NetIQ, profile picture
Uploaded byNetIQ
PPTX, PDF765 views

From reactive to automated reducing costs through mature security processes info security europe 2011

This document discusses how organizations can move from reactive security processes to more automated security processes to reduce costs. It highlights how IT process automation can help bridge silos between business and IT by centralizing tools on a single platform. This allows organizations to address key issues like insider threats, compliance requirements, and business exception management through automated workflows. The document provides examples of how automated workflows for incident management and compliance exception management can help improve security, reduce manual work, and ensure processes are consistently followed.

Embed presentation

Downloaded 20 times
From Reactive To Automated:Reducing Costs Through Mature Security ProcessesJörn DierksChiefSecurityStrategist EMEAjoern.dierks@netiq.com
Solving Cross-Discipline Problems2ProcessPeopleTechnologyInfrastructure & ApplicationsProvisioningHRComplianceHelpdeskNetIQNOCIncidentSecurityChangeBusinessOwnersOther Mgmt VendorsBusiness Processes
ProcessPeopleTechnologyInfrastructure & ApplicationsProvisioningHRCross-Product Integration ComplianceHelpdeskNetIQNOCIncidentSecurityChangeBusinessOwnersOther Mgmt VendorsBusiness ProcessesSolving Cross-Discipline Problems3
The Role of IT Process Automation –Bridging Silos Between Business and ITToolsToolsBusinessConfiguration & Identity AuditingService / Help DeskSecurity Info & Event ManagementEvent Correlation & AnalysisIT GRCMSLMIT ProcessAutomationVulnerability AssessmentSystems & App Monitoring Perimeter & Network SecurityNetwork MonitoringContent Monitoring / DLPResponse TimeMonitoringOperationsSecurityPolicyAwarenessConfiguration & Patch ManagementCMDBAV / Malware ProtectionIdentity ManagementResponsibilities Shared between Security & OperationsContinuityManagementCapacity & AvailabilityManagementReleaseManagementIncident & Problem Management Configuration & ChangeManagement
5Security & CompliancePerformance & Availability Identity & Access5© 2010 NetIQ Corporation. All rights reserved.About NetIQManage and audit user entitlements
Track privileged user activity
Protect the integrity of key systems and files
Monitor access to sensitive information
Simplify compliance reportingIT ProcessAutomationMonitor and manage heterogeneous environments including custom applications
IT Service validation and end-user performance monitoring
Dynamic provisioning of large-scale monitoring with exceptions
Functional and hierarchical Incident escalation
Deliver & manage differentiated service levels
User Provisioning Lifecycle Management
Centralize Unix account management through Active Directory
Reduce number of privileged users
Secure delegated administration
Windows and Exchange MigrationAddressing Insider ThreatPrivileged User MonitoringAddressing Compliance RequirementsBusiness Exception ManagementEnd-User Policy Management andAwarenessUse-Cases In This Presentation

More Related Content

PPTX
Building A Cloud-Ready Security Program
byNetIQ
 
PPTX
Cloud Security: A Business-Centric Approach in 12 Steps
byOmar Khawaja
 
PPTX
Two Peas in a Pod: Cloud Security and Mobile Security
byOmar Khawaja
 
PDF
Security - A Digital Transformation Enabler
byAlexander Akinjayeju. MSc, CISM, Prince2
 
PPTX
A Smarter, More Secure Internet of Things
byNetIQ
 
PPTX
Leveraging Identity to Manage Change and Complexity
byNetIQ
 
PDF
Cloud Identity
byNetIQ
 
PDF
NetIQ Directory & Resource Administrator Helps Kindred Healthcare Achieve Com...
byNetIQ
 
Building A Cloud-Ready Security Program
byNetIQ
 
Cloud Security: A Business-Centric Approach in 12 Steps
byOmar Khawaja
 
Two Peas in a Pod: Cloud Security and Mobile Security
byOmar Khawaja
 
Security - A Digital Transformation Enabler
byAlexander Akinjayeju. MSc, CISM, Prince2
 
