uploaded byJason Clark
PDF, PPTX1,253 views

"Thinking diffrent" about your information security strategy

The document discusses the need for a new security strategy that focuses on data protection rather than infrastructure. It recommends evaluating current security spending and redirecting funds to intelligence-led approaches. A next generation security model is proposed that uses context awareness and data-centric policies to identify and contain advanced threats, including insider risks.

Embed presentation

Download as PDF, PPTX
“THINK DIFFERENT” ABOUT SECURITY STRATEGY Jason Clark, VP Chief Strategy & Security Officer
We need a New Strategy 2
The targets…past, present and future
Evolution of the bad guys modus operandi EASY TO PROTECT HARD TO PROTECT © 2012 Websense, Inc.
The Attackers…past, present and future 5
Information Security Budget Your Companies Revenue IT Budget Infosec Budget 6
Spend & security effectiveness mismatch Other 20% 80% OF THE SPEND IS 30% EFFECTIVE AT 80% SECURING THE BUSINESS. Firewalls , IDS, Endpoint Security Redirect our investments to be: Data Centric & Risk Based 7
PLEASE STOP SPEAR PHISING Have you tested your employees to Spear Phishing? Average results will show 71% of your users will click the link © 2012 Websense, Inc. 8
Step 1: Evaluation Do you know your breakdown? Do you know your return on investment? How do we increase “Security Personnel” with Zero Investment? Evaluate commodity spending 9
Step 2: Buy in Communicate evaluation results with Everyone outside of IT • Get involved with Legal • Chief Privacy Officer/Head of HR • Audit, Engineering, Marketing, etc. REMEMBER As Tom August, author of the CISO Handbook, puts it… WE SELL IDEAS! © 2013 Websense, Inc.
Step 3: Execute People, Process, Technology applied to Security People Process Technology Outcome + + = Success + + = Poor Adoption + + = Inconsistent Operation + + = Burden to Scale + + = Shelf-ware + + = Wasted Effort + + = No ability to execute + + = No Defenses Most of the time current Technology's lead back to infrastructure centric models.
Step 4: Moving to Intelligence From Security Operations To Security Intelligence Wisdom Value Knowledge Information = Data The Relative Value of Information
Step 5: Who is your enemy? © 2013 Websense, Inc.
The Enemy is in your Blind Spots • SSL • Spear Phishing • AD, SAM, Password extraction • Custom Encryption • Malware • Application • Complex Technical Stack (limited visibility) • Insider Threat • Obfuscation
Who Can We Trust? 60 % of phishing attacks are hosted in the United States 50 % of malware redirects to the United States 36 % of malware is hosted in the © 2012 Websense, Inc. United States 15
Next Generation Approach To Security Policy and Protection: Context Aware, Data Centric, Security Who What Where How Action Human Resources Source Code Benefits Provider File Transfer Audit Customer Service Business Plans Personal Web Storage Web Block Marketing Patient Information Business Partner Instant Messaging Notify Finance M&A Plans Blog Peer-to-Peer Remove Accounting Employee Salary Customer Email Encrypt Sales Financial Statements Malware Site Print Quarantine Legal Customer Records USB Removable Media Confirm Technical Support Technical Documentation Competitor Print Screen Engineering Competitive Information Analyst Copy/Paste © 2012 Websense, Inc. 16
Threat Modeling & Attack Trees 17
Seven Stages of Advanced Threats Recon Lure Redirect Exploit Dropper Call Data Kit File Home Theft CONTAIN- AWARENESS REAL-TIME ANALYSIS INLINE DEFENSES MENT
© 2012 Websense, Inc. 19
© 2012 Websense, Inc. 20
IT Insider Behavior Model 21

More Related Content

PDF
IBM Security Strategy Overview
byxband
 
PPTX
Security Incident and Event Management (SIEM) - Managed and Hosted Solutions ...
bySirius
 
PPTX
Cybersecurity Risks for Businesses
byAlex Rudie
 
PPT
IBM Security Strategy Intelligence,
byInformation Security Awareness Group
 
PDF
Security Transformation Services
byxband
 
PPTX
Security Intelligence: Finding and Stopping Attackers with Big Data Analytics
byIBM Security
 
PPTX
Alex Hanway - Securing the Breach: Using a Holistic Data Protection Framework
bycentralohioissa
 
