Integrated Cyber Defense for the US Federal Government€¦ · Data Center Security Content...
15
Integrated Cyber Defense for the US Federal Government Chris Townsend Vice President, Federal, Symantec
Transcript of Integrated Cyber Defense for the US Federal Government€¦ · Data Center Security Content...
Integrated Cyber Defense for the US Federal Government
Chris TownsendVice President, Federal, Symantec
Copyright © 2017 Symantec Corporation SYMANTEC PROPRIETARY- LIMITED USE ONLY
CONSIDER: CHALLENGE / RESPONSE
SWORD
CLUB
SATELLITE COMM
AIR STRIKES
TANKS
TREBUCHET
ARMOR
SHIELD
HIGH WALLS
GUNSHIGH GROUND
RADAR
Copyright © 2017 Symantec Corporation SYMANTEC PROPRIETARY- LIMITED USE ONLY
WHAT ABOUT NOW?
3
COORDINATEDCOMMAND &
CONTROLWATER
GROUND
AIR
SPACE
Copyright © 2017 Symantec Corporation SYMANTEC PROPRIETARY- LIMITED USE ONLY
Timeline of Military Communications
4
Fire Beacons
850 BC
Smoke Signals
150 BC
Animals -Carrier
Pigeons, horses
Drums, Horns, Flags
-1900s
Telegraph
1790s
Photo Phone
1880
Radio
1900s
Laser
1960s
Satellite
1970s
IEEE
2009
Thousands of Years Decades
Copyright © 2017 Symantec Corporation SYMANTEC PROPRIETARY- LIMITED USE ONLY 5
BUT…HOW ABOUT CYBER?
Copyright © 2017 Symantec Corporation SYMANTEC PROPRIETARY- LIMITED USE ONLY
There are MILLIONS of Threats & Attack Vectors
6
TDK
dragonfly, 2.0
RANSOMWARE
Malware?
OrganizedBad Actors?
State-Sponsored Attacks
Copyright © 2017 Symantec Corporation SYMANTEC PROPRIETARY- LIMITED USE ONLY
AND HOW DO WE RESPOND? WITH DISPARATE TOOLS & VENDORS
Endpoint Security
Web Proxy
Server Security
Forensics & EDR
Sandboxing
Firewall
Endpoint Encryption
IPS /IDS
SIEM & Log MgmtMobile Security
URL / Web Filtering
Database Security
SSL Decryption
DLP
Cloud CASB
Tokens / MFA
Email Security
Network Mgmt
Monitoring & Managed Services
Governance, Risk & Compliance
IoT & Guest Access
Managed PKI
Network Control
VA/PT
Endpoint Mgmt
Data Audit
Email Encryption
Business Process Automation
MetaMatrix
Copyright © 2017 Symantec Corporation SYMANTEC PROPRIETARY- LIMITED USE ONLY
Are these the Top DoD Cyber Challenges?
• Defend DoD Networks, Systems and Information
• Defend the United States and its Interests Against Cyber Attacks
• Provide Integrated Cyber Capabilities in Support of Military Operations
• Cyber Security as an Enabler
8NO!!! THESE ARE THE OUTCOMES WE ARE TRYING TO ACHIEVE.
Copyright © 2017 Symantec Corporation SYMANTEC PROPRIETARY- LIMITED USE ONLY
Our Challenges are Internal
9
“Complexity is the Enemy of Security”
Howard SchmidtGartner Security & Risk Conference Key Note
June 2012
• Lack of Standards/Integration/Automation• Limited Human Capital/Cyber workforce• Lack of good metrics – efficacy/ROI• Alignment to Cyber Plan/Architecture• Align to risk mitigation plan • Procurement - LPTA• Collaboration/communication• Limited Resources/Budget
Copyright © 2017 Symantec Corporation SYMANTEC PROPRIETARY- LIMITED USE ONLY
Are COTS Tools the Best Option?
10
Or Should Cyber Defenses be Purpose Built?
Copyright © 2017 Symantec Corporation SYMANTEC PROPRIETARY- LIMITED USE ONLY
THE ANSWER TO ME IS CLEAR…
11
Copyright © 2017 Symantec Corporation SYMANTEC PROPRIETARY- LIMITED USE ONLY
It is Time for a Cyber Security Manhattan Project
12
Time for the US to develop a Manhattan Project in CybersecurityBY GREG CLARK, OPINION CONTRIBUTOR — 09/20/17 06:40 AM EDT
http://thehill.com/opinion/cybersecurity/351387-time-for-the-us-to-develop-a-manhattan-project-in-cybersecurity
Copyright © 2017 Symantec Corporation SYMANTEC PROPRIETARY- LIMITED USE ONLY
Web Isolation
Endpoint Protection
Mobile
WebSecurityService
DLPSecure Web Gateway
RiskInsight
MessagingGateway
Web Application Firewall
Advanced Threat Protection
MalwareAnalysis
EndpointManagement
Endpoint Protection
& EDR
Endpoint Protection
CloudVIP
Identity
LocalIntelligence
File
UR
L
Wh
itel
ist
Bla
cklis
t
Cer
tifi
cate
Mac
hin
e Le
arn
ing
SIEM Integration
Data Center Security
EncryptionContent Analysis
Performance Optimization
Cloud DLP CASB
Email Security
WorkloadProtection
Cloud Sandbox
Encryption
Risk &Compliance
Management
EncryptedTraffic
ManagementSecurity Analytics
Third Party Ecosystem
ON
P
RE
MIS
ES
CLO
UD
Cloud Data Protection
StorageProtection
Cyber SecurityServices
13
SOC Workbench
ON
P
RE
MIS
ES
Integrated Cyber Defense Platform
Copyright © 2017 Symantec Corporation SYMANTEC PROPRIETARY- LIMITED USE ONLY
OUR ACTION – THE TAKEAWAYS
14
1.Plan – We Need an Architecture That Makes Sense!
2.Collaborate – Force the Issue From the Top Down – and Outside to the SI’s, SPS, DIB and Manf/Vendors
3.Push for a “Manhattan Project” type effort - the adversaries are already doing it!
