SlideShare a Scribd company logo

Outsourcing it security yes, it’s still your problem

I
Interop

The document discusses outsourcing IT security. It notes that outsourcing is common now and companies must decide when, not if, to outsource. When outsourcing, companies must select the right provider, establish who is in control, own the risks, architect the right solution, maintain flexibility, manage SLAs, balance needs, establish governance through collaboration, consider the provider part of the team, and realize governance has costs. The key messages are that outsourcing is normal now and companies must thoughtfully partner with providers while maintaining ownership of security.

Education
1 of 33
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
Outsourcing IT Security: Yes, it’s still YOUR problem Jay Leek The views and opinions expressed within this presentation are solely my own and do not necessarily reflect the position of my employer, nor are they intended to be taken as business, security, financial or legal advice.
A history of hi-tech and innovation • 1865: Founded • 1898: Finnish Rubber Works Ltd. • 1967: began electronics • 1992: Launch 1st GSM device • 1999: World’s #1 manufacturer of mobile devices • 2009: World’s 5th most valued brand with ~38% global market share
Our global footprint is a key strength for Nokia ensuring that we retain an international perspective Over 1000 Collaborators worldwide Device manufacturing in 9 countries Over 125,000 employees
Nokia sales Breakdown Over $70 Billion North America Latin America 4% Europe Greater China 10% 13% 37% 14% 22% Middle East & Africa Asia- Pacific
Ask the audience
Outsourcing is nothing new…
Outsourcing it security yes, it’s still your problem
Outsourcing it security yes, it’s still your problem
Outsourcing it security yes, it’s still your problem
Maturity of IT Security Outsourcing
The question is not if, but when… Embrace it while you still have an option
Outsourcing it security yes, it’s still your problem
Getting there will not be easy
Good days…
Normal days…
Challenging days…
The key is to not just take a plunge
Must select the right provider
Know who is in control
Owning risks
Architecting the right solution for YOUR company Architect: Antoni Gaudí Facts and stories Visitor tours
Flexibility
Outsourcing it security yes, it’s still your problem
Manage your SLAs 30 minute guarantee? DISCLAIMER: Because safety is a priority, "You Got 30 Minutes™" is not a guarantee, but an estimate.
Balance
Establishing a partnership via collaboration governance
Example Your company Governance Executive Board Service Provider Model Strategic Business Level Tactical Management Board Operational Operational Management Board
Opportunity
Meet with your vendor regularly
You must consider them part of YOUR team to achieve success
Governance is not free
Getting the deal done
Take away: •Industry has changed •Threat landscape has evolved more quickly than most companies can manage •As IT Security professionals, we must evolve our mindset •Reward vs. Risk

More Related Content

PDF
Welcome Address by Mr. Tarun Malaviya at the 3rd Collaboration Retreat 2012
Mithi Software Technologies Pvt Ltd
 
PPT
VSynergize Outsourcing Pvt Ltd
VSynergize Outsourcing Pvt Ltd
 
PDF
OUTSOURCING ASSURANCE
Arul Nambi
 
PDF
IT OUTSOURCING ASSURANCE
Arul Nambi
 
PPT
Outsourcing Security Management
Nick Krym
 
PDF
Ssentservices Pv3.1.07
mundo01
 
PPT
Integrating Testing Into Your Talent Strategy: Leveraging Testing in a Down E...
Ryan Heinl
 
PDF
Snapshot UK CIO 2018
David Germain
 
Welcome Address by Mr. Tarun Malaviya at the 3rd Collaboration Retreat 2012
Mithi Software Technologies Pvt Ltd
 
VSynergize Outsourcing Pvt Ltd
VSynergize Outsourcing Pvt Ltd
 
OUTSOURCING ASSURANCE
Arul Nambi
 
IT OUTSOURCING ASSURANCE
Arul Nambi
 
Outsourcing Security Management
Nick Krym
 
Ssentservices Pv3.1.07
mundo01
 
Integrating Testing Into Your Talent Strategy: Leveraging Testing in a Down E...
Ryan Heinl
 
Snapshot UK CIO 2018
David Germain
 

Similar to Outsourcing it security yes, it’s still your problem (20)

PDF
ITD Unplugged: Practical Tips on Securing the Right Funding for You
The Digital Insurer
 
PDF
Aiimi Business Overview Dec 2010
damian_85
 
PPTX
Webinar for Apr 2019 - AI Powered Insurer
The Digital Insurer
 
PPTX
How to Buy a Small Business
fsgnj
 
PDF
Riskpro construction industry 2013
Rahul Bhan (CA, CIA, MBA)
 
PDF
Riskpro construction industry 2013
Rahul Bhan (CA, CIA, MBA)
 
