Upload File

cybersecurity - nsa style

25
5 NSA CYBERSECURITY TIPS cc: Simon Greig Photo - https://www.flickr.com/photos/32563803@N00

Upload: paul-mcgillicuddy

Post on 16-Apr-2017

13.005 views

Category:

Business


2 download

Report

TRANSCRIPT

Page 1: Cybersecurity - NSA Style

5 NSA CYBERSECURITY TIPS

cc: Simon Greig Photo - https://www.flickr.com/photos/32563803@N00

Page 2: Cybersecurity - NSA Style

THESE TIPS ARE STRAIGHTFROM THE NSA WEBSITE

cc: RuffLife - https://www.flickr.com/photos/40993822@N06

Page 3: Cybersecurity - NSA Style

WWW.NSA.GOV/IA

cc: AMWRanes - https://www.flickr.com/photos/59525567@N00

http://www.nsa.gov/ia
http://www.nsa.gov/ia
http://www.nsa.gov/ia
Page 4: Cybersecurity - NSA Style

TELLS ME THESE WILL NEGATE 95% OF ALL ATTACKS

MY NSA CONNECTION

cc: MANYBITS - https://www.flickr.com/photos/38176611@N04

Page 5: Cybersecurity - NSA Style

THEY'RE SIMPLE

AND INEXPENSIVEcc: Dave Dugdale - https://www.flickr.com/photos/37387065@N05

Page 6: Cybersecurity - NSA Style

1. USE WHITELISTS

cc: Ludwig Gatzke - https://www.flickr.com/photos/16851909@N00

Page 7: Cybersecurity - NSA Style

BY DEFAULTEVERYTHING ELSE IS BLOCKED

cc: timothymeaney - https://www.flickr.com/photos/41101678@N00

Page 8: Cybersecurity - NSA Style

DECIDE WHICH PROGRAMS ARE ALLOWED TO RUN

ONLY ADMINISTRATORS

cc: USAID_IMAGES - https://www.flickr.com/photos/46658241@N06

Page 9: Cybersecurity - NSA Style

2. CONTROL ADMIN PRIVILEGES

cc: Poster Boy NYC - https://www.flickr.com/photos/26296445@N05

Page 10: Cybersecurity - NSA Style

GRANT PRIVILEGESONLY WHEN ABSOLUTELY NECESSARY

cc: colemama - https://www.flickr.com/photos/33901022@N00

Page 11: Cybersecurity - NSA Style

LOG & MONITOR

ADMINISTRATOR ACTIVITYcc: casey.marshall - https://www.flickr.com/photos/25299470@N00

Page 12: Cybersecurity - NSA Style

ADMINSTRATIVE ACCOUNTS

• No email account • Not connected to internet • Two factor access

cc: chrisinplymouth - https://www.flickr.com/photos/21450297@N06

Page 13: Cybersecurity - NSA Style

ADMINISTRATOR PASSWORDS

• Can't reuse • Greater than 14 characters • Must change frequently • Good policy for entire

organization

cc: mkandlez - https://www.flickr.com/photos/25541021@N00

Page 14: Cybersecurity - NSA Style

RESTRICT WHERE & WHENADMINISTRATORS CAN ROAM

cc: samgrover - https://www.flickr.com/photos/44124379481@N01

Page 15: Cybersecurity - NSA Style

3. LIMIT WORKSTATION TO WORKSTATION

COMMUNICATION

cc: Wiertz Sébastien - https://www.flickr.com/photos/36169570@N08

Page 16: Cybersecurity - NSA Style

REALLY?HARD TO BELIEVE IT'S STILL ALLOWED ANYWHERE

cc: Greencolander - https://www.flickr.com/photos/37539977@N00

Page 17: Cybersecurity - NSA Style

4. USE ANTI-VIRUSFILE-REPUTATION-SERVICE

cc: Bruno Santos - https://www.flickr.com/photos/65062705@N00

Page 18: Cybersecurity - NSA Style

MUST HAVE

COMPLETE THREAT PICTURE AT ALL TIMEScc: Hkuchera - https://www.flickr.com/photos/59263064@N00

