Insider Threats^LJ Its Business Impact and Mitigation v1.pdf
ragsgopalan
11 views
57 slides
Aug 01, 2024
Slide 1 of 57
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
About This Presentation
Insider Threats and Business Impact
Slide Content
Raguram Gopalan
Personal Info:
Location: Bangalore, India
Email: [email protected]
LinkedIn: www.linkedin.com/ragsgopalan
Academia & Interests:
•MBA–Systems&Marketing
(UniversityofMadras.GoldMedallist)
•BE–ECEngineering,CIT,Coimbatore
•TBEM(MalcolmBaldridge)Auditor
•Lead-Ethics/POSHCommittee
•Mentor–WomenCareerDevelopment
Initiatives
•MentorforEmergingEntrepreneurs
Volunteering & Hobbies:
•FounderTrustee–AJFoundation,
EducatingUnderprivilegedKids
•Author|Philosophy,Yoga,Pranichealing
&Martialarts.
2003-2004: Mphasis Limited, Bangalore
Head Global Service Delivery (Msource)
2004-2007: TATA BSS Limited, Pune
CIO & VP –Business Excellence
2007-2009: Nortel Networks Limited, Gurgaon
Program Director–Managed Services
Head Consulting Services –APAC, ME
2009-2010: Avaya India Pvt Ltd
Managing Director –APS, APAC
2010-2012: AGC Networks Limited
Sr Vice President –Business Transformation
2012-2018: TATA BSS Limited
Sr Vice President –Business Transformation
CIO & Chief Digital Officer
2018 Onwards:
Founder & Managing partner –Haraa Labs LLC
Principal Partner –Vistas Global
Leadership Roles
Founder & Managing Partner –Haraa Labs LLC
Top 50 Tech Leaders | 2019, Intercon Dubai
Successful career for 27+ years as Business Services leader in multi-
cultural markets like US, Middle East & APAC.
KeySkills:
•Buildprofitablenewrevenuestreams.(Digital|Services).
•LeadChangeManagement&Organizationaltransformation.
•AbilitytodecodeFinancial,Functional,TechnicalandProcess
complexitiesofaContract&itsinterplay.
•AbilitytoBuild,motivateandworkwithmulti-culturalteams
thataresuccessful–BothInternalandExternal.
•“Achiever”asanindividual,“Mentor”inateam.“Change
Agent”inanOrganization&bestasa“Starter”.
SuccessStories:
•16+yearsinleadershippositions.
Havesuccessfully:
•Built4profitableSBUswithnewrevenuestreams.Partofthe
Monetizationprogramfor2ofthem.
•BuiltDigitalaccelerationprogramswithnewproductsand
revenuestreamsadding$30m+revenuesintoplinein2years.
•Lead4Organizationalmergersandtransitionssuccessfully.
•BuiltandLeadan$100m+contract-LargestContactcenter
automationprogramforthelargestTelco.
•19yearsinIT/BPOIndustrywithcreditofdesigning&building
50+OutsourcedContactcentresandVoiceNetworks.
Personal Info:
Location: Bangalore, India
Email: [email protected]
LinkedIn: www.linkedin.com/ragsgopalan
Academia & Interests:
•MBA–Systems&Marketing
(UniversityofMadras.GoldMedallist)
•BE–ECEngineering,CIT,Coimbatore
•TBEM(MalcolmBaldridge)Auditor
•Lead-Ethics/POSHCommittee
•Mentor–WomenCareerDevelopment
Initiatives
•MentorforEmergingEntrepreneurs
Volunteering & Hobbies:
•FounderTrustee–AJFoundation,
EducatingUnderprivilegedKids
•Author|Philosophy,Yoga,Pranichealing
&Martialarts.
