Openbar Leuven // Top 5 focus areas in cyber security linked to you digital transformation - Koen Jacobs

•

0 j'aime•42 vues

Every organization is going through a digital transformation journey one way or the other. This transformation process also pops up new vulnerabilities and cyber threats which need to be addressed asap. Let’s discuss the top 5 areas that need urgent attention to stay ahead of the constant evolving cyber threat landscape.

Technologie

On-premises /
Private cloud
devices datausers apps
THE WORLD BEFORE
MOBILITY & CLOUD

On-premises /
Private cloud
CLOUD APPS & SAAS SERVICES
THE WORLD
TODAY

On-premises /
Private cloud
MOBILE AND PERSONAL DEVICES

On-premises /
Private cloud
ORGANIZATION & SOCIAL IDENTITIES

On-premises /
Private cloud
GDPR
Compliance

Economic Crimes in the World
TOP FOUR
Cybercrime is Now One of the

Who is looking to attack you?
Script kiddie
Hacktivist
Malicious insiders
Hackers
Cybercrime Syndicates
Nation state sponsored hackers

1. The Basics: security hygiene
➢ Cyber security Awareness for end users
➢ Asset & Software management
➢ Vulnerability & patch management
➢ Multi-Factor Authentication (MFA)
➢ Privileged Access Management (PAM)

User browses to a
website
Phishing
mail
Opens
attachment
Clicks on a URL
+
Exploitation
&
Installation
Command
&
Control
Brute force account or
use stolen account credentials
User account
is compromised
Privileged
account
compromised
Domain
compromised
Attacker accesses
sensitive data
Exfiltrate data
Phishing kill chain -
Attacker
performs
Reconnaissance

sabrina@in-deed.be
6 people @ customer
CASE: Phase 1: Initial User compromise through Phishing

Person 1
Phase 1: Initial User compromise through Phishing

• Person1







 9990
Phase 2: Use compromised User for further phishing

Phase 2: timeline Phish campaign
0
200
400
600
800
1000
1200
1400
1600
1800

Phase 3: Further compromise other users clicking Phish URL
(+ 100)
0
1
2
3
4
5
6
7
8
9
10
11:09
13:05
13:06
13:07
13:08
13:09
13:10
13:11
13:12
13:13
13:14
13:15
13:16
13:17
13:18
13:19
13:20
13:21
13:22
13:23
13:24
13:25
13:26
13:27
13:28
13:29
13:30
13:32
13:33
13:34
13:37
13:38
13:39
13:41
13:48
13:49
14:01
14:04
14:05
14:09
14:16
14:37
(blank)
Click rate to phishing URL

•

•
• Person 1

•

•

•
•
Response Actions

MOBILE AND PERSONAL DEVICES
2. Advanced Endpoint Security

3. Cover all bases: Advanced Threat Protection
➢ ‘Defense-in-depth’ versus ‘Cover the kill chain’
➢ Next generation AI & Machine Learning
➢ Contextual Analysis
➢ Behavioural Analytics
➢ …

Azure ATPMicrosoft Defender ATP
Identity protectionEnd Point protection
Office 365 ATP
Windows Defender AV
User browses to a
website
Phishing
mail
Opens
attachment
Clicks on a URL
+
Exploitation
&
Installation
Command
&
Control
Brute force account or
use stolen account credentials
User account
is compromised
Attacker
attempts
lateral
movement
Privileged
account
compromised
Domain
compromised
Attacker accesses
sensitive data
Exfiltrate data
Phishing kill chain -
Attacker
performs
Reconnaissance
Next Gen AV
Email protection
Cloud App Security
Extends protection & conditional
access to other cloud apps
Azure AD Identity Protection
Identity protection &
conditional access

4. Disaster Recovery Plan
➢ What if…?
➢ Design & test the disaster recovery plan
➢ Back-up management
➢ Multiple back-up strategy (cloud, on & off site)

