• Home

  • Documents

  • Acquisitions: Your Latest Zero Day Presented by: Mitch Greenfield, CISA, CEH, LPT @ghctim Scott...
12
Acquisitions: Your Latest Zero Day Presented by: Mitch Greenfield, CISA, CEH, LPT @ghctim Scott MacArthur, CISSP, CISA, CEH, LPT 1

Acquisitions: Your Latest Zero Day Presented by: Mitch Greenfield, CISA, CEH, LPT @ghctim Scott MacArthur, CISSP, CISA, CEH, LPT 1

Embed Size (px)

Citation preview

Page 1: Acquisitions: Your Latest Zero Day Presented by: Mitch Greenfield, CISA, CEH, LPT @ghctim Scott MacArthur, CISSP, CISA, CEH, LPT 1

1

Acquisitions: Your Latest Zero Day

Presented by:Mitch Greenfield, CISA, CEH, LPT @ghctimScott MacArthur, CISSP, CISA, CEH, LPT

Page 2: Acquisitions: Your Latest Zero Day Presented by: Mitch Greenfield, CISA, CEH, LPT @ghctim Scott MacArthur, CISSP, CISA, CEH, LPT 1

2

Agenda

• Phases of the Review• Review Goals – Why are we doing this?• Minimum Necessary• Technical Testing• Interviewing• Reporting• Wrap-up• Integration• Compliance Risks• Value to the Business

Page 3: Acquisitions: Your Latest Zero Day Presented by: Mitch Greenfield, CISA, CEH, LPT @ghctim Scott MacArthur, CISSP, CISA, CEH, LPT 1

3

Goals for the Review

• Understand the risk• Articulate the risk(s) to the business• Develop an integration strategy– Technologies– Process– People– Timeline (Integration speed vs. Risk)

• Understanding compliance with regulating bodies (PCI, SOX, HIPAA, etc.)

Page 4: Acquisitions: Your Latest Zero Day Presented by: Mitch Greenfield, CISA, CEH, LPT @ghctim Scott MacArthur, CISSP, CISA, CEH, LPT 1

4

Phases of the Review

• Pre-close / diligence (quiet period)– Who is “under the tent”– Diligence Trip(s)– Budgeting– Planning for day/week 1– Pre-assessment requirements (network diagrams, org charts, interview targets,

etc.)– Communication Strategy

• Post-Close– Week 1– Month 1– Integration

Page 5: Acquisitions: Your Latest Zero Day Presented by: Mitch Greenfield, CISA, CEH, LPT @ghctim Scott MacArthur, CISSP, CISA, CEH, LPT 1

5

Minimum Necessary

• Phases – week 1, month 1, everything else• Separate but equal• Moving to common security technology platforms• When is it appropriate to start opening connections• What is acceptable risk• Communication Strategy• Our Experience

Page 6: Acquisitions: Your Latest Zero Day Presented by: Mitch Greenfield, CISA, CEH, LPT @ghctim Scott MacArthur, CISSP, CISA, CEH, LPT 1

6

Technical Testing

• Goals• Scoping / When is it enough?• Value of the data• QA vs. Production• Network / OS vulnerability Scanning• Databases• Websites• Communication Strategy• Our Experience

Page 7: Acquisitions: Your Latest Zero Day Presented by: Mitch Greenfield, CISA, CEH, LPT @ghctim Scott MacArthur, CISSP, CISA, CEH, LPT 1

7

Interviewing

• Audit programs• Are all acquisitions treated equally? Payer / Provider / Tire store• Audit.net• CSF• OCR• CoBIT• Auditing against your own internal security framework• Communication Strategy• Our Experience

Page 8: Acquisitions: Your Latest Zero Day Presented by: Mitch Greenfield, CISA, CEH, LPT @ghctim Scott MacArthur, CISSP, CISA, CEH, LPT 1

8

Reporting

• Report writing• Peer review• Audience• Tracking issues• Risk Acceptance• Communication Strategy• Our Experience

