This document outlines an information security workshop about protecting clients' assets and brand reputation. It discusses common fallacies around information security, important IT security components like user education and firewalls. It also covers common threats like malware, hacking, and social engineering. The document provides guidance on steps individuals can take to improve security like using strong passwords, backing up data regularly, and being aware of physical security. It stresses the importance of antivirus software, keeping systems patched, and protecting sensitive data.
2. Protecting Clients’ Assets and Brand Reputation
Fallacies of Information Security
•
•
•
•
•
We have anti-virus software, so we are secure
We have a firewall, we are secure
The most serious threats come from outside
Security? I backup!
It is IT Security’s problem
3. Protecting Clients’ Assets and Brand Reputation
IT Security Components
•
•
•
•
•
•
Users cooperation and compliance
Antivirus
Patching
Education
Intrusion Detection
Firewalls
4. Protecting Clients’ Assets and Brand Reputation
The Threats
•
•
•
•
•
•
•
Malware, worms, trojans, spyware
Hacking and network scanning
Not Patching
Social Engineering
Chat and IM
Weak passwords
Unawareness
5. Protecting Clients’ Assets and Brand Reputation
What can you do?
•
•
•
•
•
•
•
Report incidents to your security officers
Use strong passwords
Email use and security
Backup regularly
Internet security
Mobile Devices
Physical Security
6. Protecting Clients’ Assets and Brand Reputation
•
•
•
•
•
•
•
Use up to date antivirus software
Use your locks, both physical and software
Don’t use P2P file sharing software
Don’t reveal confidential information
Patch OS and Applications
Use firewalls
Don’t tell passwords
7. Protecting Clients’ Assets and Brand Reputation
•
•
•
•
•
•
Safe computing
Add-ones to internet browsers
Add-ons to email clients
Aftermarket screensavers
IMsoftware
If you have been compromised
change ALL your passwords.
8. Protecting Clients’ Assets and Brand Reputation
Antivirus Policy
• All networked machines must run some form
of Anti Virus
• Infected computers will be removed from the
network until cleaned
• What about at home?
10. Protecting Clients’ Assets and Brand Reputation
Data Security
• Data and You – Protection of sensitive data
• Identity Theft & Phishing – Don’t be a victim
• Physical Security
11. Protecting Clients’ Assets and Brand Reputation
Ways to protect yourself at home
•
•
•
•
•
•
•
•
•
•
•
WiFi Security
Antivirus
Backup!
Passwords
Bank & Credit Card data
Firewall
Patching
OS Patches
Instant Messaging
Email
Encryption
12. Problems, Questions and Solutions
Protecting Clients’ Assets and Brand Reputation
• Call the Hedgehog Security team on
– 01782 467900
13. Protecting Clients’ Assets and Brand Reputation
Links
• Information Security
• Penetration Testing
• Your Infosec Team