SECURITY INDUSTRY 2.0 · 2016-07-10 · FORSYTHE SECURITY BY THE NUMBERS one of the top security...
Transcript of SECURITY INDUSTRY 2.0 · 2016-07-10 · FORSYTHE SECURITY BY THE NUMBERS one of the top security...
![Page 1: SECURITY INDUSTRY 2.0 · 2016-07-10 · FORSYTHE SECURITY BY THE NUMBERS one of the top security integrators in North America $260M practice inside ... Analytics & NGFW Inspection](https://reader034.fdocuments.in/reader034/viewer/2022042311/5ed9f7ca28db2d5ca2492b3c/html5/thumbnails/1.jpg)
SECURITY INDUSTRY 2.0: SURVIVAL IN THE BOARDROOM
David Poarch VP, Security Solutions
![Page 2: SECURITY INDUSTRY 2.0 · 2016-07-10 · FORSYTHE SECURITY BY THE NUMBERS one of the top security integrators in North America $260M practice inside ... Analytics & NGFW Inspection](https://reader034.fdocuments.in/reader034/viewer/2022042311/5ed9f7ca28db2d5ca2492b3c/html5/thumbnails/2.jpg)
AGENDA• Who is Forsythe?
• Shift is Happening
• Spending Trends
• Relationships Matter
• Adapting Defenses
• An Effective Program
• Q&A / Wrap Up
![Page 3: SECURITY INDUSTRY 2.0 · 2016-07-10 · FORSYTHE SECURITY BY THE NUMBERS one of the top security integrators in North America $260M practice inside ... Analytics & NGFW Inspection](https://reader034.fdocuments.in/reader034/viewer/2022042311/5ed9f7ca28db2d5ca2492b3c/html5/thumbnails/3.jpg)
3
Forsythe is one of the largest security integrators in North America. With 44 years of deep data center expertise, we use a security lens to help clients make smart IT investment decisions.
FORSYTHE FACTS
Migration capabilities:• 1,400 data center
migrations • 150 per year• 325,000 workload
migrations
Technology Evaluation Center:• Independent, multi-vendor test bed • 150+ technologies • 40+ leading manufacturers and vendors
Serve 1,000+ clients. Retention rates: • 100% for
top 50 clients • 97% for
top 200 clients
Worked with 20 of the Fortune 100 companies in 2014
1,000+ employees• 500 engineers
and consultants• 2,500+ certifications• 15+ average
years of experience
$1B revenue in 2014 and profitable for 44 consecutive years
One of the largest security integrators in North America
![Page 4: SECURITY INDUSTRY 2.0 · 2016-07-10 · FORSYTHE SECURITY BY THE NUMBERS one of the top security integrators in North America $260M practice inside ... Analytics & NGFW Inspection](https://reader034.fdocuments.in/reader034/viewer/2022042311/5ed9f7ca28db2d5ca2492b3c/html5/thumbnails/4.jpg)
4
FORSYTHE SECURITY BY THE NUMBERS
one of the top security integrators
in North America
$260M practice inside a $1.1B integrator
4 acquisitions in the security space,
rounding out or portfolio and expanding our
geographical footprint
13 years of experience evaluating, managing and delivering leading information security
technologies
60 leading security technology partners
and 10 leading advisory boards
have active Forsythe participation
100+ managed security services clients
300 professional services engagements per year
with 60,000 hours logged to client work
300+ certifications with leading security
manufacturers
$40M state-of-the-art Technology Evaluation Center, with over 50
engagements annually
![Page 5: SECURITY INDUSTRY 2.0 · 2016-07-10 · FORSYTHE SECURITY BY THE NUMBERS one of the top security integrators in North America $260M practice inside ... Analytics & NGFW Inspection](https://reader034.fdocuments.in/reader034/viewer/2022042311/5ed9f7ca28db2d5ca2492b3c/html5/thumbnails/5.jpg)