A Smarter, More Secure Internet of Things
byNetIQ
 
Leveraging Identity to Manage Change and Complexity
byNetIQ
 
Cloud Identity
byNetIQ
 
NetIQ Directory & Resource Administrator Helps Kindred Healthcare Achieve Com...
byNetIQ
 

What's hot

PPTX
A Non-Salesy Intro to the Ivanti Porfolio
byIvanti
 
PPT
IBM Security Strategy Intelligence,
byInformation Security Awareness Group
 
PPTX
Security Management in the Cloud
byGaryArdito
 
PDF
Bring Your Own Device (BYOD)
byMurray Security Services
 
PDF
Securing Your Cloud Applications
byIBM Security
 
PPTX
New CISO - The First 90 Days
byResilient Systems
 
PDF
Fortifying Cyber Defense: How to Act Now to Protect Global Supply Chains
byIgnyte Assurance Platform
 
PPTX
Cloud security - Auditing and Compliance
byJosh Tullo
 
PDF
Identiverse Zero Trust Customer Briefing, Identiverse 2019
byIdentity Defined Security Alliance
 
PDF
Kista watson summit final public version
byIBM Sverige
 
PPTX
SANS Critical Security Controls Summit London 2013
byWolfgang Kandek
 
PPTX
You are Doing IT Security Wrong - Understanding the Threat of Modern Cyber-at...
byMichael Noel
 
PPTX
Securing IT Against Modern Threats with Microsoft Cloud Security Tools - M365...
byMichael Noel
 
PDF
2021 English Part One Anti-phishing Webinar Presentation Slides
byIvanti
 
PDF
Total Digital Security Introduction 4.2
byBrad Deflin
 
PDF
"Thinking diffrent" about your information security strategy
byJason Clark
 
PDF
Why Executives Underinvest In Cybersecurity
byHackerOne
 
PDF
Energy Industry Organizational Strategies to Increase Cyber Resiliency
byEnergySec
 
A Non-Salesy Intro to the Ivanti Porfolio
byIvanti
 
IBM Security Strategy Intelligence,
byInformation Security Awareness Group
 
Security Management in the Cloud
byGaryArdito
 
Bring Your Own Device (BYOD)
byMurray Security Services
 
Securing Your Cloud Applications
byIBM Security
 
New CISO - The First 90 Days
byResilient Systems
 
Fortifying Cyber Defense: How to Act Now to Protect Global Supply Chains
byIgnyte Assurance Platform
 
Cloud security - Auditing and Compliance
byJosh Tullo
 
Identiverse Zero Trust Customer Briefing, Identiverse 2019
byIdentity Defined Security Alliance
 
Kista watson summit final public version
byIBM Sverige
 
SANS Critical Security Controls Summit London 2013
byWolfgang Kandek
 
You are Doing IT Security Wrong - Understanding the Threat of Modern Cyber-at...
byMichael Noel
 
Securing IT Against Modern Threats with Microsoft Cloud Security Tools - M365...
byMichael Noel
 
2021 English Part One Anti-phishing Webinar Presentation Slides
byIvanti
 
Total Digital Security Introduction 4.2
byBrad Deflin
 
"Thinking diffrent" about your information security strategy
byJason Clark
 
Why Executives Underinvest In Cybersecurity
byHackerOne
 
Energy Industry Organizational Strategies to Increase Cyber Resiliency
byEnergySec
 

Similar to From reactive to automated reducing costs through mature security processes info security europe 2011

PPTX
5 Clear Signs You Need Security Policy Automation
byTufin
 
PDF
Emerging Trends in Information Privacy and Security
byJessica Santamaria
 
PDF
IT General Controls Presentation at IIA Vadodara Audit Club
byKaushal Trivedi
 
PPTX
Enterprise IT Security| CIO Innovation and Leadership
byRedZone Technologies
 
PPTX
Security Baselines and Risk Assessments
byPriyank Hada
 
PDF
CNIT 160: Ch 2b: Security Strategy Development
bySam Bowne
 
PDF
5 things you didn't know you could do with security policy management
byAlgoSec
 
PPTX
Infosec policies to appsec standards ed final
byeadams2330
 
PDF
BetterCloud Whitepaper: Fixing IT's Blindspots – 8 Critical Security and Mana...
byBetterCloud
 
