SlideShare une entreprise Scribd logo

MESA- Cyber & Smart Cities - Updated

Télécharger en tant que PPTX, PDF
Gary Hayslip CISSP, CISA, CRISC, CCSK
Gary Hayslip CISSP, CISA, CRISC, CCSK
1  sur  19
Cyber, an Evolving Ecosystem “How cyber is laying the groundwork for Smart Cities” Middle East Security Awards Dubai - 2016
Background • Started with computers in early 1980’s as a teenager. • Served 20 years in US Navy working with computers and cyber security. (1986-2007) • Spent 6 years as a Federal Civil Servant for the US Navy as a CISO. • In 26 years I worked numerous positions: developer, network administrator, network engineer, security architect, security auditor and security forensic investigator. • Worked on and audited federal and military networks from all over the world. (architecture, security controls, policies) • Why this background is important – Cyber security in the Federal Government is totally different than private/municipal. • In 2013, I resigned from Federal service and accepted a position with the City of San Diego, California. • I had no idea what I was walking into or how it would fundamentally change my view on Cyber Security. Gary Hayslip, CISO
San Diego Trivia • 11,000+ employee’s • 14,000+ desktops & laptops • 500+ tablets and mobile devices • 1000+ City issues cell phones • City has over 24 networks with an estimated 35,000+ endpoints. • Sensitive data types such as PII, PCI, HIPAA, & Financial • Installed technology ranges from 1980’s type hardware to state of the art cyber security analytics software. • Internet-of-Things (IoT) in large scale enterprise deployments • Average 1 million attacks on its networks per day City of San Diego by the Numbers
Changing Mindset on viewing risk - longterm • Over 40 departments with different business requirements & needs. • Matching citizens expectations with reality. • Risk Management = Its all about the grey. • Environment is constantly changing • Collaboration or die Risk is everywhere
Current Threats Threats - Hacktivism The City of San Diego has been attacked several times by Hacktivist groups over the last two years. The FBI reports attacks on municipalities has increased by 60% since 2013. XXXXXXXXXXXX XXX
Challenges Legacy Infrastructure & Disparate Technologies • The City of San Diego expecting 49% growth in population between now and 2050. • Growth will impact municipal services such as water, power, transportation and employment opportunities. • IT infrastructure in constant use, municipal governments do not rotate technology like public traded organizations. • Technology changes for municipalities have intertwined “legacy” and “new” technologies.
You need a plan To be effective, you need a plan
Cyber, its alive! Cyber Security is a life-cycle https://app.box.com/Cyber-LifeCycle
Building a Security Program Cyber – Ongoing Projects Daily Operations Network Behavior Analytics Data Governance Continuous Scanning, Remediation, Monitoring
Understanding technology has risk Understanding our risk Application Valuation Components Total ValuationRevenue Asset Value Data Liability Business Tax $7,600,000 $850,000 $1,425,000 $9,875,000 Computer Aided Dispatch $0 $4,200,000 $1,425,000 $5,625,000 Landfill $43,000,000 $400,000 $1,425,000 $44,825,000 Permit Tracking System $65,000,000 $85,000 $36,000,000 $101,085,000 SAP $343,000,000 $32,250,000 $528,000 $375,778,000 • Business Tax 12.4 out of 20 • Computer Aided Dispatch 12.6 out of 20 • Landfill 12.5 out of 20 • Permit Tracking System 12.6 out of 20 • SAP 12.6 out of 20 SANS 20 Control Defensive Posture Business Applications SANS 20 Critical Controls SCS1 SCS2 SCS3 SCS4 SCS5 SCS6 SCS7 SCS8 SCS9 SCS10 SCS11 SCS12 SCS13 SCS14 SCS15 SCS16 SCS17 SCS18 SCS19 SCS20 Business Tax 0.4501 0.1959 0.388 0.6789 0.8724 0.7486 0.4927 0.625 0.5325 0.2 0.6875 0.8567 0.8464 0.6838 0.2125 0.9198 0.8575 1.0 0.7 0.4875 Computer Aided Dispatch 0.4501 0.3626 0.3875 0.6789 0.8724 0.7486 0.4927 0.625 0.5325 0.2 0.6875 0.8567 0.8464 0.6838 0.2125 0.9198 0.8575 1.0 0.7 0.4875 Landfill 0.4501 0.2876 0.3875 0.6789 0.8724 0.7486 0.4927 0.625 0.5325 0.2 0.6875 0.8567 0.8467 0.6838 0.2125 0.9198 0.8575 1.0 0.7 0.4875 Permit Tracking System 0.4501 0.3626 0.3875 0.6789 0.8724 0.7486 0.4927 0.625 0.5325 0.2 0.6875 0.8567 0.8464 0.6838 0.2125 0.9198 0.895 1.0 0.7 0.4875 SAP 0.4501 0.3626 0.3875 0.6789 0.8724 0.7486 0.4927 0.625 0.5325 0.2 0.6875 0.8567 0.8464 0.6838 0.2125 0.9198 0.8575 1.0 0.7 0.4875 Confidence levels (control weight * scaling factor) were asserted for controls that have been adopted and implemented by the City of San Diego.
Risk Baseline Cyber – Establishing the Risk Baseline 5 100 Business Applications Analyzed Remaining Produced Summary Findings Total Overall Exposure $537,188,000 Severe Potential Loss $74,019,393 Average Potential Loss $3,963,707 Definitions: • Total Overall Exposure – the overall value of the cyber assets • Severe Potential Loss – the 5% Value At Risk • Average Potential Loss – most likely loss over the next 12 months
What is to come So why is this important? • Increase in population in both the city and county of San Diego. • Increase in traffic & transportation costs • Limited amount of housing for population • Increased costs in infrastructure projects • Street repair • Fiber and new communication conduits • Upgrades to electrical and emergency service systems • Increase use of alternative energy technologies • Continued conservation of water and natural resources • Financial resources & planning required for capital improvement projects that will be used for decades.
Why are we doing this? The Rise of Smart Cities • Smart Cities are high-density creators of rich data and new protocols. • Location information is a major enabler of Smart City technology benefits. • Benefits of smart technology must be judged by the services they provide to our citizens. • Reuse and repurpose is vital to urban resilience, smart data is needed to make this work efficiently. • Open standards are needed for interoperability, efficiency, application innovation and cost effectiveness. (ISO 37150, 37151 & 37120)
Smart Cities will provide targeted services Smart City Services • Utilities - Smart Grid, Smart Water, Smart Waste etc. • Intelligent Buildings • Intelligent Transportation • Health • Public Safety and Security • Environmental Protection • Emergency Services • Education • Urban Planning • Open Data • Mobile Services
Smart Cities will drive a new technology stack Smart City Infrastructure City Sensor Webs Sensor networks Crowdsourcing Phones, Wearables Sensing Layer Population Data Data Access Geospatial Data Data Layer Data Ingest and Quality Checking Other Data Enterprise Data Urban/Municipal Database Economic Data Analytics and Models Metadata Catalogs, Semantics Business Layer Visualization and Decision Support Health Application Layer Intelligent buildings Intelligent transportation Open data Environmental ProtectionPublic safety and security Urban planning UtilitiesEmergency Services EducationSanitation Cloudhostedresources SecuritySystem Elected Officials PublicMunicipal Employees
What is the City of San Diego doing? San Diego’s Smart City Initiatives • Sempra Smart Grid • Google Fiber • Environmental sensors for runoff • Sensor/GPS for trash vehicles • Street sensors for intelligent parking • Intelligent Infrastructure • LED based street lights • HD Video sensors/traffic cams • Intelligent building (New library) • HVAC systems (43 libraries) • Port Authority sensor network around bay • City of San Diego Climate Action Plan – Smart City Hackathon • Sempra HQ building downtown • City of San Diego – solar panels • City of San Diego – EAM Project • New mapping of park spaces • Mapping of all City owned tree’s • Deployment of resilient emergency communications
Concerns we must address Dark side to Smart City Initiatives • Increased complexity in municipal enterprise networks. • Cascading effect, simple issues can cause large impact on intertwined systems. • Patch deployments, system updates become troublesome with large disparate networks. • Lack of threat models to accurately predict the impact of Intelligent Infrastructure and risk on cities. New Attack Surfaces • Traffic Control Systems • Smart Street Lighting • City Management Systems • Sensors • Smart Grid • Public Safety Systems • Location Based Services • Public Transportation • Cameras / Video • Cloud/SaaS Solutions
How Cyber will lead the way Cyber as a Service – leading the way • Need to understand what is important to organization • Data, Applications, Processes • Deploy a Cybersecurity Framework • Cyber Hygiene • Work with business units to implement security controls that don’t hinder • Continuously inventory, assess, monitor, scan and remediate • Understand your impact • Through innovation look for secure solutions to aide the business • SSO, 2FA • MDM • Cloud solution's • Data Governance • Resilient, modular, flexible architecture to be the norm • Security by design • Allow cities to be innovative & deploy smart city technologies securely **Based on research conducted by IOActive ICIT
Department of I.T. – Cybersecurity Division Questions, Rants, Discussions? Gary Hayslip Deputy Director, Chief Information Security Officer ghayslip@sandiego.gov @ghayslip https://www.linkedin.com/in/ghayslip

