SlideShare a Scribd company logo

From reactive to automated reducing costs through mature security processes info security europe 2011

Download as PPTX, PDF
NetIQ, profile picture
NetIQ

This document discusses how organizations can move from reactive security processes to more automated security processes to reduce costs. It highlights how IT process automation can help bridge silos between business and IT by centralizing tools on a single platform. This allows organizations to address key issues like insider threats, compliance requirements, and business exception management through automated workflows. The document provides examples of how automated workflows for incident management and compliance exception management can help improve security, reduce manual work, and ensure processes are consistently followed.

TechnologyBusiness
Related topics:
IT Security Information Security
1 of 18
Downloaded 20 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
From Reactive To Automated:Reducing Costs Through Mature Security ProcessesJörn DierksChiefSecurityStrategist EMEAjoern.dierks@netiq.com
Solving Cross-Discipline Problems2ProcessPeopleTechnologyInfrastructure & ApplicationsProvisioningHRComplianceHelpdeskNetIQNOCIncidentSecurityChangeBusinessOwnersOther Mgmt VendorsBusiness Processes
ProcessPeopleTechnologyInfrastructure & ApplicationsProvisioningHRCross-Product Integration ComplianceHelpdeskNetIQNOCIncidentSecurityChangeBusinessOwnersOther Mgmt VendorsBusiness ProcessesSolving Cross-Discipline Problems3
The Role of IT Process Automation –Bridging Silos Between Business and ITToolsToolsBusinessConfiguration & Identity AuditingService / Help DeskSecurity Info & Event ManagementEvent Correlation & AnalysisIT GRCMSLMIT ProcessAutomationVulnerability AssessmentSystems & App Monitoring Perimeter & Network SecurityNetwork MonitoringContent Monitoring / DLPResponse TimeMonitoringOperationsSecurityPolicyAwarenessConfiguration & Patch ManagementCMDBAV / Malware ProtectionIdentity ManagementResponsibilities Shared between Security & OperationsContinuityManagementCapacity & AvailabilityManagementReleaseManagementIncident & Problem Management Configuration & ChangeManagement
5Security & CompliancePerformance & Availability Identity & Access5© 2010 NetIQ Corporation. All rights reserved.About NetIQManage and audit user entitlements
Track privileged user activity
Protect the integrity of key systems and files
Monitor access to sensitive information
Simplify compliance reportingIT ProcessAutomationMonitor and manage heterogeneous environments including custom applications
IT Service validation and end-user performance monitoring
Dynamic provisioning of large-scale monitoring with exceptions
Functional and hierarchical Incident escalation
Deliver & manage differentiated service levels
User Provisioning Lifecycle Management
Centralize Unix account management through Active Directory
Reduce number of privileged users
Secure delegated administration
Windows and Exchange MigrationAddressing Insider ThreatPrivileged User MonitoringAddressing Compliance RequirementsBusiness Exception ManagementEnd-User Policy Management andAwarenessUse-Cases In This Presentation

More Related Content

PPTX
A Smarter, More Secure Internet of Things
NetIQ
 
PPTX
Leveraging Identity to Manage Change and Complexity
NetIQ
 
PPTX
Building A Cloud-Ready Security Program
NetIQ
 
PDF
Cloud Identity
NetIQ
 
PDF
Security - A Digital Transformation Enabler
Alexander Akinjayeju. MSc, CISM, Prince2
 
PDF
NetIQ Directory & Resource Administrator Helps Kindred Healthcare Achieve Com...
NetIQ
 
PPTX
Two Peas in a Pod: Cloud Security and Mobile Security
Omar Khawaja
 
PPTX
Cloud Security: A Business-Centric Approach in 12 Steps
Omar Khawaja
 
A Smarter, More Secure Internet of Things
NetIQ
 
Leveraging Identity to Manage Change and Complexity
NetIQ
 
Building A Cloud-Ready Security Program
NetIQ
 
Cloud Identity
NetIQ
 
Security - A Digital Transformation Enabler
Alexander Akinjayeju. MSc, CISM, Prince2
 
NetIQ Directory & Resource Administrator Helps Kindred Healthcare Achieve Com...
NetIQ
 
Two Peas in a Pod: Cloud Security and Mobile Security
Omar Khawaja
 
Cloud Security: A Business-Centric Approach in 12 Steps
Omar Khawaja
 

What's hot (18)