PDF
Cybersecurity solution-guide
byAdilsonSuende
 
IBM Security Strategy Overview
byxband
 
Security Incident and Event Management (SIEM) - Managed and Hosted Solutions ...
bySirius
 
Cybersecurity Risks for Businesses
byAlex Rudie
 
IBM Security Strategy Intelligence,
byInformation Security Awareness Group
 
Security Transformation Services
byxband
 
Security Intelligence: Finding and Stopping Attackers with Big Data Analytics
byIBM Security
 
Alex Hanway - Securing the Breach: Using a Holistic Data Protection Framework
bycentralohioissa
 
Cybersecurity solution-guide
byAdilsonSuende
 

What's hot

PPTX
The Journey to Cyber Resilience in a World of Fear, Uncertainty and Doubt
byJohn D. Johnson
 
PDF
Cybersecurity Roadmap Development for Executives
byKrist Davood - Principal - CIO
 
PDF
Building an effective Information Security Roadmap
byElliott Franklin
 
PPTX
How to Improve Threat Detection & Simplify Security Operations
byIBM Security
 
PDF
Dealing with Information Security, Risk Management & Cyber Resilience
byDonald Tabone
 
PDF
Mergers and Acquisition Security - Areas of Interest
byMatthew Rosenquist
 
PDF
IBM Security Services Overview
byCasey Lucas
 
PPTX
Understanding the Impact of Today's Security Breaches: The 2017 Ponemon Cost ...
byIBM Security
 
PPTX
Cybersecurity Risk Management Program and Your Organization
byMcKonly & Asbury, LLP
 
PPTX
Are You Ready to Move Your IAM to the Cloud?
byIBM Security
 
PDF
What it Takes to be a CISO in 2017
byDoug Copley
 
PDF
Dynamic Cyber Defense
byEnergySec
 
PPTX
Your Mainframe Environment is a Treasure Trove: Is Your Sensitive Data Protec...
byIBM Security
 
PDF
The Real Costs of SIEM vs. Managed Security Service
byF-Secure Corporation
 
PPTX
Your cyber security webinar
byIntergen
 
PPTX
Your cyber security webinar
byEmpired
 
PDF
How to Build Your Own Cyber Security Framework using a Balanced Scorecard
byEnergySec
 
PPT
IT Security Strategy
byLaura Vanassche
 
The Journey to Cyber Resilience in a World of Fear, Uncertainty and Doubt
byJohn D. Johnson
 
Cybersecurity Roadmap Development for Executives
byKrist Davood - Principal - CIO
 
Building an effective Information Security Roadmap
byElliott Franklin
 
How to Improve Threat Detection & Simplify Security Operations
byIBM Security
 
Dealing with Information Security, Risk Management & Cyber Resilience
byDonald Tabone
 
Mergers and Acquisition Security - Areas of Interest
byMatthew Rosenquist
 
IBM Security Services Overview
byCasey Lucas
 
Understanding the Impact of Today's Security Breaches: The 2017 Ponemon Cost ...
byIBM Security
 
Cybersecurity Risk Management Program and Your Organization
byMcKonly & Asbury, LLP
 
Are You Ready to Move Your IAM to the Cloud?
byIBM Security
 
What it Takes to be a CISO in 2017
byDoug Copley
 
Dynamic Cyber Defense
byEnergySec
 
Your Mainframe Environment is a Treasure Trove: Is Your Sensitive Data Protec...
byIBM Security
 
The Real Costs of SIEM vs. Managed Security Service
byF-Secure Corporation
 
Your cyber security webinar
byIntergen
 
Your cyber security webinar
byEmpired
 
How to Build Your Own Cyber Security Framework using a Balanced Scorecard
byEnergySec
 
IT Security Strategy
byLaura Vanassche
 

Viewers also liked

PDF
Security Awareness Training
byDaniel P Wallace
 
PPTX
Build an Information Security Strategy
byAndrew Byers
 
PDF
Information Security It's All About Compliance
byDinesh O Bareja
 
PDF
Operational security | How to design your information security GRC (governanc...
byMaxime CARPENTIER
 
PPT
The Business Of Information Security V2.0
bytheonassiokas
 
PDF
Fadi Mutlak - Information security governance
bynooralmousa
 
PPTX
Role of compliance in security audits
byn|u - The Open Security Community
 
PPSX
Robert Brzezinski - Office 365 Security & Compliance: Cloudy Collaboration......
bycentralohioissa
 
