SlideShare a Scribd company logo

Building a strong security strategy

Download as PPTX, PDF
Singtel, profile picture
Singtel

The document discusses challenges in cybersecurity and provides recommendations for building a strong security program. It asks 3 questions: 1) Where to start in the new IT environment? 2) How to create a security strategy that fits new technologies? 3) What are the right tools to deploy? It then provides advice on enforcing governance on "shadow IT", educating leaders, integrating security audits, and embedding a security culture. Recommended tools include next-generation firewalls, cloud access security brokers, web isolation, and secure email gateways.

Technology
Related topics:
Cyber-Security Cyber Attack Cyber Threats
1 of 21
Downloaded 10 times
1
2
3
4
Most read
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
Why Is cybersecurity such a struggle? 3 questions to ask before you start Adopting the right tools for a strong security programme 01 Building a Strong Security Programme
Why is cybersecurity such a struggle? 02 Transforming IT with new technologies Persistent cyber threats Emerging threat vectors
Software-defined networking Transforming IT with new technologies Hybrid cloud infrastructure 03
Mobile & web applications Internet of Things Social media Insider threats Supply chain Ransomware Distributed denial of service Cryptomining Phishing Social engineering 04 Persistent cyber threats: Emerging threat vectors:
05 3 questions to ask: Where do we start in this new IT environment? 1 How to create a security strategy that fits well with new technologies and infrastructure? 2 What are the right tools you should deploy? 3
06 Where do we start in this new IT environment? • Enforce security governance on ‘shadow IT’ (eg. dropbox.com to store project files) by embracing end-user innovation with clear guidelines. Schedule periodic checks to ensure hygiene and compliance. • Educate business leaders to prioritise data safeguards over speed to market • Extend corporate risk management practices to IT security • Integrate security audits early in project development phase (eg. DevOps) • Embed cybersecurity culture by training staff and developing stronger processes and policies 1
07 Enforce security governance on ‘shadow IT’ by embracing end-user innovation with clear guidelines
08 Educate business leaders to prioritise data safeguards over speed to market
09 Extend risk management practices to IT security
10 Integrate security audits early in project development phase (eg. DevOps)
11 Embed cybersecurity culture by training staff and developing stronger processes and policies
12 Take back control of IT, data & security management Partner business leaders at all levels of organisation How to create a security strategy that fits well with new technologies and infrastructure? 2
13 Set policies to align new IT purchases with security, privacy, documentation and control. Take back control of IT, data & security management
14 Assist business units to select best possible IT products and services. Partner business leaders at all levels
15 Next generation firewall for threat protection Cloud Access Security Broker (CASB) Web isolation Secure email gateway What are the right tools you should deploy? 3
16 Next generation firewall for threat protection • Full-stack, single-pass traffic inspection across all ports • Full visibility & control • Anti-virus and anti-malware • Command and Control (CnC) Protection • Content and URL filtering • Global protect virtual private network (VPN) • Sandboxing
17 Cloud Access Security Broker • Detect & analyse suspicious activity, logins and policy violations • Protect data with 256-bit AES encryption • Manage sensitive content to prevent data leakage • Digital document watermarks to track file history • Granular control over cloud app access • Malware protection • Mobile remote wipe
18 Web isolation • Render web & email content remotely before reaching end users • Isolate, view and scan documents for malware • Block access to web content with URL filtering • Anti-phishing • Log and control end user actions
19 Secure email gateway • Spam protection using a mail transfer agent • Email & web traffic monitoring • Email authentication & encryption • Content based anti-spam & anti-virus • Virus outbreak and reputation filters • Scalable security infrastructure to handle large spam volumes • Content scanning & policy enforcement • Centralised management
20 Partner with an MSSP for the right tools to secure your organisation For those IT and security executives whose organisations are beginning or in the midst of a technology transformation, these are both challenging and exciting times. Failure to implement strong security measures can be disastrous — there is virtually no time to spare for taking the necessary steps to protect enterprise data.
21 Chat with us to learn how we can partner with you to design a security strategy for your organisation.

