SlideShare a Scribd company logo

Data security strategies and drivers

Download as PPTX, PDF
Freeform Dynamics, profile picture
Freeform Dynamics

The document discusses current trends and challenges in data security and encryption, highlighting the importance of addressing risks associated with data management and the need for a cohesive security culture within organizations. It emphasizes the necessity of recognizing and managing security responsibilities, implementing effective encryption and key management strategies, and educating staff on security practices. The future of encryption is projected to involve broader adoption across various platforms, while the importance of established standards and best practices is acknowledged for successful implementation.

Technology
1 of 23
Downloaded 81 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
Data Security Trends and ObservationsTony LockFreeform Dynamics Ltdtony@freeformdynamics.comApril, 2010www.freeformdynamics.com
AgendaBusiness Drivers Influencing IT SecurityProtecting DataThe Future of Encryption
Today, business want to…Reduce costsLeverage existing investmentsRationalise infrastructure / Reduce power consumption ‘Optimise everything’!Increase agilityAccess information on demandSupport new business initiatives quickly & effectivelyManage riskLegal & regulatory / Security and privacyContinuity / resilienceProtect brandBe good corporate citizensGovernance / External obligationsRetain Customer trust and satisfaction
Encryption and Key Management 4043372030755980512726843227940121734585012 7154539691420762 597242857594404736383206 864822559884522781272859586310783041215189039722995842274740595660911438608619370523665877168914807728150100036532892988233489229168412298957399856995916007784076516717934157958922080355531822072807338276962545494762362555017379346840089604010135260723134336771684303126571878448235124194684200289197340444389979954931395248708578295236216355137975564230921803957049782011111357
Why is security important?
New risksExternal annoyances (Spam, virus, Drive by web infections, general Phishing, etc.)Targeted crime (Hackers, Targeted phishing etc.)Third parties inside the firewall breaching securityStaff breaching security by designStaff / Third parties breaching security by accident – Information leakage
Well Protected?
To what degree do you consider these specific risks during business planning?
Has regulatory compliance been a specific driver in the following areas?
Generally speaking, when you add everything up, how is your spending on IT risk related investments such as security and information management changing?
AgendaBusiness Drivers Influencing IT SecurityProtecting DataThe Future of Encryption
Security “culture”
How easy is it to control the potential security risk arising from the proliferation of confidential data across different machines and locations?
How important are the following when considering the need to secure confidential information?
What is holding “Data Security” back?Link to lack of accurate knowledge
Mixed IT infrastructure deployed
Who has “access” to data, especially those with escalated privileges
Who is using each service and who should be?
Encryption. where used, is deployed piecemeal not across all systems
Lack of process to manage solutions
Lack of awareness that solutions are now available for a wide range of challengesThe role of Encryption and Key ManagementToday encryption has been implemented in a piecemeal fashionBit by bitNo central management or strategyKey management left to individuals or groupsEncryption will, ultimately, be rolled out to address all of the highlighted risk areasKey desktops and laptopsStorage arraysMobile DevicesProblems will occurAnd very, very visibly
AgendaBusiness Drivers Influencing IT SecurityProtecting DataThe Future of Encryption
Moving “Data Security” and encryption Forward? Define who is responsible for security

More Related Content

PPTX
what is data security full ppt
Shahbaz Khan
 
PPTX
Aspects of data security
SaranSwathi1
 
PPTX
Data Security Explained
Happiest Minds Technologies
 
PPTX
Data security
Tapan Khilar
 
PPTX
Is6120 data security presentation
JamesDempsey1
 
DOCX
Data Security
ankita_kashyap
 
PPTX
Seclore: Information Rights Management
Rahul Neel Mani
 
PPTX
In data security
adithdev
 
what is data security full ppt
Shahbaz Khan
 
Aspects of data security
SaranSwathi1
 
Data Security Explained
Happiest Minds Technologies
 
Data security
Tapan Khilar
 
Is6120 data security presentation
JamesDempsey1
 
Data Security
ankita_kashyap
 
Seclore: Information Rights Management
Rahul Neel Mani
 
In data security
adithdev
 

What's hot (20)