PDF
Cloud Security Strategy
byCapgemini
 
PDF
Roles of Information Security Officers in State Government
byDavid Sweigert
 
PPTX
GDPR: Key Article Overview
byCraig Clark ITIL, CIS LI,EU GDPR P
 
ODP
Providing a Flexible Approach to the Inflexible World of Information Security...
bygemmarie1
 
PPT
The Business Of Identity, Access And Security V1.0
bytheonassiokas
 
PPTX
Jason Harrell - Compliance and Security: Building a Cybersecurity Risk Manage...
bycentralohioissa
 
PPTX
Information Security in a Compliance World
byEvan Francen
 
PPTX
Perpetual Information Security - Driving Data Protection in an Evolving Compl...
bySafeNet
 
PPTX
Security advisor alliance primer
byJason Clark
 
Security Awareness Training
byDaniel P Wallace
 
Build an Information Security Strategy
byAndrew Byers
 
Information Security It's All About Compliance
byDinesh O Bareja
 
Operational security | How to design your information security GRC (governanc...
byMaxime CARPENTIER
 
The Business Of Information Security V2.0
bytheonassiokas
 
Fadi Mutlak - Information security governance
bynooralmousa
 
Role of compliance in security audits
byn|u - The Open Security Community
 
Robert Brzezinski - Office 365 Security & Compliance: Cloudy Collaboration......
bycentralohioissa
 
Cloud Security Strategy
byCapgemini
 
Roles of Information Security Officers in State Government
byDavid Sweigert
 
GDPR: Key Article Overview
byCraig Clark ITIL, CIS LI,EU GDPR P
 
Providing a Flexible Approach to the Inflexible World of Information Security...
bygemmarie1
 
The Business Of Identity, Access And Security V1.0
bytheonassiokas
 
Jason Harrell - Compliance and Security: Building a Cybersecurity Risk Manage...
bycentralohioissa
 
Information Security in a Compliance World
byEvan Francen
 
Perpetual Information Security - Driving Data Protection in an Evolving Compl...
bySafeNet
 
Security advisor alliance primer
byJason Clark
 

Similar to "Thinking diffrent" about your information security strategy

PPTX
Data Breach from the Inside Out
byThe Lorenzi Group
 
PPTX
Security on a budget
bynCircle - a Tripwire Company
 
PPTX
Top 12 Threats to Enterprise
byArgyle Executive Forum
 
PDF
Biggest info security mistakes security innovation inc.
byuNIX Jim
 
PPTX
2011-10 The Path to Compliance
byRaleigh ISSA
 
PPTX
Software Security Assurance - Program Building (You're going to need a bigger...
byRafal Los
 
PPTX
Financial Analyst Day 2013
byavelinakauffman
 
PPTX
Sw keynote
bygueste69f645
 
PDF
Fad final print
byavelinakauffman
 
PPTX
The Perils that PCI brings to Security
byTripwire
 
PPTX
BIS "Is Your Company at Risk for a Security Breach?"
byChristiAKannapel
 
PPTX
"I am Certified, but am I Safe?" - Information Security Summit, Kuala Lumpur,...
byAnup Narayanan
 
PDF
גיא אילון Websense
bylihig
 
PDF
SYMCInvestorPresentationDec2008II
byfinance40
 
PDF
Fall2015SecurityShow
byAdam Heller
 
PPTX
Spiceworld 2011 - AppRiver breakout session
byShane Rice
 
PDF
DSS ITSEC Conference 2012 - Lumension Intelligent Application Whitelisting & ...
byAndris Soroka
 
PDF
“8th National Biennial Conference on Medical Informatics 2012”
byAshu Ash
 
PDF
Ultimate Hack! Layers 8 & 9 of the OSI Model
byRafal Los
 
PDF
Effective Cyber Security: Successful Approaches and Experiences
byInnoTech
 
Data Breach from the Inside Out
byThe Lorenzi Group
 
Security on a budget
bynCircle - a Tripwire Company
 
Top 12 Threats to Enterprise
byArgyle Executive Forum
 
Biggest info security mistakes security innovation inc.
byuNIX Jim
 
2011-10 The Path to Compliance
byRaleigh ISSA
 
Software Security Assurance - Program Building (You're going to need a bigger...
byRafal Los
 
