Do it Best Corp. Techapalooza 2014 Presentation
-
Upload
brian-t-ohara-cisa-cism-crisc-ccsp-cissp -
Category
Technology
-
view
199 -
download
1
Transcript of Do it Best Corp. Techapalooza 2014 Presentation
![Page 1: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/1.jpg)
Privacy and Security 101or
How To Play Safely In A Dangerous World
Brian T. O’Hara CISSP, CISA, CISM, CRISCChief Information Security Officer
The Mako Group, [email protected]
http://www.linkedin.com/in/brianohara/Twitter: @brian_t_ohara
260.241.4799
![Page 2: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/2.jpg)
The Mako Group, LLC, Services• IT & Info Sec Auditing• IT Risk Assessments• Security Training• Vulnerability
Assessments• Social Engineering• PCI DSS 3
• FISMA Audits• Penetration Testing• Gap Assessments• SOC 1 and SOC 2• SOX 404• HIPAA• Virtual CISO
![Page 3: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/3.jpg)
BIO• CISO of The Mako Group, LLC• Information Systems Security Assoc. Fellow• Program Chair, CINT Ivy Tech NE• Adjunct Faculty Indiana Tech• CISSP - Certified Info Systems Security Prof.• CISA - Certified Information Systems Auditor • CISM - Certified Information Security Manager• CRISC - Certified Risk Info System Controls
![Page 4: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/4.jpg)
Does Privacy Still Exist
• Google• Post 911 Federal Government Monitoring• E-Commerce Marketing• Data Breaches Everywhere• Impact of HIPAA and HITECH• Social Media• BYOD (Bring Your Own Device)
![Page 5: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/5.jpg)
Yesterday
• Pre 911• Dial up Modems• Signature Based Anti Virus• No Smart Phones• No Zappos • No Electronic Medical Records• No GOOGLE!!!!
![Page 6: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/6.jpg)
Today
• Post 911• GOOGLE!!!• Zappos • Smart Phones• Electronic Medical Records• Card Use Ubiquitous• BYOS (Bring Your Own Stuff)
![Page 7: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/7.jpg)
Quiz 1
• Who invented the internet?
![Page 8: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/8.jpg)
Answer
• Tim Berners - Lee
![Page 9: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/9.jpg)
What Can You Do?
• 10 Steps To Protect Your Privacy
![Page 10: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/10.jpg)
1. Use Good Anti Malware
• Anti Virus• Anti Spam• Intrusion Detection• Firewalls
![Page 11: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/11.jpg)
MACs Get Viruses Too
• Do not suffer from the delusion that Apple computers cannot become infected with viruses or other malware.
![Page 12: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/12.jpg)
2. Patch Your Systems
• Windows Updates• Third Party Apps
– Java– Flash
• MAC OSX Updates
![Page 13: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/13.jpg)
Microsoft
![Page 14: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/14.jpg)
JAVA
![Page 15: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/15.jpg)
Flash
![Page 16: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/16.jpg)
MAC
![Page 17: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/17.jpg)
Windows XP
• To Kill or Not to Kill
![Page 18: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/18.jpg)
3. Secure Your Devices
• Wireless Routers• Machines• Tablets• Phones
![Page 19: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/19.jpg)
4. Social Media
• Facebook• Twitter• Instagram• FourSquare• MySpace• LinkedIn
• Pinterest• Google+• Flickr• Meetup• Classmates• Meetme
![Page 20: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/20.jpg)
Quiz 2
• What was the name of the first Web Browser?
![Page 21: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/21.jpg)
Answer
• Netscape
![Page 22: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/22.jpg)
5. Encryption
• What the heck is it?• How is it used?• Can mere mortals master the dark arts?
![Page 23: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/23.jpg)
Understand SSL and Use It
![Page 24: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/24.jpg)
![Page 25: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/25.jpg)
SSL Verfication
![Page 26: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/26.jpg)
Wireless Safety
• Starbucks• Hotels• Airports
![Page 27: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/27.jpg)
QUIZ 3
• Who sent the first email across the internet?
• When did it occur?
![Page 28: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/28.jpg)
Answer
• Ray Tomlinson
![Page 29: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/29.jpg)
Bonus Question
• Where did the @ orignate?
![Page 30: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/30.jpg)
Answer
• The local supermarket
![Page 31: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/31.jpg)
6. Phishing
![Page 32: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/32.jpg)
7. Passwords
• Length• Complexity• Reusability• Passphrases• When to change• How to store/secure
![Page 33: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/33.jpg)
8. Downloads
VERY DANGEROUS• Use Caution• Never Download from Email
– Use copy and paste• Make sure it is something you want/need• If unsure, ask someone for help• If unsure, delete!
![Page 34: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/34.jpg)
9. Watch Your Monthly Bills
• Keep close tabs on your monthly CC bills• Watch for small anomalous purchases• Report activity to Bank IMMEDIATELY!
![Page 35: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/35.jpg)
10. Ask for Help
• Go to your local computer store• Use online resources with caution• Ask your in house IT staff
– Within reason• Notify authorities if necessary
![Page 36: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/36.jpg)
11. BONUSUse Common Sense
• Don’t give out private information to people you cannot verify actually need it.
• Use your head. If something sounds too good to be true, it is.
• Watch over your children. They are easily duped and tempted. It is not their fault.
• Watch over the elderly. They are easily duped and temtped.
![Page 37: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/37.jpg)
REMEMBER
• If it sounds too good to be true, it isn’t.• If you aren’t sure, ask someone else.• If you think you have been taken
advantage of, report it• Whatever you post on the internet, stays
on the internet,
FOREVER!
![Page 38: Do it Best Corp. Techapalooza 2014 Presentation](https://reader036.fdocuments.us/reader036/viewer/2022070513/5887b5591a28ab817a8b53fd/html5/thumbnails/38.jpg)
THANKSBrian T. O’Hara CISSP, CISA, CISM, CRISC
Chief Information Security OfficerThe Mako Group, LLC
[email protected]://www.linkedin.com/in/brianohara/
Twitter: @brian_t_ohara
260.241.4799