BT Assure. Security that matters

Rethink the risk

Your data is everywhere!

Growth of mobile data and devices, BYOD, consumerisation of IT,and use of social media in work impacting security policy and strategy

The traditional, single outer perimeter doesn’t exist anymore

Shift to cloud; >50% of Global 1000 businesses will have customer data in cloud by 2016

Old thinking was that you had to control the whole information supply. New thinking is toaccept you can’t control the device or the public network, but you can control the gateways and the policy

Risks to business are moving too fast for reactive security systems

Move from reaction to proactive planning, to enable the organisationto grow, safely

What trends are we facing?

Rethink the risk: our latest research

• Mobile device security is single biggest concern for 74% of IT Directors & Execs

• 33% of employees see no risk in BYOD, yet only 10% of IT Directors agree with them

• 68% of IT Directors believe data leakage (due to theft or loss) is the greatest threat

• 67% of IT Directors believe tighter controls on networks, processes, and equipment will reduce the risk of mobility and cloud transformation projects

We surveyed 2,000 users and managers across 11 countries to compare their views oncyber security threats, data loss, and the use of personal devices on corporate networks:

“Security exists to facilitate trust. Trust isthe goal and security is

how we enable it.”Bruce Schneier, BT Chief

Security Technology Officer

The information supply chain: security across the ecosystem

Managed FirewallIntrusion Prevention

Global UTMMessage ScanDoS Mitigation

Cyber

Secure Web

Mobile Device Management

Log Retention

Threat Monitoring

Security Analytics

Vulnerability Scanning

eValuator

Public Key Infrastructure

Voice Continuity

IT & Workplace Recovery

Authentication Management

Fraud Reduction

The BT Assure capabilities

New

Enhanced

Established

Managed FirewallIntrusion Prevention

Global UTMMessage Scan

DDoS MitigationCyber

Secure Web

Mobile Device Management

Log Retention

Threat Monitoring

Security Analytics

Vulnerability Scanning

eValuator

Public Key Infrastructure

Voice Continuity

IT & Workplace Recovery

Authentication Management

Fraud Reduction

What's new on our journey to rethink the risk?

Mobile Device Management

Assure Secure Web

Offers a uniform web access policy for all remote devices, with one single, centralised and instantly updatable view, global reporting, and role-based control

Secures, monitors, manages and supports company-owned and employee-owned devices

Assure Cyber

Assure HostedSecurity Services

Assure GlobalUTM

Offers secure network gateways for web traffic, firewalls and intrusion prevention – in a way that suits them best.

Managed Security Service offering cloud and virtual deployment options, bundled Assure Threat Monitoring, and enterprise features at all price points

Government-grade security infrastructure combining integrated technology, process, cloud infrastructure, BT governance & oversight

Assure Analytics

Assure eValuator

Highlight the warning signs you need to know today, but can’t find on your own amongst vast amounts of security data.

Assess your state of security readiness across a full range of essential performance criteria, and prioritise your 24 month plans in response

Supported BT Advise Quick

Starts -

Advise Devices QS

Ethical Hacking QS

Cyber Defence QS

Secure Networking

QS

Business Continuity

QS

Cloud Solutions – rethinking howyou do business to bring you flexibility

• Assure Cyber

‒ Fully-integrated platforms that work together and under the watchful eye of BT’s security leadership

• Cyber Defence Quick Start

‒ Testing and modeling, adapted to the particular needs of government and public sector organisations

• Assure Hosted Security Services

‒ More deployment options for classic managed security services; accommodate next-gen extranets

• Assure Global UTM

‒ One-box solution, whether cloud, virtual, or on premises, with threat monitoring & correlation built in.

BYOD – rethinking your security strategyto deal with this phenomenon

• Assure Secure Web

‒ Immediate response to policy updates, no latency and no touching of endpoints required

• Mobile Device Management

‒ Enforce on-device security and usage policies, including remote reset, lock & wipe

• Advise Devices Quick Start

‒ Prepare for the strategic introduction of smart devices. Minimise the risks of BYOD.