PPT
How much does it cost to be Secure?
bymbmobile
 
PDF
Emerging Trends in Information Privacy and Security
byJessica Santamaria
 
PPT
Lunch and Learn: June 29, 2010
byprevalentnetworks
 
PPT
Cyber crime with privention
byManish Dixit Ceh
 
PPTX
Information security trends and concerns
byJohn Napier
 
PDF
Defcon 22-tim-mcguffin-one-man-shop
byPriyanka Aash
 
PDF
Security a Revenue Center: How Security Can Drive Your Business
byshira koper
 
PDF
Security Change Management: Agility vs. Control
byAlgoSec
 
PPTX
ISStateGovtProposal
byDale White
 
DOCX
Security Policies and Implementation IssuesLecture 5How to D.docx
byjeffreye3
 
PPTX
Continuous Compliance 14.9.2016
byDigia Plc
 
5 Clear Signs You Need Security Policy Automation
byTufin
 
Emerging Trends in Information Privacy and Security
byJessica Santamaria
 
IT General Controls Presentation at IIA Vadodara Audit Club
byKaushal Trivedi
 
Enterprise IT Security| CIO Innovation and Leadership
byRedZone Technologies
 
Security Baselines and Risk Assessments
byPriyank Hada
 
CNIT 160: Ch 2b: Security Strategy Development
bySam Bowne
 
5 things you didn't know you could do with security policy management
byAlgoSec
 
Infosec policies to appsec standards ed final
byeadams2330
 
BetterCloud Whitepaper: Fixing IT's Blindspots – 8 Critical Security and Mana...
byBetterCloud
 
How much does it cost to be Secure?
bymbmobile
 
Emerging Trends in Information Privacy and Security
byJessica Santamaria
 
Lunch and Learn: June 29, 2010
byprevalentnetworks
 
Cyber crime with privention
byManish Dixit Ceh
 
Information security trends and concerns
byJohn Napier
 
Defcon 22-tim-mcguffin-one-man-shop
byPriyanka Aash
 
Security a Revenue Center: How Security Can Drive Your Business
byshira koper
 
Security Change Management: Agility vs. Control
byAlgoSec
 
ISStateGovtProposal
byDale White
 
Security Policies and Implementation IssuesLecture 5How to D.docx
byjeffreye3
 
Continuous Compliance 14.9.2016
byDigia Plc
 

More from NetIQ

PDF
Netiq css huntington_bank
byNetIQ
 
PDF
NetIQ Identity Manager Unites Hanshan Normal University
byNetIQ
 
PDF
Swisscard Saves Time and Effort in Managing User Access
byNetIQ
 
PDF
University of Dayton Ensures Compliance with Sentinel Log Manager
byNetIQ
 
PDF
Millions of People Depend on Datang Xianyi Technology and NetIQ
byNetIQ
 
PDF
Professional Services Company Boosts Security, Facilitates Compliance, Automa...
byNetIQ
 
PDF
The University of Westminster Saves Time and Money with Identity Manager
byNetIQ
 
PDF
Big Payoffs With BYOD and Mobility
byNetIQ
 
PDF
Open Enterprise Server With Windows
byNetIQ
 
PDF
Central Denmark Region Strengthens Administrative Security with Identity Mana...
byNetIQ
 
PPTX
Advanced Persistent Threat - Evaluating Effective Responses
byNetIQ
 
PDF
Nexus Differentiates Itself and Grows Its Capabilities with Operations Center
byNetIQ
 
PDF
bluesource Uses NetIQ AppManager to Offer Standout Managed Service
byNetIQ
 
PDF
Vodacom Tightens Security with Identity Manager from NetIQ
byNetIQ
 
PDF
Handelsbanken Takes Control of Identity Management with NetIQ
byNetIQ
 
PDF
The London School of Hygiene & Tropical Medicine Accelerates and Streamlines ...
byNetIQ
 
