Post on 27-Dec-2015
Staying Ahead of the Curve inCyber Security
Bill ChangCEO, SingTel Group Enterprise
Global cyber threat landscape
Source: Mandiant M-Trends 2014 Report
95%of companies in APAC
compromised
67%of companies learned
they were breached from an external entity
100%of victims had
up-to-date anti-virus signatures
22
~9 months 9 months
229 DAYSMedian # of days attackers are present on a
victim network before detection.
INITIALBREACH
THREAT UNDETECTED REMEDIATION
The high cost of being unprepared
3
Countries in APJ are 35% more likely to be targeted by advanced cyber attacks than the world as a whole
4
Taiwan
South
Kor
ea
Hong
Kong
Philipp
ines
Austra
lia
APJ
Singap
ore
Thaila
nd
Glob
al
India
Japa
n
75.0%
61.4% 60.5%56.3%
50.0% 49.2%41.7%
38.5% 36.5%36.1%
25.6%
>40% of global DDoS attacks from
APAC
APT Exposure Global vs. APJ Countries
>80% of APTs in APAC in South
Korea, HK, Taiwan and Japan
>95% of APAC enterprises
unknowingly host compromised PCs
Govt & High Tech account for 50% of all APT detections
in APAC
Sectors most targeted by Cyber criminals
5
Source: FireEye
Services; 19.8%
Government; 13.5%
High Tech; 13.0%Entertainment, Media, Hospitality;
10.2%
Telecom; 9.2%
Education; 8.2%
Chemical, Manufactur-ing, Mining; 7.7%
Financial Services; 6.2%
Aerospace; 6.2%Energy,Utilities; 5.9%
A commercial market for hackersGrowth in quantity of hacking tools, cybercrime services
6Source: ZDNet Security
Rent a Botnet$2 an Hour or
Buy one for $700
Target credit cards are selling for $20 - $100 each
Increasing vectors of attacks
7
Increasing vectors of attacks
8
Increasing vectors of attacks
9
Increasing vectors of attacks
10
Increasing vectors of attacks
11
Enterprises need a proactive & integrated security strategy
12
Protect User, Data & Assets against known threats so that day-to-day biz and operations can run smoothly
• People & identity • Data & information• Application & Process• Network & Systems
OPERATIONALSECURITY
Proactive defense against advanced malware threats backed by security analytics & intelligence
• Advanced analytics of persistent threats
• Consolidated real-time visibility & monitoring
• Big data security analytics & intelligence
ANALYTICALSECURITY
Stay ahead of threat curve by future proofing, predicting & responding to risks & attacks before it occurs
• Simulation & resilience testing
• Cyber defense training • Incident response & recovery• Advanced SOCs
PREDICTIVESECURITY
13
Date: 24 Sep2014
Offering end to end managed security services for enterprises
14
ASOCSecurity Incidents & Events Monitoring
SecurityProfessionals
StandardsCompliance
SingTel Security Operations Centers & Advanced Cyber Security Competency CenterActionable Intelligence & Analytics
ACER&D, Innovations &
Cyber Range
END-TO-ENDVISIBILITY
• SingTel Network Operations centres and ASOCs connected to global network of ASOCs
• Data stores in region to keep data in-country/region
EXPERTPROFESSIONALS
• Global pool of MSS implementation, intelligence and APT experts
• Training 150 new professional in APAC
ENHANCEDFRONT LINE
INTELLIGENCE
• SingTel network & end point customer networks sensors• Dynamic threat intelligence profiles
15
Advanced Security Operations CentreAlerts to Fix moving from days to minutes
Asia Pacific Cyber-Security Competency Centre (ACE)
16
Start ups &VC
NOCs/SOCs
SingTelAssociates
GlobalIntelligence
TertiaryInstitutions
EnterpriseCustomers
TalentPool
Global Tech Partners
ACE
R&DLABS
CYBERRANGE
INCUBATIONLABS
Providing real-time enterprise wide visibility for prevention of mobile threats & protection against multi-vector attacks
17
GROWING MOBILE THREAT
Mobility & BYOD “Bring Your Own Disaster”
Explosion of malicious mobile apps - Android platform has most mobile malware ~96%
Apps has unauthorized access
MOBILE THREATS DEFENCE
Real time visibility of mobile threats on network & devices with dashboard & lightweight app
Block malicious apps from running, alerts administrators & users of suspicious apps
Threat intelligence ecosystem
Integration with MDM solutions (MobileIron)
Strategic partnerships with best in class cyber players …
18
USERS
AdvancedPersistentThreats
Fixed Office Users
Mobile Office Users
NetworkIntrusions
Web AppAttack
Denial ofService
INTERNET
World Wide Web
CORPORATE NETWORK
Email Filtering
Intrusion prevention
End point protection
Firewalls
Web Filtering
Managed Security Awards
19
Best Security as a Service Provider
Best Partner Award
Top Government & Availability Partner
Top RSA SecurWorld Partner
Top Security Partner
Security PartnerOf the Year
Best Contributing Reseller Award
Gold UnityPartner
Staying ahead of curve in cyber security …
20
Global threat landscape is fast evolving, high cost
of being unprepared
Enterprises need to address new threat
landscape to stay ahead
Leading provider of end to end managed security
services
Staying Ahead of the Curve inCyber Security
Bill ChangCEO, SingTel Group Enterprise