Rebecca Patient, profile picture
Uploaded byRebecca Patient
PPT, PDF289 views

Information Assurance Presentation

The document discusses key threats, attacks, and controls related to information assurance. It notes that the majority of issues, around 80-90%, occur internally rather than externally. The main controls discussed include sanctioning misuse of privileges, obtaining consent forms for protocol penetration testing, maintaining firewalls and antivirus software, and implementing passwords, smart cards, and biometrics for authentication and non-authorization. The document also questions possible future issues around a potential "cyber 9/11" attack that could bring down a university's systems.

Embed presentation

Download to read offline
INFORMATION ASSURANCE Threats, Attacks & Controls Rebecca Patient Cyber Security
KEY THREATS – HUMAN FACTORS • THE GET OUT CLAUSE: “NOT MY FAULT”. 12/11/2014CMPRPATI 2 • ISSUES OCCUR AROUND: 80-90% INTERNALLY & ONLY 20% EXTERNALLY.
LIKELIHOOD OF ATTACKS IT Students – cracking passwords using Hash Kracker to gain access to lecturer's partition on the drive: •Risk Calculation: Risk = Threat x Likelihood x Cost. •Less than 1% chance of an attack occurring. Other breaches: •Inability to hide grades permitting confidential information to be misused. 12/11/2014CMPRPATI 3
MAIN CONTROL'S:    Misuse of Privileges – Sanction.  Protocol Penetration – Consent Form.  Check firewalls & anti-virus software.  Non-Authorisation – Passwords with authentication, smart cards and biometrics.  Create a vulnerability list - maintain procedures.  Hacker Profiling. 12/11/2014CMPRPATI 4 • Risk Assessment / Auditing processes !!
PAUSE FOR THOUGHT - FUTURE ISSUES? 12/11/2014CMPRPATI 5 • A Possible 9/11 of the University Cyber World? • No, an attack would be unseen until those person(s) would want you to know. • Or is it reality? Blackboard brought to a stand still. SECURITY IS ONGOING PROCESS !
12/11/2014CMPRPATI 6 For More Information – check out these Links: HTTPS://WWW.CYBERSTREETWISE.COM HTTP://WWW.BBC.CO.UK/PROGRAMMES/B04P23 MV : CYBER CRIMES WITH BEN HAMMERSLEY Next: Risk Assessment to be produced.
12/11/2014CMPRPATI 7 THANKS FOR LISTENING ANY QUESTIONS?

More Related Content

PPTX
Threat Modeling Web Applications
byNadia BENCHIKHA
 
PPTX
Using SurfWatch Labs' Threat Intelligence to Monitor Your Digital Risk
bySurfWatch Labs
 
PPT
Nguyễn Tấn Vi - office of the CISO
bySecurity Bootcamp
 
PPTX
Cybersecurity
byUmairFirdous
 
PPTX
SplunkLive! London - Scoping Infections and Disrupting Breaches breakout
bySplunk
 
DOCX
Jeffrey_Smith_Resume_2016
byJeffrey Smith
 
PDF
Certied Ethical Hacker
byKnowledgehut
 
PDF
edCeh brochure
byKnowledgehut
 
Threat Modeling Web Applications
byNadia BENCHIKHA
 
Using SurfWatch Labs' Threat Intelligence to Monitor Your Digital Risk
bySurfWatch Labs
 
Nguyễn Tấn Vi - office of the CISO
bySecurity Bootcamp
 
Cybersecurity
byUmairFirdous
 
SplunkLive! London - Scoping Infections and Disrupting Breaches breakout
bySplunk
 
