SlideShare a Scribd company logo

Creating a graph based security organisation - Apr 2019 (OWASP London chapter meeting)

Dinis Cruz, profile picture
Dinis Cruz

This document discusses creating a graph-based security organization. It outlines security's objectives like allowing business operations while managing risk. Security is a driver of change and sits at the center of organizational data. The only effective way to manage and understand this relational data is as a graph. The presenter's organization refactored their risk workflow and JIRA implementation to represent data as a graph stored in a queryable database. They use tools like ELK, Slack bots, and plantUML diagrams to visualize and interact with the security graph. This empower's data-driven security decisions and risk management. The presenter provides examples of risk dashboards and encourages collaboration to further develop these graph-based approaches.

Internet
Related topics:
Information SecurityApplication Security Risk-Management Cyber-Security
1 of 73
Downloaded 72 times
1
2
Most read
3
4
Most read
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
Most read
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
Creating a graph-based security organisation Dinis Cruz dinis.cruz@photobox.com OWASP London Chapter meeting April / 2019
2
What are Security’s meta objectives ● Allowing the business to execute it’s mission and objectives within their ‘accepted risk level’ ● Allowing the business to make FACT and RISK based decisions ● Improving the business’ ability to deploy changes and enabling it to ‘move faster’ ● Allowing the business to understand better how it behaves and what are the side effects of it’s actions/decisions ● Increasing the cost of malicious entities to execute their objectives ● Effectively handling incidents and preventing crisis ● Making compliance easy ● Enabling the business to think in ‘Graphs’ 3
Security is a major agent of change (just about everything we do requires a change request) 4
Security is at the epicentre of data (we can get data feeds from everywhere) 5
Data is not linear or tabular Data is hyperlinked and relational 6
Only effective solution is to: Manage and visualise data as a Graph … 7
…and to create a Graph based security organisation 8
How we did it 9
10 It all started with this RISK Workflow
11 Now refactored to
12 We use JIRA as a Graph Database
We created a serverless workflow Graph database Queryable data store Lambda functions Command line / feedback loop Our hyperlinked security taxonomy... ...is dumped every few seconds into ELK... ...made queryable by code functions... ...with the user journey all in Slack.
14 We sync all JIRA data into Elastic Stack
15 We use a Slack bot to access the data
16 Searching Jira and rendering plantuml
17 PlantUML graphs from JIRA data
Creating a graph based security organisation - Apr 2019 (OWASP London chapter meeting)
19 Mapping projects to OKRs
20 Mapping Services to Roles
2 Multiple ways to Visualise data
22 The Universe
Work done yesterday
Work done last week
‘ The Bicycle
‘ Spot the bad mappings
27 A sail of a boat or Music Equalizer
‘ My Brain on Friday
Where is Everybody?
Funny ones
‘Wardley Maps’
Automatic generation of Slides 3
33 Creating slides and pdfs from GS Bot
34
35
36
37
38
39
Syncing Google Sheets with Jira 4
Meet Maeve
Demo 42
Syncing Google Sheets With Jira OWASP Demo Maeve Scarry 4th April 2019
1 Create ticket in Jira
2 Create tasks
3 Column view
4 Spider view
5 Graph view
6 Table view
7 Creating a Google Sheet
8 Google Sheet
9 Editing the Sheet
10 Editing the Sheet
11 Syncing Google Sheets to Jira
12 Final Jira View
Rendering Sheets and Slides in Slack 5
Consume materials created in Slack
Empowering the business to make Fact based Security Decisions 5
59 Risk Dashboards (from Jira Data) Maturity DEMO DATA
60 Show Risk evolution FY18 (score of 45) FY18 (score of 55) Maturity DEMO DATA
61 Show Risk Delta (Risk impact of decisions) DEMO DATA
Show me the code 62
Most of the code is on GitHub
Broken down in modules(build using AWS CodeBuild)
Please contribute and participante in the conversation 6
Ok, how can I learn more about this? And where can I try it? 66
Open Security Summit 2019 https://docs.google.com/presentation/d/1GlCvPmBHqcn_VA1ciVirgkoP1RSkSccHhd_Wx1BaG4s/edit#slide=id.p1
The place to be to collaborate https://docs.google.com/presentation/d/1GlCvPmBHqcn_VA1ciVirgkoP1RSkSccHhd_Wx1BaG4s/edit#slide=id.p1
Last year’s action
Buy your ticket now! (we are running out of villas) https://open-security-summit.org/
Also available at https://z-developers.com/ Read the ‘Generation Z Developers’ https://leanpub.com/generation-z/ https://github.com/DinisCruz/Book_Generation_Z_Developer
72 Further reading https://www.youtube.com/watch?v=xwuXz1ZEnhA https://leanpub.com/secdevops
Thanks 73