Recommandé

Cyber security for smart cities an architecture model for public transport
Cyber security for smart cities an architecture model for public transportCyber security for smart cities an architecture model for public transport
Cyber security for smart cities an architecture model for public transportAndrey Apuhtin
 
Smart & Secure City Solutions by Rupinder Singh
Smart & Secure City Solutions by Rupinder SinghSmart & Secure City Solutions by Rupinder Singh
Smart & Secure City Solutions by Rupinder SinghIPPAI
 
Business Development, Industry Solutions, Internet of Everything Cisco India ...
Business Development, Industry Solutions, Internet of Everything Cisco India ...Business Development, Industry Solutions, Internet of Everything Cisco India ...
Business Development, Industry Solutions, Internet of Everything Cisco India ...IPPAI
 
Cyber Security challenges in SMART city
Cyber Security challenges in SMART cityCyber Security challenges in SMART city
Cyber Security challenges in SMART cityCharles Lim
 
Cyber security in smart cities
Cyber security in smart cities Cyber security in smart cities
Cyber security in smart cities Aboul Ella Hassanien
 
Security and privacy in Smart City Application
Security and privacy in Smart City ApplicationSecurity and privacy in Smart City Application
Security and privacy in Smart City ApplicationDhanashriNandre
 
Smart Cities Day 2 Urban Innovation
Smart Cities Day 2 Urban InnovationSmart Cities Day 2 Urban Innovation
Smart Cities Day 2 Urban Innovation4 All of Us
 
Security in Smart City Implementation: Infrastructure and People
Security in Smart City Implementation: Infrastructure and PeopleSecurity in Smart City Implementation: Infrastructure and People
Security in Smart City Implementation: Infrastructure and PeopleNUS-ISS
 

Recommandé

Cyber security for smart cities an architecture model for public transport
Cyber security for smart cities an architecture model for public transportCyber security for smart cities an architecture model for public transport
Cyber security for smart cities an architecture model for public transportAndrey Apuhtin
 
Smart & Secure City Solutions by Rupinder Singh
Smart & Secure City Solutions by Rupinder SinghSmart & Secure City Solutions by Rupinder Singh
Smart & Secure City Solutions by Rupinder SinghIPPAI
 
Business Development, Industry Solutions, Internet of Everything Cisco India ...
Business Development, Industry Solutions, Internet of Everything Cisco India ...Business Development, Industry Solutions, Internet of Everything Cisco India ...
Business Development, Industry Solutions, Internet of Everything Cisco India ...IPPAI
 
Cyber Security challenges in SMART city
Cyber Security challenges in SMART cityCyber Security challenges in SMART city
Cyber Security challenges in SMART cityCharles Lim
 
Cyber security in smart cities
Cyber security in smart cities Cyber security in smart cities
Cyber security in smart cities Aboul Ella Hassanien
 
Security and privacy in Smart City Application
Security and privacy in Smart City ApplicationSecurity and privacy in Smart City Application
Security and privacy in Smart City ApplicationDhanashriNandre
 
Smart Cities Day 2 Urban Innovation
Smart Cities Day 2 Urban InnovationSmart Cities Day 2 Urban Innovation
Smart Cities Day 2 Urban Innovation4 All of Us
 
Security in Smart City Implementation: Infrastructure and People
Security in Smart City Implementation: Infrastructure and PeopleSecurity in Smart City Implementation: Infrastructure and People
Security in Smart City Implementation: Infrastructure and PeopleNUS-ISS
 
Connected IO: Smart Cities
Connected IO: Smart CitiesConnected IO: Smart Cities
Connected IO: Smart Citiesdanielpwardmbd
 
Internet of Things and Smart Cities
Internet of Things and Smart CitiesInternet of Things and Smart Cities
Internet of Things and Smart CitiesGustavo Henrique Rodrigues Pinto Tomas
 