Jeffrey_Smith_Resume_2016
byJeffrey Smith
 
Certied Ethical Hacker
byKnowledgehut
 
edCeh brochure
byKnowledgehut
 

What's hot

PPTX
Application Threat Modeling
byRochester Security Summit
 
PDF
Penetration testing & Ethical Hacking
byS.E. CTS CERT-GOV-MD
 
PDF
Threat hunting 101 by Sandeep Singh
byOWASP Delhi
 
PPT
Ethical Hacking and Penetration Testing
byRishabh Upadhyay
 
PPTX
Penetration Testing
byRomSoft SRL
 
PPT
Introduction to ceh
byHemant Mittal
 
PDF
Deception Technology: Use Cases & Implementation Approaches
byPriyanka Aash
 
PDF
Cambodia CERT Seminar: Incident response for ransomeware attacks
byAPNIC
 
PPTX
Ethical Hacking & Penetration Testing
byecmee
 
PDF
VAPT Services by prime
byPrime Infoserv
 
PPTX
Covert channels: A Window of Data Exfiltration Opportunities
byJoel Aleburu
 
PDF
Carbon Black Corporate Overview 2016
byExclusive Networks ME
 
PDF
NetSecurity_ThreatResponder(r)_Capability_Brief_021116_Rev0
byJames Perry, Jr.
 
PPTX
Ethical System Hacking- Cyber Training Diploma
bybegmohsin
 
PPTX
Ethical Hacking
byChetanmalviya8
 
PPTX
Virus and hacker (2)mmm
byandynova
 
PDF
Ethical Hacking Class
byLaney Dale
 
DOC
CV -Thiago Cunha da Silva - UK
byThiago Cunha
 
PPTX
Cyber Attack Survival: Are You Ready?
byRadware
 
PPTX
Webinar: Ransomware Checklist – Are You Ready For Ransomware’s Next Wave?
byStorage Switzerland
 
Application Threat Modeling
byRochester Security Summit
 
Penetration testing & Ethical Hacking
byS.E. CTS CERT-GOV-MD
 
Threat hunting 101 by Sandeep Singh
byOWASP Delhi
 
Ethical Hacking and Penetration Testing
byRishabh Upadhyay
 
Penetration Testing
byRomSoft SRL
 
Introduction to ceh
byHemant Mittal
 
Deception Technology: Use Cases & Implementation Approaches
byPriyanka Aash
 
Cambodia CERT Seminar: Incident response for ransomeware attacks
byAPNIC
 
Ethical Hacking & Penetration Testing
byecmee
 
VAPT Services by prime
byPrime Infoserv
 
Covert channels: A Window of Data Exfiltration Opportunities
byJoel Aleburu
 
Carbon Black Corporate Overview 2016
byExclusive Networks ME
 
NetSecurity_ThreatResponder(r)_Capability_Brief_021116_Rev0
byJames Perry, Jr.
 
Ethical System Hacking- Cyber Training Diploma
bybegmohsin
 
Ethical Hacking
byChetanmalviya8
 
Virus and hacker (2)mmm
byandynova
 
Ethical Hacking Class
byLaney Dale
 
CV -Thiago Cunha da Silva - UK
byThiago Cunha
 
Cyber Attack Survival: Are You Ready?
byRadware
 
Webinar: Ransomware Checklist – Are You Ready For Ransomware’s Next Wave?
byStorage Switzerland
 

Similar to Information Assurance Presentation

PPTX
Cyber Security Awareness Session for Executives and Non-IT professionals
byKrishna Srikanth Manda
 
PDF
Unit 1 Notes Revision.pdftttttttttttttttttttt
bysriram37357
 
PPTX
CS5300 class presentation on managing information systems
byzenhubris
 
PPTX
Digital literacy lecture 2 data security.pptx
byjohnnderitu16
 
PPTX
I’ve Been Hacked  The Essential Steps to Take Next
byBrian Pichman
 
PPTX
Cryptography and Network Security # Lecture 2
byKabul Education University
 
PDF
NextLevel Cyber Security Executive Briefing
byJoe Nathans
 
PPTX
Information Security BY DR.NURUL HUDA NIK ZULKIPLI VISITING LECTURER FROM UNI...
byGaluhPt
 
PPTX
INFORMATION ASSURANCE AND SECURITY PRESENTATION
byJuliusECatipon
 
PPTX
4b - Security Management - Cyber Security Mgt (1).pptx
byromawoodz
 
PPTX
How To Secure MIS
byAaDi Malik
 
PDF
security_threats.pdf and control mechanisms
byronoelias98
 
PPTX
Cyber Security
byJay Moliya
 
PDF
Addressing cyber security
byFemi Ashaye
 
PDF
C-Suite Snacks Webinar Series : Under Attack - Preparing Your Company in the ...
byCitrin Cooperman
 