5
OPTIMIZED SECURITY PROGRAM
Processes are
monitored and
measured with
trending
Best practices
are followed
Continuous
improvements
identified and
applied
Formal
global IT risk
management
process
![Page 6: SECURITY INDUSTRY 2.0 · 2016-07-10 · FORSYTHE SECURITY BY THE NUMBERS one of the top security integrators in North America $260M practice inside ... Analytics & NGFW Inspection](https://reader034.fdocuments.in/reader034/viewer/2022042311/5ed9f7ca28db2d5ca2492b3c/html5/thumbnails/6.jpg)
SHIFT IS HAPPENINGMetrics and Mindset
![Page 7: SECURITY INDUSTRY 2.0 · 2016-07-10 · FORSYTHE SECURITY BY THE NUMBERS one of the top security integrators in North America $260M practice inside ... Analytics & NGFW Inspection](https://reader034.fdocuments.in/reader034/viewer/2022042311/5ed9f7ca28db2d5ca2492b3c/html5/thumbnails/7.jpg)
7
![Page 8: SECURITY INDUSTRY 2.0 · 2016-07-10 · FORSYTHE SECURITY BY THE NUMBERS one of the top security integrators in North America $260M practice inside ... Analytics & NGFW Inspection](https://reader034.fdocuments.in/reader034/viewer/2022042311/5ed9f7ca28db2d5ca2492b3c/html5/thumbnails/8.jpg)
8
Time
Secu
rity
“Stu
ff “
STATISTICS
TRADITIONAL
CONTROLS
• FW
• IPS
• AV
• SIEM
Boom
Se
cu
rity
Bre
ach
![Page 9: SECURITY INDUSTRY 2.0 · 2016-07-10 · FORSYTHE SECURITY BY THE NUMBERS one of the top security integrators in North America $260M practice inside ... Analytics & NGFW Inspection](https://reader034.fdocuments.in/reader034/viewer/2022042311/5ed9f7ca28db2d5ca2492b3c/html5/thumbnails/9.jpg)
9
229205
Median number of
days attackers were present on a victim’s network before they
were discovered
STATISTICS
32 64
Number of days
to resolution if an INSIDER
was involved
Number of days it
took to resolve an incident
Source: https://www2.fireeye.com/rs/fireye/images/rpt-m-trends-2015.pdf
256
![Page 10: SECURITY INDUSTRY 2.0 · 2016-07-10 · FORSYTHE SECURITY BY THE NUMBERS one of the top security integrators in North America $260M practice inside ... Analytics & NGFW Inspection](https://reader034.fdocuments.in/reader034/viewer/2022042311/5ed9f7ca28db2d5ca2492b3c/html5/thumbnails/10.jpg)
10
Time
Secu
rity
“Stu
ff “
STATISTICS
ADVANCED
CONTROLS & SERVICES
• Incident Response
• 3rd Party Risk
• Behavioral Analysis
• Application Security
• Access Control
• Data Mgt.
TRADITIONAL
CONTROLS
• FW
• IPS
• AV
• SIEM
Se
cu
rity
Bre
ach
Boom
![Page 11: SECURITY INDUSTRY 2.0 · 2016-07-10 · FORSYTHE SECURITY BY THE NUMBERS one of the top security integrators in North America $260M practice inside ... Analytics & NGFW Inspection](https://reader034.fdocuments.in/reader034/viewer/2022042311/5ed9f7ca28db2d5ca2492b3c/html5/thumbnails/11.jpg)
11
PREVENT,
PROTECT &
DEFEND
FROM PREVENT, PROTECT & DEFENDTO DETECT, RESPOND & NEUTRALIZE
DETECT RESPOND NEUTRALIZE
![Page 12: SECURITY INDUSTRY 2.0 · 2016-07-10 · FORSYTHE SECURITY BY THE NUMBERS one of the top security integrators in North America $260M practice inside ... Analytics & NGFW Inspection](https://reader034.fdocuments.in/reader034/viewer/2022042311/5ed9f7ca28db2d5ca2492b3c/html5/thumbnails/12.jpg)
12
INDUSTRY MATURITY
RETAIL
HEALTHCARE
BANKING/FINANCIAL
SERVICES