2003-2004: Mphasis Limited, Bangalore
Head Global Service Delivery (Msource)
2004-2007: TATA BSS Limited, Pune
CIO & VP –Business Excellence
2007-2009: Nortel Networks Limited, Gurgaon
Program Director–Managed Services
Head Consulting Services –APAC, ME
2009-2010: Avaya India Pvt Ltd
Managing Director –APS, APAC
2010-2012: AGC Networks Limited
Sr Vice President –Business Transformation
2012-2018: TATA BSS Limited
Sr Vice President –Business Transformation
CIO & Chief Digital Officer
2018 Onwards:
Founder & Managing partner –Haraa Labs LLC
Principal Partner –Vistas Global
Leadership Roles
Founder & Managing Partner –Haraa Labs LLC
Top 50 Tech Leaders | 2019, Intercon Dubai
Successful career for 27+ years as Business Services leader in multi-
cultural markets like US, Middle East & APAC.
KeySkills:
•Buildprofitablenewrevenuestreams.(Digital|Services).
•LeadChangeManagement&Organizationaltransformation.
•AbilitytodecodeFinancial,Functional,TechnicalandProcess
complexitiesofaContract&itsinterplay.
•AbilitytoBuild,motivateandworkwithmulti-culturalteams
thataresuccessful–BothInternalandExternal.
•“Achiever”asanindividual,“Mentor”inateam.“Change
Agent”inanOrganization&bestasa“Starter”.
SuccessStories:
•16+yearsinleadershippositions.
Havesuccessfully:
•Built4profitableSBUswithnewrevenuestreams.Partofthe
Monetizationprogramfor2ofthem.
•BuiltDigitalaccelerationprogramswithnewproductsand
revenuestreamsadding$30m+revenuesintoplinein2years.
•Lead4Organizationalmergersandtransitionssuccessfully.
•BuiltandLeadan$100m+contract-LargestContactcenter
automationprogramforthelargestTelco.
•19yearsinIT/BPOIndustrywithcreditofdesigning&building
50+OutsourcedContactcentresandVoiceNetworks.
www.haraalabs.co| Middle East, India, US |
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
More than 1 per month
68% Organizations felt that the threats are
increasing with time.
68% Organizations felt that the threats are
increasing with time.
•
•
•
•
• €
• €
•
•
•
•
• €
• €
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•Anthem, had made considerable investments in its
security system (more than $230million) after a 2015
cyber attack.Unfortunately, all these security
improvements couldn’t help in this situation.
•Better Vendor Selection process. Vendor Audits of
Security Policy.
•
•
Insider theft exposes data of 18,000 Medicare members
•
•
•
•Anthem, had made considerable investments in its
security system (more than $230million) after a 2015
cyber attack.Unfortunately, all these security
improvements couldn’t help in this situation.
•Better Vendor Selection process. Vendor Audits of
Security Policy.
•
•
Insider theft exposes data of 18,000 Medicare members
•
•
•
•
•
•
•
•
•
•
Example of Organized Corporate espionage by Chinese on US Companies
•
•
•
•
•
•
•
•
•
Example of Organized Corporate espionage by Chinese on US Companies
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•Business Ecosystem
•IT Policies & Procedures
•IS Policies & Procedures
•HR Policies & Procedures
•Learning & Development
•Outsourcing Policies
•Supply Chain Management
•Forensic Audits & Investigation
•Communication & Notifications
•Statutory Considerations
•Legal Considerations
Its not an IT or IS Department Problem
•IT Policies & Procedures
•IS Policies & Procedures
•HR Policies & Procedures
•Learning & Development
•Outsourcing Policies
•Supply Chain Management
•Forensic Audits & Investigation
•Communication & Notifications
•Statutory Considerations
•Legal Considerations
Its not an IT or IS Department Problem
Identity and Access Management is one of the Key Improvement Areas
•
•
•
•
•
•
•
•Subject Attributes:
✓Organization
✓Department / Domain
✓Skill, Skill Level, SOD
✓Employee / 3
rd
party
✓Role / Hierarchy
✓Personal Identification
✓Person / Non-Person
(BOT)
✓
✓
✓
✓
✓
✓
✓
✓
✓
✓
✓
✓
✓
✓
Authentication: Act of Verifying the Subject.
