PROTECTING YOUR BUSINESS - DATA TRANSFER AND OTHER SECURITY TIPS TO KEEP YOUR BUSINESS UP AND RUNNING - Clark & Lavey

Page created by Ramon Cannon

Uncategorized

English

Like
Share
Embed
Fullscreen
Slides
Download HTML
Download PDF
Abuse

←

→

Page content transcription

If your browser does not render page correctly, please read the page content below

PROTECTING YOUR BUSINESS - DATA TRANSFER AND OTHER SECURITY TIPS TO KEEP YOUR BUSINESS UP AND RUNNING - Clark & Lavey

PROTECTING YOUR BUSINESS
DATA TRANSFER AND OTHER SECURITY TIPS TO KEEP YOUR BUSINESS UP AND
                           RUNNING

WHO IS TIM BURNETT?

WHO IS TIM BURNETT?

• I AM A GEEK – I HAVE BEEN PROGRAMMING FOR OVER 35 YEARS
• UNIVERSITY OF FLORIDA GRADUATE – ELECTRICAL ENGINEERING SPECIALIZING IN DIGITAL
  DESIGN. GO GATORS!!
• CONSULTANT TO THE UF FOOTBALL PROGRAM FOR OVER 30 YEARS.
• CERTIFIED INFORMATION SYSTEMS SECURITY PROFESSIONAL (CISSP) IN 2008.
• EXPERIENCE WITH INSURANCE BROKERS, IDENTITY THEFT PROTECTION SERVICES, BANKS –
  LOCAL AND INTERNATIONAL, CREDIT UNIONS, ELECTRIC UTILITIES, AND ENERGY TRADING
  COMPANIES.

THE STATE OF CYBER SECURITY

EIGHT ALARMING CYBER SECURITY FACTS

1. THERE ARE CONTINUOUS ATTACK ATTEMPTS
2. 43 PERCENT OF CYBER ATTACKS TARGET SMALL
   BUSINESS.

EIGHT ALARMING CYBER SECURITY FACTS

3. THE AVERAGE COST OF A DATA BREACH IN
   2020 WILL EXCEED $150 MILLION
4. SINCE 2013 THERE ARE 3,809,448 RECORDS
   STOLEN FROM BREACHES EVERY DAY

5. OVER 75% OF HEALTH CARE INDUSTRY   HAS
   BEEN INFECTED

EIGHT ALARMING CYBER SECURITY FACTS

6. BY 2020 THERE WILL BE ROUGHLY 200 BILLION
   CONNECTED DEVICES.

7. ONLY 38 PERCENT OF GLOBAL ORGANIZATIONS CLAIM
   THEY ARE PREPARED.

8. TOTAL COST FOR CYBER CRIME COMMITTED   GLOBALLY
   HAS ADDED UP TO 100 BILLION DOLLARS.

THE “CIA”

• WHAT YOU NEED TO BE CONCERNED   WITH
  FALLS INTO THREE CATEGORIES:

   • CONFIDENTIALITY
   • INTEGRITY
   • AVAILABILITY

THE SEVEN MOST IMPORTANT THINGS YOU
SHOULD BE DOING

1. BACKUP YOUR DATA.
   • EQUIPMENT THEFT OR FAILURE
   • RANSOMWARE
   • ACCIDENTAL DELETION OR OVERWRITE
   • IDEALLY: THREE COPIES IN TWO LOCATIONS.
   • CIA: INTEGRITY, AVAILABILITY

THE SEVEN MOST IMPORTANT THINGS YOU
    SHOULD BE DOING

2. SOFTWARE UPDATES
   • MOST MALWARE TARGETS INSECURE SYSTEMS
   • CHECK FOR AND APPLY UPDATES.
   • REPLACE OLD SOFTWARE
       •   YOU SHOULD NOT BE RUNNING WINDOWS XP OR
           SERVER 2003
       •   SERVER 2008 IS END OF LIFE JAN 14, 2020
   • CIA: CONFIDENTIALITY, INTEGRITY, AVAILABILITY

THE SEVEN MOST IMPORTANT THINGS YOU
SHOULD BE DOING

3. RUN ANTI-VIRUS   SOFTWARE

   • IN BUSINESS NETWORKS THIS SHOULD BE
      MONITORED

   • CIA: CONFIDENTIALITY, AVAILABILITY

THE SEVEN MOST IMPORTANT THINGS YOU
    SHOULD BE DOING

4. USE A WELL-DESIGNED
   NETWORK

   • PROTECT YOUR WIFI
   • USE A GOOD FIREWALL
      THAT IS UPDATED

   • KNOW WHERE YOUR
      NETWORK CABLES RUN

   • CIA: CONFIDENTIALITY,
     INTEGRITY, AVAILABILITY

THE SEVEN MOST IMPORTANT THINGS YOU
SHOULD BE DOING

5. PROFESSIONAL MONITORING
   • ANTI-VIRUS
   • UPDATES
   • GENERAL SYSTEM HEALTH
   • CIA: CONFIDENTIALITY, INTEGRITY,
     AVAILABILITY