![Page 13: SECURITY INDUSTRY 2.0 · 2016-07-10 · FORSYTHE SECURITY BY THE NUMBERS one of the top security integrators in North America $260M practice inside ... Analytics & NGFW Inspection](https://reader034.fdocuments.in/reader034/viewer/2022042311/5ed9f7ca28db2d5ca2492b3c/html5/thumbnails/13.jpg)
SPENDINGBuilding a Program
![Page 14: SECURITY INDUSTRY 2.0 · 2016-07-10 · FORSYTHE SECURITY BY THE NUMBERS one of the top security integrators in North America $260M practice inside ... Analytics & NGFW Inspection](https://reader034.fdocuments.in/reader034/viewer/2022042311/5ed9f7ca28db2d5ca2492b3c/html5/thumbnails/14.jpg)
14
2012 2013 2014 2015 2016 2017 2018
SECURITY SPENDING THROUGH 2018(In Billions Of Dollars)
90B
80B
70B
60B
50B
40B
GLOBAL & NORTH AMERICA
SPENDING
Global
NA
CAGR 8.1%
100B
30B
20B
10B
0
![Page 15: SECURITY INDUSTRY 2.0 · 2016-07-10 · FORSYTHE SECURITY BY THE NUMBERS one of the top security integrators in North America $260M practice inside ... Analytics & NGFW Inspection](https://reader034.fdocuments.in/reader034/viewer/2022042311/5ed9f7ca28db2d5ca2492b3c/html5/thumbnails/15.jpg)
The annual cost of cyber attacks is an average of $11.6M. The time it takes to resolve an attack averages 32 days, with a cost of over $32K per day (over $1M total).
The global economic cost of cybercrime is currently estimated at $400 billion* per year; by 2020, that number could top $3 trillion*
COST OF ABREACH
![Page 16: SECURITY INDUSTRY 2.0 · 2016-07-10 · FORSYTHE SECURITY BY THE NUMBERS one of the top security integrators in North America $260M practice inside ... Analytics & NGFW Inspection](https://reader034.fdocuments.in/reader034/viewer/2022042311/5ed9f7ca28db2d5ca2492b3c/html5/thumbnails/16.jpg)
16
10 “KEY SHIFTS”GARTNER FORESEES1. Prevention is futile: Advanced Persistent Security Programs
2. The Post-Signature Era: Pervasive Monitoring and Detection
3. Security Big Data Analytics
4. Context-Aware Security
5. Reputation Services and “Trustability”
6. The Growing Role of Collective Intelligence
7. The Shift to Information-centric Security Strategies
8. Virtualized and x86 Software-based Security Controls
9. The Shift to Cloud-based security controls
10. The Software Defined Data Center comes
![Page 17: SECURITY INDUSTRY 2.0 · 2016-07-10 · FORSYTHE SECURITY BY THE NUMBERS one of the top security integrators in North America $260M practice inside ... Analytics & NGFW Inspection](https://reader034.fdocuments.in/reader034/viewer/2022042311/5ed9f7ca28db2d5ca2492b3c/html5/thumbnails/17.jpg)
17
TOP 10 SEGMENTS THROUGH 2018
21B
18B
15B
12B
9B
6B
3B
0
Top 10 Fastest Growing Segments 2014
2018
CAGR%
DAST/SAST = Dynamic/Static Application Security TestingOther IAM = Other than Provisioning & Web Access management
![Page 18: SECURITY INDUSTRY 2.0 · 2016-07-10 · FORSYTHE SECURITY BY THE NUMBERS one of the top security integrators in North America $260M practice inside ... Analytics & NGFW Inspection](https://reader034.fdocuments.in/reader034/viewer/2022042311/5ed9f7ca28db2d5ca2492b3c/html5/thumbnails/18.jpg)
18
HEADCOUNT
AND SKILLS
ESCALATING
THREATS
BUSINESS
DEMANDS
CLIENT CHALLENGES
![Page 19: SECURITY INDUSTRY 2.0 · 2016-07-10 · FORSYTHE SECURITY BY THE NUMBERS one of the top security integrators in North America $260M practice inside ... Analytics & NGFW Inspection](https://reader034.fdocuments.in/reader034/viewer/2022042311/5ed9f7ca28db2d5ca2492b3c/html5/thumbnails/19.jpg)