Authorization: Decision to permit/ deny the actions on the Object.
✓Organization
✓Department / Domain
✓Skill, Skill Level, SOD
✓Employee / 3
rd
party
✓Role / Hierarchy
✓Personal Identification
✓Person / Non-Person
(BOT)
✓
✓
✓
✓
✓
✓
✓
✓
✓
✓
✓
✓
✓
✓
Authentication: Act of Verifying the Subject.
Authorization: Decision to permit/ deny the actions on the Object.
•
• •
•
••
• •
•
••
•
•AccessGovernanceincludes
RiskManagement Services,
PeriodicAccessCertification,
andRecommendations for
continuousimprovement.
•
•
•AccessGovernanceincludes
RiskManagement Services,
PeriodicAccessCertification,
andRecommendations for
continuousimprovement.
•
•
Independent BOT Controllers
✓
✓
✓
✓
✓
✓
✓
✓
✓
✓
✓
✓
✓
✓
✓
✓
✓
✓
UsernameandPassword,
LDAP, Windows
authentication, RSA,
SecurID, Web SSO,
RADIUS,PKI,Smartcards
LDAP, Windows
authentication, RSA,
SecurID, Web SSO,
RADIUS,PKI,Smartcards
India
~1millionscompanieswith~$320bin
paidupcapitalwith30million+
employeesinorganizedsector.There
are~8.5mshops&establishments
with~16memployees.
Worldwide:
~200 millions companies
with ~1.4B employees
US:
~23 millions
companies with
~140m employees
~1millionscompanieswith~$320bin
paidupcapitalwith30million+
employeesinorganizedsector.There
are~8.5mshops&establishments
with~16memployees.
Worldwide:
~200 millions companies
with ~1.4B employees
US:
~23 millions
companies with
~140m employees
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
1
trustnow
2
Observe IT
3
Cyber Arc
4
Beyond Trust
FEATURES
Product Comparison with Features
Privileged user’s activity
Single Connection Point
Privileged Session
Management
Privileged Accounts
Management
Risk-based Session Review
Rotate and Randomise
Privileged Credentials
Auto login for connected severs
Privileged user behavior analytics
Threat Detection, Containment
and Analytics
Password vault key management
Safely Store Passwords
Shared user privileges management
Super user accesses based on
workflow rules for a limited
duration
Reports type
Text, OCR, Keylogger
Object logging
Video(Monitor and Record Privileged
Sessions)
All details based on our internal assessment and available data in public domain
trustnow
2
Observe IT
3
Cyber Arc
4
Beyond Trust
FEATURES
Product Comparison with Features
Privileged user’s activity
Single Connection Point
Privileged Session
Management
Privileged Accounts
Management
Risk-based Session Review
Rotate and Randomise
Privileged Credentials
Auto login for connected severs
Privileged user behavior analytics
Threat Detection, Containment
and Analytics
Password vault key management
Safely Store Passwords
Shared user privileges management
Super user accesses based on
workflow rules for a limited
duration
Reports type
Text, OCR, Keylogger
Object logging
Video(Monitor and Record Privileged
Sessions)
All details based on our internal assessment and available data in public domain
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
Categories
BusinessDownload
Download Slideshow Get the original presentation fileQuick Actions
Statistics
- Views 11
- Slides 57
- Age 489 days
Related Slideshows
1
DTI BPI Pivot Small Business - BUSINESS START UP PLAN
MeljunCortes
31 views
1
CATHOLIC EDUCATIONAL Corporate Responsibilities
MeljunCortes
31 views
11
Karin Schaupp – Evocation; lançamento: 2000
alfeuRIO
31 views
10
Pillars of Biblical Oneness in the Book of Acts
JanParon
27 views
31
7-10. STP + Branding and Product & Services Strategies.pptx
itsyash298
29 views
44
Business Legislation PPT - UNIT 1 jimllpkggg
slogeshk98
32 views