anitian overview

PRESENTATION FOR:

ANIT IANOV E R V I E W

WHY WE DO THIS

SECURITY IS ESSENTIAL FOR GROWTH, INNOVATION, AND

PROSPERITY

programscontrols

practicespolicies

in the cloudleaders

WHAT WE DOBuild great security…

ReasonPragmatismDedicationResponsibility

ExcellenceIntegrityEffectiveness

HOW WE DO ITOur Core Values

intelligent information securityANIT IAN

WHO DO WE DO IT FOR?

intelligent information securityANIT IAN

INTENT• Introduce Anitian• Share our vision, mission, and core values• Outline our capabilities• Demonstrate credibility and build trust • Define how we can help you

PRACTICE

AREAS

intelligent information securityANIT IAN

RISKNOW® - RAPID RISK ASSESSMENT Services• Risk Assessment • HIPAA Risk Assessment• Third Party Risk Assessment

Advantages• Accelerated version of NIST 800-30• Unique classification process• Integrated technical testing (penetration testing,

threat hunting, configuration analysis)• Actionable recommendations and guidance• Fully vetted for PCI, HIPAA/HITRUST, and FFIEC

compliance• Reports communicate risk in “leadership

terminology”

intelligent information securityANIT IAN

RING.ZERO SECURITY TESTING LABS Services

Advantages• Integrated risk assessment • Scientifically valid testing

techniques• Industry threat alignment

• Penetration Testing: network, web application, API, mobile, etc.

• Source code review• Social engineering • Incident response

testing

• Cloud architecture• Configuration analysis• Firewall policy review • Control strength &

effectiveness testing

intelligent information securityANIT IAN

VISIONPATH COMPLIANCEServices• Comprehensive compliance support:

Advantages• Practical, pragmatic approach to compliance• Hands-on technology expertise • On-demand advisory capabilities• Continuous compliance

• PCI-DSS• HIPAA / HITRUST• ISO 27001• FFIEC

• GLBA • NIST/FISMA• SOC2• NERC-CIP

intelligent information securityANIT IAN

SHERLOCK MANAGED SECURITY Managed Security Operations

Advantages• Cloud-based platform• Integrated detection and response based

on latest threat intelligence • Sophisticated automation and

orchestration platform• Virtual SOC model

• SIEM• NGFW• Endpoint Security• Vulnerability

Management

• Sandbox • Anomaly Detection• Threat Hunting• Breach Detection

intelligent information securityANIT IAN

VCISO – LEADERSHIP AS A SERVICEServices:

Advantages• Collaborative approach• Veteran leaders with hands-on

technology experience • Service level agreements

• Audit preparation • Policy development• Program development • Board reporting • Vendor management • Technology evaluation• Coaching and

mentoring• Staff augmentation• Market & industry

analysis • Investigations • Project management

intelligent information securityANIT IANA N I T I AN

B E Y O ND

CYBERSECURITY AS A SUBSCRIPTION

intelligent information securityANIT IAN

1. PICK THE SERVICES YOU WANT

• Enterprise risk assessments• HIPAA risk assessment• Third party risk assessment

• PCI-DSS• HIPAA / HITRUST• ISO 27001:2013• SOC2• FFIEC / GLBA• FISMA / NIST • NERC-CIP• EI3PA• Cloud compliance (AWS,

Azure)

• Penetration testing• Application security • Code review• Configuration

analysis• Firewall policy review • Cloud architecture

• Managed security (MSSP)• NGFW• SIEM• Endpoint• Vulnerability

Management• Web Gateway• DLP• Behavior Analytics

• Managed detection & response (MDR)• Digital forensics &

incident response (DFIR)

• LaaS – Leadership as a Service • On-Demand advisory• Industry & market

research • Staff augmentation

intelligent information securityANIT IAN

2. PICK YOUR SUBSCRIPTION

intelligent information securityANIT IAN

3.

3. USE THE SERVICES WHENEVER YOU NEED

THEM

intelligent information securityANIT IAN

4. GET SUPPORT WHENEVER YOU NEED IT

intelligent information securityANIT IAN

5. MANAGED SECURITY IN THE CLOUD• All our Sherlock managed security is delivered in the

AWS cloud• You own everything• All the data stays with you • Can scale to meet any size • Diverse technology support• Assigned a dedicated team of security experts

intelligent information securityANIT IAN

A N I T I A N B E Y O N D

BUILDING GREAT SECURITY

ANY SECURITY YOU NEEDWHENEVER YOU NEED IT

IN THE CLOUD ON-DEMAND

intelligent information securityANIT IAN

S U C C E S S

intelligent information securityANIT IAN

PROJECT MANAGEMENT• Dedicated Client Service

Manager• Client Engagement portal• Schedules / milestones• Discussions• Secure file exchange• To-do lists with deadlines• Email alerts

• Rules of engagement

TEAM EFFORT

Person Title RoleAndrew Plato CEO Executive sponsorAdam Gaydosh Director of Security

IntelligenceProject fulfillment sponsor, v-CISO

Jim Robison Director of Sales & Marketing

Customer satisfaction

Kat Burgess Account Executive Account managementJane Kitchen Director of Operations

& FinanceFinancial, billing

Greg Ragland Client Services Manager

Project management

Jordan Wiseman Senior Intelligence Advisor

Risk assessment, policy development, AWS expert, v-CISO

Rick Osgood Security Intelligence Engineer

Penetration testing, AWS cloud guidance, technical support

Phil Johnson Senior Intelligence Advisor

v-CISO services

intelligent information securityANIT IAN

QUESTIONS?

? ? ?