• Home

  • Documents

  • Interim IT Committee NDUS IT Security Update appendices/17... · 2016. 8. 8. · • Problems/Risks...
14
Interim IT Committee NDUS IT Security Update Darin King NDUS Deputy CIO

Interim IT Committee NDUS IT Security Update appendices/17... · 2016. 8. 8. · • Problems/Risks • 95% of breaches involve the exploitation of stolen credentials (2015 Verizon

  • Upload
    others

  • View
    1

  • Download
    0

Embed Size (px)

Citation preview

Page 1: Interim IT Committee NDUS IT Security Update appendices/17... · 2016. 8. 8. · • Problems/Risks • 95% of breaches involve the exploitation of stolen credentials (2015 Verizon

Interim IT CommitteeNDUS IT Security Update

Darin KingNDUS Deputy CIO

jjblasy
Text Box
APPENDIX F
Page 2: Interim IT Committee NDUS IT Security Update appendices/17... · 2016. 8. 8. · • Problems/Risks • 95% of breaches involve the exploitation of stolen credentials (2015 Verizon

Information Security

Page 3: Interim IT Committee NDUS IT Security Update appendices/17... · 2016. 8. 8. · • Problems/Risks • 95% of breaches involve the exploitation of stolen credentials (2015 Verizon

Information Security

NIST Cybersecurity Framework Core

Page 4: Interim IT Committee NDUS IT Security Update appendices/17... · 2016. 8. 8. · • Problems/Risks • 95% of breaches involve the exploitation of stolen credentials (2015 Verizon

Information Security

• NDUS Information Security Council (ISC)

• CTS Information Security Group (ISG)

Page 5: Interim IT Committee NDUS IT Security Update appendices/17... · 2016. 8. 8. · • Problems/Risks • 95% of breaches involve the exploitation of stolen credentials (2015 Verizon

Information Security

• Problems/Risks• Old outdated policy and standards• Need a data classification standard as a foundation for protection• No consistent understanding, implementation, and enforcement of policies and standards

• Benefits• Clear security baselines for all member institutions• Standards-based foundation to measure compliance and results• Consistent application of security controls based on data classification and system criticality

Page 6: Interim IT Committee NDUS IT Security Update appendices/17... · 2016. 8. 8. · • Problems/Risks • 95% of breaches involve the exploitation of stolen credentials (2015 Verizon

InformationSecurity

Past Policy Framework

1901.2 Computer and

Network Usage

NDUS Data Classification and

IT Security Standards

NDUS Network IT Security Standard

NDUS Server IT Security Standard

NDUS Physical IT Security Standard

Future Policy Framework

1900 - Miscellaneous

1200 - Information Technology

1202 - Information Security Policy

1203 - Information Security Standards1202.1

Acceptable Use Policy

1202.2 Data

Classification and IT

Security Policy

1202.3 Data

Privacy Policy

1203.1 Network Security Standard

1203.2 Server

Security Standard

1203.3 Physical Security Standard

1203.4 Desktop Security Standard

1203.5 Incident

Response Standard

1203.6 Disaster

Recovery Standard

1203.x Log

Management Standard

1203.x Mobile Device

Standard

1203.x Password Security Standard

1203.x Authentication

Standard

1203.x Data

Disposal Standard

1203.x Data

Encryption Standard

1203 - Information Security Standards - Additional Future

June 2015March 2016

Apr 2016

June 2016

Aug 2016 Oct 2016 Nov 2016 Jan 2017 Mar 2017

Information Security Policy Framework

Page 7: Interim IT Committee NDUS IT Security Update appendices/17... · 2016. 8. 8. · • Problems/Risks • 95% of breaches involve the exploitation of stolen credentials (2015 Verizon

Information Security

Page 8: Interim IT Committee NDUS IT Security Update appendices/17... · 2016. 8. 8. · • Problems/Risks • 95% of breaches involve the exploitation of stolen credentials (2015 Verizon

Information Security

Page 9: Interim IT Committee NDUS IT Security Update appendices/17... · 2016. 8. 8. · • Problems/Risks • 95% of breaches involve the exploitation of stolen credentials (2015 Verizon

Information Security

• Problems/Risks• 95% of breaches involve the exploitation of stolen credentials (2015 Verizon DBIR)

• Solution• NDUS is implementing a system-wide Multi-factor authentication solution• Already protecting over 10 services and expanding to campuses and Campus Solutions (PeopleSoft)

• Benefits• Reduces the risk of compromised NDUS credentials being used to gain unauthorized access to

critical systems and data• Provides a notification mechanism for compromised credentials

Page 10: Interim IT Committee NDUS IT Security Update appendices/17... · 2016. 8. 8. · • Problems/Risks • 95% of breaches involve the exploitation of stolen credentials (2015 Verizon