More Related Content

PPT
Anypoint enterprise security
D.Rajesh Kumar
 
PPT
Mule anypoint enterprise security
D.Rajesh Kumar
 
PPTX
Hallwaze security snapshot
hallwaze_1
 
PDF
Serverless Security Checklist
Simform
 
PDF
SafeDNS Solutions for Internet and Mobile Service Providers
SafeDNS
 
PDF
Ijcis -->cfp
JonesSmith7
 
PPT
Mule anypointenterprisesecurity
himajareddys
 
PPTX
Webinar Express: What is a CASB?
Bitglass
 
Anypoint enterprise security
D.Rajesh Kumar
 
Mule anypoint enterprise security
D.Rajesh Kumar
 
Hallwaze security snapshot
hallwaze_1
 
Serverless Security Checklist
Simform
 
SafeDNS Solutions for Internet and Mobile Service Providers
SafeDNS
 
Ijcis -->cfp
JonesSmith7
 
Mule anypointenterprisesecurity
himajareddys
 
Webinar Express: What is a CASB?
Bitglass
 

What's hot (19)

PDF
call for papers - International Journal on Cryptography and Information Secur...
JonesSmith7
 
DOCX
International Journal on Cryptography and Information Security (IJCIS)
ijcisjournal
 
PDF
International Journal on Cryptography and Information Security ( IJCIS)
ijcisjournal
 
PPTX
Cloud computingsec p3
Cesar Schmitzhaus
 
DOCX
International Journal of Network Security & Its Applications (IJNSA)
MiajackB
 
DOCX
Ijisa
ijfcst journal
 
DOCX
International Journal of Network Security &Its Applications (IJNSA)
MiajackB
 
RTF
Ijisa
ijfcst journal
 
PPTX
OWASP Nagpur Meet #4
OWASP Nagpur
 
PDF
Cybersecurity - Mobile Application Security
Eryk Budi Pratama
 
PDF
Ethical Hacking Training
Novel Vista
 
PDF
Cybersecurity Myths for Small and Medium-Sized Businesses
Seqrite
 
DOCX
International Journal of Network Security & Its Applications (IJNSA)
ijfcst journal
 
PPTX
Using Network Security and Identity Management to Empower CISOs Today: The Ca...
ForgeRock
 
PPTX
CASB Cases: How Your Peers are Securing the Cloud
Bitglass
 
DOCX
Ijisa
ijfcst journal
 
DOCX
International Journal of Network Security & Its Applications (IJNSA)
ijfcst journal
 
PPTX
Secure Your Web Applications and Achieve Compliance
Avi Networks
 
DOCX
Ijisa
ijfcst journal
 
call for papers - International Journal on Cryptography and Information Secur...
JonesSmith7
 
International Journal on Cryptography and Information Security (IJCIS)
ijcisjournal
 
International Journal on Cryptography and Information Security ( IJCIS)
ijcisjournal
 
Cloud computingsec p3
Cesar Schmitzhaus
 
International Journal of Network Security & Its Applications (IJNSA)
MiajackB
 
Ijisa
ijfcst journal
 
International Journal of Network Security &Its Applications (IJNSA)
MiajackB
 
Ijisa
ijfcst journal
 
OWASP Nagpur Meet #4
OWASP Nagpur
 
Cybersecurity - Mobile Application Security
Eryk Budi Pratama
 
Ethical Hacking Training
Novel Vista
 
Cybersecurity Myths for Small and Medium-Sized Businesses
Seqrite
 
International Journal of Network Security & Its Applications (IJNSA)
ijfcst journal
 
Using Network Security and Identity Management to Empower CISOs Today: The Ca...
ForgeRock
 
CASB Cases: How Your Peers are Securing the Cloud
Bitglass
 
Ijisa
ijfcst journal
 
International Journal of Network Security & Its Applications (IJNSA)
ijfcst journal
 
Secure Your Web Applications and Achieve Compliance
Avi Networks
 
Ijisa
ijfcst journal
 
Ad

Similar to Building a strong security strategy (20)

PPTX
CSO CXO Series Breakfast
CSO_Presentations
 
PPTX
chapitre1-cloud security basics-23 (1).pptx
GhofraneFerchichi2
 
PPTX
Topic – cyber security, Introduction,future scope
gauravnainwal2291
 
PPTX
Lecture 3 Country Specific Strategy.pptx
jitendrachettri894
 
PPTX
Add-Structure-and-Credibility-to-Your-Security-Portfolio-with-CIS-Controls-v8...
hoang971
 