Page 9: Acquisitions: Your Latest Zero Day Presented by: Mitch Greenfield, CISA, CEH, LPT @ghctim Scott MacArthur, CISSP, CISA, CEH, LPT 1

9

Integration

• Risks of integration• Risks of not integrating• Costs associated with both• Process integration• Value of an integrated security program• Communication Strategy• Our Experience

Page 10: Acquisitions: Your Latest Zero Day Presented by: Mitch Greenfield, CISA, CEH, LPT @ghctim Scott MacArthur, CISSP, CISA, CEH, LPT 1

10

Compliance Risks

• PCI – When should a QSA be used for a pre-audit• HIPAA – OCR audit protocol• SOX – Internal Audit to perform a review• Our Experience

Page 11: Acquisitions: Your Latest Zero Day Presented by: Mitch Greenfield, CISA, CEH, LPT @ghctim Scott MacArthur, CISSP, CISA, CEH, LPT 1

11

Value to the business

• Understanding risk• Understanding costs associated with integration

Page 12: Acquisitions: Your Latest Zero Day Presented by: Mitch Greenfield, CISA, CEH, LPT @ghctim Scott MacArthur, CISSP, CISA, CEH, LPT 1

12

Questions

http://www.google.com/url?sa=i&rct=j&q=questions+comments&source=images&cd=&cad=rja&docid=uLgAupHBR6FvYM&tbnid=X_SSFXdzALC7IM:&ved=0CAUQjRw&url=http://www.mrmediatraining.com/2011/02/07/should-you-ask-reporters-for-the-questions/&ei=UPTvUdS7Lq38yAG1nYCQBQ&bvm=bv.49641647,d.aWc&psig=AFQjCNFR-a4BkVKYLalSZmPOEZYBtP3M0A&ust=1374766530848522

CEH Exam 312-50 - CEH v8

CEH Exam 312-50 - CEH v8

Documents
CISSP Boot Camp Training, Lagos, · PDF fileLET US GUIDE YOU, WE WILL ... GIAC. GCIA, CEH, ECSA, LPT, ECT, EDRP, ENSA, EEBS, ... Awesome Instructor! The best instructor I

CISSP Boot Camp Training, Lagos, · PDF fileLET US GUIDE YOU, WE WILL ... GIAC. GCIA, CEH, ECSA, LPT, ECT, EDRP, ENSA, EEBS, ... Awesome Instructor! The best instructor I

Documents
laporan LPT

laporan LPT

Documents
Practical LPT

Practical LPT

Documents
Programar LPT

Programar LPT

Documents
#EthicalHackx CEH v9 EthicalHackx · 2018-05-01 · #EthicalHackx CEH v9 EthicalHackx.com #EthicalHackx CEH v9 EthicalHackx.com

#EthicalHackx CEH v9 EthicalHackx · 2018-05-01 · #EthicalHackx CEH v9 EthicalHackx.com #EthicalHackx CEH v9 EthicalHackx.com

Documents
Digital Forensics on Future HK Infrastructure INFORMATION SECURITY AND FORENSICS SOCIETY Digital Forensics on Future HK Infrastructure Ricci IEONG, CISSP, CISA, CEH, F.ISFS, ISSAP,

Digital Forensics on Future HK Infrastructure INFORMATION SECURITY AND FORENSICS SOCIETY Digital Forensics on Future HK Infrastructure Ricci IEONG, CISSP, CISA, CEH, F.ISFS, ISSAP,

Documents
CEH, CISA, CISSP - nik-nbg.de · 4 Die 8 Kostbarkeiten des Datenschutzes Einordnung Datenschutz in das Umfeld o Oberstes Ziel des Datenschutzes: o Grundrechtsschutz für EU Bürger

CEH, CISA, CISSP - nik-nbg.de · 4 Die 8 Kostbarkeiten des Datenschutzes Einordnung Datenschutz in das Umfeld o Oberstes Ziel des Datenschutzes: o Grundrechtsschutz für EU Bürger