More Related Content

PDF
Modern security using graphs, automation and data science
Dinis Cruz
 
PDF
CISO Application presentation - Babylon health security
Dinis Cruz
 
PDF
Introduction to NIST Cybersecurity Framework
Tuan Phan
 
PPTX
Business continuity & disaster recovery planning (BCP & DRP)
Narudom Roongsiriwong, CISSP
 
PPTX
Cybersecurity Framework - Introduction
Muhammad Akbar Yasin
 
PPTX
Moving to the cloud: cloud strategies and roadmaps
Jisc
 
PPTX
Cybersecurity Risk Management Framework Strategy Workshop
Life Cycle Engineering
 
PDF
NIST cybersecurity framework
Shriya Rai
 
Modern security using graphs, automation and data science
Dinis Cruz
 
CISO Application presentation - Babylon health security
Dinis Cruz
 
Introduction to NIST Cybersecurity Framework
Tuan Phan
 
Business continuity & disaster recovery planning (BCP & DRP)
Narudom Roongsiriwong, CISSP
 
Cybersecurity Framework - Introduction
Muhammad Akbar Yasin
 
Moving to the cloud: cloud strategies and roadmaps
Jisc
 
Cybersecurity Risk Management Framework Strategy Workshop
Life Cycle Engineering
 
NIST cybersecurity framework
Shriya Rai
 

What's hot (20)

PDF
Technology Alignment Framework
Mark S. Mahre
 
PPTX
Data Visualization
gzargary
 
PDF
Drone Delivery: By The Numbers
Colin Snow
 
PPTX
Information Security and the SDLC
BDPA Charlotte - Information Technology Thought Leaders
 
PPT
Data Management
BashirMutebi1
 
PPTX
CASB: Securing your cloud applications
Forcepoint LLC
 
PDF
Endpoint Detection & Response - FireEye
Prime Infoserv
 
PPTX
Drones Applications in Rail, Oil & Gas, Construction
Gopinath Chidambaram
 
PPTX
Introduction to the CSA Cloud Controls Matrix
John Yeoh
 
PPTX
Misp(malware information sharing platform)
Nadim Kadiwala
 
PDF
Building a Next-Generation Security Operation Center Based on IBM QRadar and ...
IBM Security
 
PDF
Network Architecture Review Checklist
Eberly Wilson
 
PDF
Extended Detection and Response (XDR) An Overhyped Product Category With Ulti...
Raffael Marty
 
PDF
Fraud Management Solutions
SAS Institute India Pvt. Ltd
 
PDF
5 BEST PRACTICES FOR A SECURITY OPERATION CENTER (SOC)
Vijilan IT Security solutions
 
PPTX
Healthcare and Cyber security
Brian Matteson, CISSP CISA
 
PDF
Netskope Overview
Netskope
 
PPTX
Risk management
baderali2141
 
PPTX
Privacy by Design as a system design strategy - EIC 2019
Sagara Gunathunga
 
PDF
How to Replace Your Legacy Antivirus Solution with CrowdStrike
CrowdStrike
 
Technology Alignment Framework
Mark S. Mahre
 
Data Visualization
gzargary
 
Drone Delivery: By The Numbers
Colin Snow
 
Information Security and the SDLC
BDPA Charlotte - Information Technology Thought Leaders
 
Data Management
BashirMutebi1
 
CASB: Securing your cloud applications
Forcepoint LLC
 
Endpoint Detection & Response - FireEye
Prime Infoserv
 
Drones Applications in Rail, Oil & Gas, Construction
Gopinath Chidambaram
 
Introduction to the CSA Cloud Controls Matrix
John Yeoh
 
Misp(malware information sharing platform)
Nadim Kadiwala
 
Building a Next-Generation Security Operation Center Based on IBM QRadar and ...
IBM Security
 
