hot topics for 2010
DESCRIPTION
Presentation by Brian Honan at the January 2010 meeting of the Irish Information Security Forum on some of the topics that information security professionals should consider for the coming yearTRANSCRIPT
![Page 1: Hot Topics For 2010](https://reader033.vdocuments.us/reader033/viewer/2022052410/555d8989d8b42a3a3b8b518b/html5/thumbnails/1.jpg)
IISF Chapter Meetingp g
What’s Hot In InfosecWhat s Hot In Infosec For
2010
28/01/2010 1Copyright © BH IT Consulting Ltd www.bhconsulting.ie
![Page 2: Hot Topics For 2010](https://reader033.vdocuments.us/reader033/viewer/2022052410/555d8989d8b42a3a3b8b518b/html5/thumbnails/2.jpg)
2010 – So Far0 0 So a
Copyright © 2008 BH IT Consulting Ltd www.bhconsulting.ie 228/01/2010
![Page 3: Hot Topics For 2010](https://reader033.vdocuments.us/reader033/viewer/2022052410/555d8989d8b42a3a3b8b518b/html5/thumbnails/3.jpg)
Reported Issuesepo ted ssues
Copyright © 2008 BH IT Consulting Ltd www.bhconsulting.ie 328/01/2010
![Page 4: Hot Topics For 2010](https://reader033.vdocuments.us/reader033/viewer/2022052410/555d8989d8b42a3a3b8b518b/html5/thumbnails/4.jpg)
Infosec Certaintiesosec Ce ta t es
Copyright © 2008 BH IT Consulting Ltd www.bhconsulting.ie 428/01/2010
![Page 5: Hot Topics For 2010](https://reader033.vdocuments.us/reader033/viewer/2022052410/555d8989d8b42a3a3b8b518b/html5/thumbnails/5.jpg)
Why Improve Incident Response?y p p
5Copyright © BH IT Consulting Ltd www.bhconsulting.ie28/01/2010
![Page 6: Hot Topics For 2010](https://reader033.vdocuments.us/reader033/viewer/2022052410/555d8989d8b42a3a3b8b518b/html5/thumbnails/6.jpg)
Establish Teamstab s ea
Information Security Operations Human
Resources Legal Public Relations
Facilities Management
6Copyright © BH IT Consulting Ltd www.bhconsulting.ie28/01/2010
![Page 7: Hot Topics For 2010](https://reader033.vdocuments.us/reader033/viewer/2022052410/555d8989d8b42a3a3b8b518b/html5/thumbnails/7.jpg)
Infosec Challengesosec C a e ges
Copyright © 2008 BH IT Consulting Ltd www.bhconsulting.ie 728/01/2010
![Page 8: Hot Topics For 2010](https://reader033.vdocuments.us/reader033/viewer/2022052410/555d8989d8b42a3a3b8b518b/html5/thumbnails/8.jpg)
Economic Factorsco o c acto s
Copyright © 2008 BH IT Consulting Ltd www.bhconsulting.ie 828/01/2010
![Page 9: Hot Topics For 2010](https://reader033.vdocuments.us/reader033/viewer/2022052410/555d8989d8b42a3a3b8b518b/html5/thumbnails/9.jpg)
Budget Cutsudget Cuts
Copyright © 2008 BH IT Consulting Ltd www.bhconsulting.ie 928/01/2010
![Page 10: Hot Topics For 2010](https://reader033.vdocuments.us/reader033/viewer/2022052410/555d8989d8b42a3a3b8b518b/html5/thumbnails/10.jpg)
Increased Compliancec eased Co p a ce
Copyright © 2008 BH IT Consulting Ltd www.bhconsulting.ie 1028/01/2010
![Page 11: Hot Topics For 2010](https://reader033.vdocuments.us/reader033/viewer/2022052410/555d8989d8b42a3a3b8b518b/html5/thumbnails/11.jpg)
Typical IT Securityyp ca Secu ty
1111Copyright © BH IT Consulting Ltd www.bhconsulting.ie28/01/2010
![Page 12: Hot Topics For 2010](https://reader033.vdocuments.us/reader033/viewer/2022052410/555d8989d8b42a3a3b8b518b/html5/thumbnails/12.jpg)
Controls Will be BypassedCo t o s be ypassed
12Copyright © BH IT Consulting Ltd www.bhconsulting.ie28/01/2010
![Page 13: Hot Topics For 2010](https://reader033.vdocuments.us/reader033/viewer/2022052410/555d8989d8b42a3a3b8b518b/html5/thumbnails/13.jpg)
Dealing With The Futureea g t e utu e
Copyright © 2008 BH IT Consulting Ltd www.bhconsulting.ie 1328/01/2010
![Page 14: Hot Topics For 2010](https://reader033.vdocuments.us/reader033/viewer/2022052410/555d8989d8b42a3a3b8b518b/html5/thumbnails/14.jpg)
ISO 27001 Can Helpp
Recognisable Standardg
Independent
Global
14Copyright © 2008 BH IT Consulting Ltd www.bhconsulting.ie28/01/2010
![Page 15: Hot Topics For 2010](https://reader033.vdocuments.us/reader033/viewer/2022052410/555d8989d8b42a3a3b8b518b/html5/thumbnails/15.jpg)
What is ISO 27001?