PDF
Data Security
qmsWrapper
 
PDF
Cybersecurity 101 - Auditing Cyber Security
Eryk Budi Pratama
 
PPTX
Data security
ForeSolutions
 
PDF
Personal Data Protection in Indonesia
Eryk Budi Pratama
 
PPT
apsec 7 Golden Rules Data Leakage Prevention / DLP
andreasschuster
 
PPTX
information security technology
garimasagar
 
PPTX
Information security group presentation ppt
vaishalshah01
 
PPT
Information Security Management. Security solutions copy
yuliana_mar
 
PDF
Data Security
Mark Waltzer
 
PPT
Information Security Management.Introduction
yuliana_mar
 
PPT
Information Technology Security A Brief Overview 2001
Donald E. Hester
 
DOCX
The CIA Triad - Assurance on Information Security
Bharath Rao
 
PPT
Information Security
Dhilsath Fathima
 
PDF
Bridging the Data Security Gap
xband
 
PPTX
20100224 Presentation at RGIT Mumbai - Information Security Awareness
Dinesh O Bareja
 
PPT
What is IRM? bright talk
ritupande
 
PPTX
Data Governance Solutions With Seclore and Stash
Seclore
 
PDF
Brochure Imperva Vormetric
Michelle Guerrero Montalvo
 
PDF
Information Rights Management (IRM)
Network Intelligence India
 
PDF
Cross border - off-shoring and outsourcing privacy sensitive data
Ulf Mattsson
 
Data Security
qmsWrapper
 
Cybersecurity 101 - Auditing Cyber Security
Eryk Budi Pratama
 
Data security
ForeSolutions
 
Personal Data Protection in Indonesia
Eryk Budi Pratama
 
apsec 7 Golden Rules Data Leakage Prevention / DLP
andreasschuster
 
information security technology
garimasagar
 
Information security group presentation ppt
vaishalshah01
 
Information Security Management. Security solutions copy
yuliana_mar
 
Data Security
Mark Waltzer
 
Information Security Management.Introduction
yuliana_mar
 
Information Technology Security A Brief Overview 2001
Donald E. Hester
 
The CIA Triad - Assurance on Information Security
Bharath Rao
 
Information Security
Dhilsath Fathima
 
Bridging the Data Security Gap
xband
 
20100224 Presentation at RGIT Mumbai - Information Security Awareness
Dinesh O Bareja
 
What is IRM? bright talk
ritupande
 
Data Governance Solutions With Seclore and Stash
Seclore
 
Brochure Imperva Vormetric
Michelle Guerrero Montalvo
 
Information Rights Management (IRM)
Network Intelligence India
 
Cross border - off-shoring and outsourcing privacy sensitive data
Ulf Mattsson
 
Ad

Viewers also liked (16)

PPTX
Data Security - English
Data Security
 
PPTX
Data Privacy and Protection Presentation
mlw32785
 
PPTX
Data protection ppt
grahamwell
 
PDF
Big Data Security and Governance
DataWorks Summit/Hadoop Summit
 
PPTX
Why ISDA, Why Now
International Security Driver Association, Inc.
 
PPTX
12 commandments of defensive driving
CarGalaxies.com - a BorSystems Company.
 
PPT
Driver Training
Shivappa Mysore
 
PPT
Data protection act
Iqbal Bocus
 
PPS
Introduction to Data Protection and Information Security
Jisc Scotland
 
PPTX
Road safety defensive driver`s driving training mannual
Dinesh Kumar Tiwari
 
PDF
Big Data Security with Hadoop
Cloudera, Inc.
 
PPTX
Database security
Software Engineering
 
PDF
Data security and Integrity
Zaid Shabbir
 
PPTX
INFORMATION SECURITY
Ahmed Moussa
 
PPTX
Data security in cloud computing
Prince Chandu
 
PPTX
Big data ppt
Nasrin Hussain
 
Data Security - English
Data Security
 
Data Privacy and Protection Presentation
mlw32785
 
Data protection ppt
grahamwell
 
Big Data Security and Governance
DataWorks Summit/Hadoop Summit
 
Why ISDA, Why Now
International Security Driver Association, Inc.
 
12 commandments of defensive driving
CarGalaxies.com - a BorSystems Company.
 
Driver Training
Shivappa Mysore
 
Data protection act
Iqbal Bocus
 
Introduction to Data Protection and Information Security
Jisc Scotland
 
Road safety defensive driver`s driving training mannual
Dinesh Kumar Tiwari
 
Big Data Security with Hadoop
Cloudera, Inc.
 