Information Security

Problems/Risks• Many of the threats we face involve our endpoints (computers, laptops,

servers) – phishing, malware, web browsing attacks, malicious emailSolution

• Need to implement advanced endpoint protection capabilities• An Endpoint Protection RFP and Procurement process is underway

Benefits• Reduces the risk of compromised NDUS credentials being used to gain

unauthorized access to critical systems and data• Provides a notification mechanism for compromised credentials

Page 11: Interim IT Committee NDUS IT Security Update appendices/17... · 2016. 8. 8. · • Problems/Risks • 95% of breaches involve the exploitation of stolen credentials (2015 Verizon

Information Security

Problems/Risks• Protection of systems is not just a technical challenge – it relies on knowledge and action of the people

within our organization.• Without proper training and awareness, faculty and staff become targets and not part of the solution.

Solution• Create a security training and awareness program• A security awareness training program was procured and is currently being used in CTS and three

campusesBenefits

• Make individuals aware that the data on their computers is valuable and vulnerable• Empower individuals with the knowledge to be the first, and last, line of defense against security threats

for protecting their systems and data

Page 12: Interim IT Committee NDUS IT Security Update appendices/17... · 2016. 8. 8. · • Problems/Risks • 95% of breaches involve the exploitation of stolen credentials (2015 Verizon

Information Security

Problems/Risks• All systems and applications are affected by vulnerabilities that are

used by attackers to breach our environmentSolution

• Currently have deployed a system-wide vulnerability management system

Benefits• Allows for the quick remediation of vulnerabilities on critical systems,

network devices, and applications

Page 13: Interim IT Committee NDUS IT Security Update appendices/17... · 2016. 8. 8. · • Problems/Risks • 95% of breaches involve the exploitation of stolen credentials (2015 Verizon

Information Security

Problems/Risks• Systems generate a large amount of log data that can be collected and

analyzed to help identify, prevent, detect and recover from an attack.Solution

• Currently deploying a log management system to centrally collect logs within the NDUS data center

Benefits• Protects critical system logs from unauthorized access and modification• Provides a mechanism for log and event correlation to prevent, detect, and

respond to a security incident

Page 14: Interim IT Committee NDUS IT Security Update appendices/17... · 2016. 8. 8. · • Problems/Risks • 95% of breaches involve the exploitation of stolen credentials (2015 Verizon

Information Security

• Ongoing Process• Policy/Standards/Procedures

• Annual Strategic Planning Summit

• July 2017


Pirate Fishing – Stolen Fish, Stolen Futures

Pirate Fishing – Stolen Fish, Stolen Futures

Documents
NDUS Emails

NDUS Emails

Documents
Rize Cybersecurity and...In 2019, the sector with the highest cost per stolen record in data breaches was healthcare, which had a cost of 429 U.S. dollars per stolen record due to

Rize Cybersecurity and...In 2019, the sector with the highest cost per stolen record in data breaches was healthcare, which had a cost of 429 U.S. dollars per stolen record due to

Documents
NDUS BG: Budgeting - North Dakota University Systemcts.ndus.edu/wp-content/uploads/2012/06/NDUS-BG_Budget... · Web viewNDUS BG: Budgeting Training Guide NDUS BG: Budgeting Page ii

NDUS BG: Budgeting - North Dakota University Systemcts.ndus.edu/wp-content/uploads/2012/06/NDUS-BG_Budget... · Web viewNDUS BG: Budgeting Training Guide NDUS BG: Budgeting Page ii

Documents
NDUS Audit Report

NDUS Audit Report

Documents
NDUS Salaries Over $100K 06.11

NDUS Salaries Over $100K 06.11

Documents
Stolen Hopes - Stolen Dreams - buckrail.com

Stolen Hopes - Stolen Dreams - buckrail.com

Documents
OCR Audits, Data Breaches, and Cybersecurity Threats ... · terminate access rights and review system access logs (PHI stolen by employees) • Children’s Medical Center of Dallas

OCR Audits, Data Breaches, and Cybersecurity Threats ... · terminate access rights and review system access logs (PHI stolen by employees) • Children’s Medical Center of Dallas

Documents
Victims of ID theft suffer much anguish Nearly a billion personnel records were stolen in 2014 20 data breaches exposed one million records apiece PII

Victims of ID theft suffer much anguish Nearly a billion personnel records were stolen in 2014 20 data breaches exposed one million records apiece PII

Documents
NDUS Tuition Waivers Audit

NDUS Tuition Waivers Audit

Documents
APT Protection Via Data-Centric Security · Global Compliance, Cloud Adoption, Big Data, Data Breaches CLOUD ADOPTION Enterprise Security #1 Inhibitor1 APTs DATA BREACHES 98% Stolen

APT Protection Via Data-Centric Security · Global Compliance, Cloud Adoption, Big Data, Data Breaches CLOUD ADOPTION Enterprise Security #1 Inhibitor1 APTs DATA BREACHES 98% Stolen