Accidental Architecture
▪ Routers
▪ Switches
▪ Wireless Access
NETWORK
TEAM
MESSAGING
TEAM
SECURITY
TEAM
OS
TEAM
▪ Firewall
▪ IPS
▪ Web Application
▪ Desktop OS
▪ Antivirus
▪ Mobile Device Mgmt
▪ Email
▪ Instant Messaging
▪ Voice
▪ Unified Communication
Many Isolated teams & shattered knowledge

The security resources challenge
Too Few Resources
58% of companies get more than 5,000
alerts per month.
< 500
5%
500 – 1,000 1,001– 5,0005,001– 10,00010,001– 15,000 15,000+
10%
27%
28%
21%
9%
Too Many Alerts
One cyber analyst can handle roughly 10 alerts
per day, on one alert at a time
Security staff spends 80 % of their time in keeping
security tooling up and running, not in analysis…

Contact us:
cloudsecurity@secwise.be
Gaston Geenslaan 311 - B4
3000 – Leuven
www.SecWise.be
Koen Jacobs
Koen.Jacobs@secwise.be
M: +32 473/ 784 295
THANK YOU!

Contenu connexe

Tendances

Cambodia CERT Seminar: Incident response for ransomeware attacks

APNIC

Cyber Security Services

Saratechnology

IT security in 2021: Why Ransomware Is Still The Biggest Threat

ETech 7

Information Security Management System in the Banking Sector

Samvel Gevorgyan

Triangulum - Ransomware Evolved - Why your backups arent good enough

Martin Opsahl

Ransomware Detection: Don’t Pay Up. Backup.

marketingunitrends

Black fogdatasheet feb_2019

Giovanni Zanasca

Cyber Security 2017 Challenges

Leandro Bennaton

Ransomware is typically initiated via phishing or social engineering tactics, these attacks often take advantage of human error for the successful delivery of the malware. These criminal organizations are impartial to the size of your organization. They target any company with data, and if you don't pay the ransom, your information could be posted to a public forum or sold on the Dark Web for profit. Most companies unfortunately are forced to pay due to system failure and file corruption. The scariest about these methods is that the Ransomware doesn't need to be developed by the attackers. Ransomware services can now be purchased on the DarkWeb and used at the Cybercriminal's will (RAAS). As these Ransomware attacks and services evolve, how can companies arm themselves with the right solutions to defend themselves from these evergrowing attacks? Join us in our latest webinar with Dr. Christine Izuakor (cybersecurity expert) and Jay Godse (head of product dev at Veriato).

Ransomware Has Evolved And So Should Your Company

Veriato

There’s no doubt that cloud technology has been invaluable to organizations over the last several years; it has fundamentally altered the way business is done by lowering IT costs, providing flexibility and scalability, and protecting business continuity. And the cloud isn’t going anywhere—in fact according to Gartner the worldwide cloud market is expected to grow by 17% to $266.4 billion in 2020 alone. But with the rise in cloud services and options, we have also witnessed a rise in the “dark side of the cloud,” with bad actors leveraging cloud services for various kill chain attacks that leave critical data vulnerable. Check this infographic for top 5 cloud security risks in 2020, and what you can do to avoid them.

Top Cloud Security Risks of 2020

Vivek Mishra

Cyber Ethics: Cyber Security Services | VAPT and WAPT

SaeelRelekar

Cisa ransomware guide

anpapathanasiou

Cyber Security Challenges and Strategies

Security is Hard

Wapt course detail

NormShieldBrochure

kill-chain-presentation-v3

Shawn Croswell

No matter how good your multiple cybersecurity tools are, an attacker will eventually find a way into your network through vulnerabilities. Once cybercriminals acquire unauthorised access, you can only depend on the speed and performance of your IT team, to identify the threats, to manage multiple platforms to mitigate the attack. However, the time to respond and mitigate could last for hours or even days.

eSentinel™ – 360° Cybersecurity Platform Simplified

Netpluz Asia Pte Ltd

Wannacry & Petya ransomware

Raghavendra P.V

Secure remote work

Allessandra Negri

Tendances (20)

Cambodia CERT Seminar: Incident response for ransomeware attacks

Cyber Security Services

IT security in 2021: Why Ransomware Is Still The Biggest Threat

Information Security Management System in the Banking Sector

Triangulum - Ransomware Evolved - Why your backups arent good enough

Ransomware Detection: Don’t Pay Up. Backup.