Network Architecture Review Checklist
Eberly Wilson
 
Extended Detection and Response (XDR) An Overhyped Product Category With Ulti...
Raffael Marty
 
Fraud Management Solutions
SAS Institute India Pvt. Ltd
 
5 BEST PRACTICES FOR A SECURITY OPERATION CENTER (SOC)
Vijilan IT Security solutions
 
Healthcare and Cyber security
Brian Matteson, CISSP CISA
 
Netskope Overview
Netskope
 
Risk management
baderali2141
 
Privacy by Design as a system design strategy - EIC 2019
Sagara Gunathunga
 
How to Replace Your Legacy Antivirus Solution with CrowdStrike
CrowdStrike
 
Ad

Similar to Creating a graph based security organisation - Apr 2019 (OWASP London chapter meeting) (20)

PDF
Knowledge Graphs for AI-Ready Data and Enterprise Deployment - Gartner IT Sym...
Neo4j
 
PDF
Thinking in Graphs
Open Security Summit
 
PDF
Thinking in graphs v1.0
Dinis Cruz
 
PDF
4-lessons-of-security-leaders-for-2022.pdf
Jose R
 
PDF
Offload, Transform, and Present - The New World of Data Integration
gluent.
 
PPTX
Building and deploying a predictive model in Azure Machine Learning
Frederic Simard
 
PDF
Neo4j: The Art of Possible with Graph Technology
Neo4j
 
PDF
Netwrix Hybrid Security Trends Report 2024.pdf
BaraDaniel1
 
PPTX
Changing mindset&culture when implementing IAAS
Jan Wiersma
 
PDF
Linkurious Enterprise: graph visualization platform neo4j
Linkurious
 
PDF
The Art of Possible - GraphTalk Paris Opening Session
Neo4j
 
PDF
Forecast 2014: Open Your Datacenter
Open Data Center Alliance
 
PDF
Overcoming Business Challenges with Azure
run_frictionless
 
PPTX
10 Keynotes in STRATA and HADOOP World Conference
KCC Software Ltd. & Easylearning.guru
 
PPTX
Technology Radar Webinar UK - Vol. 22
Thoughtworks
 
PDF
Tech Days Sweden - Power BI - A look into the future with mixed reality
Ida Bergum
 
PPTX
The Making of a simple Cyber Threat Intelligence Gathering System
Niran Seriki, CCISO, CISM
 
PPTX
Customer Presentation - IBM Cloud Pak for Data Overview (Level 100).PPTX
tsigitnist02
 
PDF
Cutting through the hype - how to use advanced analytics to do practical thin...
Association for Project Management
 
PDF
APM PMC SIG conference 2021, Project controls: but not as we know it, Close o...
Association for Project Management
 
Knowledge Graphs for AI-Ready Data and Enterprise Deployment - Gartner IT Sym...
Neo4j
 
Thinking in Graphs
Open Security Summit
 
Thinking in graphs v1.0
Dinis Cruz
 
4-lessons-of-security-leaders-for-2022.pdf
Jose R
 
Offload, Transform, and Present - The New World of Data Integration
gluent.
 
Building and deploying a predictive model in Azure Machine Learning
Frederic Simard
 
Neo4j: The Art of Possible with Graph Technology
Neo4j
 
Netwrix Hybrid Security Trends Report 2024.pdf
BaraDaniel1
 
Changing mindset&culture when implementing IAAS
Jan Wiersma
 
Linkurious Enterprise: graph visualization platform neo4j
Linkurious
 
The Art of Possible - GraphTalk Paris Opening Session
Neo4j
 
Forecast 2014: Open Your Datacenter
Open Data Center Alliance
 
Overcoming Business Challenges with Azure
run_frictionless
 
10 Keynotes in STRATA and HADOOP World Conference
KCC Software Ltd. & Easylearning.guru
 
Technology Radar Webinar UK - Vol. 22
Thoughtworks
 
Tech Days Sweden - Power BI - A look into the future with mixed reality
Ida Bergum
 