PDF
Identiverse Zero Trust Customer Briefing, Identiverse 2019
Identity Defined Security Alliance
 
PDF
2021 English Part One Anti-phishing Webinar Presentation Slides
Ivanti
 
PDF
Why Executives Underinvest In Cybersecurity
HackerOne
 
PPTX
You are Doing IT Security Wrong - Understanding the Threat of Modern Cyber-at...
Michael Noel
 
PPT
IBM Security Strategy Intelligence,
Information Security Awareness Group
 
PDF
Securing Your Cloud Applications
IBM Security
 
PDF
Total Digital Security Introduction 4.2
Brad Deflin
 
PPTX
New CISO - The First 90 Days
Resilient Systems
 
PPTX
SANS Critical Security Controls Summit London 2013
Wolfgang Kandek
 
PPTX
Securing IT Against Modern Threats with Microsoft Cloud Security Tools - M365...
Michael Noel
 
PDF
"Thinking diffrent" about your information security strategy
Jason Clark
 
PDF
Fortifying Cyber Defense: How to Act Now to Protect Global Supply Chains
Ignyte Assurance Platform
 
PPTX
A Non-Salesy Intro to the Ivanti Porfolio
Ivanti
 
PDF
Kista watson summit final public version
IBM Sverige
 
PPTX
Security Management in the Cloud
GaryArdito
 
PDF
Bring Your Own Device (BYOD)
Murray Security Services
 
PPTX
Cloud security - Auditing and Compliance
Josh Tullo
 
PDF
Energy Industry Organizational Strategies to Increase Cyber Resiliency
EnergySec
 
Identiverse Zero Trust Customer Briefing, Identiverse 2019
Identity Defined Security Alliance
 
2021 English Part One Anti-phishing Webinar Presentation Slides
Ivanti
 
Why Executives Underinvest In Cybersecurity
HackerOne
 
You are Doing IT Security Wrong - Understanding the Threat of Modern Cyber-at...
Michael Noel
 
IBM Security Strategy Intelligence,
Information Security Awareness Group
 
Securing Your Cloud Applications
IBM Security
 
Total Digital Security Introduction 4.2
Brad Deflin
 
New CISO - The First 90 Days
Resilient Systems
 
SANS Critical Security Controls Summit London 2013
Wolfgang Kandek
 
Securing IT Against Modern Threats with Microsoft Cloud Security Tools - M365...
Michael Noel
 
"Thinking diffrent" about your information security strategy
Jason Clark
 
Fortifying Cyber Defense: How to Act Now to Protect Global Supply Chains
Ignyte Assurance Platform
 
A Non-Salesy Intro to the Ivanti Porfolio
Ivanti
 
Kista watson summit final public version
IBM Sverige
 
Security Management in the Cloud
GaryArdito
 
Bring Your Own Device (BYOD)
Murray Security Services
 
Cloud security - Auditing and Compliance
Josh Tullo
 
Energy Industry Organizational Strategies to Increase Cyber Resiliency
EnergySec
 
Ad

Similar to From reactive to automated reducing costs through mature security processes info security europe 2011 (20)

PPT
How much does it cost to be Secure?
mbmobile
 
PDF
Security a Revenue Center: How Security Can Drive Your Business
shira koper
 
PPTX
Security Baselines and Risk Assessments
Priyank Hada
 
PPTX
Infosec policies to appsec standards ed final
eadams2330
 
PDF
IT General Controls Presentation at IIA Vadodara Audit Club
Kaushal Trivedi
 
PDF
Emerging Trends in Information Privacy and Security
Jessica Santamaria
 
PDF
Emerging Trends in Information Privacy and Security
Jessica Santamaria
 
PDF
Security Change Management: Agility vs. Control
AlgoSec
 
PDF
BetterCloud Whitepaper: Fixing IT's Blindspots – 8 Critical Security and Mana...
BetterCloud
 
PDF
Defcon 22-tim-mcguffin-one-man-shop
Priyanka Aash
 
PPTX
ISStateGovtProposal
Dale White
 
PPTX
Information security trends and concerns
John Napier
 
PPTX
5 Clear Signs You Need Security Policy Automation
Tufin
 
PPT
Cyber crime with privention
Manish Dixit Ceh
 
PDF
5 things you didn't know you could do with security policy management
AlgoSec
 