Black fogdatasheet feb_2019

Cyber Security 2017 Challenges

Ransomware Has Evolved And So Should Your Company

Top Cloud Security Risks of 2020

Cyber Ethics: Cyber Security Services | VAPT and WAPT

Cisa ransomware guide

Cyber Security Challenges and Strategies

Security is Hard

Wapt course detail

NormShieldBrochure

kill-chain-presentation-v3

eSentinel™ – 360° Cybersecurity Platform Simplified

Wannacry & Petya ransomware

Secure remote work

Similaire à Openbar Leuven // Top 5 focus areas in cyber security linked to you digital transformation - Koen Jacobs

"Evolving Cybersecurity Strategies" - Identity is the new security boundary

Dean Iacovelli

You have spent a ton of money on your security infrastructure. But how do you string all those things together so you can achieve your goals of reducing time to response, detecting, preventing threats. And most importantly, having your security team serve your business and mission. Learn how to organize your security resources to get the best benefit. See a live demonstration of operationalizing those resources so your security teams can do more for your organization.

Operational Security Intelligence

Splunk

Information Security

Mohit8780

Do you know what threats are lurking in the shadows? Have you been compromised without even knowing about it? Most companies don't even know if their business has been subjected to attacks and even worse, may have lost sensitive data without knowing about it until it’s too late. The latest vulnerabilities highlight the extent and depth that hackers are adopting to steal your content or destroy trust in your brand. Our industry experts joining us for the presentation have a wealth of experience in robust security strategies and will be discussing the current online threat landscape, the most prominent approaches to security breaches and what you need to consider to protect your online presence from any potential malicious attacks. About Melbourne IT: Melbourne IT Enterprise Services designs, builds and operates custom cloud solutions for Australia’s leading enterprises. Its expert staff help enterprises solve business challenges and build cultures that enable organisations to use technology investments efficiently to improve long-term value. With more than 15 years’ experience in delivering managed outcomes to Australian enterprises, Melbourne IT has been long associated with enabling success. Its certified cloud, consulting, and security experts repeatedly deliver results. Many of the brands you already know and trust rely on Melbourne IT. For more information, visit www.melbourneitenterprise.com.au

Introduction to the Current Threat Landscape

Melbourne IT

Practical Security for the Cloud

Chirag Joshi, CISA, CISM, CRISC

Power Saturday 2019 E1 - Office 365 security

PowerSaturdayParis

ASMC 2017 - Martin Vliem - Security < productivity < security: syntax ...

PlatformSecurityManagement

Can You Steal From Me Now? Mobile and BYOD Security Risks

Michael Davis

Disrupting the Malware Kill Chain - What's New from Palo Alto Networks.

Scalar Decisions

Microsoft Enterprise Mobility + Security Control identity + access in the cloud Centrally manage single sign-on across devices, your datacenter, and the cloud. Get identity-driven security Comprehensive, intelligent protection against today's advanced attacks. Manage mobile devices + apps Securely manage apps and data on iOS, Android, and Windows from one place. Protect your information Intelligently safeguard your corporate data and enable secured collaboration. Virtualize your desktops Efficiently deliver and manage Windows desktops and apps on all devices.

Microsoft Enterprise Mobility and Security EMS

David J Rosenthal

In this presentation from their joint webinar, security experts and trainers at CQURE, Greg Tworek and Mike Jankowski-Lorek, help you put on your hacker cap to better identify dangerous vulnerabilities, strengthen your systems, and STOP the data breaches that litter the news sites today. They will also demonstrate how to exploit systems and how (from the hacker perspective) this can be proactively mitigated. Catch the full on-demand webinar here: https://www.beyondtrust.com/resources/webinar/hackers-playbook-think-like-cybercriminal-reduce-risk/?access_code=de936e36f25bb91acaae7593959af3c1

The Hacker Playbook: How to Think like a Cybercriminal to Reduce Risk

BeyondTrust

information security awareness course

Abdul Manaf Vellakodath

Cerdant’s Director of Engineering, Joshua Skeens, presented the best ‘bets’ to increase your security odds. Josh warned customers to stop gambling with their data, and cautioned against weak, guessable passwords stating, “Use 2-Factor Authentication everywhere!” The first step in creating the best security posture possible for your business will always be just getting started, and to keep momentum Josh suggests implementing 1 new security practice each week.