Database security
Software Engineering
 
Data security and Integrity
Zaid Shabbir
 
INFORMATION SECURITY
Ahmed Moussa
 
Data security in cloud computing
Prince Chandu
 
Big data ppt
Nasrin Hussain
 
Ad

Similar to Data security strategies and drivers (20)

PDF
Encrypt-Everything-eB.pdf
alexguzman510050
 
PPTX
Rothke rsa 2013 - deployment strategies for effective encryption
Ben Rothke
 
PDF
Encryption and Key Management: Ensuring Compliance, Privacy, and Minimizing t...
IBM Security
 
PPTX
E5 rothke - deployment strategies for effective encryption
Ben Rothke
 
PDF
Your're Special (But Not That Special)
Sandra (Sandy) Dunn
 
PDF
2013 global encryption trends study
Bee_Ware
 
PDF
Encrytpion information security last stand
George Delikouras
 
PPTX
WBN_Securing Your IBM i_E_250300003.pptx
Precisely
 
PPTX
Alex Hanway - Securing the Breach: Using a Holistic Data Protection Framework
centralohioissa
 
PPT
DSS @Arrow_Inspiration_Roadshow_2013_Symantec_Extends_Encryption_Offerings
Andris Soroka
 
PDF
Data_Security_Guide_Everything_You_Need_to_Know.pdf
Mehdi Ahmadi
 
PPTX
How To Plan Successful Encryption Strategy
ClickSSL
 
PDF
2010 Annual Study: U.S. Enterprise Encryption Trends Report
Symantec
 
PPT
Threats And Countermeasures
Jon Collins
 
PDF
Importance of Data Encryptions for Organizations | USCSI®
United States Cybersecurity Institute (USCSI®)
 
PDF
The Growing Importance of Data Encryption in IT Security.pdf
netsquad123
 
PDF
Charting Your Path to Enterprise Key Management
SafeNet
 
PDF
Encryption: Who, What, When, Where, and Why It's Not a Panacea
Resilient Systems
 
PDF
iaetsd Using encryption to increase the security of network storage
Iaetsd Iaetsd
 
PPTX
Encryption in Cyber Security with detailed
Bert Blevins
 
Encrypt-Everything-eB.pdf
alexguzman510050
 
Rothke rsa 2013 - deployment strategies for effective encryption
Ben Rothke
 
Encryption and Key Management: Ensuring Compliance, Privacy, and Minimizing t...
IBM Security
 
E5 rothke - deployment strategies for effective encryption
Ben Rothke
 
Your're Special (But Not That Special)
Sandra (Sandy) Dunn
 
2013 global encryption trends study
Bee_Ware
 
Encrytpion information security last stand
George Delikouras
 
WBN_Securing Your IBM i_E_250300003.pptx
Precisely
 
Alex Hanway - Securing the Breach: Using a Holistic Data Protection Framework
centralohioissa
 
DSS @Arrow_Inspiration_Roadshow_2013_Symantec_Extends_Encryption_Offerings
Andris Soroka
 
Data_Security_Guide_Everything_You_Need_to_Know.pdf
Mehdi Ahmadi
 
How To Plan Successful Encryption Strategy
ClickSSL
 
2010 Annual Study: U.S. Enterprise Encryption Trends Report
Symantec
 
Threats And Countermeasures
Jon Collins
 
Importance of Data Encryptions for Organizations | USCSI®
United States Cybersecurity Institute (USCSI®)
 
The Growing Importance of Data Encryption in IT Security.pdf
netsquad123
 
Charting Your Path to Enterprise Key Management
SafeNet
 
Encryption: Who, What, When, Where, and Why It's Not a Panacea
Resilient Systems
 
iaetsd Using encryption to increase the security of network storage
Iaetsd Iaetsd
 
Encryption in Cyber Security with detailed
Bert Blevins
 

More from Freeform Dynamics (19)

