ibm security services - cna.mamk.ficna.mamk.fi/.../tturva2010/pdf/massimo_nardone_ibm.pdf · ibm...

© Copyright IBM Corporation 2010

THE VEHICLE THE SKILL THE SOLUTION

IBM Security ServicesIBM Security ServicesOverview

Massimo NardoneSenior Lead IT Security ArchitectGlobal Technology Services, IBM Internet Security [email protected]

IBM Security


Today’s Business Reality: More Risk, Fewer Resources

Maintaining Compliance Posture

� ~ 500,000 regulations have been imposed on global businesses, institutions and government agencies since 1981

� 33% of consumers notified of a security breach will terminate their relationship with the company they perceive as responsible

Cutting Operational Expenses � Postponing hiring of additional IT staff, long-term projects and new initiatives in favor of near-term return on investment (ROI)

� Seeking productivity increases in the existing infrastructure

“With a faltering economy resulting in increased jobs cuts and corporate belt tightening, security analysts are warning

companies to be especially vigilant about protecting their data and

networks.” Managing Increased Risks� Increased risk of fraud and other criminal activity

� Increased threats from outside and within organizations

� The average cost per hour of unplanned downtime = $42,000 per 1000 transactions

Computerworld

“Tough economic times create uncertainty in the workplace. When there is uncertainty, it creates stress for employees. It makes the company

more vulnerable to threats.”

Shelley Kirkpatrick Management Concepts

TODAY’S ECONOMY… …YOUR REALITY

IBM Security


Why IBM Security?

� IBM Leadership Proof Points

- 15,000 researchers, developers and SMEs on security initiatives

- 3,000+ security & risk management patents

- 200+ security customer references and 50+ published case studies

- 40+ years of proven success securing the zSeries environment

- Already managing more than 2.5B security events per day for clients

- IBM Security Framework unites all investments

- $1.8 billion invested in 2009

IBM Security


IBM Security Protection Platform

Among the most

advanced and complete

security architectures

ever developed—

delivering preemptive

security

Protection Platform

� Integrated security intelligence

� Comprehensive suite of professional security services

� Single, integrated view into the network

� Platform and service extensibility

� Correlation and integration of multiple data sources

� Underlying “best-in-breed” appliances

� 24/7 outsourced security management

� Improved system uptime and performance without a large investment in technology or resources

� Guaranteed protection services

IBM Security


8 Security Operations Centers

9 SecurityResearchCenters

133MonitoredCountries

20,000+Devices under

Contract

3,700+MSS ClientsWorldwide

4 Billion+EventsPer Day

The Global Extensive Infrastructure

IBM has the unmatched global and local expertise to deliver complete solutions – and manage the cost and complexity of security

IBM Security


Professional Security ServicesProfessional Security Services

IBM Security

© Copyright IBM Corporation 201072/8/2010

PSS: Comprehensive, Enterprise-Wide Security Services

�� AssessAssess

-- Application Security Assessment Application Security Assessment

-- Information Security Assessment Information Security Assessment

-- Policy and ISO 17799 Gap Analysis Policy and ISO 17799 Gap Analysis

-- Risk AssessmentsRisk Assessments

-- Security Certification Program Security Certification Program

-- FISMA AssessmentFISMA Assessment

-- PCI AssessmentPCI Assessment

-- Penetration TestPenetration Test

�� DesignDesign

-- Implementation PlanningImplementation Planning

-- Network Security Architecture Design Network Security Architecture Design

-- Policy Design and Development Policy Design and Development

-- QuickStartQuickStart Programs for Regulatory Programs for Regulatory Compliance Compliance

-- Security Strategy WorkshopSecurity Strategy Workshop

-- Standards and Procedures Standards and Procedures DevelopmentDevelopment

�� DeployDeploy

-- Deployment ServicesDeployment Services

-- Migration ServicesMigration Services

�� Manage & SupportManage & Support

-- Emergency Response Services Emergency Response Services

-- Staff Augmentation & SupportStaff Augmentation & Support

-- XX--Force Threat Analysis ServiceForce Threat Analysis Service

�� EducateEducate

-- CertificationCertification

-- OnOn--Site & OffSite & Off--Site ClassesSite Classes

-- Security Awareness ProgramSecurity Awareness Program

-- Third Party ClassesThird Party Classes

IBM Security


Business challenge:

Facing regulatory mandates, the Hudson’s Bay Company – Canada’s largest diversified general merchandise retailer – needed to meet the Payment Card Industry Data Security Standard (PCI DSS). To help meet this requirement, the company sought a managed security service that could provide full-scale security management.

Benefits:

� IBM GTS and IBM ISS helped to customer to address compliance with PCI DSS while reducing the consumption of internal IT resources.

� The customer was able to better anticipate, track and mitigate security threats before they caused harm to data or the IT infrastructure.

� IBM GTS and IBM ISS provided professional management of the customer’s network devices and appliances.

Solution:

To meet the requirements stipulated by PCI DSS, the customer engaged IBM Global Technology Services (GTS) and IBM Internet Security Systems™ (ISS). The solution provided the customer with log and securitymonitoring, as well as managed protection services.

Hudson’s Bay Company addresses PCI compliance standards while improving their data security with IBM GTS and ISS.

