Security: Why it’s important to...

25
Security: Why it’s important to you

Transcript of Security: Why it’s important to...

Page 1: Security: Why it’s important to youtaes.utk.edu/.../LunchandLearnITSecurityPresentation.pdfPowerPoint Presentation Author Donna Hundley Created Date 2/10/2015 2:38:56 PM ...

Security: Why it’s important to you

Page 2: Security: Why it’s important to youtaes.utk.edu/.../LunchandLearnITSecurityPresentation.pdfPowerPoint Presentation Author Donna Hundley Created Date 2/10/2015 2:38:56 PM ...

• Adam Godwin– 5 Years of Experience in IT security– M.S. in System Engineering– CISSP– Security Analyst for UTIA

Page 3: Security: Why it’s important to youtaes.utk.edu/.../LunchandLearnITSecurityPresentation.pdfPowerPoint Presentation Author Donna Hundley Created Date 2/10/2015 2:38:56 PM ...

Topics• Why it’s important to you• UTIA security program• Types of data (classification)• Quick tips• Take away

Page 4: Security: Why it’s important to youtaes.utk.edu/.../LunchandLearnITSecurityPresentation.pdfPowerPoint Presentation Author Donna Hundley Created Date 2/10/2015 2:38:56 PM ...

“The most misused SSN of all time” 078-05-1120

1938 1943 19775,755 peopleE.H. Ferree 12 people

Page 5: Security: Why it’s important to youtaes.utk.edu/.../LunchandLearnITSecurityPresentation.pdfPowerPoint Presentation Author Donna Hundley Created Date 2/10/2015 2:38:56 PM ...

Somebody’s Watching You

Page 6: Security: Why it’s important to youtaes.utk.edu/.../LunchandLearnITSecurityPresentation.pdfPowerPoint Presentation Author Donna Hundley Created Date 2/10/2015 2:38:56 PM ...

We Are Under AttackThey Want Your Identity

Name: John BrownSocial Security Number:999-99-999Email: [email protected] Password: br549Instant Messenger: JohnB32Instant Messenger Password: br549

Page 7: Security: Why it’s important to youtaes.utk.edu/.../LunchandLearnITSecurityPresentation.pdfPowerPoint Presentation Author Donna Hundley Created Date 2/10/2015 2:38:56 PM ...

How to Protect Yourself• Identity Theft• How do thieves steal an identity?

– Dumpster Diving– Skimming– Changing Your Address– Old-Fashioned Stealing

Page 8: Security: Why it’s important to youtaes.utk.edu/.../LunchandLearnITSecurityPresentation.pdfPowerPoint Presentation Author Donna Hundley Created Date 2/10/2015 2:38:56 PM ...

How to Protect Yourself

• First, set up free fraud protection alerts– Credit Reporting Agencies:

• Equifax: www.equifax.com• Experian: www.experian.com • TransUnion: www.transunion.com

• Second, do it again in 90 days • Third, remove your name from pre-approved credit card

and junk mail lists• www.optoutprescreen.com

• Fourth, order free credit reports

Page 9: Security: Why it’s important to youtaes.utk.edu/.../LunchandLearnITSecurityPresentation.pdfPowerPoint Presentation Author Donna Hundley Created Date 2/10/2015 2:38:56 PM ...

(1)"Breach of the security of the system" means unauthorized acquisition of unencrypted computerized data that materially compromises the security, confidentiality, or integrity of personal information maintained by the information holder.

(2) “Information holder” means any person or business that conducts business in this state, or any agency of the State of Tennessee or any of its political subdivisions, that owns or licenses computerized data that includes personal information.

(3) "Personal information" means an individual's first name or first initial and last name in combination with any one (1) or more of the following data elements, when either the name or the data elements are not encrypted:

(i) Social security number;(ii) Driver license number; or(iii) Account number, credit or debit card number, in combination with any required security code, access code, or password that would permit access to an

individual's financial account.

"Personal information" does not include publicly available information that is lawfullymade available to the general public from federal, state, or local government records.

New State Law – July 2005

Page 10: Security: Why it’s important to youtaes.utk.edu/.../LunchandLearnITSecurityPresentation.pdfPowerPoint Presentation Author Donna Hundley Created Date 2/10/2015 2:38:56 PM ...

Risk

Page 11: Security: Why it’s important to youtaes.utk.edu/.../LunchandLearnITSecurityPresentation.pdfPowerPoint Presentation Author Donna Hundley Created Date 2/10/2015 2:38:56 PM ...

Risk

Page 12: Security: Why it’s important to youtaes.utk.edu/.../LunchandLearnITSecurityPresentation.pdfPowerPoint Presentation Author Donna Hundley Created Date 2/10/2015 2:38:56 PM ...

Security & Risk Management

Complacency

Balance

ResponseVoluntary

Paranoia

Prevention

Directive

BalanceParanoia Complacency

Prevention Directive

Balance

ResponseVoluntary

RiskManagement

Page 13: Security: Why it’s important to youtaes.utk.edu/.../LunchandLearnITSecurityPresentation.pdfPowerPoint Presentation Author Donna Hundley Created Date 2/10/2015 2:38:56 PM ...

Security Efficiency

Prevention Directive

Balance

ResponseVoluntary

RiskManagement

Security & Risk Management

Page 14: Security: Why it’s important to youtaes.utk.edu/.../LunchandLearnITSecurityPresentation.pdfPowerPoint Presentation Author Donna Hundley Created Date 2/10/2015 2:38:56 PM ...