Analytics – scrutinising the unthinkableso you don’t have to

• Assure Threat Monitoring & Analytics

‒ Find essential warning signs before they become big problems, improve internal governance, investigate huge data sets quickly and without knowing what to look for in advance

• Assure eValuator

‒ Learn the strengths and weaknesses of your current security posture and validate plans for the next 24 months

• Ethical Hacking Quick Start

‒ Learn the real state of your defences and how to protect against modern risk.

Let’s assess how secure your network is ..... our BT Assure eValuator

bt.com/btassure/securitythatmatters

BT Assure Evaluator

Our security experts will provide you

with a multidimensional rating of your

security readiness and guidance on

the highest 2 year priorities.

Your security program will benefit from

BT’s best practices with our

systematic approach to evaluation.

And we are already working with you

A consumergoods manufacturer Issue:

Legacy estate of secure web gateways suffering inconsistent policies, difficult reporting, slowresponse to emerging threats

Resolution:

Implemented BT Assure Secure Web for 100k+ users, leveraged BT Advise for planning and integration

Impact:

Switchover completed in 3 days; MTTR reduced from 5+ days to <1 hour; running costs reduced 40%+

A majorinvestment bank

Issue:

Major public charity campaign scheduled to launch in 48 hours, but no assessment or penetration testing completed; compromise would be a major embarrassment

Resolution:

BT Assure performed a comprehensive assessment and remediation, including design, architecture, and code, in 36 hours

Impact:

Campaign able to launch on time with high confidence of integrity and resilience of the donation site; customer leveraged process for future activities

UK Ministryof Defence

Issue:

Wanted to integrate existing security information sources to createa centralised security capacity and expand its situational awareness

Resolution:

BT designed and deployed a fully-accredited cyber-defence solutioncalled eCND to deliver round-the-clock support

Impact:

eCND is helping the MoD identify potential vulnerabilities moreeffectively, reducing the window of exploitation open to threat sources

With [Assure Cyber] wecan successfully complete

work that previously took around two weeks in

less than 30 seconds. It makes a real difference.”

Member, Information Systemsand Service, MOD

“

The case for BT Assure

PartnershipWe combine people, process, and technology, supporting the biggest global customers while delivering locally

LeadershipOur thought leaders – including Bruce Schneier – drive us to plan ahead. 1,800 professionals help deliver

InnovationTechnology transfer – such as Assure Analytics and BT for Life Sciences R&D – benefits customers and leads the market

Reach9 global SOCs today, with 3 more opening in the next 12 months. Our global presence is big, and growing

Experience7,000 corporate and public sector customers across more than 170 countries

Don’t just listen to us….

ISO27001, SSAE16, ISAE3402, SAS70-II

audit & security standards

190+ security papers published and 30%

of people with advanced degrees

300,000+ devices monitored for over

1000 customers

1,800+ professionals and a combined total of 10,000 years experience!

Highest ranking for BT Global Services

BT Global Services is one of only THREE providers noted as having “strong positive” ranking for its managed security services in Gartner’s Market Scope for Managed Security Services in EuropeOctober 2011

A truly global solutions provider

The BT managed security services demonstrate a

very complete offering both in breadth and depth July, 2011

• Trusted by over 7,000 customers across four major vertical segments worldwide

• Significant investments to develop local delivery capability for a global portfolio

• Sponsorship and support of critical security community activities throughout our 1,800 security professionals and benefiting 20,000 colleagues throughout Global Services

• Security cannot be a one-size-fits-all, but has to rely on robust, consistent foundations

• Our ability to deliver world-class security across portfolio areas is unmatched by major competitors

Rethink the risk, using the tools we have to help address these changes

One portfolio, many solutions

The experience to guide, the wisdom to lead

Summary

• If there’s ever been a time to stop, review, and refresh our approach to managing business risk, it’s now

Your data is everywhere

By end of 2016, more than 50% of Global 1000 companies will have customer – sensitive data in the cloud, and 40% of enterprises will require independent security testing of cloud solutions”

Gartner 2012 Predictions

“

BT AssureSecurity that matters

www.bt.com/btassure/securitythatmatters