Klaus LenssenChief Security Officer –Cisco Security & Trust Office Deutschland

16. Deutscher Akademietag der Cisco Networking Academies31. März 2017

Cybersecurity“Mit Sicherheit !”

Kennen Sie diesen Herren?

Verbrechen lohnt sich

Yevgeniy Nikulin

2012: 117 Mio. Accounts gestohlen

nicht

Oktober 2016: verhaftet

Verbrechen lohnt sich

Mehr Chancen Mehr GeldMehr Ruhm

Hacking-Industrie: Wachstum und Wandel

450 Mrd. $

Professionelle

Teams

Schwachstelle Mensch

6© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential

Schwachstelle Mensch

Schwachstelle Mensch

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential

Deutschland: IT Sicherheits-gesetz Juli2015

Deutschland/Europa: EU Datenschutz-grundverordnung, Mai 2018

Deutschland: Sicherheitsüber-prüfungsgesetz und in Folge VSA/GSO

Europa: 2016/943, Juni 2018

Schutz von Geschäftsge-heimnissen vor rechtswidrigemErwerb sowie rechtswidrigerNutzung und Offenlegung

Europa: Network and Information Security across Europe, Mai 2018

16

Fachkräftemangel

*Stellen für IT-Fachkräfte können derzeit nicht besetzt werden (Jan 2017)

The Security Effectiveness Gap

25%Lack of Trained

Personnel

(-4%)

Biggest Obstacles to Advancing Security

Business Constraints

55%of organizations use 6 to

>50 security vendors

65% of organizations use 6 to

>50 security products

2016 (n=2,850)

2016 (n=2,860)

35%Budget

25%Certification

Requirements

28%Compatibility

Issues

Vendor

(-4%)

(+/-0%)

(Change from 2015)

(+3%)

Products

Complexity

1-5 (45%) 6-10 (29%)

11-20 (18%) 21-50 (7%) Over 50 (3%)

1-5 (35%) 6-10 (29%)

11-20 (21%) 21-50 (11%)

Over 50 (6%)

For Every 5000 Alerts, 616 Legitimate Alerts Were Never Investigated or Remediated

616Legitimate

2200Not Investigated

5000Total Alerts

30%Finance

Hard Hit: Security Breaches Paralyze Systems and Impact Key Business Operations

Business Impact

36%Operations

26%Brand

Reputation

26%Customer

Retention

1-8 Hourstime that systems were

down for 65% of

organizations

Nearly 30% of systems were

impacted for 61% of

organizations

Operational Impact

Security and TrustTrustworthy Systems

Is security built into my products and

solutions BY DESIGN?

How do I know whether my HARDWARE or

SOFTWARE has been COMPROMISED?

Is TRUST earned with technology and/or processes

and/or policies?

Verifiable built-in security:

Integrity assurance,

standards, certifications

Platform Integrity:

Secure Development Lifecycle,

Trust Anchor, Secure Boot

Security by Default:

Next Gen Encryption,

Key management

Security and TrustTrustworthy Systems

Verifiable built-in security:

Integrity assurance,

standards, certifications

Platform Integrity:

Secure Development Lifecycle,

Trust Anchor, Secure Boot

Security by Default:

Next Gen Encryption,

Key management

Built-in confidence

from inception through end of life

Foundational Trust

Cisco glaubt an Deutschland

500 Mio. $

INVEST: Digitalisierung beschleunigen

„Deutschland Digital“

Bildung Sicherheit& Vertrauen

Innovation

What I do, I understand”

Cyber Range Service

27

A platform to experience the intelligent Cyber Security for the real world

~ Confucius

“What I hear, I forget

What I see, I remember

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential

Cyber Range Service Delivery Platform

• A Platform for ServiceDelivery and Learning

• Deeper understanding of leading security methodologies, operations, and procedures

• Empower customers with the architecture and capability to combat modern cyber threats

• Over 50 Attack Cases for 9 Technology Solutions

• 100+ applications simultaneously merged with 200-500 different Malware types

• Virtual environment accessible from any place in the world

PEOPLE PROCESS DATA THINGS

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential

Security is not a Business Obstacle to Success

Security is a Business Enabler

29

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential

"Cyberangriffe gehören heute zum Alltag."

„Wir müssen lernen, damit umzugehen.“

Dr. Angela MerkelBundeskanzlerin, Herbst 2016 30© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential

Danke für IhreAufmerksamkeit

Anregungen oder Fragen?