PDF
BPM - Strategy and Execution
Ravi Tirumalai
 
PPTX
Journey from an idea to business
Satish Kataria
 
PPT
Getting down to business with security
Gerhard de Klerk
 
PDF
The 10 most successful leaders revolutionizing the bfsi sectors 2021
Insights success media and technology pvt ltd
 
PDF
Riskpro construction industry
Rahul Bhan (CA, CIA, MBA)
 
PDF
About bmgi 2013 english feb 2013
Anthony Shingleton
 
PPTX
Technology, the 4th Amendment and National Security by Doug Bailey
Vator
 
PPTX
Guillaume herve corporate_ innovation_intrapreneurship_entrepreneurship_organ...
Guillaume Hervé
 
PPTX
Værdien af Identity & Access Management, Jan Quach, Accenture
IBM Danmark
 
PDF
The Digital Advisor - Using technology to improve an advisory sales process f...
The Digital Insurer
 
PDF
India Start-ups IT Security & IT Act 2008
ValueMentor Consulting
 
PDF
Inclusion And Empowerment
danielblander
 
PPT
Growing through acquisition_Eighty20_Advisors
Eighty20 Advisors, LLC.
 
PDF
50 most valuable brands of the year 2019
Pavan Kumar
 
ITD Unplugged: Practical Tips on Securing the Right Funding for You
The Digital Insurer
 
Aiimi Business Overview Dec 2010
damian_85
 
Webinar for Apr 2019 - AI Powered Insurer
The Digital Insurer
 
How to Buy a Small Business
fsgnj
 
Riskpro construction industry 2013
Rahul Bhan (CA, CIA, MBA)
 
Riskpro construction industry 2013
Rahul Bhan (CA, CIA, MBA)
 
BPM - Strategy and Execution
Ravi Tirumalai
 
Journey from an idea to business
Satish Kataria
 
Getting down to business with security
Gerhard de Klerk
 
The 10 most successful leaders revolutionizing the bfsi sectors 2021
Insights success media and technology pvt ltd
 
Riskpro construction industry
Rahul Bhan (CA, CIA, MBA)
 
About bmgi 2013 english feb 2013
Anthony Shingleton
 
Technology, the 4th Amendment and National Security by Doug Bailey
Vator
 
Guillaume herve corporate_ innovation_intrapreneurship_entrepreneurship_organ...
Guillaume Hervé
 
Værdien af Identity & Access Management, Jan Quach, Accenture
IBM Danmark
 
The Digital Advisor - Using technology to improve an advisory sales process f...
The Digital Insurer
 
India Start-ups IT Security & IT Act 2008
ValueMentor Consulting
 
Inclusion And Empowerment
danielblander
 
Growing through acquisition_Eighty20_Advisors
Eighty20 Advisors, LLC.
 
50 most valuable brands of the year 2019
Pavan Kumar
 
Ad

More from Interop (20)

PDF
Preparing for the cloud
Interop
 
PDF
Portable clouds navigating cloud standards
Interop
 
PDF
Planning for (and deploying!) 4 g wireless
Interop
 
PDF
Planning and implementing windows 7
Interop
 
PDF
Overview and current topics in solid state storage
Interop
 
PDF
Next gen lan infrastructure
Interop
 
PDF
New approaches to vulnerability management
Interop
 
PDF
Mst cloud interoperability process
Interop
 
PDF
Mobile security new challenges practical solutions
Interop
 
PDF
Mobile computing threats
Interop
 
PDF
Mobile application development strategies
Interop
 
PDF
Managing your virtual environment
Interop
 
PDF
Managing change in the data center network
Interop
 
PDF
Managing a public cloud
Interop
 
PDF
Malice through the looking glass
Interop
 
PDF
Extending the lifecycle of your storage area network
Interop
 
PDF
Desktop virtualization primer one size does not fit all
Interop
 
PDF
Desktop virtualization best practices
Interop
 
PDF
Deep dive why networking must fundamentally change
Interop
 
PDF
Deep dive storage networking the path to performance
Interop
 
Preparing for the cloud
Interop
 
Portable clouds navigating cloud standards
Interop
 
Planning for (and deploying!) 4 g wireless
Interop
 
Planning and implementing windows 7
Interop
 
Overview and current topics in solid state storage
Interop
 
Next gen lan infrastructure
Interop
 
New approaches to vulnerability management
Interop
 
Mst cloud interoperability process
Interop
 
Mobile security new challenges practical solutions
Interop
 
Mobile computing threats
Interop
 
Mobile application development strategies
Interop
 
Managing your virtual environment
Interop
 
Managing change in the data center network
Interop
 
Managing a public cloud
Interop
 
Malice through the looking glass
Interop
 
Extending the lifecycle of your storage area network
Interop
 
Desktop virtualization primer one size does not fit all
Interop
 
Desktop virtualization best practices
Interop
 
Deep dive why networking must fundamentally change
Interop
 
Deep dive storage networking the path to performance
Interop
 
Ad

Recently uploaded (20)