SMART City - Technology Solutions Examples - Part 1
SMART City - Technology Solutions Examples - Part 1SMART City - Technology Solutions Examples - Part 1
SMART City - Technology Solutions Examples - Part 1Amol Vidwans
 
Internet of Things for Smart Cities
Internet of Things for Smart CitiesInternet of Things for Smart Cities
Internet of Things for Smart CitiesMphasis
 
Introduction to IOT & Smart City
Introduction to IOT & Smart CityIntroduction to IOT & Smart City
Introduction to IOT & Smart CityDr. Mazlan Abbas
 
Smart cities global experiences and lessons for india at ASCI Hyderabad 25 ...
Smart cities global experiences and lessons for india at ASCI Hyderabad 25 ...Smart cities global experiences and lessons for india at ASCI Hyderabad 25 ...
Smart cities global experiences and lessons for india at ASCI Hyderabad 25 ...Prakash Kumar
 
Teradata and Cisco integrated journey to IoT and Smart city
Teradata and Cisco integrated journey to IoT and Smart cityTeradata and Cisco integrated journey to IoT and Smart city
Teradata and Cisco integrated journey to IoT and Smart cityArtur Borycki
 
Big data/Data Mining/IoT/Smart City
Big data/Data Mining/IoT/Smart CityBig data/Data Mining/IoT/Smart City
Big data/Data Mining/IoT/Smart Cityrashed sharif
 
IRJET- Internet of Things Technologies for Future of Smart Cities: Artificial...
IRJET- Internet of Things Technologies for Future of Smart Cities: Artificial...IRJET- Internet of Things Technologies for Future of Smart Cities: Artificial...
IRJET- Internet of Things Technologies for Future of Smart Cities: Artificial...IRJET Journal
 
Application scenarios and real-world deployments for IoT and Smart Cities
Application scenarios and real-world deployments for IoT and Smart CitiesApplication scenarios and real-world deployments for IoT and Smart Cities
Application scenarios and real-world deployments for IoT and Smart CitiesMàrius Montón
 
A Full End-to-End Platform as a Service for Smart City Applications
A Full End-to-End Platform as a Service for Smart City ApplicationsA Full End-to-End Platform as a Service for Smart City Applications
A Full End-to-End Platform as a Service for Smart City ApplicationsCharalampos Doukas
 
Internet of Things- An Introduction
Internet of Things- An IntroductionInternet of Things- An Introduction
Internet of Things- An IntroductionRavindra Dastikop
 
Smart Connected Cities Cisco Vision & Perspective by Ravinder Pal Singh
Smart Connected Cities Cisco Vision & Perspective by Ravinder Pal SinghSmart Connected Cities Cisco Vision & Perspective by Ravinder Pal Singh
Smart Connected Cities Cisco Vision & Perspective by Ravinder Pal SinghIPPAI
 
A Quintessential smart city infrastructure framework for all stakeholders
A Quintessential smart city infrastructure framework for all stakeholdersA Quintessential smart city infrastructure framework for all stakeholders
A Quintessential smart city infrastructure framework for all stakeholdersJonathan L. Tan, M.B.A.
 
Role of IOT devices and servcies in the development of smart cities.
Role of IOT devices and servcies in the development of smart cities.Role of IOT devices and servcies in the development of smart cities.
Role of IOT devices and servcies in the development of smart cities.mayank agarwal
 
Smart Cities in the IoT Era
Smart Cities in the IoT EraSmart Cities in the IoT Era
Smart Cities in the IoT EraOpposing Force S.r.l.
 
IoT and smart cities
IoT and smart citiesIoT and smart cities
IoT and smart citiesDunavNET
 
What is a smart city
What is a smart cityWhat is a smart city
What is a smart cityAntenna Manufacturer Coco
 
IOT in SMART Cities
IOT in SMART CitiesIOT in SMART Cities
IOT in SMART CitiesDr. Shivananda Koteshwar
 
Bilel Jamoussi - Driving Internet of Ihings (IoT) standardization - IoT Tunis...
Bilel Jamoussi - Driving Internet of Ihings (IoT) standardization - IoT Tunis...Bilel Jamoussi - Driving Internet of Ihings (IoT) standardization - IoT Tunis...
Bilel Jamoussi - Driving Internet of Ihings (IoT) standardization - IoT Tunis...IoT Tunisia
 
Vulnerando Entornos Critios: Smart-Cities, Smart-Buildings y Grandes Corporac...
Vulnerando Entornos Critios: Smart-Cities, Smart-Buildings y Grandes Corporac...Vulnerando Entornos Critios: Smart-Cities, Smart-Buildings y Grandes Corporac...
Vulnerando Entornos Critios: Smart-Cities, Smart-Buildings y Grandes Corporac...Eduardo Arriols Nuñez
 
Red Team: Un nuevo enfoque para auditar controles de Ciberseguridad
Red Team: Un nuevo enfoque para auditar controles de CiberseguridadRed Team: Un nuevo enfoque para auditar controles de Ciberseguridad
Red Team: Un nuevo enfoque para auditar controles de CiberseguridadEduardo Arriols Nuñez
 

Contenu connexe

Tendances

Connected IO: Smart Cities
Connected IO: Smart CitiesConnected IO: Smart Cities
Connected IO: Smart Citiesdanielpwardmbd
 
SMART City - Technology Solutions Examples - Part 1
SMART City - Technology Solutions Examples - Part 1SMART City - Technology Solutions Examples - Part 1
SMART City - Technology Solutions Examples - Part 1Amol Vidwans
 
Internet of Things for Smart Cities
Internet of Things for Smart CitiesInternet of Things for Smart Cities
Internet of Things for Smart CitiesMphasis
 
Introduction to IOT & Smart City
Introduction to IOT & Smart CityIntroduction to IOT & Smart City
Introduction to IOT & Smart CityDr. Mazlan Abbas
 
Smart cities global experiences and lessons for india at ASCI Hyderabad 25 ...
Smart cities global experiences and lessons for india at ASCI Hyderabad 25 ...Smart cities global experiences and lessons for india at ASCI Hyderabad 25 ...
Smart cities global experiences and lessons for india at ASCI Hyderabad 25 ...Prakash Kumar
 
Teradata and Cisco integrated journey to IoT and Smart city
Teradata and Cisco integrated journey to IoT and Smart cityTeradata and Cisco integrated journey to IoT and Smart city
Teradata and Cisco integrated journey to IoT and Smart cityArtur Borycki
 
