“Everyone full control or what?”
Security challenges inside a company
(WSUS, Wireless, Password policies: An introduction
2
Henk Maeghs 10 years Océ HTS Technical computer science System Support Engineer
Who are we?
Mark Theeuwes 8 years Océ HTS Technical computer science System Support Engineer
3
Canon
http://www.oce.com
4
Océ: 24,000 employees world wide Head office in Venlo 30 countries IT corporate / IT Venlo
Facts & Figures
5
Océ (Venlo): IT specialists? Servers ? Clients? Storage?
Facts & Figures IT
6
Océ (IT): 100 IT specialists Servers ? Clients Storage?
Facts & Figures IT
7
Océ (IT): 100 IT specialists 500 servers Clients Storage?
Facts & Figures IT
8
Océ (IT): 100 IT specialists 500 servers 5000 workstations Storage?
Facts & Figures IT
9
Océ (IT): 100 IT specialists 500 servers 5000 workstations 200 Tb storage
Facts & Figures IT
10
IT security
"the right people get the right information at the right time for the right reason".
11
IT Security: a short introduction
The CIA triad
12
CIA triad: confidentiality
About privacy and authentication
13
Some examples……..
14
CIA triad: Availability
After a disaster you need a recovery…..
15
Availability: other examples
Service Level Agreements
Data Center
16
CIA triad: integrity
Firewalls, antivirus software, CRC and Windows Updates
17
CIA integrity: Windows Updates
Exploit Wednesday
21
Service packs…………
22
Windows Server Updates Services (WSUS)
Upstream
Downstream
23
Download of updates at Microsoft
Express (delta) versus full
24
BITS (Background Intelligent Transfer Service)
25
WSUS Group Policy
26
WSUS settings (applied by a group policy)
27
On the desktop
28
“Houston, we’ve got a problem
29
Patch Tuesday MS bulletin about new updates Approval updates on test
systems Approval in production Minimizing risks by phased
updating
30
WSUS Management Console: approval per group
31
Time for a break