Improving Safety and Security - CSO50 Conference...Improving Safety and Security Through Improved...
Transcript of Improving Safety and Security - CSO50 Conference...Improving Safety and Security Through Improved...
![Page 1: Improving Safety and Security - CSO50 Conference...Improving Safety and Security Through Improved Awareness Bob Eichler Director of Information Security Cancer Treatment Centers of](https://reader035.fdocuments.in/reader035/viewer/2022063016/5fd5d6262da88522f90263c3/html5/thumbnails/1.jpg)
![Page 2: Improving Safety and Security - CSO50 Conference...Improving Safety and Security Through Improved Awareness Bob Eichler Director of Information Security Cancer Treatment Centers of](https://reader035.fdocuments.in/reader035/viewer/2022063016/5fd5d6262da88522f90263c3/html5/thumbnails/2.jpg)
Improving Safety and Security Through Improved Awareness
Bob EichlerDirector of Information Security
Cancer Treatment Centers of America
![Page 3: Improving Safety and Security - CSO50 Conference...Improving Safety and Security Through Improved Awareness Bob Eichler Director of Information Security Cancer Treatment Centers of](https://reader035.fdocuments.in/reader035/viewer/2022063016/5fd5d6262da88522f90263c3/html5/thumbnails/3.jpg)
Cancer Treatment Centers of America®
Making Information Security Important to Your UsersBob Eichler – Director, Information Security
![Page 4: Improving Safety and Security - CSO50 Conference...Improving Safety and Security Through Improved Awareness Bob Eichler Director of Information Security Cancer Treatment Centers of](https://reader035.fdocuments.in/reader035/viewer/2022063016/5fd5d6262da88522f90263c3/html5/thumbnails/4.jpg)
“In an age of cyber threats, we must
ensure that a patient’s information is
treated with as much care as our
clinicians give their bodies.”
- Bob Eichler
![Page 5: Improving Safety and Security - CSO50 Conference...Improving Safety and Security Through Improved Awareness Bob Eichler Director of Information Security Cancer Treatment Centers of](https://reader035.fdocuments.in/reader035/viewer/2022063016/5fd5d6262da88522f90263c3/html5/thumbnails/5.jpg)
About me…
Bob Eichler
• Director of Information Security at Cancer Treatment Centers of America since 2009
• Charged with protecting some of the most sensitive information people possess
• Previously Enterprise Security Architect at one of the world’s largest airlines
• 20+ years’ experience in IT Security space
• Smart enough to surround myself with really good security professionals!
![Page 6: Improving Safety and Security - CSO50 Conference...Improving Safety and Security Through Improved Awareness Bob Eichler Director of Information Security Cancer Treatment Centers of](https://reader035.fdocuments.in/reader035/viewer/2022063016/5fd5d6262da88522f90263c3/html5/thumbnails/6.jpg)
$1,000,000,000
A report by cybersecurity company, Herjavec Group, asserts that $209M
was paid in cyber-ransoms in 1Q 2016.
![Page 7: Improving Safety and Security - CSO50 Conference...Improving Safety and Security Through Improved Awareness Bob Eichler Director of Information Security Cancer Treatment Centers of](https://reader035.fdocuments.in/reader035/viewer/2022063016/5fd5d6262da88522f90263c3/html5/thumbnails/7.jpg)
Ransomware is worth a cyber criminal’s investment
2016 numbers from the Internet*:
• Number of new ransomware modifications in Q1: 2,900
• Number of new modifications in Q3: 32,091 (11x as many!)
• Q1 – Individuals attacked every 20 seconds
• Q3 – Individuals attacked every 10 seconds (2x as fast!)
• Q1 – Business attacked every 2 minutes
• Q3 – Business attacked every 40 seconds (3x as fast!)
*Source: Kaspersky Lab
![Page 8: Improving Safety and Security - CSO50 Conference...Improving Safety and Security Through Improved Awareness Bob Eichler Director of Information Security Cancer Treatment Centers of](https://reader035.fdocuments.in/reader035/viewer/2022063016/5fd5d6262da88522f90263c3/html5/thumbnails/8.jpg)
The power of a mouse click…
• Encrypt every file on your computer
• Encrypt every file on a departmental shared drive
• Encrypt every file on every mapped drive that can be reached on the network
• (Thanks a lot, Locky!)
![Page 9: Improving Safety and Security - CSO50 Conference...Improving Safety and Security Through Improved Awareness Bob Eichler Director of Information Security Cancer Treatment Centers of](https://reader035.fdocuments.in/reader035/viewer/2022063016/5fd5d6262da88522f90263c3/html5/thumbnails/9.jpg)
What is the “We ARE Safe” Program?