PPTX
Cloud Security: A matter of trust?
Mark Williams
 
PDF
Security Considerations When Using Cloud Infrastructure Services.pdf
Ciente
 
PPTX
Cloud Security - the egregious 11 cloud security threats
Moshe Ferber
 
PPTX
weyai cybersecurity.pptx
Weyai1
 
PPT
CyberCrime in the Cloud and How to defend Yourself
Alert Logic
 
PDF
AFAC session 2 - September 8, 2014
KBIZEAU
 
PPTX
What is the significance of cybersecurity in cloud.pptx
infosec train
 
PDF
Journey to the Cloud: Securing Your AWS Applications - April 2015
Alert Logic
 
PPTX
Steven Porter Seville | Ideas about Computer clouding
'Self-Employed'
 
PPTX
CYBER SECURITY.pptx
Malu704065
 
PPTX
Cybersecurity; Definition, Use, and Practice
MontasserMahmoud2
 
PPTX
HITRUST CSF in the Cloud
OnRamp
 
PPTX
CyberSecurity_Presefxgdrfffntation_final.pptx
ManishYadav243888
 
PPTX
I am sharing 'Unit-2' with youuuuuu.PPTX
padhaipadhai639
 
PDF
(CISOPlatform Summit & SACON 2024) Workshop _ Most Dangerous Attack Technique...
Priyanka Aash
 
CSO CXO Series Breakfast
CSO_Presentations
 
chapitre1-cloud security basics-23 (1).pptx
GhofraneFerchichi2
 
Topic – cyber security, Introduction,future scope
gauravnainwal2291
 
Lecture 3 Country Specific Strategy.pptx
jitendrachettri894
 
Add-Structure-and-Credibility-to-Your-Security-Portfolio-with-CIS-Controls-v8...
hoang971
 
Cloud Security: A matter of trust?
Mark Williams
 
Security Considerations When Using Cloud Infrastructure Services.pdf
Ciente
 
Cloud Security - the egregious 11 cloud security threats
Moshe Ferber
 
weyai cybersecurity.pptx
Weyai1
 
CyberCrime in the Cloud and How to defend Yourself
Alert Logic
 
AFAC session 2 - September 8, 2014
KBIZEAU
 
What is the significance of cybersecurity in cloud.pptx
infosec train
 
Journey to the Cloud: Securing Your AWS Applications - April 2015
Alert Logic
 
Steven Porter Seville | Ideas about Computer clouding
'Self-Employed'
 
CYBER SECURITY.pptx
Malu704065
 
Cybersecurity; Definition, Use, and Practice
MontasserMahmoud2
 
HITRUST CSF in the Cloud
OnRamp
 
CyberSecurity_Presefxgdrfffntation_final.pptx
ManishYadav243888
 
I am sharing 'Unit-2' with youuuuuu.PPTX
padhaipadhai639
 
(CISOPlatform Summit & SACON 2024) Workshop _ Most Dangerous Attack Technique...
Priyanka Aash
 
Ad

More from Singtel (8)

PPTX
Public support - benefitting from the cloud ecosystem
Singtel
 
PDF
7 steps to cloud transformation
Singtel
 
PDF
Public support: Benefitting from the cloud ecosystem
Singtel
 
PDF
Your nimble network needs more than buzzwords
Singtel
 
PPTX
Mature connections: 6 stages to IoT success
Singtel
 
PPTX
Automating cybersecurity
Singtel
 
PPTX
Managing security risks in today's digital era
Singtel
 
PPTX
DC West - Data Centre Services
Singtel
 
Public support - benefitting from the cloud ecosystem
Singtel
 
7 steps to cloud transformation
Singtel
 
Public support: Benefitting from the cloud ecosystem
Singtel
 
Your nimble network needs more than buzzwords
Singtel
 
Mature connections: 6 stages to IoT success
Singtel
 
Automating cybersecurity
Singtel
 
Managing security risks in today's digital era
Singtel
 
DC West - Data Centre Services
Singtel
 

Recently uploaded (20)

PDF
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PPTX
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
PDF
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
PPTX
Spectroscopy.pptx food analysis technology
nawahassan45
 
PPTX
Tartificialntelligence_presentation.pptx
ry7r52mzb4
 
PDF
Encapsulation theory and applications.pdf
gurumoop
 
PDF
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
PDF
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
PPT
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
PDF
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
PDF
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
PPTX
Machine Learning_overview_presentation.pptx
kondavamsidharreddy2
 