PPTX
Cybercrime and the Hidden Perils of Patient Data
byStephen Cobb
 
PPTX
Week 1&2 intro_ v2-upload
byVinoth Sn
 
PPTX
IT Security & Risk
byTanujpandey5
 
PPTX
What is Information Security and why you should care ...
byJames Mulhern
 
PPTX
Management Information System Presentation
byAaDi Malik
 
Cyber Security Awareness Session for Executives and Non-IT professionals
byKrishna Srikanth Manda
 
Unit 1 Notes Revision.pdftttttttttttttttttttt
bysriram37357
 
CS5300 class presentation on managing information systems
byzenhubris
 
Digital literacy lecture 2 data security.pptx
byjohnnderitu16
 
I’ve Been Hacked  The Essential Steps to Take Next
byBrian Pichman
 
Cryptography and Network Security # Lecture 2
byKabul Education University
 
NextLevel Cyber Security Executive Briefing
byJoe Nathans
 
Information Security BY DR.NURUL HUDA NIK ZULKIPLI VISITING LECTURER FROM UNI...
byGaluhPt
 
INFORMATION ASSURANCE AND SECURITY PRESENTATION
byJuliusECatipon
 
4b - Security Management - Cyber Security Mgt (1).pptx
byromawoodz
 
How To Secure MIS
byAaDi Malik
 
security_threats.pdf and control mechanisms
byronoelias98
 
Cyber Security
byJay Moliya
 
Addressing cyber security
byFemi Ashaye
 
C-Suite Snacks Webinar Series : Under Attack - Preparing Your Company in the ...
byCitrin Cooperman
 
Cybercrime and the Hidden Perils of Patient Data
byStephen Cobb
 
Week 1&2 intro_ v2-upload
byVinoth Sn
 
IT Security & Risk
byTanujpandey5
 
What is Information Security and why you should care ...
byJames Mulhern
 
Management Information System Presentation
byAaDi Malik
 

Information Assurance Presentation

  • 1.
    INFORMATION ASSURANCE Threats, Attacks& Controls Rebecca Patient Cyber Security
  • 2.
    KEY THREATS –HUMAN FACTORS • THE GET OUT CLAUSE: “NOT MY FAULT”. 12/11/2014CMPRPATI 2 • ISSUES OCCUR AROUND: 80-90% INTERNALLY & ONLY 20% EXTERNALLY.
  • 3.
    LIKELIHOOD OF ATTACKS ITStudents – cracking passwords using Hash Kracker to gain access to lecturer's partition on the drive: •Risk Calculation: Risk = Threat x Likelihood x Cost. •Less than 1% chance of an attack occurring. Other breaches: •Inability to hide grades permitting confidential information to be misused. 12/11/2014CMPRPATI 3
  • 4.
    MAIN CONTROL'S:   Misuse of Privileges – Sanction.  Protocol Penetration – Consent Form.  Check firewalls & anti-virus software.  Non-Authorisation – Passwords with authentication, smart cards and biometrics.  Create a vulnerability list - maintain procedures.  Hacker Profiling. 12/11/2014CMPRPATI 4 • Risk Assessment / Auditing processes !!
  • 5.
    PAUSE FOR THOUGHT- FUTURE ISSUES? 12/11/2014CMPRPATI 5 • A Possible 9/11 of the University Cyber World? • No, an attack would be unseen until those person(s) would want you to know. • Or is it reality? Blackboard brought to a stand still. SECURITY IS ONGOING PROCESS !
  • 6.
    12/11/2014CMPRPATI 6 For More Information– check out these Links: HTTPS://WWW.CYBERSTREETWISE.COM HTTP://WWW.BBC.CO.UK/PROGRAMMES/B04P23 MV : CYBER CRIMES WITH BEN HAMMERSLEY Next: Risk Assessment to be produced.
  • 7.