PPTX
Big data and analytics
Freeform Dynamics
 
PPTX
Big Data in Context
Freeform Dynamics
 
PPTX
The consumerisation of IT (11 oct 2011)
Freeform Dynamics
 
PPTX
A view from above the clouds (14 Oct 2011)
Freeform Dynamics
 
PPT
Bcs consumerisation
Freeform Dynamics
 
PPT
Cloud computing in context
Freeform Dynamics
 
PPT
Cloud Computing/SaaS opportunity
Freeform Dynamics
 
PPT
Enterprise Mobility Strategy
Freeform Dynamics
 
PPTX
Service Management 2009
Freeform Dynamics
 
PPT
Virtualization Licensing Lottery
Freeform Dynamics
 
PPTX
SOA Benefits Revisited
Freeform Dynamics
 
PPT
Optimising The Use Of IT
Freeform Dynamics
 
PPT
Intelligent BI
Freeform Dynamics
 
PPT
Green - The Reader Perspective
Freeform Dynamics
 
PPT
IT's role in enterprise power management
Freeform Dynamics
 
PPT
The Joy Of Bits
Freeform Dynamics
 
PPTX
Recovery Management
Freeform Dynamics
 
PPT
Positioning And Understanding Virtualisation
Freeform Dynamics
 
PPTX
Asset Management
Freeform Dynamics
 
Big data and analytics
Freeform Dynamics
 
Big Data in Context
Freeform Dynamics
 
The consumerisation of IT (11 oct 2011)
Freeform Dynamics
 
A view from above the clouds (14 Oct 2011)
Freeform Dynamics
 
Bcs consumerisation
Freeform Dynamics
 
Cloud computing in context
Freeform Dynamics
 
Cloud Computing/SaaS opportunity
Freeform Dynamics
 
Enterprise Mobility Strategy
Freeform Dynamics
 
Service Management 2009
Freeform Dynamics
 
Virtualization Licensing Lottery
Freeform Dynamics
 
SOA Benefits Revisited
Freeform Dynamics
 
Optimising The Use Of IT
Freeform Dynamics
 
Intelligent BI
Freeform Dynamics
 
Green - The Reader Perspective
Freeform Dynamics
 
IT's role in enterprise power management
Freeform Dynamics
 
The Joy Of Bits
Freeform Dynamics
 
Recovery Management
Freeform Dynamics
 
Positioning And Understanding Virtualisation
Freeform Dynamics
 
Asset Management
Freeform Dynamics
 

Recently uploaded (20)

PDF
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
PDF
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
PPTX
sap open course for s4hana steps from ECC to s4
sreeni2106invites
 
PDF
Optimiser vos workloads AI/ML sur Amazon EC2 et AWS Graviton
Julien SIMON
 
PDF
KodekX | Application Modernization Development
KodekX
 
PDF
Profit Center Accounting in SAP S/4HANA, S4F28 Col11
Libreria ERP
 
PPT
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
PPTX
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
PPTX
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PPTX
ACSFv1EN-58255 AWS Academy Cloud Security Foundations.pptx
23bcla24
 
PDF
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
PDF
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
PDF
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
PPTX
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
PDF
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
PDF
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
PDF
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
PDF
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
sap open course for s4hana steps from ECC to s4
sreeni2106invites
 
Optimiser vos workloads AI/ML sur Amazon EC2 et AWS Graviton
Julien SIMON
 
KodekX | Application Modernization Development
KodekX
 
Profit Center Accounting in SAP S/4HANA, S4F28 Col11
Libreria ERP
 
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
ACSFv1EN-58255 AWS Academy Cloud Security Foundations.pptx
23bcla24
 