Big data/Data Mining/IoT/Smart City
Big data/Data Mining/IoT/Smart CityBig data/Data Mining/IoT/Smart City
Big data/Data Mining/IoT/Smart Cityrashed sharif
 
IRJET- Internet of Things Technologies for Future of Smart Cities: Artificial...
IRJET- Internet of Things Technologies for Future of Smart Cities: Artificial...IRJET- Internet of Things Technologies for Future of Smart Cities: Artificial...
IRJET- Internet of Things Technologies for Future of Smart Cities: Artificial...IRJET Journal
 
Application scenarios and real-world deployments for IoT and Smart Cities
Application scenarios and real-world deployments for IoT and Smart CitiesApplication scenarios and real-world deployments for IoT and Smart Cities
Application scenarios and real-world deployments for IoT and Smart CitiesMàrius Montón
 
A Full End-to-End Platform as a Service for Smart City Applications
A Full End-to-End Platform as a Service for Smart City ApplicationsA Full End-to-End Platform as a Service for Smart City Applications
A Full End-to-End Platform as a Service for Smart City ApplicationsCharalampos Doukas
 
Internet of Things- An Introduction
Internet of Things- An IntroductionInternet of Things- An Introduction
Internet of Things- An IntroductionRavindra Dastikop
 
Smart Connected Cities Cisco Vision & Perspective by Ravinder Pal Singh
Smart Connected Cities Cisco Vision & Perspective by Ravinder Pal SinghSmart Connected Cities Cisco Vision & Perspective by Ravinder Pal Singh
Smart Connected Cities Cisco Vision & Perspective by Ravinder Pal SinghIPPAI
 
A Quintessential smart city infrastructure framework for all stakeholders
A Quintessential smart city infrastructure framework for all stakeholdersA Quintessential smart city infrastructure framework for all stakeholders
A Quintessential smart city infrastructure framework for all stakeholdersJonathan L. Tan, M.B.A.
 
Role of IOT devices and servcies in the development of smart cities.
Role of IOT devices and servcies in the development of smart cities.Role of IOT devices and servcies in the development of smart cities.
Role of IOT devices and servcies in the development of smart cities.mayank agarwal
 
IoT and smart cities
IoT and smart citiesIoT and smart cities
IoT and smart citiesDunavNET
 
Bilel Jamoussi - Driving Internet of Ihings (IoT) standardization - IoT Tunis...
Bilel Jamoussi - Driving Internet of Ihings (IoT) standardization - IoT Tunis...Bilel Jamoussi - Driving Internet of Ihings (IoT) standardization - IoT Tunis...
Bilel Jamoussi - Driving Internet of Ihings (IoT) standardization - IoT Tunis...IoT Tunisia
 

Tendances (20)

Connected IO: Smart Cities
Connected IO: Smart CitiesConnected IO: Smart Cities
Connected IO: Smart Cities
 
Internet of Things and Smart Cities
Internet of Things and Smart CitiesInternet of Things and Smart Cities
Internet of Things and Smart Cities
 
SMART City - Technology Solutions Examples - Part 1
SMART City - Technology Solutions Examples - Part 1SMART City - Technology Solutions Examples - Part 1
SMART City - Technology Solutions Examples - Part 1
 
Internet of Things for Smart Cities
Internet of Things for Smart CitiesInternet of Things for Smart Cities
Internet of Things for Smart Cities
 
Introduction to IOT & Smart City
Introduction to IOT & Smart CityIntroduction to IOT & Smart City
Introduction to IOT & Smart City
 
Smart cities global experiences and lessons for india at ASCI Hyderabad 25 ...
Smart cities global experiences and lessons for india at ASCI Hyderabad 25 ...Smart cities global experiences and lessons for india at ASCI Hyderabad 25 ...
Smart cities global experiences and lessons for india at ASCI Hyderabad 25 ...
 
Teradata and Cisco integrated journey to IoT and Smart city
Teradata and Cisco integrated journey to IoT and Smart cityTeradata and Cisco integrated journey to IoT and Smart city
Teradata and Cisco integrated journey to IoT and Smart city
 
Big data/Data Mining/IoT/Smart City
Big data/Data Mining/IoT/Smart CityBig data/Data Mining/IoT/Smart City
Big data/Data Mining/IoT/Smart City
 
IRJET- Internet of Things Technologies for Future of Smart Cities: Artificial...
IRJET- Internet of Things Technologies for Future of Smart Cities: Artificial...IRJET- Internet of Things Technologies for Future of Smart Cities: Artificial...
IRJET- Internet of Things Technologies for Future of Smart Cities: Artificial...
 
Application scenarios and real-world deployments for IoT and Smart Cities
Application scenarios and real-world deployments for IoT and Smart CitiesApplication scenarios and real-world deployments for IoT and Smart Cities
Application scenarios and real-world deployments for IoT and Smart Cities
 
A Full End-to-End Platform as a Service for Smart City Applications
A Full End-to-End Platform as a Service for Smart City ApplicationsA Full End-to-End Platform as a Service for Smart City Applications
A Full End-to-End Platform as a Service for Smart City Applications
 
Internet of Things- An Introduction
Internet of Things- An IntroductionInternet of Things- An Introduction
Internet of Things- An Introduction
 
Smart Connected Cities Cisco Vision & Perspective by Ravinder Pal Singh
Smart Connected Cities Cisco Vision & Perspective by Ravinder Pal SinghSmart Connected Cities Cisco Vision & Perspective by Ravinder Pal Singh
Smart Connected Cities Cisco Vision & Perspective by Ravinder Pal Singh
 
A Quintessential smart city infrastructure framework for all stakeholders
A Quintessential smart city infrastructure framework for all stakeholdersA Quintessential smart city infrastructure framework for all stakeholders
A Quintessential smart city infrastructure framework for all stakeholders
 
Role of IOT devices and servcies in the development of smart cities.
Role of IOT devices and servcies in the development of smart cities.Role of IOT devices and servcies in the development of smart cities.
Role of IOT devices and servcies in the development of smart cities.
 
Smart Cities in the IoT Era
Smart Cities in the IoT EraSmart Cities in the IoT Era
Smart Cities in the IoT Era
 
IoT and smart cities
IoT and smart citiesIoT and smart cities
IoT and smart cities
 
What is a smart city
What is a smart cityWhat is a smart city
What is a smart city
 
IOT in SMART Cities
IOT in SMART CitiesIOT in SMART Cities
IOT in SMART Cities
 
Bilel Jamoussi - Driving Internet of Ihings (IoT) standardization - IoT Tunis...
Bilel Jamoussi - Driving Internet of Ihings (IoT) standardization - IoT Tunis...Bilel Jamoussi - Driving Internet of Ihings (IoT) standardization - IoT Tunis...
Bilel Jamoussi - Driving Internet of Ihings (IoT) standardization - IoT Tunis...
 