PPTX
Enterprise IT Security| CIO Innovation and Leadership
RedZone Technologies
 
DOCX
Security Policies and Implementation IssuesLecture 5How to D.docx
jeffreye3
 
PPTX
Continuous Compliance 14.9.2016
Digia Plc
 
PPT
Lunch and Learn: June 29, 2010
prevalentnetworks
 
PDF
CNIT 160: Ch 2b: Security Strategy Development
Sam Bowne
 
How much does it cost to be Secure?
mbmobile
 
Security a Revenue Center: How Security Can Drive Your Business
shira koper
 
Security Baselines and Risk Assessments
Priyank Hada
 
Infosec policies to appsec standards ed final
eadams2330
 
IT General Controls Presentation at IIA Vadodara Audit Club
Kaushal Trivedi
 
Emerging Trends in Information Privacy and Security
Jessica Santamaria
 
Emerging Trends in Information Privacy and Security
Jessica Santamaria
 
Security Change Management: Agility vs. Control
AlgoSec
 
BetterCloud Whitepaper: Fixing IT's Blindspots – 8 Critical Security and Mana...
BetterCloud
 
Defcon 22-tim-mcguffin-one-man-shop
Priyanka Aash
 
ISStateGovtProposal
Dale White
 
Information security trends and concerns
John Napier
 
5 Clear Signs You Need Security Policy Automation
Tufin
 
Cyber crime with privention
Manish Dixit Ceh
 
5 things you didn't know you could do with security policy management
AlgoSec
 
Enterprise IT Security| CIO Innovation and Leadership
RedZone Technologies
 
Security Policies and Implementation IssuesLecture 5How to D.docx
jeffreye3
 
Continuous Compliance 14.9.2016
Digia Plc
 
Lunch and Learn: June 29, 2010
prevalentnetworks
 
CNIT 160: Ch 2b: Security Strategy Development
Sam Bowne
 
Ad

More from NetIQ (20)

PDF
Open Enterprise Server With Windows
NetIQ
 
PDF
Big Payoffs With BYOD and Mobility
NetIQ
 
PDF
Mobile Apps in Your Business
NetIQ
 
PPTX
Advanced Persistent Threat - Evaluating Effective Responses
NetIQ
 
PPTX
BrainShare 2014
NetIQ
 
PDF
Paraca Inc.
NetIQ
 
PDF
The University of Westminster Saves Time and Money with Identity Manager
NetIQ
 
PDF
The London School of Hygiene & Tropical Medicine Accelerates and Streamlines ...
NetIQ
 
PDF
Swisscard Saves Time and Effort in Managing User Access
NetIQ
 
PDF
Vodacom Tightens Security with Identity Manager from NetIQ
NetIQ
 
PDF
University of Dayton Ensures Compliance with Sentinel Log Manager
NetIQ
 
PDF
Nippon Light Metal Forges a Disaster Recovery Solution with NetIQ
NetIQ
 
PDF
Nexus Differentiates Itself and Grows Its Capabilities with Operations Center
NetIQ
 
PDF
Netiq css huntington_bank
NetIQ
 
PDF
Professional Services Company Boosts Security, Facilitates Compliance, Automa...
NetIQ
 
PDF
NetIQ Identity Manager Unites Hanshan Normal University
NetIQ
 
PDF
Handelsbanken Takes Control of Identity Management with NetIQ
NetIQ
 
PDF
Millions of People Depend on Datang Xianyi Technology and NetIQ
NetIQ
 
PDF
bluesource Uses NetIQ AppManager to Offer Standout Managed Service
NetIQ
 
PDF
Central Denmark Region Strengthens Administrative Security with Identity Mana...
NetIQ
 
Open Enterprise Server With Windows
NetIQ
 
Big Payoffs With BYOD and Mobility
NetIQ
 
Mobile Apps in Your Business
NetIQ
 
Advanced Persistent Threat - Evaluating Effective Responses
NetIQ
 
BrainShare 2014
NetIQ
 
Paraca Inc.
NetIQ
 
The University of Westminster Saves Time and Money with Identity Manager
NetIQ
 
The London School of Hygiene & Tropical Medicine Accelerates and Streamlines ...
NetIQ
 
Swisscard Saves Time and Effort in Managing User Access
NetIQ
 
Vodacom Tightens Security with Identity Manager from NetIQ
NetIQ
 
University of Dayton Ensures Compliance with Sentinel Log Manager
NetIQ
 
Nippon Light Metal Forges a Disaster Recovery Solution with NetIQ
NetIQ
 
Nexus Differentiates Itself and Grows Its Capabilities with Operations Center
NetIQ
 