“Meeting the PCI DSS

regulations was mandatory,

but IBM provided us with more

than just compliance, Sensitive

data is secure, systems are

monitored closely for

performance issues and our IT

staff can focus on more

mission-critical activities.”

—Kristofer Laxdal

Hudson’s Bay Company

IBM Security


Solution components:

� IBM Professional Security Services (PSS)

� IBM Managed Security Services (MSS)

� IBM Proventia® Network Multi-Function Security (MFS) -M10, M30, G400

� PCI-DSS compliance expertise

Business challenge:

Faced with regulatory challenges mandated by the Payment Card Industry Data Security Standard (PCI DSS), a large cosmetics company looked to elevate their Level 2 PCI merchant status to a Level 1 – requiring additional compliance requirements. This included an assessment of core environments, outsourced data centers, Web applications for third-party vendors and point of sale (POS) systems.

Benefits:

� IBM ISS helped the customer meet PCI standards for Level 1 merchants by creating the necessary compensating controls.

� IBM ISS consultants leveraged their deep experience with a majormerchant network and acquirer banks to help achieve compliance.

� IBM PSS consultants are often able to negotiate compensating controls and deadlines on behalf of customers.

Solution:

IBM ISS Professional Security Services (PSS) assessed the customer’s security gaps, performing remediation activities around internal/external penetration tests and policy documentation. In addition, IBM ISS installed Proventia Multi-Function Security appliances to protect both stores and offices – and engaged ISS Managed Security Services (MSS) to consolidate and correlate the increased security information.

A large cosmetics company improves security and meets PCI regulatory standards with IBM ISS.

IBM Security


Managed Security ServicesManaged Security Services

IBM Security


Strengthened Portfolio through Vendor Alliances

IBM Security


Service provider of a major telco and ISP enterprise gains a powerful, comprehensive security solution

Industry: TelecommunicationsProfile: a major independent telecommunication company and Internet service provider (ISP) in EuropeCategory: Security

Client requirements

� Company’s network must be able to ward off numerous attacks and threats. They needed to provide its parent company with a deeper level of security as well as analyses of the incoming threats.

Solution

Company and IBM Global Technology Services deployed:

� Multiple IBM Network Intrusion Prevention Systems

� An IBM Network Enterprise Scanner

� An IBM Proventia Network Anomaly Detection System

� An IBM SiteProtector SecurityFusion Module.Benefits

� The new solutions provide a comprehensive intrusion detection and prevention solution that blocks attacks and then analyzes and reports them without slowing down the data traffic on the network.

� The total security solution delivers a better view of the data traffic on the network, as well as the needs of customers.

IBM Security


Solution components:

� IBM Proventia® Network Intrusion Prevention System (IPS)

� IBM Proventia® Network Intrusion Detection System (IDS)

� IBM Managed Security Services

Business challenge:

Conscious of threats to their IT infrastructure, a large Canadian fashion retail group sought to improve the security for their IT environment. The company did not have an Intrusion Protection System (IPS) or Intrusion Detection System (IDS) to help fortify their security – nor the people to help manage such resources.

Benefits:

� The customer received critical protection without overwhelming their in-house IT team and resources.

� The customer gained around-the-clock, real-time access to professionally trained and certified security experts at IBM ISS.

� IBM ISS helped the customer lower their total cost of ownership (TCO) through reduced staff, maintenance and infrastructure requirements.

Solution:

IBM ISS helped the customer to implement a Managed Intrusion Prevention and Detection service, providing comprehensive protection for their networks and servers. The customer obtained a three-year contract with IBM ISS to manage and guide their IPS security solution - the first time the customer has outsourced part of their business.

A large Canadian fashion retail group achieves around-the-clock protection for their IT infrastructure with IBM ISS.

IBM Security


IBM ISS Managed Security ServicesDriving Cost Savings with Guaranteed Protection

Assumes full security staff of 10 providing 24x7x365 coverage, managing 12 HA Firewalls and 6 IDS engines, attending 2 training classes/yr, 20% employee turnover, equipment costs allocated over 3 years, and maintenance costing 15% of total equipment costs. * Money-back payment (for Managed Protection Services - Premium Level only): If IBM Internet Security Systems fails to meet the Security Incidents Prevention Guarantee, client shall be paid US$50,000 for each instance this guarantee has not been met. Please see IBM Internet Security Systems SLAs for more details.

Goes beyond simple event monitoring and device management by offering the industry’s leading performance-based service level agreement (SLA) with a $50,000 cash-back payment* by the leading-edge IBM Internet Security Systems (ISS) X-Force®

research and development team.

Security Management Monthly Annual

In-House $85,592 $995,102

ISS Managed Security $37,671 $452,051

Cost Savings $44,921 $543,051

In this example, leveraging a managed protection provider yields a 55% savings over in-house security.

IBM Security


Portal Reporting

The portal reporting engine provides a custom query capabilities that

allow users to build reports for exactly the data they

desire.

All reports can be run in several

formats and can be exported to HTML, CSV and PDF.

IBM Security


ibm security services - cna.mamk.ficna.mamk.fi/.../tturva2010/pdf/massimo_nardone_ibm.pdf · ibm...

Documents