En vedette

Vulnerando Entornos Critios: Smart-Cities, Smart-Buildings y Grandes Corporac...
Vulnerando Entornos Critios: Smart-Cities, Smart-Buildings y Grandes Corporac...Vulnerando Entornos Critios: Smart-Cities, Smart-Buildings y Grandes Corporac...
Vulnerando Entornos Critios: Smart-Cities, Smart-Buildings y Grandes Corporac...Eduardo Arriols Nuñez
 
Red Team: Un nuevo enfoque para auditar controles de Ciberseguridad
Red Team: Un nuevo enfoque para auditar controles de CiberseguridadRed Team: Un nuevo enfoque para auditar controles de Ciberseguridad
Red Team: Un nuevo enfoque para auditar controles de CiberseguridadEduardo Arriols Nuñez
 
Red Team: Next Generation Penetration Testing
Red Team: Next Generation Penetration TestingRed Team: Next Generation Penetration Testing
Red Team: Next Generation Penetration TestingEduardo Arriols Nuñez
 
Next Generation Intelligent Transportation: Solutions for Smart Cities
Next Generation Intelligent Transportation: Solutions for Smart CitiesNext Generation Intelligent Transportation: Solutions for Smart Cities
Next Generation Intelligent Transportation: Solutions for Smart CitiesUGPTI
 
Transforming Governments in the Cloud
Transforming Governments in the CloudTransforming Governments in the Cloud
Transforming Governments in the CloudAmazon Web Services
 
Innovative Approaches for Smart City Development
Innovative Approaches for Smart City DevelopmentInnovative Approaches for Smart City Development
Innovative Approaches for Smart City DevelopmentMartin Venzky-Stalling
 
151116 smart city furniture trends
151116 smart city furniture trends151116 smart city furniture trends
151116 smart city furniture trendsYANG DESIGN
 
Overcoming the cybersecurity challenges of smart cities
Overcoming the cybersecurity challenges of smart citiesOvercoming the cybersecurity challenges of smart cities
Overcoming the cybersecurity challenges of smart citiesSaeed Al Dhaheri
 
Global City Teams Challenge Overview
Global City Teams Challenge OverviewGlobal City Teams Challenge Overview
Global City Teams Challenge OverviewInternet of Things DC
 
Smart City Data Strategy
Smart City Data StrategySmart City Data Strategy
Smart City Data StrategyJin-Hyeok Yang
 
Teppo Rantanen - Smart Citizen - Mindtrek 2016
Teppo Rantanen - Smart Citizen - Mindtrek 2016Teppo Rantanen - Smart Citizen - Mindtrek 2016
Teppo Rantanen - Smart Citizen - Mindtrek 2016Mindtrek
 
From AirBox to Smart City: where are we and what's next?
From AirBox to Smart City: where are we and what's next?From AirBox to Smart City: where are we and what's next?
From AirBox to Smart City: where are we and what's next?Ling-Jyh Chen
 
mskanber-deloitte-nl-ps-smart-cities-report
mskanber-deloitte-nl-ps-smart-cities-reportmskanber-deloitte-nl-ps-smart-cities-report
mskanber-deloitte-nl-ps-smart-cities-reportM. Salih KANBER
 
'(Un)Plugging Smart City Transformations & Strategies in Europe' Maynooth Uni...
'(Un)Plugging Smart City Transformations & Strategies in Europe' Maynooth Uni...'(Un)Plugging Smart City Transformations & Strategies in Europe' Maynooth Uni...
'(Un)Plugging Smart City Transformations & Strategies in Europe' Maynooth Uni...Dr Igor Calzada, MBA, FeRSA
 
Understanding Smart Cities as Social Machines
Understanding Smart Cities as Social MachinesUnderstanding Smart Cities as Social Machines
Understanding Smart Cities as Social MachinesDirk Ahlers
 
Conference Smart City for developing countries: Why ? and How to Start?
Conference Smart City for developing countries: Why ? and How to Start?Conference Smart City for developing countries: Why ? and How to Start?
Conference Smart City for developing countries: Why ? and How to Start?Isam Shahrour
 
Re-imagining Cities. Newmarket Economic Development Symposium
Re-imagining Cities. Newmarket Economic Development SymposiumRe-imagining Cities. Newmarket Economic Development Symposium
Re-imagining Cities. Newmarket Economic Development SymposiumRick Huijbregts
 

En vedette (20)

Vulnerando Entornos Critios: Smart-Cities, Smart-Buildings y Grandes Corporac...
Vulnerando Entornos Critios: Smart-Cities, Smart-Buildings y Grandes Corporac...Vulnerando Entornos Critios: Smart-Cities, Smart-Buildings y Grandes Corporac...
Vulnerando Entornos Critios: Smart-Cities, Smart-Buildings y Grandes Corporac...
 
Red Team: Un nuevo enfoque para auditar controles de Ciberseguridad
Red Team: Un nuevo enfoque para auditar controles de CiberseguridadRed Team: Un nuevo enfoque para auditar controles de Ciberseguridad
Red Team: Un nuevo enfoque para auditar controles de Ciberseguridad
 
Red Team: Next Generation Penetration Testing
Red Team: Next Generation Penetration TestingRed Team: Next Generation Penetration Testing
Red Team: Next Generation Penetration Testing
 
Next Generation Intelligent Transportation: Solutions for Smart Cities
Next Generation Intelligent Transportation: Solutions for Smart CitiesNext Generation Intelligent Transportation: Solutions for Smart Cities
Next Generation Intelligent Transportation: Solutions for Smart Cities
 
Lightscene 2016: Defining the Smart City
Lightscene 2016: Defining the Smart CityLightscene 2016: Defining the Smart City
Lightscene 2016: Defining the Smart City
 
Transforming Governments in the Cloud
Transforming Governments in the CloudTransforming Governments in the Cloud
Transforming Governments in the Cloud
 
Innovative Approaches for Smart City Development
Innovative Approaches for Smart City DevelopmentInnovative Approaches for Smart City Development
Innovative Approaches for Smart City Development
 
151116 smart city furniture trends
151116 smart city furniture trends151116 smart city furniture trends
151116 smart city furniture trends
 