PDF
Nippon Light Metal Forges a Disaster Recovery Solution with NetIQ
byNetIQ
 
PDF
Mobile Apps in Your Business
byNetIQ
 
PDF
Paraca Inc.
byNetIQ
 
PPTX
BrainShare 2014
byNetIQ
 
Netiq css huntington_bank
byNetIQ
 
NetIQ Identity Manager Unites Hanshan Normal University
byNetIQ
 
Swisscard Saves Time and Effort in Managing User Access
byNetIQ
 
University of Dayton Ensures Compliance with Sentinel Log Manager
byNetIQ
 
Millions of People Depend on Datang Xianyi Technology and NetIQ
byNetIQ
 
Professional Services Company Boosts Security, Facilitates Compliance, Automa...
byNetIQ
 
The University of Westminster Saves Time and Money with Identity Manager
byNetIQ
 
Big Payoffs With BYOD and Mobility
byNetIQ
 
Open Enterprise Server With Windows
byNetIQ
 
Central Denmark Region Strengthens Administrative Security with Identity Mana...
byNetIQ
 
Advanced Persistent Threat - Evaluating Effective Responses
byNetIQ
 
Nexus Differentiates Itself and Grows Its Capabilities with Operations Center
byNetIQ
 
bluesource Uses NetIQ AppManager to Offer Standout Managed Service
byNetIQ
 
Vodacom Tightens Security with Identity Manager from NetIQ
byNetIQ
 
Handelsbanken Takes Control of Identity Management with NetIQ
byNetIQ
 
The London School of Hygiene & Tropical Medicine Accelerates and Streamlines ...
byNetIQ
 
Nippon Light Metal Forges a Disaster Recovery Solution with NetIQ
byNetIQ
 
Mobile Apps in Your Business
byNetIQ
 
Paraca Inc.
byNetIQ
 
BrainShare 2014
byNetIQ
 

Recently uploaded

PPTX
Enhancing Web Security: Key Concepts & Strategies.pptx
byParham Abolghasemi
 
PDF
Session 4 - Agentic Testing with UiPath Agents
byDianaGray10
 
PPTX
GenAI GraphTalk - Kuala Lumpur - 4 Nov 2025
bygourisachdeva2
 
PDF
Upskill to Agentic Automation - Working Smarter with AI: Real-World Tools for...
byDianaGray10
 
PDF
Unleash AI power with the Dell Pro 14 Plus - Interactive PDF
byPrincipled Technologies
 
PDF
Cybersecurity in ASEAN and Singapore Columbia SIPA 2025.pdf
byBenjamin Ang
 
PPTX
Sephora UAE API Service Real-Time Product & Price Data Access.pptx
bycreativeclicks1733
 
PDF
MathML Core in WebKit
byIgalia
 
PDF
Career Blueprint: Mentor Tracks & Career Clinic - Part 2
byDianaGray10
 
PDF
Do more with the HP Z2 Mini G1a
byPrincipled Technologies
 
PPTX
Career Blueprint - Future Career Vision & Success Stories - 2025 - Part 1
byDianaGray10
 
PDF
Transparency Exchange API: How Do You Find the SBOM for a Smart Light Bulb?
byPavel Shukhman
 
PDF
Private Governance: How Decentralized Mechanisms Can Regulate the Crypto Economy
byFederico Ast
 
PDF
How to not make bugs (in JSC), and the future of 32-bits
byIgalia
 
PPTX
A GREEN BUSINESS TOOLKIT FOR EARLY-STAGE ENTREPRENEURS (1).pptx.pptx
bylearnskillsofficial1
 
PDF
WebXR in Android and Linux with OpenXR
byIgalia
 
PDF
Control Access to Files - RHCSA (RH124).pdf
byLinuxCert Guru
 
PDF
Configure and Secure SSH - RHCSA (RH124).pdf
byLinuxCert Guru
 
PDF
Create, View and Edit Text Files - RHCSA (RH124).pdf
byLinuxCert Guru
 
PDF
Access Linux File System in RHEL - RHCSA (RH124).pdf
byLinuxCert Guru
 
Enhancing Web Security: Key Concepts & Strategies.pptx
byParham Abolghasemi
 
Session 4 - Agentic Testing with UiPath Agents
byDianaGray10
 
GenAI GraphTalk - Kuala Lumpur - 4 Nov 2025
bygourisachdeva2
 
Upskill to Agentic Automation - Working Smarter with AI: Real-World Tools for...
byDianaGray10
 