Financial Analyst Day 2013
byavelinakauffman
 
Sw keynote
bygueste69f645
 
Fad final print
byavelinakauffman
 
The Perils that PCI brings to Security
byTripwire
 
BIS "Is Your Company at Risk for a Security Breach?"
byChristiAKannapel
 
"I am Certified, but am I Safe?" - Information Security Summit, Kuala Lumpur,...
byAnup Narayanan
 
גיא אילון Websense
bylihig
 
SYMCInvestorPresentationDec2008II
byfinance40
 
Fall2015SecurityShow
byAdam Heller
 
Spiceworld 2011 - AppRiver breakout session
byShane Rice
 
DSS ITSEC Conference 2012 - Lumension Intelligent Application Whitelisting & ...
byAndris Soroka
 
“8th National Biennial Conference on Medical Informatics 2012”
byAshu Ash
 
Ultimate Hack! Layers 8 & 9 of the OSI Model
byRafal Los
 
Effective Cyber Security: Successful Approaches and Experiences
byInnoTech
 

Recently uploaded

PPSX
AppSec Role Based Training OWASP Global AppSec USA 2025-11-06
byRobert Grupe, CSSLP CISSP PE PMP
 
PPTX
Career Blueprint - Future Career Vision & Success Stories - 2025 - Part 1
byDianaGray10
 
PPTX
Odoo_by_Infinys_All_in_One_Business_Solution_for_Small_Companies.pptx
byAgusto Sipahutar
 
PDF
Revolutionizing SQL Database Design for the Modern Era.pdf
bySQL DBM
 
PDF
Unveiling the Basics of Agentic AI - OSUG Mumbai
bythesubuiyer
 
PPTX
AI and Linux in 2025 - Jay LaCroix, Learn Linux TV
byAll Things Open
 
PDF
Dr. Robert Krug - Specializes In Predictive Modeling
byDr. Robert Krug
 
PDF
Sylvester Konadu Worcester MA - An Accomplished IT Analyst
bySylvester Konadu Worcester
 
PDF
MathML Core in WebKit
byIgalia
 
PDF
Getting started with Agent Framework.pdf
byNilesh Gule
 
PPTX
Expanding Your Toolbox: Beginners Guide to Controlling Kubernetes Logs
byEric D. Schabell
 
PDF
Save administrator time with the automated remediation capabilities of Red Ha...
byPrincipled Technologies
 
PDF
Private Governance: How Decentralized Mechanisms Can Regulate the Crypto Economy
byFederico Ast
 
PPTX
A GREEN BUSINESS TOOLKIT FOR EARLY-STAGE ENTREPRENEURS (1).pptx.pptx
bylearnskillsofficial1
 
PDF
WebXR in Android and Linux with OpenXR
byIgalia
 
PDF
Configure and Secure SSH - RHCSA (RH124).pdf
byLinuxCert Guru
 
PDF
Control Access to Files - RHCSA (RH124).pdf
byLinuxCert Guru
 
PDF
Manage Local Users and Groups - RHCSA (RH124)
byLinuxCert Guru
 
PDF
Install and Update Software - RHCSA (RH124).pdf
byLinuxCert Guru
 
PDF
Exclusive Hands-On Workshop: Agentic Automation with UiPath (First Edition)
byanabulhac
 
AppSec Role Based Training OWASP Global AppSec USA 2025-11-06
byRobert Grupe, CSSLP CISSP PE PMP
 
Career Blueprint - Future Career Vision & Success Stories - 2025 - Part 1
byDianaGray10
 
Odoo_by_Infinys_All_in_One_Business_Solution_for_Small_Companies.pptx
byAgusto Sipahutar
 
Revolutionizing SQL Database Design for the Modern Era.pdf
bySQL DBM
 
Unveiling the Basics of Agentic AI - OSUG Mumbai
bythesubuiyer
 
AI and Linux in 2025 - Jay LaCroix, Learn Linux TV
byAll Things Open
 
Dr. Robert Krug - Specializes In Predictive Modeling
byDr. Robert Krug
 
Sylvester Konadu Worcester MA - An Accomplished IT Analyst
bySylvester Konadu Worcester
 
MathML Core in WebKit
byIgalia
 
Getting started with Agent Framework.pdf
byNilesh Gule
 
Expanding Your Toolbox: Beginners Guide to Controlling Kubernetes Logs
byEric D. Schabell
 