Page 19: Cybersecurity - NSA Style

WITHIN SECONDS INSTEAD OF HOURS OR DAYS

UPDATEScc: wwarby - https://www.flickr.com/photos/26782864@N00

Page 20: Cybersecurity - NSA Style

5. ANTI-EXPLOITATIONTURN IT ON

cc: moofbong - https://www.flickr.com/photos/81314692@N00

Page 21: Cybersecurity - NSA Style

IS USUALLY A HACKER'S FIRST STEP

EXPLOITATIONcc: dustball - https://www.flickr.com/photos/85783274@N00

Page 22: Cybersecurity - NSA Style

EFFECTIVE AGAINST

COMMON ATTACKScc: Tddy - https://www.flickr.com/photos/40434084@N06

Page 23: Cybersecurity - NSA Style

STANDARD EQUIPMENT

AND IT'S FREEcc: othree - https://www.flickr.com/photos/12452841@N00

Page 24: Cybersecurity - NSA Style

IMPLEMENT THESE STEPSTODAY

cc: c.fuentes2007 - https://www.flickr.com/photos/22143940@N08

Page 25: Cybersecurity - NSA Style

SHARE

https://www.facebook.com/sharer/sharer.php?u=http%3A//www.slideshare.net/PaulMcGillicuddy/cybersecurity-nsa-style
https://www.linkedin.com/shareArticle?mini=true&url=http%3A//www.slideshare.net/PaulMcGillicuddy/cybersecurity-nsa-style&title=Cybersecurity%20-%20NSA%20Style&summary=Paul%20McGillicuddy%20shares%205%20tips%20from%20the%20National%20Security%20Agency%20on%20cybersecurity&source=
https://twitter.com/home?status=http%3A//www.slideshare.net/PaulMcGillicuddy/cybersecurity-nsa-style%20%40phmcgillicuddy%20on%20%40slideshare%20%23cyber%20%23cybersecurity

Nsa Interview

NSA AURORAGOLD

Courtney: NSA

The Cybersecurity Landscape · 2016-06-09 · – China (Great Cannon) – Deep Panda –NSA • Hacktivists – Anonymous – Lulz Sec ... • Firewall/VPN • Content Filtering

NSA Secrets

NSA Document

nsa hearing

NSA Endorsed and Accredited Educational Opportunities ...Information Assurance 2-Year Education, cybersecurity students complete a curriculum mapped to the CAE Information Assurance

NSA NetPlan

NSA Philly

NSA Complaint

NSA Affirmative - forms.huffmanisd.netforms.huffmanisd.net/debate/debate/cx/NSA Affirmative - DDI 20… · Web viewNSA Affirmative – DDI 2015 ST. 1. NSA Affirmative. NSA Affirmative1

NSA, CYBERSECURITY AND THE RUBIK’S CUBE: CAN YOU SOLVE …

The SonicWALL Network Security Appliance Series · Certifications Firewall NSA 240 NSA 2400 NSA 3500 NSA 4500 SonicOS Version SonicOS Enhanced 5.6 (or higher) Stateful Throughput1

NICE...2019/10/31  · Academic Excellence in Cybersecurity NICE NATI ON AL IN IT IATIVE FO R CYBERSECURITY EDUCATION nist.gov/nice The National Security Agency (NSA) CAE Program Office

NSA Appeal

Cybersecurity Style Guide V1 - Bishop Fox Fox - Cybersecurity Style G… · When writing about clickable buttons in reports, we follow the Microsoft Manual of Style (see Appendix

SonicWall Product Lines · 3 NSa series system specifications Firewall general NSa 2650 NSa 3650 NSa 4650 NSa 5650 Operating system SonicOS 6.5.2 Security processing cores 4 4 10

NSA presentation

NSA/CSS POLICY MANUAL 1-52 NSA/CSS CLASSIFICATION

NSA TALKS CYBERSECURITY - DEF CON CON 26/DEF CON 26... · NSA TALKS CYBERSECURITY. Information Technology Game Changer 2010 2017 4G/LTE 2008 2014 ... 2004 Facebook 2006 Twitter 2007

NSA IAD Manageable Network Plan nsa-16-0114.pdf

NSA Codenames

Documents/Approved... · ns.d MN/Sta31 nsa nsa nsd nv7 ozm9M asa otV09M nsa nSd nsa 0909M nn ottZ9M nsa 09-09M Ott-ce9M as. ontsosan asa ... Sd/11Hd SdnlHd santHd san1Hd san.ga SdnlHd

Opinion & Order: US NSA vs. NSA UHG

NSA Affirmative - forms.huffmanisd.netforms.huffmanisd.net/debate/cases/NSA Affirmative - DDI 2015 S… · Web viewNSA Affirmative – DDI 2015 ST. 1. NSA Affirmative. NSA Affirmative1

The SonicWALL Network Security Appliance Seriesmmvaquinhas.pt/sonicwall/DS_NSA_Series_US.pdf · Certifications Firewall NSA 240 NSA 2400 NSA 3500 NSA 4500 SonicOS Version SonicOS

SonicOS 5.9.0.4 Release Notes, Rev B - SonicWallsoftware.sonicwall.com/Firmware/Documentation/232... · • nsa e8510 • nsa e8500 • nsa e7500 • nsa e6500 • nsa e5500 • nsa

NSA Affirmative - forms.huffmanisd.netforms.huffmanisd.net/debate/NSA Affirmative - DDI 2015 ST.docx · Web viewNSA Affirmative – DDI 2015 ST. 1. NSA Affirmative. NSA Affirmative1

Performance analysis of 5G handovers (SA-SA, NSA-NSA, NSA

NSA Brochure

NSA Wiretaps

First Responders Technology Campus and Cybersecurity Data ... · NSA/CSS Hawaii DOCARE Hawaii. OFFICE OF ENTERPRISE TECHNOLOGY SERVICES The Office of Enterprise Technology Services

OpenStack NSA

Nsa Cotraveler