Documents
ConnectND NDUS Financials Update ______________________________________________________________________ 3-4-04

ConnectND NDUS Financials Update ______________________________________________________________________ 3-4-04

Documents
NDUS President Evaluations

NDUS President Evaluations

Documents
NDUS Institution Questionnaire Answers

NDUS Institution Questionnaire Answers

Documents
Commitment Accounting - NDUS SITS - North Dakota University

Commitment Accounting - NDUS SITS - North Dakota University

Documents
1 4, , , 7 1 7 6 1 8 28 6 - thomsonreuters.com.sg · DATA RECORDS LOST OR STOLEN SINCE 2013 Only 4% of breaches were “secure breaches” where encryption was used and the stolen

1 4, , , 7 1 7 6 1 8 28 6 - thomsonreuters.com.sg · DATA RECORDS LOST OR STOLEN SINCE 2013 Only 4% of breaches were “secure breaches” where encryption was used and the stolen

Documents
(Slides) An Ounce of Prevention Is Worth $5.9M: How to use Symantec Unified Security to prevent data breaches due to lost or stolen devices

(Slides) An Ounce of Prevention Is Worth $5.9M: How to use Symantec Unified Security to prevent data breaches due to lost or stolen devices

Technology
NDUS Consider Your Options

NDUS Consider Your Options

Documents
Moving from Reactive to Proactive Securitysfisaca.org/images/FC14Presentations/S11.pdfMost Breaches Involve Stolen Credentials. 5. Verizon Breach Report 2012. 2014 Fall Conference

Moving from Reactive to Proactive Securitysfisaca.org/images/FC14Presentations/S11.pdfMost Breaches Involve Stolen Credentials. 5. Verizon Breach Report 2012. 2014 Fall Conference

Documents
WHITE PAPER How to Augment Security Operations Centers ... · •ime is the most important factor in detecting network breaches. T To protect key assets from being stolen or damaged,

WHITE PAPER How to Augment Security Operations Centers ... · •ime is the most important factor in detecting network breaches. T To protect key assets from being stolen or damaged,

Documents
Credential Management (CREDMGMT) Overview · Why We Need CREDMGMT Over 60% of confirmed data breaches involved weak, default, or stolen passwords. The use of stolen credentials targeting

Credential Management (CREDMGMT) Overview · Why We Need CREDMGMT Over 60% of confirmed data breaches involved weak, default, or stolen passwords. The use of stolen credentials targeting

Documents
Machine Learning for Cyber Security Dr. Chris Nicol Chief ... · Anomaly Based Detection •60% of breaches, data is stolen within hours†. •85% of breaches are not detected for

Machine Learning for Cyber Security Dr. Chris Nicol Chief ... · Anomaly Based Detection •60% of breaches, data is stolen within hours†. •85% of breaches are not detected for

Documents
NDUS Performance Audits

NDUS Performance Audits

Documents
Fund/Department Combinations Sorted by Department minus ......0352 ODIN CASH_BUD 30950 NDUS CIO 0400 NDUS CIO FUND_BUD 85240 NDUS CIO Local 0400 NDUS CIO CASH_BUD 18106 Minard Collapse-legal

Fund/Department Combinations Sorted by Department minus ......0352 ODIN CASH_BUD 30950 NDUS CIO 0400 NDUS CIO FUND_BUD 85240 NDUS CIO Local 0400 NDUS CIO CASH_BUD 18106 Minard Collapse-legal

Documents
Stolen Land, Stolen Furture: Honduras and Cambodia

Stolen Land, Stolen Furture: Honduras and Cambodia

Documents
Redacted NDUS Special Report

Redacted NDUS Special Report

Documents
(Video) An Ounce of Prevention Is Worth $5.9M: How to use Symantec Unified Security to prevent data breaches due to lost or stolen devices

(Video) An Ounce of Prevention Is Worth $5.9M: How to use Symantec Unified Security to prevent data breaches due to lost or stolen devices

Technology
FJWG TCGJ WS20171120final - Trusted Computing Group...Data breaches in 2016 that involved weak, default, or stolen passwords1 Increase in phishing attacks over the number of attacks

FJWG TCGJ WS20171120final - Trusted Computing Group...Data breaches in 2016 that involved weak, default, or stolen passwords1 Increase in phishing attacks over the number of attacks

Documents
NDUS University President Contracts

NDUS University President Contracts

Documents
How to Win in the Digital Era - INNOVIX SYMPOSIUM 2017 · aggregating customer data across channels ... Hack-related breaches use either stolen/weak password in 2017. 1. ... improvement

How to Win in the Digital Era - INNOVIX SYMPOSIUM 2017 · aggregating customer data across channels ... Hack-related breaches use either stolen/weak password in 2017. 1. ... improvement

Documents