what is the biggest challenge in information security sanitized
DESCRIPTION
Basic Information Security presentationTRANSCRIPT
What is the biggestWhat is the biggest challenge in Information g
Security today?
Prepared by: Sam Prepared by: Sam LodhiLodhihttp://www.linkedin.com/in/lodhi
Prepared by: Sam Prepared by: Sam LodhiLodhihttp://www.linkedin.com/in/lodhi
1
http://www.linkedin.com/in/lodhihttp://www.linkedin.com/in/lodhi
Information Security ChallengesInformation Security Challenges
Actively Manage Create Mediation Plans
• VoIP & SIP Attacks• Internal Server Break-Ins• Network Break-Ins• Equipment Loss or Theft
Requires Immediate Attention, Senior Mgmt
Focus• Identity Theft & Fraud• Viruses & Malware• Info & IP Loss or Theft• Equipment Loss or Theft
• Mobile & Wireless Device Exploits
• Info & IP Loss or Theft• Insider Threats• Web Application Attacks
of A
ttack
Fix at Mgmt Discretion, Bear Risk
• SPAM
Plan to Remediate, Business Contingency
Planssine
ss Im
pact
• SPAM• Industrial Espionage• Web 2.0 Exploits
Plans• Internet DDoS AttacksB
us
2
Likelihood of Successful Attack
Prepared by: Sam LodhiPrepared by: Sam LodhiPrepared by: Sam LodhiPrepared by: Sam Lodhi
Challenges RationaleChallenges Rationale
Business Sector & Impact
I.E. Financial, Health etc.
I.S. Attack Trends &Trends &
Likelihood of Attack
XXS, Malware etc.
Effort to Fix & Cost
TechnologyTechnology Development
I.E. Faster CPUs etc.
3Prepared by: Sam LodhiPrepared by: Sam LodhiPrepared by: Sam LodhiPrepared by: Sam Lodhi
How can Industry solve it?How can Industry solve it?
T h l l t• Technology elements• Human elements• The combination of these elements
means we are not dealing with anmeans we are not dealing with an equation that can be solved!!
• However it can be Managed
4Prepared by: Sam LodhiPrepared by: Sam LodhiPrepared by: Sam LodhiPrepared by: Sam Lodhi
What would success look like?What would success look like?• You manage risk:• You manage risk:
– Implement controls but minimise and balance cost of implementing controls withbalance cost of implementing controls with the desire to control all risk.
– Be pragmatic ensure the business can p gfunction without feeling overly restricted.
5Prepared by: Sam LodhiPrepared by: Sam LodhiPrepared by: Sam LodhiPrepared by: Sam Lodhi