Save administrator time with the automated remediation capabilities of Red Ha...
byPrincipled Technologies
 
Private Governance: How Decentralized Mechanisms Can Regulate the Crypto Economy
byFederico Ast
 
A GREEN BUSINESS TOOLKIT FOR EARLY-STAGE ENTREPRENEURS (1).pptx.pptx
bylearnskillsofficial1
 
WebXR in Android and Linux with OpenXR
byIgalia
 
Configure and Secure SSH - RHCSA (RH124).pdf
byLinuxCert Guru
 
Control Access to Files - RHCSA (RH124).pdf
byLinuxCert Guru
 
Manage Local Users and Groups - RHCSA (RH124)
byLinuxCert Guru
 
Install and Update Software - RHCSA (RH124).pdf
byLinuxCert Guru
 
Exclusive Hands-On Workshop: Agentic Automation with UiPath (First Edition)
byanabulhac
 

"Thinking diffrent" about your information security strategy

  • 1.
    “THINK DIFFERENT” ABOUTSECURITY STRATEGY Jason Clark, VP Chief Strategy & Security Officer
  • 2.
    We need aNew Strategy 2
  • 3.
  • 4.
    Evolution of thebad guys modus operandi EASY TO PROTECT HARD TO PROTECT © 2012 Websense, Inc.
  • 5.
  • 6.
    Information Security Budget Your Companies Revenue IT Budget Infosec Budget 6
  • 7.
    Spend & securityeffectiveness mismatch Other 20% 80% OF THE SPEND IS 30% EFFECTIVE AT 80% SECURING THE BUSINESS. Firewalls , IDS, Endpoint Security Redirect our investments to be: Data Centric & Risk Based 7
  • 8.
    PLEASE STOP SPEARPHISING Have you tested your employees to Spear Phishing? Average results will show 71% of your users will click the link © 2012 Websense, Inc. 8
  • 9.
    Step 1: Evaluation Doyou know your breakdown? Do you know your return on investment? How do we increase “Security Personnel” with Zero Investment? Evaluate commodity spending 9
  • 10.
    Step 2: Buyin Communicate evaluation results with Everyone outside of IT • Get involved with Legal • Chief Privacy Officer/Head of HR • Audit, Engineering, Marketing, etc. REMEMBER As Tom August, author of the CISO Handbook, puts it… WE SELL IDEAS! © 2013 Websense, Inc.
  • 11.
    Step 3: Execute People, Process, Technology applied to Security People Process Technology Outcome + + = Success + + = Poor Adoption + + = Inconsistent Operation + + = Burden to Scale + + = Shelf-ware + + = Wasted Effort + + = No ability to execute + + = No Defenses Most of the time current Technology's lead back to infrastructure centric models.
  • 12.
    Step 4: Movingto Intelligence From Security Operations To Security Intelligence Wisdom Value Knowledge Information = Data The Relative Value of Information
  • 13.
    Step 5: Whois your enemy? © 2013 Websense, Inc.
  • 14.
    The Enemy isin your Blind Spots • SSL • Spear Phishing • AD, SAM, Password extraction • Custom Encryption • Malware • Application • Complex Technical Stack (limited visibility) • Insider Threat • Obfuscation
  • 15.
    Who Can WeTrust? 60 % of phishing attacks are hosted in the United States 50 % of malware redirects to the United States 36 % of malware is hosted in the © 2012 Websense, Inc. United States 15
  • 16.
    Next Generation ApproachTo Security Policy and Protection: Context Aware, Data Centric, Security Who What Where How Action Human Resources Source Code Benefits Provider File Transfer Audit Customer Service Business Plans Personal Web Storage Web Block Marketing Patient Information Business Partner Instant Messaging Notify Finance M&A Plans Blog Peer-to-Peer Remove Accounting Employee Salary Customer Email Encrypt Sales Financial Statements Malware Site Print Quarantine Legal Customer Records USB Removable Media Confirm Technical Support Technical Documentation Competitor Print Screen Engineering Competitive Information Analyst Copy/Paste © 2012 Websense, Inc. 16
  • 17.
    Threat Modeling &Attack Trees 17
  • 18.
    Seven Stages ofAdvanced Threats Recon Lure Redirect Exploit Dropper Call Data Kit File Home Theft CONTAIN- AWARENESS REAL-TIME ANALYSIS INLINE DEFENSES MENT
  • 19.
  • 20.
  • 21.