THE SEVEN MOST IMPORTANT THINGS YOU
   SHOULD BE DOING

6. EMPLOYEE AWARENESS TRAINING
   • HOW TO SPOT SUSPICIOUS EMAIL
   • HOW TO IDENTIFY PHISHING ATTEMPTS
   • WHAT TO DO IF THEY SUSPECT SOMETHING
   • WHAT CAN AND CANNOT BE SENT THROUGH EMAIL
   • HOW TO USE SECURE DATA TRANSFER METHODS – MORE LATER
   • CIA: CONFIDENTIALITY, AVAILABILITY

THE SEVEN MOST IMPORTANT THINGS YOU
SHOULD BE DOING

7. PASSWORDS    AND   ACCESS MANAGEMENT
   • USE MULTI-FACTOR AUTHENTICATION
   • TREAT PASSWORDS LIKE UNDERWEAR:
       •   DO NOT SHARE WITH YOUR CO-WORKERS.
       • DO NOT LEAVE THEM ON YOUR DESK.
       • CHANGE THEM OFTEN
   • CIA: CONFIDENTIALITY, INTEGRITY

SECURE DATA TRANSFER

• USE SECURE EMAIL
   • CLIENT-BASED IS NO LONGER RECOMMENDED
       •   DOES NOT COVER ALL DEVICES, SUCH AS SMARTPHONES
       •   DOES NOT PROTECT AGAINST USER FORGETTING TO HIT
           THE “ENCRYPT” BUTTON

   • USE A GATEWAY OR SERVER-BASED SOLUTIONS
       •   PROTECTS EMAIL SENT FROM ALL DEVICES
       •   CAN USE RULE-BASED ENCRYPTION FOR AUTOMATIC
           PROTECTION

SECURE DATA TRANSFER

• USE SECURE   FILE TRANSFER TOOLS SUCH AS SHARESYNC

   • OVERCOMES THE SIZE LIMITATIONS IN EMAIL (~5 TO 10 GB LIMIT IN
     MANY SYSTEMS)

   • SENDS A SECURE LINK THAT CAN BE PASSWORD PROTECTED AND
      CAN EXPIRE

Doe, John
                                                                    123-45-6789

      SECURE DATA TRANSFER

• DO NOT USE FTP (FILE TRANSFER PROTOCOL)
   • IS NOT ENCRYPTED. DATA AND PASSWORDS CAN BE EASILY EXPOSED
• USE SFTP (SECURE FILE TRANSFER PROTOCOL)
   • IS SECURE BY ITSELF, BUT SOME COMPANIES ALSO USE PGP (PRETTY
     GOOD PRIVACY) TO ENCRYPT THE FILES BEFORE SENDING AS A
      EXTRA LAYER OF SECURITY

                                                                       J9j(H*9hp9b
                                                                       [kdjiHu6ydQ

SECURE DATA TRANSFER

• DO NOT USE HTTP WEBSITES (HTTP://YOURSITE.COM)
   • IS NOT ENCRYPTED AND DATA CAN BE EASILY EXPOSED
• USE HTTPS WEBSITES (HTTPS://YOURSITE.COM)
   • SECURED BY DIGITAL CERTIFICATES
   • DO NOT USE SITES THAT HAVE A CERTIFICATE ERROR

QUESTIONS?

THANK YOU!

        CONTACT
       TIM BURNETT
     DMZ SOLUTIONS
TBURNETT@BIZNETASSURE.COM

     904-240-4924

You can also read

POST-LEGISLATIVE SCRUTINY - Principles of PLS by Parliament Practical Steps for PLS by Parliament - ParlAmericas

Data Acquisition and Use for good urban access in a period of Social Distancing

2020 Annual Arctic Ice Atlas - Winter 2019 2020 - Canada.ca

Dati e trasparenza per affrontare il cambiamento climatico - Matteo Brezza Milano, Forum Finanza Sostenibile - Forum per la Finanza Sostenibile

Multi-Channel Citizen Engagement April 2021 Chair Opening - Delivering a Seamless Multi-Channel Experience to Engage the Digitally Driven Citizen