Unleash AI power with the Dell Pro 14 Plus - Interactive PDF
byPrincipled Technologies
 
Cybersecurity in ASEAN and Singapore Columbia SIPA 2025.pdf
byBenjamin Ang
 
Sephora UAE API Service Real-Time Product & Price Data Access.pptx
bycreativeclicks1733
 
MathML Core in WebKit
byIgalia
 
Career Blueprint: Mentor Tracks & Career Clinic - Part 2
byDianaGray10
 
Do more with the HP Z2 Mini G1a
byPrincipled Technologies
 
Career Blueprint - Future Career Vision & Success Stories - 2025 - Part 1
byDianaGray10
 
Transparency Exchange API: How Do You Find the SBOM for a Smart Light Bulb?
byPavel Shukhman
 
Private Governance: How Decentralized Mechanisms Can Regulate the Crypto Economy
byFederico Ast
 
How to not make bugs (in JSC), and the future of 32-bits
byIgalia
 
A GREEN BUSINESS TOOLKIT FOR EARLY-STAGE ENTREPRENEURS (1).pptx.pptx
bylearnskillsofficial1
 
WebXR in Android and Linux with OpenXR
byIgalia
 
Control Access to Files - RHCSA (RH124).pdf
byLinuxCert Guru
 
Configure and Secure SSH - RHCSA (RH124).pdf
byLinuxCert Guru
 
Create, View and Edit Text Files - RHCSA (RH124).pdf
byLinuxCert Guru
 
Access Linux File System in RHEL - RHCSA (RH124).pdf
byLinuxCert Guru
 

From reactive to automated reducing costs through mature security processes info security europe 2011