Overcoming the cybersecurity challenges of smart cities
Overcoming the cybersecurity challenges of smart citiesOvercoming the cybersecurity challenges of smart cities
Overcoming the cybersecurity challenges of smart cities
 
Global City Teams Challenge Overview
Global City Teams Challenge OverviewGlobal City Teams Challenge Overview
Global City Teams Challenge Overview
 
Smart City Data Strategy
Smart City Data StrategySmart City Data Strategy
Smart City Data Strategy
 
Wireless city ecosystem
Wireless city ecosystemWireless city ecosystem
Wireless city ecosystem
 
Teppo Rantanen - Smart Citizen - Mindtrek 2016
Teppo Rantanen - Smart Citizen - Mindtrek 2016Teppo Rantanen - Smart Citizen - Mindtrek 2016
Teppo Rantanen - Smart Citizen - Mindtrek 2016
 
From AirBox to Smart City: where are we and what's next?
From AirBox to Smart City: where are we and what's next?From AirBox to Smart City: where are we and what's next?
From AirBox to Smart City: where are we and what's next?
 
mskanber-deloitte-nl-ps-smart-cities-report
mskanber-deloitte-nl-ps-smart-cities-reportmskanber-deloitte-nl-ps-smart-cities-report
mskanber-deloitte-nl-ps-smart-cities-report
 
'(Un)Plugging Smart City Transformations & Strategies in Europe' Maynooth Uni...
'(Un)Plugging Smart City Transformations & Strategies in Europe' Maynooth Uni...'(Un)Plugging Smart City Transformations & Strategies in Europe' Maynooth Uni...
'(Un)Plugging Smart City Transformations & Strategies in Europe' Maynooth Uni...
 
Understanding Smart Cities as Social Machines
Understanding Smart Cities as Social MachinesUnderstanding Smart Cities as Social Machines
Understanding Smart Cities as Social Machines
 
Conference Smart City for developing countries: Why ? and How to Start?
Conference Smart City for developing countries: Why ? and How to Start?Conference Smart City for developing countries: Why ? and How to Start?
Conference Smart City for developing countries: Why ? and How to Start?
 
Re-imagining Cities. Newmarket Economic Development Symposium
Re-imagining Cities. Newmarket Economic Development SymposiumRe-imagining Cities. Newmarket Economic Development Symposium
Re-imagining Cities. Newmarket Economic Development Symposium
 
Becoming A Smart City
Becoming A Smart CityBecoming A Smart City
Becoming A Smart City
 

Similaire à MESA- Cyber & Smart Cities - Updated

Abdul Kader Baba- Managing Cybersecurity Risks and Compliance Requirements i...
Abdul Kader Baba- Managing Cybersecurity Risks and Compliance Requirements i...Abdul Kader Baba- Managing Cybersecurity Risks and Compliance Requirements i...
Abdul Kader Baba- Managing Cybersecurity Risks and Compliance Requirements i...itnewsafrica
 
Smart Cities and Gigabit Networks: An Overview by Ruthbea Yesner Clarke
Smart Cities and Gigabit Networks: An Overview by Ruthbea Yesner ClarkeSmart Cities and Gigabit Networks: An Overview by Ruthbea Yesner Clarke
Smart Cities and Gigabit Networks: An Overview by Ruthbea Yesner ClarkeGigabit City Summit
 
SECON'2016. Семенченко Антон, Как тренды в Мобильной разработке и Интернете в...
SECON'2016. Семенченко Антон, Как тренды в Мобильной разработке и Интернете в...SECON'2016. Семенченко Антон, Как тренды в Мобильной разработке и Интернете в...
SECON'2016. Семенченко Антон, Как тренды в Мобильной разработке и Интернете в...SECON
 
Разработка и тестирование интернета вещей. Тренды индустрии
Разработка и тестирование интернета вещей. Тренды индустрииРазработка и тестирование интернета вещей. Тренды индустрии
Разработка и тестирование интернета вещей. Тренды индустрииcorehard_by
 
Smart cities and internet of things and integration
Smart cities and internet of things and integrationSmart cities and internet of things and integration
Smart cities and internet of things and integrationChandankumarJ
 
01 - Smart Gigabit Communities
01 - Smart Gigabit Communities01 - Smart Gigabit Communities
01 - Smart Gigabit CommunitiesUS-Ignite
 
2016/01/26 Glenn Ricart - Smart Gigabit Communities
2016/01/26 Glenn Ricart - Smart Gigabit Communities2016/01/26 Glenn Ricart - Smart Gigabit Communities
2016/01/26 Glenn Ricart - Smart Gigabit CommunitiesUS-Ignite
 
IoTs (internet of things)
IoTs (internet of things)IoTs (internet of things)
IoTs (internet of things)Asad .
 
Amazon project in MMS in the company product
Amazon project in MMS in the company productAmazon project in MMS in the company product
Amazon project in MMS in the company productkajalgupta221
 
Internet of Things Presentation to Los Angeles CTO Forum
Internet of Things Presentation to Los Angeles CTO ForumInternet of Things Presentation to Los Angeles CTO Forum
Internet of Things Presentation to Los Angeles CTO ForumFred Thiel
 
Technological innovations in facilities management
Technological innovations in facilities managementTechnological innovations in facilities management
Technological innovations in facilities managementssuserfa7375
 
Management of Data Communities
Management of Data CommunitiesManagement of Data Communities
Management of Data CommunitiesData Con LA
 
GK NU CS 101 Session 1B (1).ppt
GK NU CS 101 Session 1B (1).pptGK NU CS 101 Session 1B (1).ppt
GK NU CS 101 Session 1B (1).pptPiyushRanjan269184
 
Smart City, Internet de las cosas al servicio de los ciudadanos - Jorge Guerra
Smart City, Internet de las cosas al servicio de los ciudadanos - Jorge GuerraSmart City, Internet de las cosas al servicio de los ciudadanos - Jorge Guerra
Smart City, Internet de las cosas al servicio de los ciudadanos - Jorge GuerraLab San Isidro
 

Similaire à MESA- Cyber & Smart Cities - Updated (20)

2017 Industry of Things World USA, San Diego CA
2017 Industry of Things World USA, San Diego CA 2017 Industry of Things World USA, San Diego CA
2017 Industry of Things World USA, San Diego CA
 
Abdul Kader Baba- Managing Cybersecurity Risks and Compliance Requirements i...
Abdul Kader Baba- Managing Cybersecurity Risks and Compliance Requirements i...Abdul Kader Baba- Managing Cybersecurity Risks and Compliance Requirements i...
Abdul Kader Baba- Managing Cybersecurity Risks and Compliance Requirements i...
 