An INFORMATION Security StandardPhysical and ElectronicPhysical and Electronic
It is NOT a Computer Security St d dStandard
15Copyright © 2008 BH IT Consulting Ltd www.bhconsulting.ie28/01/2010
![Page 16: Hot Topics For 2010](https://reader033.vdocuments.us/reader033/viewer/2022052410/555d8989d8b42a3a3b8b518b/html5/thumbnails/16.jpg)
Risk Management ProcessRisk Management Process
Measuring Program Effectiveness
44 Assessing Risk11
Implementing Controls
32 Conducting
Decision Support2
16Copyright © 2008 BH IT Consulting Ltd www.bhconsulting.ie28/01/2010
![Page 17: Hot Topics For 2010](https://reader033.vdocuments.us/reader033/viewer/2022052410/555d8989d8b42a3a3b8b518b/html5/thumbnails/17.jpg)
What ISO 27001 is NotWhat ISO 27001 is Not
Limited to information technology Limited to information technology
A security checklist
An insurance policy against security breaches
An audit method
A risk analysis methody
17Copyright © 2008 BH IT Consulting Ltd www.bhconsulting.ie28/01/2010
![Page 18: Hot Topics For 2010](https://reader033.vdocuments.us/reader033/viewer/2022052410/555d8989d8b42a3a3b8b518b/html5/thumbnails/18.jpg)
Cloud Security AllianceC oud Secu ty a ce
Copyright © 2008 BH IT Consulting Ltd www.bhconsulting.ie 1828/01/2010
![Page 19: Hot Topics For 2010](https://reader033.vdocuments.us/reader033/viewer/2022052410/555d8989d8b42a3a3b8b518b/html5/thumbnails/19.jpg)
Cloud Security AllianceC oud Secu ty a ce
Copyright © 2008 BH IT Consulting Ltd www.bhconsulting.ie 1928/01/2010
![Page 20: Hot Topics For 2010](https://reader033.vdocuments.us/reader033/viewer/2022052410/555d8989d8b42a3a3b8b518b/html5/thumbnails/20.jpg)
Cloud Security AllianceC oud Secu ty a ce
Copyright © 2008 BH IT Consulting Ltd www.bhconsulting.ie 2028/01/2010
![Page 21: Hot Topics For 2010](https://reader033.vdocuments.us/reader033/viewer/2022052410/555d8989d8b42a3a3b8b518b/html5/thumbnails/21.jpg)
Cloud Security AllianceC oud Secu ty a ce
Copyright © 2008 BH IT Consulting Ltd www.bhconsulting.ie 2128/01/2010
![Page 22: Hot Topics For 2010](https://reader033.vdocuments.us/reader033/viewer/2022052410/555d8989d8b42a3a3b8b518b/html5/thumbnails/22.jpg)
Cloud Security AllianceCloud Security Alliance
Promote common level of understandingPromote common level of understandingPromote independent research. pLaunch awareness campaigns. Create consensus lists of issuesGuidance for cloud security assuranceGuidance for cloud security assurance
www.cloudsecurityalliance.org
22Copyright © 2008 BH IT Consulting Ltd www.bhconsulting.ie28/01/2010
![Page 23: Hot Topics For 2010](https://reader033.vdocuments.us/reader033/viewer/2022052410/555d8989d8b42a3a3b8b518b/html5/thumbnails/23.jpg)
Questions ?Quest o s
www.twitter.com/brianhonanwww.bhconsulting.ie/securitywatch
Tel : +353 – 1 - 4404065
Copyright © 2008 BH IT Consulting Ltd www.bhconsulting.ie 23
Tel : +353 – 1 - 4404065
28/01/2010