SlideShare a Scribd company logo

Introduction to Cybersecurity Fundamentals

Download as PPTX, PDF
T
Toño Herrera

This document provides an overview of cybersecurity fundamentals. It discusses key topics like the definition of cybersecurity and information security, protecting digital assets, risk management concepts, essential cybersecurity terminology, cybersecurity roles and responsibilities, and common threat agents. The goal is to give attendees an introduction to fundamental cybersecurity concepts.

Technology
1 of 17
Downloaded 117 times
1
2
Most read
3
Most read
4
5
6
7
8
9
10
11
12
13
14
Most read
15
16
17
Cybersecurity Fundamentals Luis Herrera, CRISC, CEH, ITILv3 14-Apr-2017
2 IBM Security Agenda • World vision of breaches & statistics • What is Cybersecurity? • What is Information Security? • Protect Digital Assets • Key Concepts • Cybersecurity Roles • Cybersecurity Concepts • Risk Management • Essential Terminology • Threat Agents
3 IBM Security World’s Biggest Data Breaches
4 IBM Security Data Breach Statistics
5 IBM Security What is Cybersecurity? • The protection of information assets by addressing threats to information processed, stored and transported by internetworked information systems. Information Security Cybersecurity
6 IBM Security What is Information Security (InfoSec)? • Infosec deals with information, regardless of its format (it encompasses paper documents, digital and intellectual property in people's minds, and verbal or visual communications. • Cybersecurity on the other hand, is concerned with protecting digital assets, everything from networks to hardware and information processed, stored or/and transported by internetworked information systems.
7 IBM Security Protecting Digital Assets • The NIST (National Institute of Standards and Technology) & ENISA (European Union Agency for Network and Information Security) have identified 5 key functions necessary for the protection of digital assets Identify • Use organizational understanding to minimize risk to systems, assets, data and capabilities Protect • Design safeguards to limit the impact of potential events on critical services and infrastructure Detect • Implement activities to identify the occurrence of a cybersecurity event Respond • Take appropriate action after learning of a security event Recover • Plan for resilience and the timely repair of compromised capabilities and services
8 IBM Security Key Concepts • It is important to understand the elements of Information Security
9 IBM Security Cybersecurity Roles • Governance ̶ It's the responsibility of the board of directors and senior management of the organization. Provide strategic direction, ensure that objectives are achieved, ascertain whether risk is being managed appropriately and verify that the organization's resources are being used responsibly, are goals of the governance program • Risk Management ̶ It's the process by which an organization manages risk to acceptable levels, it requires the development and implementation of internal controls to manage mitigate risk throughout the organization, including financial and investment risk, physical risk and cyberrisk • Compliance ̶ The act of adhering to mandated requirements defined by laws and regulations, this also includes contractual obligations with clients, partners and internal policies
10 IBM Security Cybersecurity Concepts • Risk: ̶ The combination of the probability of an event and its consequence (ISO/IEC 73:2009). Risk is mitigated through the use of controls or safeguards. • Approaches •Also known as standards-based security, this approach relies on regulations or standards to determine security implementations. Controls are implemented regardless of their applicability or necessity, which often leads to a “checklist” attitude toward security. Compliance- based •Risk-based security relies on identifying the unique risk a particular organization faces and designing and implementing security controls to address that risk above and beyond the entity’s risk tolerance and business needs. Risk-based •An ad hoc approach simply implements security with no particular rationale or criteria. Ad hoc implementations may be driven by vendor marketing, or they may reflect insufficient subject matter expertise, knowledge or training when designing and implementing safeguards. Ad-hoc
11 IBM Security Risk Treatment
12 IBM Security Risk Treatment (Contd) Risk Reduction/Mitigation Implement controls and/or countermeasures Risk Retention/Acceptance If the cost of the mitigation controls is higher than the cost of the impact the risk represents Risk Avoidance/Terminate Terminate the activity giving rise to risk Risk Transfer Purchase insurance to address the risk, which will be transferred to the insurance company
13 IBM Security What is Residual Risk? • The risk that still remains after countermeasures and controls have been implemented. • If residual risk is greater than the acceptable risk level, then it should be further treated with the option of additional mitigation through implementing more stringent controls
14 IBM Security Essential Terminology Vulnerability Existence of a weakness, design, or implementation error that can lead to an unexpected event compromising the security of the system Asset Anything that represents value for the organization and is worth protecting Threat Anything capable of acting against an asset in a manner that can result in harm Backdoor A mean of regaining access to a compromised system by installing SW or configuring existing SE to enable remote access Brute Force Attack Trying all possible combinations of passwords or encryption keys until the correct one is found Buffer Overflow When an app tries to store more data in a buffer (temporary data storage area) than it was designed to hold, this corrupts the app and enables the attacker to introduce or run commands DDoS Attack An assault on a service from different sources that floods the target with so many requests that it becomes unavailable to anyone MitM Attack The attacker intercepts the communication stream between 2 parts, the attacker can sniff or replace the traffic Social Engineering Any attempt to exploit social vulnerabilities to gain access to information/systems
15 IBM Security Essential Terminology (Contd) Phishing The attacker attempts by email to convince a user that the originator is genuine, but with malicious intentions to obtaining information Exploit A breach of IT system security through vulnerabilities Payload Is the part of an exploit code that performs the intended malicious action, such as destroying, creating backdoors, and hijacking computer SQL Injection SQL syntax is used without proper validation as part of SQL queries, this could harm the DB or even the OS Bot A "bot" is a software application that can be controlled remotely to execute or automata predefined tasks Zero-Day Attack An attack that exploits computer application vulnerabilities before the software developer releases a patch for the vulnerability XSS Cross-site scripting, malicious scripts are injected into benign and trusted websites <script>alert("PWND")</script> APT Advanced Persistent Threats are complex and coordinated attacks directed at a specific target, they require enormous research and time Spoofing Faking the sending address to gain illegal entry into a system
16 IBM Security Threat Agents
ibm.com/security securityintelligence.com xforce.ibmcloud.com @ibmsecurity youtube/user/ibmsecuritysolutions © Copyright IBM Corporation 2016. All rights reserved. The information contained in these materials is provided for informational purposes only, and is provided AS IS without warranty of any kind, express or implied. Any statement of direction represents IBM's current intent, is subject to change or withdrawal, and represent only goals and objectives. IBM, the IBM logo, and other IBM products and services are trademarks of the International Business Machines Corporation, in the United States, other countries or both. Other company, product, or service names may be trademarks or service marks of others. Statement of Good Security Practices: IT system security involves protecting systems and information through prevention, detection and response to improper access from within and outside your enterprise. Improper access can result in information being altered, destroyed, misappropriated or misused or can result in damage to or misuse of your systems, including for use in attacks on others. No IT system or product should be considered completely secure and no single product, service or security measure can be completely effective in preventing improper use or access. IBM systems, products and services are designed to be part of a lawful, comprehensive security approach, which will necessarily involve additional operational procedures, and may require other systems, products or services to be most effective. IBM does not warrant that any systems, products or services are immune from, or will make your enterprise immune from, the malicious or illegal conduct of any party. FOLLOW US ON: THANK YOU

