BREAKING OUT OF THE SILO - Boston University · (Verizon DBIR 2016) 2015, 2014, 2013, 2012,...

BREAKING OUT OF THE SILO:THE NEED FOR BROAD SECURITY AUTOMATION

Justin PaganoJulian DeFronzo

About Us

Julian

Justin

Siloed Automation

PREVENT

DETECT

CORRECT

Broad Automation

PREVENT

DETECT

CORRECT

Problems

DefendersaregettingbetterAttackersaregettingbetterfaster(VerizonDBIR2016*)*2015,2014,2013,2012,2011,2010,2009,and2008

Staffshortage(Peninsula,Cisco)

Industry Background & Status Quo

1990s– Early2000s

Industry Background & Status Quo

Late2000s Early2010s

Prevent Detect

Correct*

Detect

Correct

Prevent

*Solution: Broad Automation

*Oneofmany

Basic Assumptions

• Open APIs

• Programming skills

• Time

Strategies

• Automate therepeatableprocesses

• Automate acrosstoolsandteams

• Automate rollbacks

• Usemanualstepssparingly

Vulnerability/Patch Management

Detectvuln

ServiceRequest

ChangeRequest

Queuepatches Notify Patch! Rescan Close

tickets

=Manual

=Automated

Detectvuln

ServiceRequest

ChangeRequest

tickets

Detectvuln

ServiceRequest

ChangeRequest

tickets

Quarantine

Detectvuln

ServiceRequest

ChangeRequest

tickets

QuarantineDisparatesystems• Vulnerabilityscanner• ITSM• Patchmanagement• Firewall/NetworkManagementDevice

Approve

Configuration Management: Firewalls

DefinePolicies&Standards

AuditPoliciesandRules

ReacttoDeviations

ConfigureFirewallRules

Configuration Management: Firewalls

DefinePolicies&Standards

AuditPoliciesandRules

ReacttoDeviations

Disparatesystems• ITSM• Config ManagementRepo• Firewall

ConfigureFirewallRules

Rollback

Configuration Management: AWS

Phishing Analysis

Analyzemetadata

Analyzelinks+

attachments

GrabScreenshots

MessageTrace

DeleteEmails

Notifyuserswho"read"

Notifyabusecontacts

Updateprevention+detection

Phishing Analysis

Analyzemetadata

Analyzelinks+

attachments

GrabScreenshots

MessageTrace

DeleteEmails

Notifyuserswho"read"

Notifyabusecontacts

Updateprevention+detection

Disparatesystems• AVscanner• Email/spamserver• Malwaresandbox• SIEM• Webproxy• ThreatIntel

PushButton

BONUS: Screenshots

Production System Access Management

UserRequestsAccess

ApprovalChain

UserProvisioned

AuditActivity?

RemoveAccess

PushButton

Production System Access Management

UserRequestsAccess

ApprovalChain

UserProvisioned

AuditActivity

RemoveAccess

Policies & Compliance

Senddocsviaemail

Sendreminders Escalate RecordACKs Real-time

dashboards

Disparatesystems• Email• Documentmanagementsystem• Identity&AccessManagementsystem• HRIS

Quarantine

BREAKING OUT OF THE SILO - Boston University · (Verizon DBIR 2016) 2015, 2014, 2013, 2012,...

Documents

Muyang Steel Silo - TradeKeyimgusr.tradekey.com/images/uploadedimages/brochures/3/7/5825344... · Silo Introduction— Lipps Silo Principle of Lipps Silo Fabrication: 1. st. step:

MSU IT Update · *2016 Verizon DBIR +2015 Verizon DBIR. 14 MSU’s Threats, per Industry Top Threats, PerIndustry (past two years) Industry PrimaryThreat Accommodation Point of SaleIntrusions

2018 Top 10 Cyber Threats Event... · 2020. 1. 11. · • Verizon 2017 DBIR, • Ponemon/IBM 2017 Cost of a Data Breach Report 2017 • Accenture/Ponemon Cost of Cyber crime Study

DBIR INDUSTRY SNAPSHOT: HEALTHCARE€¦ · Verizon’s annual Data Breach Investigations Report (DBIR)1 analyzes forensic evidence to uncover how sensitive data is stolen from organizations,

Secure Browsing – powered by Citrix XenApp, Citrix ...€¦ · 2016 Verizon Data Breach Investigations Report (DBIR) that opens with the above quote report notes that, as in all

TM LPT - Zero2Infynite · Source: Verizon DBIR 2016 Report. For more information Please visit lptmaster.com Who can take the LPT (Master) exam? To be eligible to apply to attempt

AGREEMENT between VERIZON FLORIDA INCORPORATED VERIZON …€¦ · VERIZON FLORIDA INCORPORATED VERIZON SELECT SERVICES, INC. ... Definition XIII 1.1 38 Verizon Supply Chain Services,

Cloud Security, Mobility and Current Threats...Verizon DBIR: Breached assets (2016) Verizon DBIR: Time to compromise (2016) Verizon DBIR: Time to discovery (2016) DLP: Insider risks

SILO UNTER FREIEM HIMMEL / SILO IN THE OPEN AIR

DBIR INDUSTRY SNAPSHOT: RETAIL · PDF fileDATA BREACH INVESTIGATIONS REPORT ... DBIR INDUSTRY SNAPSHOT: RETAIL TRADE SUMMARY OF FINDINGS Every year, ... but reliance upon them is also

2016 Data Breach Investigations Report (DBIR) & Cybersecurity on SlideShare

Flash Wireless Ordering Guide CHART · HTC'One'M9 A1891 Verizon HTC'One'M8 A1892 Verizon Droid'Maxx A1893 Verizon Droid'Maxx'2 A1894 Verizon Droid'Mini A1895 Verizon Droid'RAZR'M

Verizon FiOS TV User Guide - My Verizon Email - Verizon News and

The Top 10 Cyberattacks - Arctic Wolf SOC-as-a …...1. Cisco Cybersecurity Special Report, 2018 2. Verizon Data Breach Investigations Report (DBIR), 2017 3. Check Point 2018 Security

DBIR-Italian media event (WITHOUT NOTES) Event.… · Netflow Honey nets, Honey Pots ... Demographics Industries. Confidential and proprietary material for authorized Verizon Business

LEARNINGS FROM THE 2015 PONGOLA SILO FAILURE · Keywords: silo failure, silo stabilisation, silo strengthening, silo design, buckling strength, compression buckling . Literature search

Stephen Burke, CISM Founder & CEO stephen@CyberRiskAware · 2020. 3. 18. · Source: Verizon DBIR 2016, 8M test emails Key Findings • 30% of all emails opened (+6% on 2014) •

User Manual SONO-SILO - Amazon S3€¦ · User Manual SONO-SILO. User Manual SONO-SILO Version 2_6 2017-05-16 Page 2 User Manual SONO-SILO ... 5.4. Mounting on a silo or weighing

Getting Started With Verizon Message Center – Verizon ... · Getting Started With Verizon Message Center – Verizon QuickGuides Subject: Get started using your Verizon Message

© 2010 Verizon. All Rights Reserved. PTE14626 07/10 2011 DBIR

BREAKING OUT OF THE SILO - Boston University · (Verizon DBIR 2016*) * 2015, 2014, 2013, 2012,...

BREAKING OUT OF THE SILO - Boston University · (Verizon DBIR 2016) 2015, 2014, 2013, 2012,...