PDF
Introduction-to-Social-Work-by-Leonora-Serafeca-De-Guzman-Group-2.pdf
jonelinvento
 
PDF
01-Introduction-to-Information-Management.pdf
PrinceIbarra
 
PDF
BÀI TẬP TEST BỔ TRỢ THEO TỪNG CHỦ ĐỀ CỦA TỪNG UNIT KÈM BÀI TẬP NGHE - TIẾNG A...
Nguyen Thanh Tu Collection
 
PDF
The Lost Whites of Pakistan by Jahanzaib Mughal.pdf
jahanzaibmughal6
 
PPTX
Renaissance Architecture: A Journey from Faith to Humanism
DrMonicaSharma
 
PPTX
human mycosis Human fungal infections are called human mycosis..pptx
shilpa939953
 
PDF
ANTIBIOTICS.pptx.pdf………………… xxxxxxxxxxxxx
HakHe
 
PDF
O7-L3 Supply Chain Operations - ICLT Program
labyankof
 
PDF
Saundersa Comprehensive Review for the NCLEX-RN Examination.pdf
sreejithcareers
 
PPTX
Week 4 Term 3 Study Techniques revisited.pptx
mansk2
 
PPTX
school management -TNTEU- B.Ed., Semester II Unit 1.pptx
NihumathunnisaH
 
PPTX
master seminar digital applications in india
ananyaray35
 
PPTX
COMPUTERS AS DATA ANALYSIS IN PRECLINICAL DEVELOPMENT.pptx
NIKITA BHUTE
 
PPTX
PPH.pptx obstetrics and gynecology in nursing
SrideviDevaraj5
 
PDF
Microbial disease of the cardiovascular and lymphatic systems
KeyaSharma
 
PDF
102 student loan defaulters named and shamed – Is someone you know on the list?
Kweku Zurek
 
PDF
Physiotherapy_for_Respiratory_and_Cardiac_Problems WEBBER.pdf
DrMONISHAphysio
 
PDF
Basic Mud Logging Guide for educational purpose
wdandworks
 
PPTX
Microbial diseases, their pathogenesis and prophylaxis
DevlinaSengupta
 
PPTX
BOWEL ELIMINATION FACTORS AFFECTING AND TYPES
PreetiSawant10
 
Introduction-to-Social-Work-by-Leonora-Serafeca-De-Guzman-Group-2.pdf
jonelinvento
 
01-Introduction-to-Information-Management.pdf
PrinceIbarra
 
BÀI TẬP TEST BỔ TRỢ THEO TỪNG CHỦ ĐỀ CỦA TỪNG UNIT KÈM BÀI TẬP NGHE - TIẾNG A...
Nguyen Thanh Tu Collection
 
The Lost Whites of Pakistan by Jahanzaib Mughal.pdf
jahanzaibmughal6
 
Renaissance Architecture: A Journey from Faith to Humanism
DrMonicaSharma
 
human mycosis Human fungal infections are called human mycosis..pptx
shilpa939953
 
ANTIBIOTICS.pptx.pdf………………… xxxxxxxxxxxxx
HakHe
 
O7-L3 Supply Chain Operations - ICLT Program
labyankof
 
Saundersa Comprehensive Review for the NCLEX-RN Examination.pdf
sreejithcareers
 
Week 4 Term 3 Study Techniques revisited.pptx
mansk2
 
school management -TNTEU- B.Ed., Semester II Unit 1.pptx
NihumathunnisaH
 
master seminar digital applications in india
ananyaray35
 
COMPUTERS AS DATA ANALYSIS IN PRECLINICAL DEVELOPMENT.pptx
NIKITA BHUTE
 
PPH.pptx obstetrics and gynecology in nursing
SrideviDevaraj5
 
Microbial disease of the cardiovascular and lymphatic systems
KeyaSharma
 
102 student loan defaulters named and shamed – Is someone you know on the list?
Kweku Zurek
 
Physiotherapy_for_Respiratory_and_Cardiac_Problems WEBBER.pdf
DrMONISHAphysio
 
Basic Mud Logging Guide for educational purpose
wdandworks
 
Microbial diseases, their pathogenesis and prophylaxis
DevlinaSengupta
 
BOWEL ELIMINATION FACTORS AFFECTING AND TYPES
PreetiSawant10
 

Outsourcing it security yes, it’s still your problem