RELATIONSHIPS MATTERPeople and Applications
![Page 20: SECURITY INDUSTRY 2.0 · 2016-07-10 · FORSYTHE SECURITY BY THE NUMBERS one of the top security integrators in North America $260M practice inside ... Analytics & NGFW Inspection](https://reader034.fdocuments.in/reader034/viewer/2022042311/5ed9f7ca28db2d5ca2492b3c/html5/thumbnails/20.jpg)
20
TRADITIONAL DC HYBRID DC CLOUD
ENTERPRISE DATA APPLICATIONS
DATA SPRAWL
![Page 21: SECURITY INDUSTRY 2.0 · 2016-07-10 · FORSYTHE SECURITY BY THE NUMBERS one of the top security integrators in North America $260M practice inside ... Analytics & NGFW Inspection](https://reader034.fdocuments.in/reader034/viewer/2022042311/5ed9f7ca28db2d5ca2492b3c/html5/thumbnails/21.jpg)
21
HOTEL
EMPLOYEESPARTNERS
OFFICE CAR COFFEE SHOP
CUSTOMERS
HOME
CHANGING USER LANDSCAPE
![Page 22: SECURITY INDUSTRY 2.0 · 2016-07-10 · FORSYTHE SECURITY BY THE NUMBERS one of the top security integrators in North America $260M practice inside ... Analytics & NGFW Inspection](https://reader034.fdocuments.in/reader034/viewer/2022042311/5ed9f7ca28db2d5ca2492b3c/html5/thumbnails/22.jpg)
22
OPERATIONAL
SECURITY
HEADCOUNT
AND SKILLS
ESCALATING
THREATS
BUSINESS
DEMANDS
OPERATIONALIZING IT RISK
![Page 23: SECURITY INDUSTRY 2.0 · 2016-07-10 · FORSYTHE SECURITY BY THE NUMBERS one of the top security integrators in North America $260M practice inside ... Analytics & NGFW Inspection](https://reader034.fdocuments.in/reader034/viewer/2022042311/5ed9f7ca28db2d5ca2492b3c/html5/thumbnails/23.jpg)
23
Reconnaissance Weaponization Delivery ExploitationCommandand Control
Exfiltration
THE INTRUSIONKILL CHAIN
![Page 24: SECURITY INDUSTRY 2.0 · 2016-07-10 · FORSYTHE SECURITY BY THE NUMBERS one of the top security integrators in North America $260M practice inside ... Analytics & NGFW Inspection](https://reader034.fdocuments.in/reader034/viewer/2022042311/5ed9f7ca28db2d5ca2492b3c/html5/thumbnails/24.jpg)
24
Network Security
AV IPS
Email Security
Web Security
C&C Servers
Master Server
Endpoint Security Suite
Application Whitelisting
Enhanced APT Security
SIEM & Analytics
ForensicTools
Advanced Threat Network Protection
Enhanced Content Security
Data Loss Protection
Database Monitoring
Two Factor Authentication & Privileged User Control
Firewall
Security Program
FAST: Forsythe Accelerated Security Tool
Patch & Vulnerability
Mgmt
Incident Response
Security Awareness
Training
DDoSProtection
Enhanced Network Security
Next-Generation
Firewall
ADAPT DEFENSES
Standard Network & Content Security
![Page 25: SECURITY INDUSTRY 2.0 · 2016-07-10 · FORSYTHE SECURITY BY THE NUMBERS one of the top security integrators in North America $260M practice inside ... Analytics & NGFW Inspection](https://reader034.fdocuments.in/reader034/viewer/2022042311/5ed9f7ca28db2d5ca2492b3c/html5/thumbnails/25.jpg)
25
Reconnaissance Weaponization Delivery ExploitationCommandand Control
Exfiltration
Observe Detect Identify Neutralize
Hardware Inventory Secure Config. – HostMonitoring of
Audit LogsNetwork & Host Data Forensics
Software InventorySecure Config. –Network Devices
Boundary DefenseData Recovery
Capability
Continuous Vulnerability Assessment
Application Software Security
Admin Privileges Data Loss Prevention
Secure Network Engineering
Wireless ControlControlled
AccessPenetration Tests
Penetration TestsAdvanced Threat
Protection, Security Analytics & NGFW
