ibm vciso sunderland

@1davidclarke Email cio@vciso.co for list of links

• IBM Interconnect26th March 2015Sunderland Software Centre

"Thank You to the IBM Team for puttng this event together.“http://www.slideshare.net/IBMInterconnect/inter-connect-sunderland-agenda?

qid=cbafb915-e826-4d62-9e21-b1f837afc3fa&v=&b=&from_search=5

David Clarke• Created CERT on a Financial Intranet trading $3.5

Trillion a day ,CPNI Member 10 Years.

• Managed Global Managed Security Services with a $100-$300 million Global install base 500 + Customers with $3.4 Billion dollar Contracts.

• Created , maintained and improved regulatory and compliance commitments including Global PCI-DSS, ISO 27001 (10,000+ Security Devices/Systems ).

"The 7 Most Important Steps to Cyber protection for SME's -"

• "....that can cost less than a Latte and

could get you Enterprise Level

Cyber Security !..."

• Updated List of Software /Service vciso.co/lattesecurity

Cost Of Latte Around the world

Grande latte in Oslo cost jolting $9.83

How does this affect Small Business

• Cyber attacks third biggest risk for UK firms, as supply chain disruption remains top concern - See more at: Jan 15th 2015

• http://www.supplymanagement.com/news/2015/cyber-attacks-third-biggest-risk-for-uk-firms-as-supply-chain-disruption-remains-top#sthash.iHZoSvDS.dpuf

Impact for Small Business• To Supply IT services to HMG Compliant

with Cyber Essentials.• Potentially Suppliers to suppliers will need

to demonstrate cyber security practices• Suppliers to larger compnanies are

already being asked.

What can Small business do to level The playing field.

1. System Misconfiguration2. Patch Management3. Default Passwords4. Easy to Guess Passwords5. Lost Devices6. Disclosure of info via incorrect email address7. Double Clicking Attachment/URL

Re- Arrange this List1. Easy to Guess Passwords2. Default Passwords3. Disclosure of info via incorrect email address4. Patch Management5. Lost Devices6. Double Clicking Attachment/URL7. System Misconfiguration

PasswordsTwo Main Types Types

• Master PasswordsAccess to PC's and Servers and Appliances <10• Constant Use PasswordsEmail,Ebay,Dropbox etc >100's

Master Passwords

If you have this Card nothing to remember Cost One Time <£5.00

https://www.qwertycards.com/

Constant Use Passwords

If you have this Software nothing to remember Cost Yearly $12.00

Auto FillCreates Password Saves SiteFree$12/Year for Mobile

If you have a Large Team

If you have this Software nothing to remember Cost Monthly about $10

Auto FillCreates Password Saves Site$10/A month

Email Passwords• Gmail 2 Stage Authentication• Password and a text

• Yahoo On time password • They will text you new password

• If you have this Software nothing to remember FREE

List 11. Easy to Guess Passwords2. Default Passwords3. Disclosure of info via incorrect email address4. Patch Management5. Lost Devices6. Double Clicking Attachment/URL7. System Misconfiguration

Disclosure of Information• https://www.prot-on.com/tryIt.html

Basic Version is FreeEasy to use ,QuickCreate a list of people allowed to see document.

Patch Managment• http://secunia.com/products/

Lost Devices• Mobile Phones• Apple Icloud • Lock/Phone/Track Phone

• Android • Lock/Phone/Track Ring, Lock, or Erase AVG/Google• https://www.avgmobilation.com/

Lost PC's

• Dropbox• Sugarsync• Google Drive

• Real Time Back Up • Use Cloud encryption

PerfectCloud.io to Encrypt Free Account

Double Clicking Attachment/URL• Use Gmail/Yahoo to filter out the Worst.• Panda Security Plugin warns against sites• http://www.pandasecurity.com/homeusers/downloads/wot/ • Chrome Safe Browsing enabled

Who are You Going To Call?• https://www.cert.gov.uk/what-we-do/

responding-to-a-cyber-issue/getting-help/

What Are you Going to do?• https://www.malwarebytes.org/• http://housecall.trendmicro.com/uk/

Am I really Vulnerable?https://breachalarm.comBreachAlarm monitors the Internet for your passwords being compromised and posted online.

Appendix

Bonus Slide• Kids, Controlling Access.• http://www.netgenie.net/global/ Around £100

• Free SIEM Security Incident Event Managment• https://siemless.com/

• Take Credit Cards with Free CC Reader• https://www.izettle.com/gb/service

• Free Invoicing on The Web• https://www.waveapps.com/

• Breach Legislation, IT or Legal?

• " the proposed regulation of up to 5% of annual worldwide turnover, or €100"

• Information Sharing , Who,When, How• "The ICO has imposed a monetary penalty

of £200000 on the British Pregnancy Advice Service (BPAS) for exposing thousands of personal"

• Compliance is the best protection?• "Resistance is futile" Gartner• "Brighton and Sussex University Hospitals NHS

Trust fined £325k after hard drives with highly-sensitive patient data were sold on eBay, - "

• Best Practice or is this Compliance ?• "The ICO can issue fines of up to

£500,000 for serious breaches of the Data Protection Act and Privacy and Electronic Communications Regulations." ICO

• Incident Response,Strategy

• "There are two kinds of big companies in the U.S. Those who’ve been hacked by the Chinese and those who don’t know they’ve been hacked.”

ibm vciso sunderland

Technology

sunderland vaux site analysis

case study sunderland selects sustainability! user:...

sunderland aquatic centre

1chopra smashes sunderland

sunderland trust leaflet

acg sunderland college

driving lesson sunderland

learning concepts - sunderland it courses , courses in...

eplus virtual chief information security officer (vciso)

land at former sunderland college north hylton campus...

the sunderland hk · 2019. 9. 11. · designer 設計 ken...

sunderland housing case study

sunderland college international prospectus

the old baths, sunderland

sunderland fc

virtual chief information security officer (vciso)

sunderland mcp prospectus

contribution presentation sunderland

pupil premium sunderland

t. harris^ & a. brason university of sunderland ... ·...