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 

Data security strategies and drivers

  • 1. Data Security Trends and ObservationsTony LockFreeform Dynamics Ltdtony@freeformdynamics.comApril, 2010www.freeformdynamics.com
  • 2. AgendaBusiness Drivers Influencing IT SecurityProtecting DataThe Future of Encryption
  • 3. Today, business want to…Reduce costsLeverage existing investmentsRationalise infrastructure / Reduce power consumption ‘Optimise everything’!Increase agilityAccess information on demandSupport new business initiatives quickly & effectivelyManage riskLegal & regulatory / Security and privacyContinuity / resilienceProtect brandBe good corporate citizensGovernance / External obligationsRetain Customer trust and satisfaction
  • 4. Encryption and Key Management 4043372030755980512726843227940121734585012 7154539691420762 597242857594404736383206 864822559884522781272859586310783041215189039722995842274740595660911438608619370523665877168914807728150100036532892988233489229168412298957399856995916007784076516717934157958922080355531822072807338276962545494762362555017379346840089604010135260723134336771684303126571878448235124194684200289197340444389979954931395248708578295236216355137975564230921803957049782011111357
  • 5. Why is security important?
  • 6. New risksExternal annoyances (Spam, virus, Drive by web infections, general Phishing, etc.)Targeted crime (Hackers, Targeted phishing etc.)Third parties inside the firewall breaching securityStaff breaching security by designStaff / Third parties breaching security by accident – Information leakage
  • 8. To what degree do you consider these specific risks during business planning?
  • 9. Has regulatory compliance been a specific driver in the following areas?
  • 10. Generally speaking, when you add everything up, how is your spending on IT risk related investments such as security and information management changing?
  • 11. AgendaBusiness Drivers Influencing IT SecurityProtecting DataThe Future of Encryption
  • 13. How easy is it to control the potential security risk arising from the proliferation of confidential data across different machines and locations?
  • 14. How important are the following when considering the need to secure confidential information?
  • 15. What is holding “Data Security” back?Link to lack of accurate knowledge
  • 17. Who has “access” to data, especially those with escalated privileges
  • 18. Who is using each service and who should be?
  • 19. Encryption. where used, is deployed piecemeal not across all systems
  • 20. Lack of process to manage solutions
  • 21. Lack of awareness that solutions are now available for a wide range of challengesThe role of Encryption and Key ManagementToday encryption has been implemented in a piecemeal fashionBit by bitNo central management or strategyKey management left to individuals or groupsEncryption will, ultimately, be rolled out to address all of the highlighted risk areasKey desktops and laptopsStorage arraysMobile DevicesProblems will occurAnd very, very visibly
  • 22. AgendaBusiness Drivers Influencing IT SecurityProtecting DataThe Future of Encryption
  • 23. Moving “Data Security” and encryption Forward? Define who is responsible for security
  • 24. How should policy be set?
  • 25. IT, The Businessand Security partners
  • 26. Set how to create / handle security Procedures? 
  • 28. Encryption and key management
  • 29. Make as transparent as possible to users
  • 30. Ensure staff know what is permitted in data security management
  • 31. Until these are addressed, change will be difficult and risks will not be managedProcess, process, processProcessDefine Processes for securityTry to standardise on solutionsMake sure everyone understands security threats and the consequencesMake sure that routines / procedures are in place to manage all aspects of securityEspecially for mobile / home workers.Create a feeling of responsibility for securityTrain / Train / Train / Communicate
  • 32. Overall mix of concerns relating to adoption of latest technologies and working practicesEncryption can help address these issues
  • 33. The Future of EncryptionUse of Encryption will spread, and soon
  • 35. Storage, Desktops, Mobile Devices, Applications
  • 36. Data at Rest, Data in Motion
  • 37. Ultimately encryption will become “expected”
  • 38. The importance of key management will be recognised
  • 39. But not to begin with
  • 40. Education will be required or “incidents will happen”
  • 41. Standards (ISO 7498-2, ISO 17799 etc.) are important
  • 42. But customers will need to move before all standards are finalised and in place.
  • 43. Best practice / experience is valued along with advice on where to start.Where to start with Securing Enterprise Data?Know where data is stored, who is using it and why
  • 44. Storage platforms / Desktops / Applications / Networks
  • 45. Combine asset management / identity / encryption and key management
  • 46. Define roles and responsibilities for data governance
  • 47. Create policies for data management and security
  • 49. And make sure everyone understands and follows them
  • 50. Audit data access and alteration
  • 52. Personal / Device / Service / Application
  • 53. Get good Management Procedures in place, especially for encryption key managementThank You!Any Questions?Tony LockFreeform Dynamics Ltdtony@freeformdynamics.comApril, 2010www.freeformdynamics.com

Editor's Notes

  • #8: RM – this slides covers the same topics as slide 6, should they be together?
  • #13: RM – starting to get statistic overload by this point!
  • #16: RM – this overlaps with slide 16, maybe rephrase the two as one focused on the goal and the other on barriers to deployment
  • #17: RM – I like the first bullet, but it feels like a sweeping statement, are you going to provide more context – seems we have jumped from fairly generic stats to very specific predictions
  • #22: RM – This is an important messaging slide, need to make sure these points get across. The best practices point is important and the fact that experience with early (high security) adopters like banks sets Thales and it’s partners up very well to take crypto to the mainstream. Is it possible to say more about timing and ordering of technology adoption – like storage before application level protection. What about role of standards and other critical success factors?