Make Every Spin Count: Putting the Security Odds in Your Favor

David Perkins

Reducing Your Attack Surface and Yuor Role in Cloud Workload Protection

Alert Logic

Cyber Security: A Hands on review on what is cyber security and how to prevent your devices from hacking and data breach. In today's era almost all devices are connected to internet are available for hackers to breach into and do their work. The data breach can be very dangerous and sometimes even more that it can demolish a company or a person. In this presentation we will discuss about the ways and short description on Cyber Securty and Techniques.

Cyber Security: A Hands on review

MiltonBiswas8

ISACA CACS 2012 - Mobile Device Security and Privacy

Michael Davis

Are Cybersecurity threats increasing? Learn about protecting your business with a security program and understanding ransomware threats. Join us as Google's Biodun Awojobi and Wade Walters join us to discuss "Security Programs and Ransomware in the Cloud." We expect to have additional Cybersecurity events in future to cover security posture, Zero Trust, Google's Cybersecurity products & more! #cybersecurity #ransomware #google #gdg #gdgcloudsouthlake

GDG Cloud Southlake #4 Biodun Awojobi and Wade Walters Security Programs and ...

James Anderson

Securing your Organization with Microsoft 365

Ravikumar Sathyamurthy

Securing Your Business

Jose L. Quiñones-Borrero

LIFT OFF 2017: Ransomware and IR Overview

Robert Herjavec

Similaire à Openbar Leuven // Top 5 focus areas in cyber security linked to you digital transformation - Koen Jacobs (20)

"Evolving Cybersecurity Strategies" - Identity is the new security boundary

Operational Security Intelligence

Information Security

Introduction to the Current Threat Landscape

Practical Security for the Cloud

Power Saturday 2019 E1 - Office 365 security

ASMC 2017 - Martin Vliem - Security < productivity < security: syntax ...

Can You Steal From Me Now? Mobile and BYOD Security Risks

Disrupting the Malware Kill Chain - What's New from Palo Alto Networks.

Microsoft Enterprise Mobility and Security EMS

The Hacker Playbook: How to Think like a Cybercriminal to Reduce Risk

information security awareness course

Make Every Spin Count: Putting the Security Odds in Your Favor

Reducing Your Attack Surface and Yuor Role in Cloud Workload Protection

Cyber Security: A Hands on review

ISACA CACS 2012 - Mobile Device Security and Privacy

GDG Cloud Southlake #4 Biodun Awojobi and Wade Walters Security Programs and ...

Securing your Organization with Microsoft 365

Securing Your Business

LIFT OFF 2017: Ransomware and IR Overview

Plus de Openbar

Automation, digitalization and AI have revolutionized the labour market: competencies that did not exist five years ago are now in high demand. While this did not lead to a surge in unemployment - unemployment rates are historically low – it has never been harder to fill vacancies with the current pool of jobseekers. Next to a loss of economic potential, job seekers that do not meet the demanded competencies face the severe risk of long-term unemployment. In this talk, we will present on how we help VDAB to reorient long-term unemployed persons towards the competencies of the future.

Openbar Kontich Online // The Competences of the future: how we applied AI to...

Openbar

It has been estimated that the virtual and augmented reality markets will generate revenue of over $162 billion in 2020. As virtual- and augmented- reality related technologies will become more mainstream, it is expected that more and more companies will start using them. With a bright future forecasted for both AR and VR, those engaging with the technologies should be aware of the legal challenges facing these new mediums. In this session we will explore the legal issues that may arise when you want to develop, market or use a AR and VR application. We will provide guidance to come to workable solutions in order to facilitate your succes rate when you embrace these new opportunities.