Documents
Lpt Presentation

Lpt Presentation

Documents
CISA Dumps Isaca CISA - vcecollection.net

CISA Dumps Isaca CISA - vcecollection.net

Documents
PowerPoint Presentation - · PDF fileAll validation assessments should be driven by Data Classification Define 3-4 classes of data, ... CISSP, CISM, CEH, CISA, CGEIT, IS027001, CSSGB,

PowerPoint Presentation - · PDF fileAll validation assessments should be driven by Data Classification Define 3-4 classes of data, ... CISSP, CISM, CEH, CISA, CGEIT, IS027001, CSSGB,

Documents
Software Development Security in Complex IT Environments Csaba Krasznay CISA, CISM, CISSP, CEH Hewlett-Packard Hungary

Software Development Security in Complex IT Environments Csaba Krasznay CISA, CISM, CISSP, CEH Hewlett-Packard Hungary

Documents
Secure Deployment of a Web Hosted Application within a Cloud Computing Environment Mike Badeaux, CISSP-ISSMP, CISA, CEH Director of Service Operations

Secure Deployment of a Web Hosted Application within a Cloud Computing Environment Mike Badeaux, CISSP-ISSMP, CISA, CEH Director of Service Operations

Documents
WhoamI Network profiling based on HTML tags injection Dr. Alfonso Muñoz Senior Cyber Security Researcher (Co)Editor Criptored, CISA, CEH… alfonso.munoz@11paths.com

WhoamI Network profiling based on HTML tags injection Dr. Alfonso Muñoz Senior Cyber Security Researcher (Co)Editor Criptored, CISA, CEH… [email protected]

Documents
CEH v7 and CEH v6.1 Exam Objectives Comparison

CEH v7 and CEH v6.1 Exam Objectives Comparison

Documents
CEH Ver.7 and ECSA LPT

CEH Ver.7 and ECSA LPT

Technology
Information Warfare Center’s Cyber Intelligence Report (CIR)informationwarfarecenter.com/cir/archived/pre/IWC... · Author: Jeremy Martin, CISSP-ISSMP/ISSAP, CISM, CEH/LPT/CHFI,

Information Warfare Center’s Cyber Intelligence Report (CIR)informationwarfarecenter.com/cir/archived/pre/IWC... · Author: Jeremy Martin, CISSP-ISSMP/ISSAP, CISM, CEH/LPT/CHFI,

Documents
LPT Report

LPT Report

Documents
Maintaining privacy with HPE ArcSight - Hewlett … privacy with HPE ArcSight Petr Hněvkovský, CISSP, CISM, CISA, CEH Senior Solution Architect, EMEA Nov, 2016 Forward-looking statements

Maintaining privacy with HPE ArcSight - Hewlett … privacy with HPE ArcSight Petr Hněvkovský, CISSP, CISM, CISA, CEH Senior Solution Architect, EMEA Nov, 2016 Forward-looking statements

Documents
EC-Council · Essential Security Courses: (e.g. CSCU) Professional Security Courses: (e.g. ECSA/CEH/LPT/CHFI/ESP) e-Business Course (e.g. CIMP/CDM/CPMP)

EC-Council · Essential Security Courses: (e.g. CSCU) Professional Security Courses: (e.g. ECSA/CEH/LPT/CHFI/ESP) e-Business Course (e.g. CIMP/CDM/CPMP)

Documents
Partly Cloudy - WGFOA...Partly Cloudy: How cloud technologies change your own IT landscape. Synercomm, Inc. Jeffrey T. Lemmermann, CPA, CITP, CISA, CEH Jeffrey.Lemmermann@SynerComm.com

Partly Cloudy - WGFOA...Partly Cloudy: How cloud technologies change your own IT landscape. Synercomm, Inc. Jeffrey T. Lemmermann, CPA, CITP, CISA, CEH [email protected]