Smart Cities and Gigabit Networks: An Overview by Ruthbea Yesner Clarke
Smart Cities and Gigabit Networks: An Overview by Ruthbea Yesner ClarkeSmart Cities and Gigabit Networks: An Overview by Ruthbea Yesner Clarke
Smart Cities and Gigabit Networks: An Overview by Ruthbea Yesner Clarke
 
SECON'2016. Семенченко Антон, Как тренды в Мобильной разработке и Интернете в...
SECON'2016. Семенченко Антон, Как тренды в Мобильной разработке и Интернете в...SECON'2016. Семенченко Антон, Как тренды в Мобильной разработке и Интернете в...
SECON'2016. Семенченко Антон, Как тренды в Мобильной разработке и Интернете в...
 
Разработка и тестирование интернета вещей. Тренды индустрии
Разработка и тестирование интернета вещей. Тренды индустрииРазработка и тестирование интернета вещей. Тренды индустрии
Разработка и тестирование интернета вещей. Тренды индустрии
 
Smart cities and internet of things and integration
Smart cities and internet of things and integrationSmart cities and internet of things and integration
Smart cities and internet of things and integration
 
01 - Smart Gigabit Communities
01 - Smart Gigabit Communities01 - Smart Gigabit Communities
01 - Smart Gigabit Communities
 
2016/01/26 Glenn Ricart - Smart Gigabit Communities
2016/01/26 Glenn Ricart - Smart Gigabit Communities2016/01/26 Glenn Ricart - Smart Gigabit Communities
2016/01/26 Glenn Ricart - Smart Gigabit Communities
 
Smart cities
Smart citiesSmart cities
Smart cities
 
IoTs (internet of things)
IoTs (internet of things)IoTs (internet of things)
IoTs (internet of things)
 
Amazon project in MMS in the company product
Amazon project in MMS in the company productAmazon project in MMS in the company product
Amazon project in MMS in the company product
 
EENA2019: Track3 session2 Enabling agility in the PSAP and the wider response...
EENA2019: Track3 session2 Enabling agility in the PSAP and the wider response...EENA2019: Track3 session2 Enabling agility in the PSAP and the wider response...
EENA2019: Track3 session2 Enabling agility in the PSAP and the wider response...
 
Internet of Things Presentation to Los Angeles CTO Forum
Internet of Things Presentation to Los Angeles CTO ForumInternet of Things Presentation to Los Angeles CTO Forum
Internet of Things Presentation to Los Angeles CTO Forum
 
Technological innovations in facilities management
Technological innovations in facilities managementTechnological innovations in facilities management
Technological innovations in facilities management
 
SmartCity IOT Big Data SPP.pptx
SmartCity IOT Big Data SPP.pptxSmartCity IOT Big Data SPP.pptx
SmartCity IOT Big Data SPP.pptx
 
Management of Data Communities
Management of Data CommunitiesManagement of Data Communities
Management of Data Communities
 
GK NU CS 101 Session 1B (1).ppt
GK NU CS 101 Session 1B (1).pptGK NU CS 101 Session 1B (1).ppt
GK NU CS 101 Session 1B (1).ppt
 
Smart City, Internet de las cosas al servicio de los ciudadanos - Jorge Guerra
Smart City, Internet de las cosas al servicio de los ciudadanos - Jorge GuerraSmart City, Internet de las cosas al servicio de los ciudadanos - Jorge Guerra
Smart City, Internet de las cosas al servicio de los ciudadanos - Jorge Guerra
 
Utah Ignite Update Glen Ricart
Utah Ignite Update Glen RicartUtah Ignite Update Glen Ricart
Utah Ignite Update Glen Ricart
 