  • 1.
    From Reactive ToAutomated:Reducing Costs Through Mature Security ProcessesJörn DierksChiefSecurityStrategist [email protected]
  • 2.
    Solving Cross-Discipline Problems2ProcessPeopleTechnologyInfrastructure& ApplicationsProvisioningHRComplianceHelpdeskNetIQNOCIncidentSecurityChangeBusinessOwnersOther Mgmt VendorsBusiness Processes
  • 3.
    ProcessPeopleTechnologyInfrastructure & ApplicationsProvisioningHRCross-ProductIntegration ComplianceHelpdeskNetIQNOCIncidentSecurityChangeBusinessOwnersOther Mgmt VendorsBusiness ProcessesSolving Cross-Discipline Problems3
  • 4.
    The Role ofIT Process Automation –Bridging Silos Between Business and ITToolsToolsBusinessConfiguration & Identity AuditingService / Help DeskSecurity Info & Event ManagementEvent Correlation & AnalysisIT GRCMSLMIT ProcessAutomationVulnerability AssessmentSystems & App Monitoring Perimeter & Network SecurityNetwork MonitoringContent Monitoring / DLPResponse TimeMonitoringOperationsSecurityPolicyAwarenessConfiguration & Patch ManagementCMDBAV / Malware ProtectionIdentity ManagementResponsibilities Shared between Security & OperationsContinuityManagementCapacity & AvailabilityManagementReleaseManagementIncident & Problem Management Configuration & ChangeManagement
  • 5.
    5Security & CompliancePerformance& Availability Identity & Access5© 2010 NetIQ Corporation. All rights reserved.About NetIQManage and audit user entitlements
  • 6.
  • 7.
    Protect the integrityof key systems and files
  • 8.
    Monitor access tosensitive information
  • 9.
    Simplify compliance reportingITProcessAutomationMonitor and manage heterogeneous environments including custom applications
  • 10.
    IT Service validationand end-user performance monitoring
  • 11.
    Dynamic provisioning of large-scale monitoring with exceptions
  • 12.
    Functional and hierarchicalIncident escalation
  • 13.
    Deliver & managedifferentiated service levels
  • 14.
  • 15.
    Centralize Unix accountmanagement through Active Directory
  • 16.
    Reduce number ofprivileged users
  • 17.
  • 18.
    Windows and ExchangeMigrationAddressing Insider ThreatPrivileged User MonitoringAddressing Compliance RequirementsBusiness Exception ManagementEnd-User Policy Management andAwarenessUse-Cases In This Presentation
  • 19.
  • 20.
    Another Challenge toConsider…Source:“Data Loss RisksDuring Downsizing“, Ponemon Institute LLC, 23 Feb 2009
  • 21.
    Policies, procedures andstandardsClear guidelinesPolicies as a key for your organizationStandardize assetsIdentity & access controlData ClassificationAccess controlManage islands of identity(Privileged) User monitoringAuditsNot a one-time effortRegular auditsThorough auditsRegulationsDifficult to do manuallyReporting neededThree Important Subjects9Photo by: Giorgio Monteforti: http://www.flickr.com/photos/11139043@N00/1439804758/
  • 22.
    Mapping Subjects ToTechnologyBACWorkflow & Process AutomationIdentity & AccessManagementIT Infrastructure Windows Systems
  • 23.
  • 24.
  • 25.
    Security &Network Devices
  • 26.
  • 27.
  • 28.
  • 29.
    etc.Active DirectoryPolicyManagement& User AwarenessConfiguration &Compliance ManagementPrivileged User Monitoring, SIEM
  • 30.
    Security Process AutomationFORRESTER®Required  Optional* Determined using the Aegis ROI calculator developed by Forrester Consulting based on a representative customer with 1,000 servers.
  • 31.
    Use Case #1InsiderThreatIncident Automation withPrivileged User Monitoring
  • 32.
    Automated IncidentManagement Workflow13DataWarehouseCMDBChangeManagementIncident Management ConsoleWorkflow / ProcessEventAdministratorAutomated event detection & response:Reduces time to response
  • 33.
  • 34.
  • 35.
    Lowers impact onadministratorsRemediation
  • 36.
    Use Case #2BusinessException Management Automation in Compliance Management
  • 37.
    8Workflow / Process1. PolicyTemplates assess complianceNetIQ Secure Configuration Manager detects non-compliant systems3SystemOwner2.Secure Configuration Manager tells Aegis about the Compliance problemAegis starts Non-Compliance Workflow943. Aegis emails the system ownerInforms about the problems foundApproval & ExceptionManagement ProcessSystem Owner analyzes the issuesThen he tells Aegis that he wants to create an exception for one of the issues752105. Aegis informs the Security Officer about the exception creation requestEnsures that no exceptions get created without approval6Compliance & Configuration ManagementSecurityOfficer6.Security Officer approves exception requestHe can do that either by email or through the Aegis web consoleResults:No exceptions get created without prior approval
  • 38.
    Security Processes arefollowed through
  • 39.
    Compliance Issues aretracked consistently
  • 40.
    There’s always aconsistent result of a workflow7.Aegis creates the exception in NetIQ Secure Configuration Manager and approves the exceptionAll details about the approvals process are added into the notes section of the exception1018. Administrator is notified about the exception approval and creationAlso, he’s asked if he wants to re-run the policy templateManual WorkloadAutomated Workload9.The System Owner confirms…10. Aegis tells Secure Configuration Manager to re-run the Policy TemplatesBusiness System
  • 41.
    Where do Istart? – Process Automation Lifecycle
  • 42.
    Policies, proceduresandstandardsClear guidelinesPoliciesasa keyforyourorganizationStandardizeassetsAchievePolicy ComplianceConfiguration & Compliance ManagementAutomatedException & Approval ManagementMonitor Privileged User ActivitySIEM & Access MonitoringAutomatedIncident Management, Escalation & AlertingSummary – Remember… 1… 2… 3…!BACWorkflow & Process AutomationIdentity & AccessManagementIT Infrastructure Windows Systems
  • 43.
  • 44.
  • 45.
    Security &Network Devices
  • 46.
  • 47.
  • 48.
  • 49.
    etc.Active DirectoryPolicyManagement& User AwarenessConfiguration &Compliance ManagementPrivileged User Monitoring, SIEM