Openbar Kontich Online // The Legal reality of VR and AR - Kris Seyen

Openbar

Openbar Leuven Online // Launching in Digital Space - Seb De Roover

Openbar

At The Agile Information Factory we believe that digital leaders are made not only by experimenting with new technologies and exploiting their capabilities, this agile mindset is of course very important, but a truly successful strategy should also take into account the effort of integrating the data generated (and consumed) by all these new platforms. We believe that change has become the key issue in data integration and that the value cycle of data is different from the lifecycle of any single application. That is why we built our own DWA tool, Vaultspeed, that enables organisations to integrate their data into one single data hub, where the whole organisation can benefit from this effort, and to do this not once, but continuously. Learn about data warehouse automation, data vault and how we put these to work to create value in real life cases.

Openbar Leuven Online // How to Build and maintain your Agile Data Hub - Jona...

Openbar

In 2020, chatbots will become much more common and available. Therefore, it’s time for the next step: make your chatbot as accessible as possible by providing an omnichannel voice & chat experience across multiple devices and platforms. We discuss platforms such as Google Assistant, Facebook Messenger and WhatsApp, and we will show you how one chatbot can integrate with these platforms simultaneously. We demonstrate this idea in the context of a fictive online retail store.

Openbar Leuven // Omnicannel chatbots in Retail - Sam Hendrickx en Michiel Va...

Openbar

Being or becoming an entrepreneur has been made made easier, more accessible and more doable since the startup hype that started in 2013. Entrepreneurs can choose between a lot of initiatives to enrich and educate themselves and their idea/concept in the hope of becoming successful entrepreneurs. But after more than 6 years of investing time, expertise, money, ressources, workshops, events and inspiration sessions… What have we learned from it? Is there a magical key to success? What are the determining factors for being successful? I will give you my insights on what it takes to enhance your chances of becoming a successful entrepreneur.

Openbar Kontich // The key to successful entrepreneurship

Openbar

Openbar Leuven // Science fiction and AI

Openbar

At Monkeyshot, we ask ourselves where exactly the athical boundaries lie in our ever more digitalised society. Which information do we share, and with whom? Which things do we better keep to ourselves instead of sharing them? To what extent do we allow technology in our lives? In a fun, interactive session, we try to find an answer to all these questions. You will be able to vote, debate and share ideas. Let us know in which (digital) society you would like to live!

Openbar Leuven // Ethics in technology - Laurens Somers

Openbar

Openbar Kontich // How to create intelligent & personal conversational AI - W...

Openbar

Openbar Kontich // Unified e-commerce with Netsuite - Roger Van Beeck

Openbar

Openbar Leuven // Edge-Computing: On-device AI // Nick Destrycker

Openbar

Unlike virtual reality, where a complete virtual world is created, augmented reality is a kind of extension of reality through technology. Meanwhile, AR has also been on a serious advance since the arrival of ARKit and ARCore. The phenomenon of virtual reality is just as hype and with the introduction of the Oculus Rift several companies have also started using VR for their business. Already Â in 2014, Volvo launched the test drive without a car using an Oculus Rift. The car manufacturer put the headlines together with Google to find out how they could simulate the best experience of a test drive, without actually using the car. "It is a matter of thinking 'out of the box'. If you can create an almost-real experience, you give the consumer a unique experience that can be decisive for a purchase decision " Augmented Reality has already had its influence in the business world. For example, Vuzix already worked with Airbus to make the process of building an Airbus more efficient through Smart Glasses. When wearing these Smart Glasses, relevant information is displayed when installing the cabin. They also enable the wearer to work very precisely when it comes to placement. The following topics will be discussed What is Augmented Reality? Why should we need it? AR hardware vs. Mobile AR Platform comparison ARCore vs ARkit Possibilities now vs future Use cases Success stories

Openbar Leuven // What's up with augmented reality // Bert Waltniel

Openbar

Although a giant player in anything software related Google Cloud still feels a bit under appreciated. How did it get where it is now? What are its core strengths? Most of all, we want to provide a glimpse of the future in determining major shifts in Cloud computing. Every company is a data company but their data still remains under-utilised due to a lack of execution power, let’s find this power. Due to Cloud pricing models efficient software engineering is gaining in importance, let’s unlock this efficiency. Hybrid and multi-Cloud is easily one of the largest investment domains in the Cloud world. Let’s find out why and see how we can stay vendor neutral as much as possible.