PPTX
MYSQL Presentation for SQL database connectivity
Swati270511
 
PDF
NewMind AI Weekly Chronicles - August'25-Week II
NewMind AI
 
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
PDF
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PDF
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
PDF
Profit Center Accounting in SAP S/4HANA, S4F28 Col11
Libreria ERP
 
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
Spectroscopy.pptx food analysis technology
nawahassan45
 
Tartificialntelligence_presentation.pptx
ry7r52mzb4
 
Encapsulation theory and applications.pdf
gurumoop
 
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
Machine Learning_overview_presentation.pptx
kondavamsidharreddy2
 
MYSQL Presentation for SQL database connectivity
Swati270511
 
NewMind AI Weekly Chronicles - August'25-Week II
NewMind AI
 
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
Profit Center Accounting in SAP S/4HANA, S4F28 Col11
Libreria ERP
 

Building a strong security strategy

  • 1. Why Is cybersecurity such a struggle? 3 questions to ask before you start Adopting the right tools for a strong security programme 01 Building a Strong Security Programme
  • 2. Why is cybersecurity such a struggle? 02 Transforming IT with new technologies Persistent cyber threats Emerging threat vectors
  • 3. Software-defined networking Transforming IT with new technologies Hybrid cloud infrastructure 03
  • 4. Mobile & web applications Internet of Things Social media Insider threats Supply chain Ransomware Distributed denial of service Cryptomining Phishing Social engineering 04 Persistent cyber threats: Emerging threat vectors:
  • 5. 05 3 questions to ask: Where do we start in this new IT environment? 1 How to create a security strategy that fits well with new technologies and infrastructure? 2 What are the right tools you should deploy? 3
  • 6. 06 Where do we start in this new IT environment? • Enforce security governance on ‘shadow IT’ (eg. dropbox.com to store project files) by embracing end-user innovation with clear guidelines. Schedule periodic checks to ensure hygiene and compliance. • Educate business leaders to prioritise data safeguards over speed to market • Extend corporate risk management practices to IT security • Integrate security audits early in project development phase (eg. DevOps) • Embed cybersecurity culture by training staff and developing stronger processes and policies 1
  • 7. 07 Enforce security governance on ‘shadow IT’ by embracing end-user innovation with clear guidelines
  • 8. 08 Educate business leaders to prioritise data safeguards over speed to market
  • 10. 10 Integrate security audits early in project development phase (eg. DevOps)
  • 11. 11 Embed cybersecurity culture by training staff and developing stronger processes and policies
  • 12. 12 Take back control of IT, data & security management Partner business leaders at all levels of organisation How to create a security strategy that fits well with new technologies and infrastructure? 2
  • 13. 13 Set policies to align new IT purchases with security, privacy, documentation and control. Take back control of IT, data & security management
  • 14. 14 Assist business units to select best possible IT products and services. Partner business leaders at all levels
  • 15. 15 Next generation firewall for threat protection Cloud Access Security Broker (CASB) Web isolation Secure email gateway What are the right tools you should deploy? 3
  • 16. 16 Next generation firewall for threat protection • Full-stack, single-pass traffic inspection across all ports • Full visibility & control • Anti-virus and anti-malware • Command and Control (CnC) Protection • Content and URL filtering • Global protect virtual private network (VPN) • Sandboxing
  • 17. 17 Cloud Access Security Broker • Detect & analyse suspicious activity, logins and policy violations • Protect data with 256-bit AES encryption • Manage sensitive content to prevent data leakage • Digital document watermarks to track file history • Granular control over cloud app access • Malware protection • Mobile remote wipe
  • 18. 18 Web isolation • Render web & email content remotely before reaching end users • Isolate, view and scan documents for malware • Block access to web content with URL filtering • Anti-phishing • Log and control end user actions
  • 19. 19 Secure email gateway • Spam protection using a mail transfer agent • Email & web traffic monitoring • Email authentication & encryption • Content based anti-spam & anti-virus • Virus outbreak and reputation filters • Scalable security infrastructure to handle large spam volumes • Content scanning & policy enforcement • Centralised management
  • 20. 20 Partner with an MSSP for the right tools to secure your organisation For those IT and security executives whose organisations are beginning or in the midst of a technology transformation, these are both challenging and exciting times. Failure to implement strong security measures can be disastrous — there is virtually no time to spare for taking the necessary steps to protect enterprise data.
  • 21. 21 Chat with us to learn how we can partner with you to design a security strategy for your organisation.