The Making of a simple Cyber Threat Intelligence Gathering System
Niran Seriki, CCISO, CISM
 
Customer Presentation - IBM Cloud Pak for Data Overview (Level 100).PPTX
tsigitnist02
 
Cutting through the hype - how to use advanced analytics to do practical thin...
Association for Project Management
 
APM PMC SIG conference 2021, Project controls: but not as we know it, Close o...
Association for Project Management
 
Ad

More from Dinis Cruz (20)

PDF
Map camp - Why context is your crown jewels (Wardley Maps and Threat Modeling)
Dinis Cruz
 
PDF
Glasswall - Safety and Integrity Through Trusted Files
Dinis Cruz
 
PDF
Glasswall - How to Prevent, Detect and React to Ransomware incidents
Dinis Cruz
 
PDF
The benefits of police and industry investigation - NPCC Conference
Dinis Cruz
 
PDF
Serverless Security Workflows - cyber talks - 19th nov 2019
Dinis Cruz
 
PDF
Using Wardley Maps to Understand Security's Landscape and Strategy
Dinis Cruz
 
PDF
Dinis Cruz (CV) - CISO and Transformation Agent v1.2
Dinis Cruz
 
PDF
Making fact based decisions and 4 board decisions (Oct 2019)
Dinis Cruz
 
PDF
Using OWASP Security Bot (OSBot) to make Fact Based Security Decisions
Dinis Cruz
 
PDF
GSBot Commands (Slack Bot used to access Jira data)
Dinis Cruz
 
PDF
(OLD VERSION) Dinis Cruz (CV) - CISO and Transformation Agent v0.6
Dinis Cruz
 
PDF
OSBot - Data transformation workflow (from GSheet to Jupyter)
Dinis Cruz
 
PDF
Jira schemas - Open Security Summit (Working Session 21th May 2019)
Dinis Cruz
 
PDF
Template for "Sharing anonymised risk theme dashboards v0.8"
Dinis Cruz
 
PDF
Owasp and summits (may 2019)
Dinis Cruz
 
PDF
Open security summit 2019 owasp london 25th feb
Dinis Cruz
 
PDF
Owasp summit 2019 - OWASP London 25th feb
Dinis Cruz
 
PDF
Evolving challenges for modern enterprise architectures in the age of APIs
Dinis Cruz
 
PDF
How to not fail at security data analytics (by CxOSidekick)
Dinis Cruz
 
PDF
Open Security Summit - April 2018
Dinis Cruz
 
Map camp - Why context is your crown jewels (Wardley Maps and Threat Modeling)
Dinis Cruz
 
Glasswall - Safety and Integrity Through Trusted Files
Dinis Cruz
 
Glasswall - How to Prevent, Detect and React to Ransomware incidents
Dinis Cruz
 
The benefits of police and industry investigation - NPCC Conference
Dinis Cruz
 
Serverless Security Workflows - cyber talks - 19th nov 2019
Dinis Cruz
 
Using Wardley Maps to Understand Security's Landscape and Strategy
Dinis Cruz
 
Dinis Cruz (CV) - CISO and Transformation Agent v1.2
Dinis Cruz
 
Making fact based decisions and 4 board decisions (Oct 2019)
Dinis Cruz
 
Using OWASP Security Bot (OSBot) to make Fact Based Security Decisions
Dinis Cruz
 
GSBot Commands (Slack Bot used to access Jira data)
Dinis Cruz
 
(OLD VERSION) Dinis Cruz (CV) - CISO and Transformation Agent v0.6
Dinis Cruz
 
OSBot - Data transformation workflow (from GSheet to Jupyter)
Dinis Cruz
 
Jira schemas - Open Security Summit (Working Session 21th May 2019)
Dinis Cruz
 
Template for "Sharing anonymised risk theme dashboards v0.8"
Dinis Cruz
 
Owasp and summits (may 2019)
Dinis Cruz
 
Open security summit 2019 owasp london 25th feb
Dinis Cruz
 
Owasp summit 2019 - OWASP London 25th feb
Dinis Cruz
 
Evolving challenges for modern enterprise architectures in the age of APIs
Dinis Cruz
 