Openbar Kontich // Google Cloud: past, present and the (oh so sweet) future b...

Openbar

Why would we opt for building an on-premise device farm when cloud solutions are in abundance these days? Short answer, because it’s worth it. The long answer involves a few more practicalities. Cost–efficiency has been one of the major selling points. Smaller companies have limited budget and cutting corners is never an option. With enough research and analytics, you can build a solid device pool with limited resources and in return save on manual testing hours. During this test automation story, we will take you through the journey of building our farm.

Openbar Kontich // Mobile app automation on a budget by Wim Vervust & Bram Thys

Openbar

Developers no longer start from an empty file. More and more existing API’s and services are used to rapidly develop new applications. During this session we will demonstrate how API Management solutions can help developers to find/reuse/create APIs and services to speed up application development. We will focus both on the API/service consumers and producers. Real world use cases will be used to demonstrate the key capabilities of good API Management solutions.

$Openbar Leuven \\ Using API Management to improve developers productivity \\ ...$ $Openbar Leuven \\ Using API Management to improve developers productivity \\ ...$

Openbar Leuven \\ Using API Management to improve developers productivity \\ ...

Openbar

Openbar Kontich // Is your AI plotting to kill you? Why AI and Machine Learni...

Openbar

For many, Serverless is yet another technical solution for their IT and business challenges. But by correlating Serverless with digital innovation and other business evolutions, we can gain greater insights. During this presentation we will run through several reference cases in which Serverless application design and development on Amazon Web Services has positively influenced the business of our customers. This will be a non-technical session.

Openbar Kontich // Serverless - A view from the business side by Stef Ceyssen...

Openbar

Modern workplace environments are rapidly becoming cyber attackers’ prime target, because of the broad attack surface that our cloud-based digitalization offers. We, as an employee in the office or at home are always ‘connected’ and we are mixing personal with professional matters all the time. With BYOD (bring your own device) policies and all those cool SaaS cloud apps we love to use; company data and users are moving constantly outside the network perimeter of the company. Recent breaches clearly demonstrate that the traditional network security approach doesn’t work anymore within this ever-changing cyber threat landscape. Securing a modern workplace across identities, endpoints, user data, cloud apps and infrastructure becomes quite a challenge. Stopping cyber attackers’ threats requires an innovative approach, with evolving technology powered by AI & machine learning. In this session we will give you a sneak peak of the current tactics cyber attackers are using to get their foot between the door and how modern cyber defense tooling is used to detect and stop these threats.

Openbar Leuven // Safety first... in the Cloud by Koen Jacobs

Openbar

In this era of Big Data, finding suitable data to automate a task is often still a challenge for Machine Learning professionals. This is certainly the case in Natural Language Processing, the subdomain of Artificial Intelligence that is concerned with the automatic processing of texts, as in machine translation, text classification, etc. In those tasks, the quality of the results crucially depends on the amount of available data in a given language and a given domain (CVs, medical texts, etc.). To fix this problem, researchers are focusing more attention on ways of training better models with less data. In this presentation, Yves will discuss the recent trends in this domain and show how they have helped his company NLP Town develop NLP solutions.

Openbar Leuven // Less is more. Working with less data in NLP by Yves Peirsman

Openbar

Tired of repetitive and manual tasks in your organization? Need more hands to process high volume transactions across various applications? Ever heard of a virtual workforce that can take over these repetitive actions? In this inspiring session, we will introduce the Robotics Process Automation (or RPA) technology with its facts & myths and prove that the technology is mature and irreplaceable for the digitalization of the workforce. We will also prove the power of intelligent automation by combining RPA with AI technology like chatbots and intelligent OCR.

Openbar Kontich // RPA: A Hype or a Proven Technology? by Tim Vangilbergen & ...

Openbar

Plus de Openbar (20)