Click here to load reader
Upload
channa-thorn
View
132
Download
0
Embed Size (px)
Citation preview
Welcome to presentation
University of Puthisastra
Instructor: Mr. SET Khemarin Subject: System and Network security
Topic: Security Awareness Welcome to Presentation
1
Group members F:
SOMEURN SreyaunTHOUN ChomroeunKONG VendavySARET BirosaTHORN Channa2
Agenda What is security awareness? General program of security awarenessPhysical securitySecurity policyAdvantages of security awareness Conclusion
3
3
What is security awareness?Is the knowledge and attitude members of an organization possess regarding the protection of the physical, and especially informational, assets of that organization. Many organizations require formal security awareness training for all workers when they join the organization and periodically thereafter, usually annually.4
General program of security awareness
Phishing: Action asks via e-mail for sensitive Information such as SSN, credit card numbers, login IDs or passwords..
Privileged Access:who can access? What do they can do?
5
General program of security awareness
Social Engineering: Action to gain our secreting
Phone Call:This is John, the System Admin. What is your password?Email:ABC Bank hasnoticed a problem withyour accountIn Person:What ethnicity are you? Your mothers maiden name?6
General program of security awarenessWorm: Steal our information
To JoeEmail List:[email protected]@[email protected]
7
General program of security awarenessVirus : Execute by human
8
General program of security awarenessBOTNET: A botnet is a large number of compromised computers that are used to create and send spam or viruses or flood a network with messages as a denial of service attack. The compromised computers are called zombies
9
General program of security awareness MAN IN THE MIDDLE ATTACK: An attacker pretends to be your final destination on the network. If a person tries to connect to a specific WLAN access point or web server, an attacker can mislead him to his computer, pretending to be that access point or server.
10
Physical securityPhysical barriersSecurity lightingAlarm systems and sensors
11
Physical security
Video surveillance
Mechanical access control systems
12
Physical security
Electricity control systemsIdentification systems and access policiesSecurity personal
13
Security policyPassword management
Access controls
14
Security policyAuthenticationAuthorizationAccounting
15
Security policyUpdate service pack Install antivirus/ update virus definition Firewall policy/rules
16
Advantages of security awarenessProvide better protection for assets
Improve morale
Save money/Time
17
Advantages of security awarenessGive your organization a competitive advantage Protect and enhance your organization's reputation and brand Protect customer information and corporate information 18
Advantages of security awarenessReduce mandatory auditsFacilitate disciplinary or legal action against those who don't comply with information security rules19
ConclusionIs the knowledge and attitude members of an organization possess regarding the protection of the physical, and especially informational, assets of that organization. we need to set policy, training to our staffs to protect their data, asset, care full,,..20
Referenceshttp://www.securingthehuman.org/resources/security-termshttps://en.wikipedia.org/wiki/Physical_security http://www.nativeintelligence.com/ni-programs/ni-benefits.asphttps://www.ucisa.ac.uk/~/media/Files/publications/toolkits/ist/ISTEd3%20pdf 21
Questions & Answers
22