More Related Content

PPTX
Cyber security threats and trends
Hadeel Sadiq Obaid
 
PDF
Introduction to Cybersecurity
Krutarth Vasavada
 
PPTX
Cybersecurity Attack Vectors: How to Protect Your Organization
TriCorps Technologies
 
PPTX
Introduction to Cybersecurity
Adri Jovin
 
PPTX
Cyber Security 03
Home
 
PDF
What is Cyber Security? | Introduction to Cyber Security | Cyber Security Tra...
Edureka!
 
PDF
Cyber security and demonstration of security tools
Vicky Fernandes
 
PPTX
Introduction to Cyber Security
Priyanshu Ratnakar
 
Cyber security threats and trends
Hadeel Sadiq Obaid
 
Introduction to Cybersecurity
Krutarth Vasavada
 
Cybersecurity Attack Vectors: How to Protect Your Organization
TriCorps Technologies
 
Introduction to Cybersecurity
Adri Jovin
 
Cyber Security 03
Home
 
What is Cyber Security? | Introduction to Cyber Security | Cyber Security Tra...
Edureka!
 
Cyber security and demonstration of security tools
Vicky Fernandes
 
Introduction to Cyber Security
Priyanshu Ratnakar
 

What's hot (20)

PPTX
Introduction to cyber security
RaviPrashant5
 
PPTX
Cybercrime and Security
Noushad Hasan
 
PPTX
Cyber Security
Bhandari Hìmáñßhü
 
PPTX
Cybersecurity 1. intro to cybersecurity
sommerville-videos
 
PPTX
Cyber Security Awareness Session for Executives and Non-IT professionals
Krishna Srikanth Manda
 
PPTX
Cyber Security Awareness
Innocent Korie
 
PPTX
Cyber security system presentation
A.S. Sabuj
 
PDF
Cybersecurity Fundamentals | Understanding Cybersecurity Basics | Cybersecuri...
Edureka!
 