Documents
Cyber Threat Hunting - TacticalEdge · • LPT, CEI, ECSA, CEH, CHFI, ECIH, EDRP • Red Hat : • RHC{SA,E} ex Instructor/Examinador •Miembro: • OWASP –Open Web Application

Cyber Threat Hunting - TacticalEdge · • LPT, CEI, ECSA, CEH, CHFI, ECIH, EDRP • Red Hat : • RHC{SA,E} ex Instructor/Examinador •Miembro: • OWASP –Open Web Application

Documents
Cisco + SourceFire: Threat-Centric Live 2015 Melbourne/Cisco Live...#clmel Cisco + SourceFire: Threat-Centric Security Approach BRKSEC-2061 Jatin Sachdeva (CISSP, CISA, CEH, GWAPT,

Cisco + SourceFire: Threat-Centric Live 2015 Melbourne/Cisco Live...#clmel Cisco + SourceFire: Threat-Centric Security Approach BRKSEC-2061 Jatin Sachdeva (CISSP, CISA, CEH, GWAPT,

Documents
I. Alvarez-Hamelin (LPT, France) L. Dall’Asta (LPT, France)

I. Alvarez-Hamelin (LPT, France) L. Dall’Asta (LPT, France)

Documents
Web Application Assesments: Reconnaisance and Profiling · 2011-12-11 · OWASP 2 About the instructor Vicente Aguilera Díaz CISA, CISSP, ITIL, CEH Instructor, OPST, OPSA Co-founder

Web Application Assesments: Reconnaisance and Profiling · 2011-12-11 · OWASP 2 About the instructor Vicente Aguilera Díaz CISA, CISSP, ITIL, CEH Instructor, OPST, OPSA Co-founder

Documents
New career path - CEH,CHFI, ECSA, LPT, ENSA, ECSP, · PDF fileENSA N5 CSCU Master of Security ... Certified Ethical Hacker EC-Council Network Security Administrator Network5 Certified

New career path - CEH,CHFI, ECSA, LPT, ENSA, ECSP, · PDF fileENSA N5 CSCU Master of Security ... Certified Ethical Hacker EC-Council Network Security Administrator Network5 Certified

Documents
CISA, CISA Training, CISA Certification Training

CISA, CISA Training, CISA Certification Training

Education
Digital Forensics on Future HK Infrastructure · Digital Forensics on Future HK Infrastructure Ricci IEONG, CISSP, CISA, CEH, F.ISFS, ISSAP, ISSMP, Secretary of Information Security

Digital Forensics on Future HK Infrastructure · Digital Forensics on Future HK Infrastructure Ricci IEONG, CISSP, CISA, CEH, F.ISFS, ISSAP, ISSMP, Secretary of Information Security

Documents
Reali9es%of%Being%PCICompliant - SF ISACA CGEIT CISM 2013%Fall%Conference%–“Sail%to%Success”% CISA Reali9es%of%Being%PCICompliant Miguel%(Mike)%O.%Villegas% CISA,%CISSP,%GSEC,%CEH,%QSA,%PAMQSA,%ASV%

Reali9es%of%Being%PCICompliant - SF ISACA CGEIT CISM 2013%Fall%Conference%–“Sail%to%Success”% CISA Reali9es%of%Being%PCICompliant Miguel%(Mike)%O.%Villegas% CISA,%CISSP,%GSEC,%CEH,%QSA,%PAMQSA,%ASV%

Documents
 · CISSP CEH CISA LPT CPT CEPT CWAPT CHFI CREA OSCP CYBERSECURITY SERVICES Vulnerability Management End-Point Security Insider Threat Mitigation Cyber Incident Response Information

 · CISSP CEH CISA LPT CPT CEPT CWAPT CHFI CREA OSCP CYBERSECURITY SERVICES Vulnerability Management End-Point Security Insider Threat Mitigation Cyber Incident Response Information

Documents