Success of Populism in Western Europe and Germany: Electoral Effects of Parties' and Voters' Repositioning - Bernhard Weßels - WZB

Occupation Report NOC 4212 - Social and community service workers - Ottawa Employment Hub

Estimating the rate of spread of Olive Quick Decline Syndrome, caused by Xylella fastidiosa ssp. pauca, in Puglia - April 30, 2021, Lia Hemerik - EFSA

NPSTC, Radio PCR Working Group Presentation to TIA TR8 Committee

The Campion School Under 15 Dublin Rugby Tour 2019 - Dublin, Ireland March

Business Breakfast Briefing - Offshore Opportunities in Ireland Hosted by the Netherlands Embassy & DIBA

OUR CONVENIENT AUTOCLAVE, RIGHT ON THE LABORATORY BENCH." - STERILISATION MATERIALS TESTING MEDIA PREPARATION

Nexus Smart IDs for your workforce-issue, manage and use trusted employee identities - Nexus Group

Welcome to the new ORBIT!

Cybersecurity Mike Warner, P.E. VP, Chief Information Security Officer - January 2020

City Beach Party Packages - Let City Beach plan your next special event! BOOK YOUR PARTY TODAY!

Alert: Critical risk to unpatched Fortinet VPN devices from continuing exploitation of CVE-2018- 13379 - Version 2.0 8 April 2021 Crown ...

Black Hat Web Series BleedingBit and IOT devices - Ron Chestang Senior Print Security Advisor

Wimbledon Tennis Championships 2021 - All England Lawn Tennis & Croquet Club (AELTC) Wimbledon - Ofcom

2020 MOE-OBS Challenge Programme - E-Registration Guide for Parents - Orchid Park ...

Environmental Science & Technology 2018 - CPD Accredited - Join the race to make the world a greener place!! - Royal Society of Chemistry

Re-Inventing Virtual Cooking Classes At The Cutting Edge Classroom Cooking School The Menu Authentic Spanish Paella

Treasurer's Workshop Spring 2018

SENIOR PARENT NIGHT Thursday, September 24, 2020 @6:00 pm Virtual Meeting via Zoom - Fulton Leadership Academy

SOUTHEAST BRANCH - 2021 D. RAY JONES SCHOLARSHIP

Book Drive Dr. Martin Luther King, Jr 2021

We now pronounce you blissfully happy.

Join us in celebrating Down Syndrome Awareness Week 15th - 21st March

Back to School Fair Second Grade 2019-2020 - Terra Centre Elementary School

E-ZINE APRIL 2020 - Webflow

2021 Forge Fair Exhibitor Marketing Toolkit

London Marathon 2021 London - 3rd October 2021 - Ofcom

Digital solutions for Northern Territory partners - AUSTR ALIANTR AVELLER .COM - Tourism NT

UCAS APPLY - #MAKEITHAPPEN - REGISTER TO APPLY - UCAS.COM/STUDENTS - WYKE SIXTH FORM COLLEGE

Holly Way, Elmstead, CO7 7YQ - Town ...

BRAND IDENTITY SIGGRAPH 2021

A short guide to social media - facebook twitter - the alice cross centre

Australia Day Awards 2022 - Huon Valley Council

NOMINATION FORM 2020 The Dave Reid Award (Formerly known as the ALUS Canada Producer Innovation Award)

DRAGON SOUTH COAST CHAMPIONSHIP 2018 NOTICE OF RACE - Cork Week 2018

MONDAY, OCTOBER 25, 2021 CHEROKEE HILLS GOLF CLUB - " M aking Greens Come True" GOLF TOURNAMENT - Wish.org

Harvest Promotion - Continental Tires

Taleo Set-up Taleo Version 21A - Last reviewed: May 2021 Next review: May 2022 - Taskroom

A new season for Dermatology and Venereology - Virtual Symposium Manual - EADV Spring ...

Best wishes for a successful new year - dilo.de

Inside food drink & MEDIA PACK 2021 - Inside Food & Drink

24-28 MAY 2021 TITANIC MARDAN PALACE ANTALYA TURKEY - IMWF International MICE & Wedding ...

ROBOTIC PROCESS AUTOMATION (RPA) CONSULTANTS - Morpheus Group

Site C Project Peace River Channel Contouring and Side Channel Enhancement - Meeting with PRRD Board May 11, 2017

ERIC MOWER + ASSOCIATES GROUP B2B WEBINAR SERIES - Welcome to the We make business-to-business person-to-person.