![Page 10: Improving Safety and Security - CSO50 Conference...Improving Safety and Security Through Improved Awareness Bob Eichler Director of Information Security Cancer Treatment Centers of](https://reader035.fdocuments.in/reader035/viewer/2022063016/5fd5d6262da88522f90263c3/html5/thumbnails/10.jpg)
Industry Standard Anti-Malware Program
• AV + Anti-malware solutions
• Anti-spam / content filtering
• Backup / recovery procedures
• Alerting / notification procedures
• Awareness training program
• Newsletters
• Computer based training
• Handouts
• Phishing exercises
© 2013 Rising Tide
10
![Page 11: Improving Safety and Security - CSO50 Conference...Improving Safety and Security Through Improved Awareness Bob Eichler Director of Information Security Cancer Treatment Centers of](https://reader035.fdocuments.in/reader035/viewer/2022063016/5fd5d6262da88522f90263c3/html5/thumbnails/11.jpg)
Make it relevant to them
• Don’t teach them to protect your network / data. Teach them to protect themselves.
The risks faced by your company are the same they face at home.
A mistake by an individual can impact the entire company. (Team accountability)
How do you engage your users?
![Page 12: Improving Safety and Security - CSO50 Conference...Improving Safety and Security Through Improved Awareness Bob Eichler Director of Information Security Cancer Treatment Centers of](https://reader035.fdocuments.in/reader035/viewer/2022063016/5fd5d6262da88522f90263c3/html5/thumbnails/12.jpg)
The Talk…
…about Passwords!
How many passwords do you need to manage?
Average is 20-30
How do you manage all these?
Most try to make them all the same
Who has a Yahoo email account?
Compromised for 2-3 years
The password you have been using for everything has been floating around the Internet for years
When’s the last time you changed you personal email password?
![Page 13: Improving Safety and Security - CSO50 Conference...Improving Safety and Security Through Improved Awareness Bob Eichler Director of Information Security Cancer Treatment Centers of](https://reader035.fdocuments.in/reader035/viewer/2022063016/5fd5d6262da88522f90263c3/html5/thumbnails/13.jpg)
The Talk…
…about Malware!
From compromised websites:
When you’re on MSN.com or Facebook, and click on
the link to see the child stars of the ‘80’s and ‘90’s, you’re
no longer where you started.
From Email / Phishing:
You’ve successfully avoided the Nigerian Oil Minister
What about the message from “FedEx”?
What about the message with the receipt / invoice /
resume?
What about the message from your boss?
![Page 14: Improving Safety and Security - CSO50 Conference...Improving Safety and Security Through Improved Awareness Bob Eichler Director of Information Security Cancer Treatment Centers of](https://reader035.fdocuments.in/reader035/viewer/2022063016/5fd5d6262da88522f90263c3/html5/thumbnails/14.jpg)
What was the impact?
• We know there are no silver bullets…
• Standard tools had positive impact
• General awareness helped reduce impact
• How many people did your training really reach?
![Page 15: Improving Safety and Security - CSO50 Conference...Improving Safety and Security Through Improved Awareness Bob Eichler Director of Information Security Cancer Treatment Centers of](https://reader035.fdocuments.in/reader035/viewer/2022063016/5fd5d6262da88522f90263c3/html5/thumbnails/15.jpg)
Security events
0
5
10
15
20
25
30
Nov'15
Dec'15
Jan'16
Feb'16
Mar'16
Apr'16
May'16
Jun'16
Jul'16
Aug'16
Sep'16
Oct'16
Nov'16
Dec '16
Jan'17
Feb'17
© 2013 Rising Tide
15
Locky hit the worldDelivery of training
![Page 16: Improving Safety and Security - CSO50 Conference...Improving Safety and Security Through Improved Awareness Bob Eichler Director of Information Security Cancer Treatment Centers of](https://reader035.fdocuments.in/reader035/viewer/2022063016/5fd5d6262da88522f90263c3/html5/thumbnails/16.jpg)
Lessons learned and takeaways:
• Emails and Posters are of limited value
• Mandatory online training courses are slightly better
• Large, generic, meetings are avoided because users are “too busy” or they
“forgot”
• People react best when spoken to in smaller groups, in their local work area
• Make the risk relatable. Provide real examples. Try to make it humorous. Tie it to
something personal. Allow for Q/A.
![Page 17: Improving Safety and Security - CSO50 Conference...Improving Safety and Security Through Improved Awareness Bob Eichler Director of Information Security Cancer Treatment Centers of](https://reader035.fdocuments.in/reader035/viewer/2022063016/5fd5d6262da88522f90263c3/html5/thumbnails/17.jpg)
Perspective
Examine entire information security budget:
2015 CIO magazine article: 11-15% of your IT budget
Does the investment of a few thousand dollars in resource time and travel provide
an adequate return?
I assert “YES!”