Netiq css huntington_bank
NetIQ
 
Professional Services Company Boosts Security, Facilitates Compliance, Automa...
NetIQ
 
NetIQ Identity Manager Unites Hanshan Normal University
NetIQ
 
Handelsbanken Takes Control of Identity Management with NetIQ
NetIQ
 
Millions of People Depend on Datang Xianyi Technology and NetIQ
NetIQ
 
bluesource Uses NetIQ AppManager to Offer Standout Managed Service
NetIQ
 
Central Denmark Region Strengthens Administrative Security with Identity Mana...
NetIQ
 

Recently uploaded (20)

PPT
Teaching material agriculture food technology
LiaRayya
 
PPTX
PA Analog/Digital System: The Backbone of Modern Surveillance and Communication
AVTRON Technologies LLC
 
PDF
Bridging biosciences and deep learning for revolutionary discoveries: a compr...
IAESIJAI
 
PDF
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
PDF
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
PDF
Advanced Soft Computing BINUS July 2025.pdf
University of Hertfordshire
 
PPTX
breach-and-attack-simulation-cybersecurity-india-chennai-defenderrabbit-2025....
defencerabbit Team
 
PDF
Advanced IT Governance
University of Hertfordshire
 
PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PDF
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
PPTX
MYSQL Presentation for SQL database connectivity
Swati270511
 
PDF
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
PDF
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
PDF
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
PDF
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
PPTX
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
PPTX
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
PPTX
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
PDF
solutions_manual_-_materials___processing_in_manufacturing__demargo_.pdf
AbdullahSani29
 
PDF
GDG Cloud Iasi [PUBLIC] Florian Blaga - Unveiling the Evolution of Cybersecur...
athlonica
 
Teaching material agriculture food technology
LiaRayya
 
PA Analog/Digital System: The Backbone of Modern Surveillance and Communication
AVTRON Technologies LLC
 
Bridging biosciences and deep learning for revolutionary discoveries: a compr...
IAESIJAI
 
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
Advanced Soft Computing BINUS July 2025.pdf
University of Hertfordshire
 
breach-and-attack-simulation-cybersecurity-india-chennai-defenderrabbit-2025....
defencerabbit Team
 
Advanced IT Governance
University of Hertfordshire
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
MYSQL Presentation for SQL database connectivity
Swati270511
 
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
solutions_manual_-_materials___processing_in_manufacturing__demargo_.pdf
AbdullahSani29
 
GDG Cloud Iasi [PUBLIC] Florian Blaga - Unveiling the Evolution of Cybersecur...
athlonica
 

From reactive to automated reducing costs through mature security processes info security europe 2011

