anitian overview
TRANSCRIPT
PRESENTATION FOR:
ANIT IANOV E R V I E W
WHY WE DO THIS
SECURITY IS ESSENTIAL FOR GROWTH, INNOVATION, AND
PROSPERITY
programscontrols
practicespolicies
in the cloudleaders
WHAT WE DOBuild great security…
ReasonPragmatismDedicationResponsibility
ExcellenceIntegrityEffectiveness
HOW WE DO ITOur Core Values
intelligent information securityANIT IAN
WHO DO WE DO IT FOR?
intelligent information securityANIT IAN
INTENT• Introduce Anitian• Share our vision, mission, and core values• Outline our capabilities• Demonstrate credibility and build trust • Define how we can help you
PRACTICE
AREAS
intelligent information securityANIT IAN
RISKNOW® - RAPID RISK ASSESSMENT Services• Risk Assessment • HIPAA Risk Assessment• Third Party Risk Assessment
Advantages• Accelerated version of NIST 800-30• Unique classification process• Integrated technical testing (penetration testing,
threat hunting, configuration analysis)• Actionable recommendations and guidance• Fully vetted for PCI, HIPAA/HITRUST, and FFIEC
compliance• Reports communicate risk in “leadership
terminology”
intelligent information securityANIT IAN
RING.ZERO SECURITY TESTING LABS Services
Advantages• Integrated risk assessment • Scientifically valid testing
techniques• Industry threat alignment
• Penetration Testing: network, web application, API, mobile, etc.
• Source code review• Social engineering • Incident response
testing
• Cloud architecture• Configuration analysis• Firewall policy review • Control strength &
effectiveness testing
intelligent information securityANIT IAN
VISIONPATH COMPLIANCEServices• Comprehensive compliance support:
Advantages• Practical, pragmatic approach to compliance• Hands-on technology expertise • On-demand advisory capabilities• Continuous compliance
• PCI-DSS• HIPAA / HITRUST• ISO 27001• FFIEC
• GLBA • NIST/FISMA• SOC2• NERC-CIP
intelligent information securityANIT IAN
SHERLOCK MANAGED SECURITY Managed Security Operations
Advantages• Cloud-based platform• Integrated detection and response based
on latest threat intelligence • Sophisticated automation and
orchestration platform• Virtual SOC model
• SIEM• NGFW• Endpoint Security• Vulnerability
Management
• Sandbox • Anomaly Detection• Threat Hunting• Breach Detection
intelligent information securityANIT IAN
VCISO – LEADERSHIP AS A SERVICEServices:
Advantages• Collaborative approach• Veteran leaders with hands-on
technology experience • Service level agreements
• Audit preparation • Policy development• Program development • Board reporting • Vendor management • Technology evaluation• Coaching and
mentoring• Staff augmentation• Market & industry
analysis • Investigations • Project management
intelligent information securityANIT IANA N I T I AN
B E Y O ND
CYBERSECURITY AS A SUBSCRIPTION
intelligent information securityANIT IAN
1. PICK THE SERVICES YOU WANT
• Enterprise risk assessments• HIPAA risk assessment• Third party risk assessment
• PCI-DSS• HIPAA / HITRUST• ISO 27001:2013• SOC2• FFIEC / GLBA• FISMA / NIST • NERC-CIP• EI3PA• Cloud compliance (AWS,
Azure)
• Penetration testing• Application security • Code review• Configuration
analysis• Firewall policy review • Cloud architecture
• Managed security (MSSP)• NGFW• SIEM• Endpoint• Vulnerability
Management• Web Gateway• DLP• Behavior Analytics
• Managed detection & response (MDR)• Digital forensics &
incident response (DFIR)
• LaaS – Leadership as a Service • On-Demand advisory• Industry & market
research • Staff augmentation
intelligent information securityANIT IAN
2. PICK YOUR SUBSCRIPTION
intelligent information securityANIT IAN
3.
3. USE THE SERVICES WHENEVER YOU NEED
THEM
intelligent information securityANIT IAN
4. GET SUPPORT WHENEVER YOU NEED IT
intelligent information securityANIT IAN
5. MANAGED SECURITY IN THE CLOUD• All our Sherlock managed security is delivered in the
AWS cloud• You own everything• All the data stays with you • Can scale to meet any size • Diverse technology support• Assigned a dedicated team of security experts
intelligent information securityANIT IAN
A N I T I A N B E Y O N D
BUILDING GREAT SECURITY
ANY SECURITY YOU NEEDWHENEVER YOU NEED IT
IN THE CLOUD ON-DEMAND
intelligent information securityANIT IAN
S U C C E S S
intelligent information securityANIT IAN
PROJECT MANAGEMENT• Dedicated Client Service
Manager• Client Engagement portal• Schedules / milestones• Discussions• Secure file exchange• To-do lists with deadlines• Email alerts
• Rules of engagement
TEAM EFFORT
Person Title RoleAndrew Plato CEO Executive sponsorAdam Gaydosh Director of Security
IntelligenceProject fulfillment sponsor, v-CISO
Jim Robison Director of Sales & Marketing
Customer satisfaction
Kat Burgess Account Executive Account managementJane Kitchen Director of Operations
& FinanceFinancial, billing
Greg Ragland Client Services Manager
Project management
Jordan Wiseman Senior Intelligence Advisor
Risk assessment, policy development, AWS expert, v-CISO
Rick Osgood Security Intelligence Engineer
Penetration testing, AWS cloud guidance, technical support
Phil Johnson Senior Intelligence Advisor
v-CISO services
intelligent information securityANIT IAN
QUESTIONS?
? ? ?