How to not fail at security data analytics (by CxOSidekick)
Dinis Cruz
 
Open Security Summit - April 2018
Dinis Cruz
 

Recently uploaded (20)

PDF
Sims 4 Historia para lo sims 4 para jugar
lolpopy34
 
PDF
Testing WebRTC applications at scale.pdf
Giacomo Vacca
 
PDF
Paper PDF World Game (s) Great Redesign.pdf
Steven McGee
 
PDF
An introduction to the IFRS (ISSB) Stndards.pdf
farhankhan13694
 
PPTX
Introduction about ICD -10 and ICD11 on 5.8.25.pptx
naveenithkrishnan
 
PDF
WebRTC in SignalWire - troubleshooting media negotiation
Giacomo Vacca
 
PDF
Automated vs Manual WooCommerce to Shopify Migration_ Pros & Cons.pdf
CartCoders
 
PPTX
Introuction about ICD -10 and ICD-11 PPT.pptx
naveenithkrishnan
 
PDF
Unit-1 introduction to cyber security discuss about how to secure a system
shivangisharma636228
 
PPTX
introduction about ICD -10 & ICD-11 ppt.pptx
naveenithkrishnan
 
PPTX
E -tech empowerment technologies PowerPoint
kylebalatero12
 
PPT
isotopes_sddsadsaadasdasdasdasdsa1213.ppt
Kenneth James Alamillo
 
PPTX
June-4-Sermon-Powerpoint.pptx USE THIS FOR YOUR MOTIVATION
KuyaRogie
 
PDF
FINAL CALL-6th International Conference on Networks & IOT (NeTIOT 2025)
IJMIT JOURNAL
 
PPTX
SAP Ariba Sourcing PPT for learning material
NKKumar16
 
PPTX
Internet___Basics___Styled_ presentation
poonam62133
 
PDF
Slides PDF The World Game (s) Eco Economic Epochs.pdf
Steven McGee
 
PPTX
Introuction about WHO-FIC in ICD-10.pptx
naveenithkrishnan
 
PPTX
international classification of diseases ICD-10 review PPT.pptx
naveenithkrishnan
 
PDF
SASE Traffic Flow - ZTNA Connector-1.pdf
mackwell7777
 
Sims 4 Historia para lo sims 4 para jugar
lolpopy34
 
Testing WebRTC applications at scale.pdf
Giacomo Vacca
 
Paper PDF World Game (s) Great Redesign.pdf
Steven McGee
 
An introduction to the IFRS (ISSB) Stndards.pdf
farhankhan13694
 
Introduction about ICD -10 and ICD11 on 5.8.25.pptx
naveenithkrishnan
 
WebRTC in SignalWire - troubleshooting media negotiation
Giacomo Vacca
 
Automated vs Manual WooCommerce to Shopify Migration_ Pros & Cons.pdf
CartCoders
 
Introuction about ICD -10 and ICD-11 PPT.pptx
naveenithkrishnan
 
Unit-1 introduction to cyber security discuss about how to secure a system
shivangisharma636228
 
introduction about ICD -10 & ICD-11 ppt.pptx
naveenithkrishnan
 
E -tech empowerment technologies PowerPoint
kylebalatero12
 
isotopes_sddsadsaadasdasdasdasdsa1213.ppt
Kenneth James Alamillo
 
June-4-Sermon-Powerpoint.pptx USE THIS FOR YOUR MOTIVATION
KuyaRogie
 
FINAL CALL-6th International Conference on Networks & IOT (NeTIOT 2025)
IJMIT JOURNAL
 
SAP Ariba Sourcing PPT for learning material
NKKumar16
 
Internet___Basics___Styled_ presentation
poonam62133
 
Slides PDF The World Game (s) Eco Economic Epochs.pdf
Steven McGee
 
Introuction about WHO-FIC in ICD-10.pptx
naveenithkrishnan
 
international classification of diseases ICD-10 review PPT.pptx
naveenithkrishnan
 
SASE Traffic Flow - ZTNA Connector-1.pdf
mackwell7777
 

Creating a graph based security organisation - Apr 2019 (OWASP London chapter meeting)