PPTX
Cyber security presentation
Parab Mishra
 
PPTX
cyber security presentation.pptx
kishore golla
 
PDF
Cyber Security Awareness
Ramiro Cid
 
PPTX
Cyber security
manoj duli
 
PPTX
Cyber security
Sabir Raja
 
PPTX
Cyber crime and security
Sharath Raj
 
PPTX
Cyber security
Manjushree Mashal
 
PPT
Introduction to Cyber Security
Stephen Lahanas
 
PPTX
Network security
Estiak Khan
 
PPT
Computer security overview
CAS
 
PPTX
Cyber Security 101: Training, awareness, strategies for small to medium sized...
Stephen Cobb
 
PPTX
CYBER SECURITY
Vaishak Chandran
 
Introduction to cyber security
RaviPrashant5
 
Cybercrime and Security
Noushad Hasan
 
Cyber Security
Bhandari Hìmáñßhü
 
Cybersecurity 1. intro to cybersecurity
sommerville-videos
 
Cyber Security Awareness Session for Executives and Non-IT professionals
Krishna Srikanth Manda
 
Cyber Security Awareness
Innocent Korie
 
Cyber security system presentation
A.S. Sabuj
 
Cybersecurity Fundamentals | Understanding Cybersecurity Basics | Cybersecuri...
Edureka!
 
Cyber security presentation
Parab Mishra
 
cyber security presentation.pptx
kishore golla
 
Cyber Security Awareness
Ramiro Cid
 
Cyber security
manoj duli
 
Cyber security
Sabir Raja
 
Cyber crime and security
Sharath Raj
 
Cyber security
Manjushree Mashal
 
Introduction to Cyber Security
Stephen Lahanas
 
Network security
Estiak Khan
 
Computer security overview
CAS
 
Cyber Security 101: Training, awareness, strategies for small to medium sized...
Stephen Cobb
 
CYBER SECURITY
Vaishak Chandran
 
Ad

Similar to Introduction to Cybersecurity Fundamentals (20)

PPTX
Security in the Cognitive Era: Why it matters more than ever
EC-Council
 
PPTX
Introduction to Risk Management Fundamentals
Toño Herrera
 
PPSX
IBM: Cognitive Security Transformation for the Enrgy Sector
FMA Summits
 
PDF
IBM Security - Successful digital transformation
Sebastien JARDIN
 
PPTX
Take your SOC Beyond SIEM
Thomas Springer
 
PDF
IBM - IAM Security and Trends
IBM Sverige
 
PPTX
IBM Security intelligence v1 - ahmed el nahas
Shwetank Jayaswal
 
PDF
IBM Security 2017 Lunch and Learn Series
Jeff Miller
 
PDF
Kista watson summit final public version
IBM Sverige
 
PDF
IBM Security Services
Rainer Mueller
 
PPTX
PCM Vision 2019 Breakout: IBM | Red Hat
PCM
 
PPT
IBM security systems overview v1.0 - rohit nagarajan
Shwetank Jayaswal
 
PDF
The Next Stage of Fraud Protection: IBM Security Trusteer Fraud Protection Suite
IBM Security
 
PPTX
최근 비즈니스에서 활용되는 보안 기술 및 성숙된 보안 관리를 위한 ibm 전략 소개
ArumIm
 
PDF
IBM Security Services Overview
Casey Lucas
 
PDF
Tecnologie a supporto dei controlli di sicurezza fondamentali
Jürgen Ambrosi
 
PDF
Security Solution - IBM Business Connect Qatar Defend your company against cy...
Dalia Reda
 
PDF
Presentation defend your company against cyber threats with security solutions
xKinAnx
 
PPTX
How US Cybersecurity Executive Order Impacts IBM i Customers
Precisely
 
PPTX
Defending Your IBM i Against Malware
Precisely
 
Security in the Cognitive Era: Why it matters more than ever
EC-Council
 
Introduction to Risk Management Fundamentals
Toño Herrera
 
IBM: Cognitive Security Transformation for the Enrgy Sector
FMA Summits
 
IBM Security - Successful digital transformation
Sebastien JARDIN
 
Take your SOC Beyond SIEM
Thomas Springer
 
IBM - IAM Security and Trends
IBM Sverige
 
IBM Security intelligence v1 - ahmed el nahas
Shwetank Jayaswal
 
IBM Security 2017 Lunch and Learn Series
Jeff Miller
 
Kista watson summit final public version
IBM Sverige
 
IBM Security Services
Rainer Mueller
 
PCM Vision 2019 Breakout: IBM | Red Hat
PCM
 
IBM security systems overview v1.0 - rohit nagarajan
Shwetank Jayaswal
 
The Next Stage of Fraud Protection: IBM Security Trusteer Fraud Protection Suite
IBM Security
 