InspectionAdvanced Threat
Protection, Security Analytics & NGFW
Advanced Threat Protection, Security Analytics & NGFW
Limitation of Ports, Protocols & Services
Counter -Intelligence Processes
Mitigativecounter-strikes
Operational Effectiveness, Security Skills & Training, Incident Response Capability
Detect Attack EarlyPrevent Attack Propagation
and PersistenceMinimize Impact of Attack
ATTACK MITIGATION MATRIX
![Page 26: SECURITY INDUSTRY 2.0 · 2016-07-10 · FORSYTHE SECURITY BY THE NUMBERS one of the top security integrators in North America $260M practice inside ... Analytics & NGFW Inspection](https://reader034.fdocuments.in/reader034/viewer/2022042311/5ed9f7ca28db2d5ca2492b3c/html5/thumbnails/26.jpg)
26
Core Risk Reduction
Enhanced Risk
Reduction
Core Security State
Enhanced Security State
Optimized Security
• Processes are ad hoc and disorganized
• Security is not defined
• No mgmtreporting metrics
• Security is a reactive process
• Processes follow a regular pattern
• Security is defined but not aligned with business objectives
• No mgmtreporting
• Security involvement in projects and initiatives are ad hoc
• Processes are documented and communicated
• Formal integrated policy suite, with links to workforce awareness, education, and training programs
• From a risk mgmt committee
• Limited mgmt reporting
• Processes are monitored and measured
• Formal global IT risk mgmt process
• Full mgmt reporting
• Consistent and repeatable process
• Processes are monitored and measured with trending
• Best practices are followed
• Continuous improvements identified and applied
• Formal global IT risk mgmt process
PROGRAM MATURITY MODEL
![Page 27: SECURITY INDUSTRY 2.0 · 2016-07-10 · FORSYTHE SECURITY BY THE NUMBERS one of the top security integrators in North America $260M practice inside ... Analytics & NGFW Inspection](https://reader034.fdocuments.in/reader034/viewer/2022042311/5ed9f7ca28db2d5ca2492b3c/html5/thumbnails/27.jpg)
27
Core InfrastructureSecurity
DataProtection
Threat & Vulnerability Management
Identity & Access Management
Security ProgramGovernance
ApplicationSecurity
• Firewall
• IPS
• Proxy
• Network Access Control
• Email Security
• Secure Web Gateway
• DDOS Protection
• DLP
• Encryption
• Endpoint protection
• Mobility
• Database Monitoring
• Security Analytics
• Threat Intelligence
• Security Monitoring
• Network-based Malware Protection
• Incident Response (Action)
• Federation
• Privileged Access
• Audit & Accountability
• Incident Response (Program)
• Security Operations Center (SOC) Consulting
• GRC Consulting
• Security Strategy
• Audit Readiness
• Database Security
• Secure SDLC
• Web Application Security
• Securing DevOps
EFFECTIVE SECURITY PROGRAM
![Page 28: SECURITY INDUSTRY 2.0 · 2016-07-10 · FORSYTHE SECURITY BY THE NUMBERS one of the top security integrators in North America $260M practice inside ... Analytics & NGFW Inspection](https://reader034.fdocuments.in/reader034/viewer/2022042311/5ed9f7ca28db2d5ca2492b3c/html5/thumbnails/28.jpg)
28
QUESTIONS
![Page 29: SECURITY INDUSTRY 2.0 · 2016-07-10 · FORSYTHE SECURITY BY THE NUMBERS one of the top security integrators in North America $260M practice inside ... Analytics & NGFW Inspection](https://reader034.fdocuments.in/reader034/viewer/2022042311/5ed9f7ca28db2d5ca2492b3c/html5/thumbnails/29.jpg)