“Everyone full control or what?”

Security challenges inside a company

(WSUS, Wireless, Password policies: An introduction

2

Henk Maeghs 10 years Océ HTS Technical computer science System Support Engineer

Who are we?

Mark Theeuwes 8 years Océ HTS Technical computer science System Support Engineer

3

Canon

http://www.oce.com

4

Océ: 24,000 employees world wide Head office in Venlo 30 countries IT corporate / IT Venlo

Facts & Figures

5

Océ (Venlo): IT specialists? Servers ? Clients? Storage?

Facts & Figures IT

6

Océ (IT): 100 IT specialists Servers ? Clients Storage?

Facts & Figures IT

7

Océ (IT): 100 IT specialists 500 servers Clients Storage?

Facts & Figures IT

8

Océ (IT): 100 IT specialists 500 servers 5000 workstations Storage?

Facts & Figures IT

9

Océ (IT): 100 IT specialists 500 servers 5000 workstations 200 Tb storage

Facts & Figures IT

10

IT security

"the right people get the right information at the right time for the right reason".

11

IT Security: a short introduction

The CIA triad

12

CIA triad: confidentiality

About privacy and authentication

13

Some examples……..

14

CIA triad: Availability

After a disaster you need a recovery…..

15

Availability: other examples

Service Level Agreements

Data Center

16

CIA triad: integrity

Firewalls, antivirus software, CRC and Windows Updates

17

CIA integrity: Windows Updates

Exploit Wednesday

18

Why updates?

19

Hotfixes………..

20

Patches………….

21

Service packs…………

22

Windows Server Updates Services (WSUS)

Upstream

Downstream

23

Download of updates at Microsoft

Express (delta) versus full

24

BITS (Background Intelligent Transfer Service)

25

WSUS Group Policy

26

WSUS settings (applied by a group policy)

27

On the desktop

28

“Houston, we’ve got a problem

29

Patch Tuesday MS bulletin about new updates Approval updates on test

systems Approval in production Minimizing risks by phased

updating

30

WSUS Management Console: approval per group

31

Time for a break