최근 비즈니스에서 활용되는 보안 기술 및 성숙된 보안 관리를 위한 ibm 전략 소개
ArumIm
 
IBM Security Services Overview
Casey Lucas
 
Tecnologie a supporto dei controlli di sicurezza fondamentali
Jürgen Ambrosi
 
Security Solution - IBM Business Connect Qatar Defend your company against cy...
Dalia Reda
 
Presentation defend your company against cyber threats with security solutions
xKinAnx
 
How US Cybersecurity Executive Order Impacts IBM i Customers
Precisely
 
Defending Your IBM i Against Malware
Precisely
 
Ad

Recently uploaded (20)

PDF
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
PDF
Bridging biosciences and deep learning for revolutionary discoveries: a compr...
IAESIJAI
 
PPTX
PA Analog/Digital System: The Backbone of Modern Surveillance and Communication
AVTRON Technologies LLC
 
PDF
Approach and Philosophy of On baking technology
30anthuong17
 
PDF
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
PPTX
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
PDF
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
PDF
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
PDF
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
PDF
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PDF
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
PDF
NewMind AI Monthly Chronicles - July 2025
NewMind AI
 
PDF
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
PDF
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
PDF
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
PDF
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
PDF
CIFDAQ's Market Insight: SEC Turns Pro Crypto
CIFDAQ
 
PDF
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
PDF
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
Bridging biosciences and deep learning for revolutionary discoveries: a compr...
IAESIJAI
 
PA Analog/Digital System: The Backbone of Modern Surveillance and Communication
AVTRON Technologies LLC
 
Approach and Philosophy of On baking technology
30anthuong17
 
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
NewMind AI Monthly Chronicles - July 2025
NewMind AI
 
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
CIFDAQ's Market Insight: SEC Turns Pro Crypto
CIFDAQ
 
