Post on 21-May-2015
description
Helping You Piece IT Together
http://www.bhconsulting.ie info@bhconsulting.ie
Incident Response&
Cloud Security
Who Am I?
Brian.honan@bhconsulting.iewww.bhconsulting.ie
www.twitter.com/brianhonanwww.bhconsulting.ie/securitywatch
Who Am I?
Who Am I?
Business View of The Cloud
Vendor View of the Cloud
Security View of the Cloud
7
Cloud Security Challenges
8
Cloud IR
Cloud IR
Old Threats Still There
Control Panel Concerns
Multi-Tenant Concerns
Who Has Access?
Insider Threat
How Good Are Their Controls?
Financial Denial Of Service
Weakest Link ?
Merger & Acquisitions
Merger & Acquisitions
Provider Closures
Secure Data Deletion?
Where is Your Data?
Compliance Issues
Data Protection & Privacy
In Line Of Fire
Traditional IR
Traditional Incident Response
Detect
Contain
Eradicate
Remediate
Recover
Review
Communicate
Cloud Incident Response
How Do You Contain Cloud?
Change of Mindset
Same IR Principles
Detect
Contain
Eradicate
Remediate
Recover
Review
Communicate
Change of Mindset
Engage Early with Business
Ensure IR Requirements in T&Cs
Establish Team
Information Security Operations Human
Resources Legal Public Relations
Facilities Management
Establish Relationships
Agree Roles & Responsibilities
Agree Policies & Procedures
Agree Jurisdictional Issues
Agree Disclosure Rules
Notification in Place
Set up Alerting Mechanisms
Access to Logs
Other Alerting Mechanisms
Identify Tools
Practise Makes Perfect
Agree Testing
Review & Measure
Questions ?
Brian.honan@bhconsulting.iewww.bhconsulting.ie
www.twitter.com/brianhonanwww.bhconsulting.ie/securitywatch
Tel : +353 – 1 - 4404065