SensorsGST.pptx
SensorsGST.pptxSensorsGST.pptx
SensorsGST.pptx
 

MESA- Cyber & Smart Cities - Updated

  • 1. Cyber, an Evolving Ecosystem “How cyber is laying the groundwork for Smart Cities” Middle East Security Awards Dubai - 2016
  • 2. Background • Started with computers in early 1980’s as a teenager. • Served 20 years in US Navy working with computers and cyber security. (1986-2007) • Spent 6 years as a Federal Civil Servant for the US Navy as a CISO. • In 26 years I worked numerous positions: developer, network administrator, network engineer, security architect, security auditor and security forensic investigator. • Worked on and audited federal and military networks from all over the world. (architecture, security controls, policies) • Why this background is important – Cyber security in the Federal Government is totally different than private/municipal. • In 2013, I resigned from Federal service and accepted a position with the City of San Diego, California. • I had no idea what I was walking into or how it would fundamentally change my view on Cyber Security. Gary Hayslip, CISO
  • 3. San Diego Trivia • 11,000+ employee’s • 14,000+ desktops & laptops • 500+ tablets and mobile devices • 1000+ City issues cell phones • City has over 24 networks with an estimated 35,000+ endpoints. • Sensitive data types such as PII, PCI, HIPAA, & Financial • Installed technology ranges from 1980’s type hardware to state of the art cyber security analytics software. • Internet-of-Things (IoT) in large scale enterprise deployments • Average 1 million attacks on its networks per day City of San Diego by the Numbers
  • 4. Changing Mindset on viewing risk - longterm • Over 40 departments with different business requirements & needs. • Matching citizens expectations with reality. • Risk Management = Its all about the grey. • Environment is constantly changing • Collaboration or die Risk is everywhere
  • 5. Current Threats Threats - Hacktivism The City of San Diego has been attacked several times by Hacktivist groups over the last two years. The FBI reports attacks on municipalities has increased by 60% since 2013. XXXXXXXXXXXX XXX
  • 6. Challenges Legacy Infrastructure & Disparate Technologies • The City of San Diego expecting 49% growth in population between now and 2050. • Growth will impact municipal services such as water, power, transportation and employment opportunities. • IT infrastructure in constant use, municipal governments do not rotate technology like public traded organizations. • Technology changes for municipalities have intertwined “legacy” and “new” technologies.
  • 7. You need a plan To be effective, you need a plan
  • 8. Cyber, its alive! Cyber Security is a life-cycle https://app.box.com/Cyber-LifeCycle
  • 9. Building a Security Program Cyber – Ongoing Projects Daily Operations Network Behavior Analytics Data Governance Continuous Scanning, Remediation, Monitoring
  • 10. Understanding technology has risk Understanding our risk Application Valuation Components Total ValuationRevenue Asset Value Data Liability Business Tax $7,600,000 $850,000 $1,425,000 $9,875,000 Computer Aided Dispatch $0 $4,200,000 $1,425,000 $5,625,000 Landfill $43,000,000 $400,000 $1,425,000 $44,825,000 Permit Tracking System $65,000,000 $85,000 $36,000,000 $101,085,000 SAP $343,000,000 $32,250,000 $528,000 $375,778,000 • Business Tax 12.4 out of 20 • Computer Aided Dispatch 12.6 out of 20 • Landfill 12.5 out of 20 • Permit Tracking System 12.6 out of 20 • SAP 12.6 out of 20 SANS 20 Control Defensive Posture Business Applications SANS 20 Critical Controls SCS1 SCS2 SCS3 SCS4 SCS5 SCS6 SCS7 SCS8 SCS9 SCS10 SCS11 SCS12 SCS13 SCS14 SCS15 SCS16 SCS17 SCS18 SCS19 SCS20 Business Tax 0.4501 0.1959 0.388 0.6789 0.8724 0.7486 0.4927 0.625 0.5325 0.2 0.6875 0.8567 0.8464 0.6838 0.2125 0.9198 0.8575 1.0 0.7 0.4875 Computer Aided Dispatch 0.4501 0.3626 0.3875 0.6789 0.8724 0.7486 0.4927 0.625 0.5325 0.2 0.6875 0.8567 0.8464 0.6838 0.2125 0.9198 0.8575 1.0 0.7 0.4875 Landfill 0.4501 0.2876 0.3875 0.6789 0.8724 0.7486 0.4927 0.625 0.5325 0.2 0.6875 0.8567 0.8467 0.6838 0.2125 0.9198 0.8575 1.0 0.7 0.4875 Permit Tracking System 0.4501 0.3626 0.3875 0.6789 0.8724 0.7486 0.4927 0.625 0.5325 0.2 0.6875 0.8567 0.8464 0.6838 0.2125 0.9198 0.895 1.0 0.7 0.4875 SAP 0.4501 0.3626 0.3875 0.6789 0.8724 0.7486 0.4927 0.625 0.5325 0.2 0.6875 0.8567 0.8464 0.6838 0.2125 0.9198 0.8575 1.0 0.7 0.4875 Confidence levels (control weight * scaling factor) were asserted for controls that have been adopted and implemented by the City of San Diego.
  • 11. Risk Baseline Cyber – Establishing the Risk Baseline 5 100 Business Applications Analyzed Remaining Produced Summary Findings Total Overall Exposure $537,188,000 Severe Potential Loss $74,019,393 Average Potential Loss $3,963,707 Definitions: • Total Overall Exposure – the overall value of the cyber assets • Severe Potential Loss – the 5% Value At Risk • Average Potential Loss – most likely loss over the next 12 months
  • 12. What is to come So why is this important? • Increase in population in both the city and county of San Diego. • Increase in traffic & transportation costs • Limited amount of housing for population • Increased costs in infrastructure projects • Street repair • Fiber and new communication conduits • Upgrades to electrical and emergency service systems • Increase use of alternative energy technologies • Continued conservation of water and natural resources • Financial resources & planning required for capital improvement projects that will be used for decades.
  • 13. Why are we doing this? The Rise of Smart Cities • Smart Cities are high-density creators of rich data and new protocols. • Location information is a major enabler of Smart City technology benefits. • Benefits of smart technology must be judged by the services they provide to our citizens. • Reuse and repurpose is vital to urban resilience, smart data is needed to make this work efficiently. • Open standards are needed for interoperability, efficiency, application innovation and cost effectiveness. (ISO 37150, 37151 & 37120)
  • 14. Smart Cities will provide targeted services Smart City Services • Utilities - Smart Grid, Smart Water, Smart Waste etc. • Intelligent Buildings • Intelligent Transportation • Health • Public Safety and Security • Environmental Protection • Emergency Services • Education • Urban Planning • Open Data • Mobile Services
  • 15. Smart Cities will drive a new technology stack Smart City Infrastructure City Sensor Webs Sensor networks Crowdsourcing Phones, Wearables Sensing Layer Population Data Data Access Geospatial Data Data Layer Data Ingest and Quality Checking Other Data Enterprise Data Urban/Municipal Database Economic Data Analytics and Models Metadata Catalogs, Semantics Business Layer Visualization and Decision Support Health Application Layer Intelligent buildings Intelligent transportation Open data Environmental ProtectionPublic safety and security Urban planning UtilitiesEmergency Services EducationSanitation Cloudhostedresources SecuritySystem Elected Officials PublicMunicipal Employees
  • 16. What is the City of San Diego doing? San Diego’s Smart City Initiatives • Sempra Smart Grid • Google Fiber • Environmental sensors for runoff • Sensor/GPS for trash vehicles • Street sensors for intelligent parking • Intelligent Infrastructure • LED based street lights • HD Video sensors/traffic cams • Intelligent building (New library) • HVAC systems (43 libraries) • Port Authority sensor network around bay • City of San Diego Climate Action Plan – Smart City Hackathon • Sempra HQ building downtown • City of San Diego – solar panels • City of San Diego – EAM Project • New mapping of park spaces • Mapping of all City owned tree’s • Deployment of resilient emergency communications
  • 17. Concerns we must address Dark side to Smart City Initiatives • Increased complexity in municipal enterprise networks. • Cascading effect, simple issues can cause large impact on intertwined systems. • Patch deployments, system updates become troublesome with large disparate networks. • Lack of threat models to accurately predict the impact of Intelligent Infrastructure and risk on cities. New Attack Surfaces • Traffic Control Systems • Smart Street Lighting • City Management Systems • Sensors • Smart Grid • Public Safety Systems • Location Based Services • Public Transportation • Cameras / Video • Cloud/SaaS Solutions
  • 18. How Cyber will lead the way Cyber as a Service – leading the way • Need to understand what is important to organization • Data, Applications, Processes • Deploy a Cybersecurity Framework • Cyber Hygiene • Work with business units to implement security controls that don’t hinder • Continuously inventory, assess, monitor, scan and remediate • Understand your impact • Through innovation look for secure solutions to aide the business • SSO, 2FA • MDM • Cloud solution's • Data Governance • Resilient, modular, flexible architecture to be the norm • Security by design • Allow cities to be innovative & deploy smart city technologies securely **Based on research conducted by IOActive ICIT
  • 19. Department of I.T. – Cybersecurity Division Questions, Rants, Discussions? Gary Hayslip Deputy Director, Chief Information Security Officer ghayslip@sandiego.gov @ghayslip https://www.linkedin.com/in/ghayslip