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 

Introduction to Cybersecurity Fundamentals

  • 1. Cybersecurity Fundamentals Luis Herrera, CRISC, CEH, ITILv3 14-Apr-2017
  • 2. 2 IBM Security Agenda • World vision of breaches & statistics • What is Cybersecurity? • What is Information Security? • Protect Digital Assets • Key Concepts • Cybersecurity Roles • Cybersecurity Concepts • Risk Management • Essential Terminology • Threat Agents
  • 3. 3 IBM Security World’s Biggest Data Breaches
  • 4. 4 IBM Security Data Breach Statistics
  • 5. 5 IBM Security What is Cybersecurity? • The protection of information assets by addressing threats to information processed, stored and transported by internetworked information systems. Information Security Cybersecurity
  • 6. 6 IBM Security What is Information Security (InfoSec)? • Infosec deals with information, regardless of its format (it encompasses paper documents, digital and intellectual property in people's minds, and verbal or visual communications. • Cybersecurity on the other hand, is concerned with protecting digital assets, everything from networks to hardware and information processed, stored or/and transported by internetworked information systems.
  • 7. 7 IBM Security Protecting Digital Assets • The NIST (National Institute of Standards and Technology) & ENISA (European Union Agency for Network and Information Security) have identified 5 key functions necessary for the protection of digital assets Identify • Use organizational understanding to minimize risk to systems, assets, data and capabilities Protect • Design safeguards to limit the impact of potential events on critical services and infrastructure Detect • Implement activities to identify the occurrence of a cybersecurity event Respond • Take appropriate action after learning of a security event Recover • Plan for resilience and the timely repair of compromised capabilities and services
  • 8. 8 IBM Security Key Concepts • It is important to understand the elements of Information Security
  • 9. 9 IBM Security Cybersecurity Roles • Governance ̶ It's the responsibility of the board of directors and senior management of the organization. Provide strategic direction, ensure that objectives are achieved, ascertain whether risk is being managed appropriately and verify that the organization's resources are being used responsibly, are goals of the governance program • Risk Management ̶ It's the process by which an organization manages risk to acceptable levels, it requires the development and implementation of internal controls to manage mitigate risk throughout the organization, including financial and investment risk, physical risk and cyberrisk • Compliance ̶ The act of adhering to mandated requirements defined by laws and regulations, this also includes contractual obligations with clients, partners and internal policies
  • 10. 10 IBM Security Cybersecurity Concepts • Risk: ̶ The combination of the probability of an event and its consequence (ISO/IEC 73:2009). Risk is mitigated through the use of controls or safeguards. • Approaches •Also known as standards-based security, this approach relies on regulations or standards to determine security implementations. Controls are implemented regardless of their applicability or necessity, which often leads to a “checklist” attitude toward security. Compliance- based •Risk-based security relies on identifying the unique risk a particular organization faces and designing and implementing security controls to address that risk above and beyond the entity’s risk tolerance and business needs. Risk-based •An ad hoc approach simply implements security with no particular rationale or criteria. Ad hoc implementations may be driven by vendor marketing, or they may reflect insufficient subject matter expertise, knowledge or training when designing and implementing safeguards. Ad-hoc
  • 11. 11 IBM Security Risk Treatment
  • 12. 12 IBM Security Risk Treatment (Contd) Risk Reduction/Mitigation Implement controls and/or countermeasures Risk Retention/Acceptance If the cost of the mitigation controls is higher than the cost of the impact the risk represents Risk Avoidance/Terminate Terminate the activity giving rise to risk Risk Transfer Purchase insurance to address the risk, which will be transferred to the insurance company
  • 13. 13 IBM Security What is Residual Risk? • The risk that still remains after countermeasures and controls have been implemented. • If residual risk is greater than the acceptable risk level, then it should be further treated with the option of additional mitigation through implementing more stringent controls
  • 14. 14 IBM Security Essential Terminology Vulnerability Existence of a weakness, design, or implementation error that can lead to an unexpected event compromising the security of the system Asset Anything that represents value for the organization and is worth protecting Threat Anything capable of acting against an asset in a manner that can result in harm Backdoor A mean of regaining access to a compromised system by installing SW or configuring existing SE to enable remote access Brute Force Attack Trying all possible combinations of passwords or encryption keys until the correct one is found Buffer Overflow When an app tries to store more data in a buffer (temporary data storage area) than it was designed to hold, this corrupts the app and enables the attacker to introduce or run commands DDoS Attack An assault on a service from different sources that floods the target with so many requests that it becomes unavailable to anyone MitM Attack The attacker intercepts the communication stream between 2 parts, the attacker can sniff or replace the traffic Social Engineering Any attempt to exploit social vulnerabilities to gain access to information/systems
  • 15. 15 IBM Security Essential Terminology (Contd) Phishing The attacker attempts by email to convince a user that the originator is genuine, but with malicious intentions to obtaining information Exploit A breach of IT system security through vulnerabilities Payload Is the part of an exploit code that performs the intended malicious action, such as destroying, creating backdoors, and hijacking computer SQL Injection SQL syntax is used without proper validation as part of SQL queries, this could harm the DB or even the OS Bot A "bot" is a software application that can be controlled remotely to execute or automata predefined tasks Zero-Day Attack An attack that exploits computer application vulnerabilities before the software developer releases a patch for the vulnerability XSS Cross-site scripting, malicious scripts are injected into benign and trusted websites <script>alert("PWND")</script> APT Advanced Persistent Threats are complex and coordinated attacks directed at a specific target, they require enormous research and time Spoofing Faking the sending address to gain illegal entry into a system
  • 17. ibm.com/security securityintelligence.com xforce.ibmcloud.com @ibmsecurity youtube/user/ibmsecuritysolutions © Copyright IBM Corporation 2016. All rights reserved. The information contained in these materials is provided for informational purposes only, and is provided AS IS without warranty of any kind, express or implied. Any statement of direction represents IBM's current intent, is subject to change or withdrawal, and represent only goals and objectives. IBM, the IBM logo, and other IBM products and services are trademarks of the International Business Machines Corporation, in the United States, other countries or both. Other company, product, or service names may be trademarks or service marks of others. Statement of Good Security Practices: IT system security involves protecting systems and information through prevention, detection and response to improper access from within and outside your enterprise. Improper access can result in information being altered, destroyed, misappropriated or misused or can result in damage to or misuse of your systems, including for use in attacks on others. No IT system or product should be considered completely secure and no single product, service or security measure can be completely effective in preventing improper use or access. IBM systems, products and services are designed to be part of a lawful, comprehensive security approach, which will necessarily involve additional operational procedures, and may require other systems, products or services to be most effective. IBM does not warrant that any systems, products or services are immune from, or will make your enterprise immune from, the malicious or illegal conduct of any party. FOLLOW US ON: THANK YOU