  • 1. From Reactive To Automated:Reducing Costs Through Mature Security ProcessesJörn DierksChiefSecurityStrategist EMEAjoern.dierks@netiq.com
  • 2. Solving Cross-Discipline Problems2ProcessPeopleTechnologyInfrastructure & ApplicationsProvisioningHRComplianceHelpdeskNetIQNOCIncidentSecurityChangeBusinessOwnersOther Mgmt VendorsBusiness Processes
  • 3. ProcessPeopleTechnologyInfrastructure & ApplicationsProvisioningHRCross-Product Integration ComplianceHelpdeskNetIQNOCIncidentSecurityChangeBusinessOwnersOther Mgmt VendorsBusiness ProcessesSolving Cross-Discipline Problems3
  • 4. The Role of IT Process Automation –Bridging Silos Between Business and ITToolsToolsBusinessConfiguration & Identity AuditingService / Help DeskSecurity Info & Event ManagementEvent Correlation & AnalysisIT GRCMSLMIT ProcessAutomationVulnerability AssessmentSystems & App Monitoring Perimeter & Network SecurityNetwork MonitoringContent Monitoring / DLPResponse TimeMonitoringOperationsSecurityPolicyAwarenessConfiguration & Patch ManagementCMDBAV / Malware ProtectionIdentity ManagementResponsibilities Shared between Security & OperationsContinuityManagementCapacity & AvailabilityManagementReleaseManagementIncident & Problem Management Configuration & ChangeManagement
  • 5. 5Security & CompliancePerformance & Availability Identity & Access5© 2010 NetIQ Corporation. All rights reserved.About NetIQManage and audit user entitlements
  • 7. Protect the integrity of key systems and files
  • 8. Monitor access to sensitive information
  • 9. Simplify compliance reportingIT ProcessAutomationMonitor and manage heterogeneous environments including custom applications
  • 10. IT Service validation and end-user performance monitoring
  • 11. Dynamic provisioning of large-scale monitoring with exceptions
  • 12. Functional and hierarchical Incident escalation
  • 13. Deliver & manage differentiated service levels
  • 15. Centralize Unix account management through Active Directory
  • 16. Reduce number of privileged users
  • 18. Windows and Exchange MigrationAddressing Insider ThreatPrivileged User MonitoringAddressing Compliance RequirementsBusiness Exception ManagementEnd-User Policy Management andAwarenessUse-Cases In This Presentation
  • 20. Another Challenge toConsider…Source: “Data Loss RisksDuring Downsizing“, Ponemon Institute LLC, 23 Feb 2009
  • 21. Policies, procedures and standardsClear guidelinesPolicies as a key for your organizationStandardize assetsIdentity & access controlData ClassificationAccess controlManage islands of identity(Privileged) User monitoringAuditsNot a one-time effortRegular auditsThorough auditsRegulationsDifficult to do manuallyReporting neededThree Important Subjects9Photo by: Giorgio Monteforti: http://www.flickr.com/photos/11139043@N00/1439804758/
  • 22. Mapping Subjects To TechnologyBACWorkflow & Process AutomationIdentity & AccessManagementIT Infrastructure Windows Systems
  • 23. Unix & Linux Systems
  • 25. Security & Network Devices
  • 29. etc.Active DirectoryPolicy Management& User AwarenessConfiguration &Compliance ManagementPrivileged User Monitoring, SIEM
  • 30. Security Process AutomationFORRESTER® Required  Optional* Determined using the Aegis ROI calculator developed by Forrester Consulting based on a representative customer with 1,000 servers.
  • 31. Use Case #1Insider ThreatIncident Automation withPrivileged User Monitoring
  • 32. Automated IncidentManagement Workflow13DataWarehouseCMDBChange ManagementIncident Management ConsoleWorkflow / ProcessEventAdministratorAutomated event detection & response:Reduces time to response
  • 35. Lowers impact on administratorsRemediation
  • 36. Use Case #2Business Exception Management Automation in Compliance Management
  • 37. 8Workflow / Process1. Policy Templates assess complianceNetIQ Secure Configuration Manager detects non-compliant systems3SystemOwner2.Secure Configuration Manager tells Aegis about the Compliance problemAegis starts Non-Compliance Workflow943. Aegis emails the system ownerInforms about the problems foundApproval & ExceptionManagement ProcessSystem Owner analyzes the issuesThen he tells Aegis that he wants to create an exception for one of the issues752105. Aegis informs the Security Officer about the exception creation requestEnsures that no exceptions get created without approval6Compliance & Configuration ManagementSecurityOfficer6.Security Officer approves exception requestHe can do that either by email or through the Aegis web consoleResults:No exceptions get created without prior approval
  • 38. Security Processes are followed through
  • 39. Compliance Issues are tracked consistently
  • 40. There’s always a consistent result of a workflow7.Aegis creates the exception in NetIQ Secure Configuration Manager and approves the exceptionAll details about the approvals process are added into the notes section of the exception1018. Administrator is notified about the exception approval and creationAlso, he’s asked if he wants to re-run the policy templateManual WorkloadAutomated Workload9.The System Owner confirms…10. Aegis tells Secure Configuration Manager to re-run the Policy TemplatesBusiness System
  • 41. Where do I start? – Process Automation Lifecycle
  • 42. Policies, proceduresandstandardsClear guidelinesPoliciesas a keyforyourorganizationStandardizeassetsAchievePolicy ComplianceConfiguration & Compliance ManagementAutomatedException & Approval ManagementMonitor Privileged User ActivitySIEM & Access MonitoringAutomatedIncident Management, Escalation & AlertingSummary – Remember… 1… 2… 3…!BACWorkflow & Process AutomationIdentity & AccessManagementIT Infrastructure Windows Systems
  • 43. Unix & Linux Systems
  • 45. Security & Network Devices
  • 49. etc.Active DirectoryPolicy Management& User AwarenessConfiguration &Compliance ManagementPrivileged User Monitoring, SIEM