UTIA security

• Based on NIST & FIPPS 199 standards– Confidentiality, Integrity, Availability

• Security website– https://utia.tennessee.edu/Security/SitePages/H

ome.aspx

https://utia.tennessee.edu/Security/SitePages/Home.aspx
Page 15: Security: Why it’s important to youtaes.utk.edu/.../LunchandLearnITSecurityPresentation.pdfPowerPoint Presentation Author Donna Hundley Created Date 2/10/2015 2:38:56 PM ...

Data Classification

• Data classification based on NIST & FIPPS 199 standards

• Three types– Low– Moderate– High

Page 16: Security: Why it’s important to youtaes.utk.edu/.../LunchandLearnITSecurityPresentation.pdfPowerPoint Presentation Author Donna Hundley Created Date 2/10/2015 2:38:56 PM ...

Data Classification

• Low Data– Anything not classified as moderate or high

Page 17: Security: Why it’s important to youtaes.utk.edu/.../LunchandLearnITSecurityPresentation.pdfPowerPoint Presentation Author Donna Hundley Created Date 2/10/2015 2:38:56 PM ...

Data Classification

• Moderate Data– Examples include SSN, proprietary, medical

information such as lab results, credit card information, protected research data, other legally protected data.

Page 18: Security: Why it’s important to youtaes.utk.edu/.../LunchandLearnITSecurityPresentation.pdfPowerPoint Presentation Author Donna Hundley Created Date 2/10/2015 2:38:56 PM ...

Quick Tips

• Identity Finder

Page 19: Security: Why it’s important to youtaes.utk.edu/.../LunchandLearnITSecurityPresentation.pdfPowerPoint Presentation Author Donna Hundley Created Date 2/10/2015 2:38:56 PM ...

Quick Tips• Emails

– Links• To click or not to click

– Spam emails• Is there any other kind

– Attachments• Good or bad

– Secure email• OIT Vault

Page 20: Security: Why it’s important to youtaes.utk.edu/.../LunchandLearnITSecurityPresentation.pdfPowerPoint Presentation Author Donna Hundley Created Date 2/10/2015 2:38:56 PM ...

Quick Tips

• Updates– Windows Updates– MAC updates– Adobe– Java

Page 21: Security: Why it’s important to youtaes.utk.edu/.../LunchandLearnITSecurityPresentation.pdfPowerPoint Presentation Author Donna Hundley Created Date 2/10/2015 2:38:56 PM ...

Quick Tips• Antivirus

– Malwarebytes• Updates• Scanning

– Microsoft System Center Endpoint Protection (MSCEP)• Updates• Scanning

Page 22: Security: Why it’s important to youtaes.utk.edu/.../LunchandLearnITSecurityPresentation.pdfPowerPoint Presentation Author Donna Hundley Created Date 2/10/2015 2:38:56 PM ...

Quick Tips• SNAP scans

– https://remedy.utk.edu/snap/– Online tool for security scan

• Show points of entry and possible compromises– Only Knoxville and UTIA machines can use it

• Must log in with your NETID and password

https://remedy.utk.edu/snap/
Page 23: Security: Why it’s important to youtaes.utk.edu/.../LunchandLearnITSecurityPresentation.pdfPowerPoint Presentation Author Donna Hundley Created Date 2/10/2015 2:38:56 PM ...

Take Away• Know what type of data you have on your

machine• Keep everything updated• Review emails carefully• Schedule weekly scans (Malwarebytes and/or

MSCEP)

Page 24: Security: Why it’s important to youtaes.utk.edu/.../LunchandLearnITSecurityPresentation.pdfPowerPoint Presentation Author Donna Hundley Created Date 2/10/2015 2:38:56 PM ...

Take Away

• Malwarebytes download• https://ag.tennessee.edu/Pages/malwarebytes.aspx

• SNAP scans• https://remedy.utk.edu/snap/

• OIT software download site• https://web.dii.utk.edu/softwaredistribution/

– Microsoft System Center Endpoint Protection (MSCEP)

– Identity Finder

https://ag.tennessee.edu/Pages/malwarebytes.aspx
https://remedy.utk.edu/snap/
https://web.dii.utk.edu/softwaredistribution/
Page 25: Security: Why it’s important to youtaes.utk.edu/.../LunchandLearnITSecurityPresentation.pdfPowerPoint Presentation Author Donna Hundley Created Date 2/10/2015 2:38:56 PM ...

Questions & Discussions


gabbard2 -Donna

gabbard2 -Donna

Roll of Honor A. Hundley & Molly Ege Hundley Evan R. James & Joanie James L. Gail Johnson Lewis C. Ketcham Roger J. Keys David W. Langworthy Madelyn Brite Larkin & Wilbur D. Larkin

Roll of Honor A. Hundley & Molly Ege Hundley Evan R. James & Joanie James L. Gail Johnson Lewis C. Ketcham Roger J. Keys David W. Langworthy Madelyn Brite Larkin & Wilbur D. Larkin

- NewPlantsandFlowersnewplantsandflowers.com/wp-content/uploads/Hebe-Donna-label.pdfHebe Donna ® Emma ® Hebe Donna® Julia ® Hebe Donna Nikka NEW Hebe Donna® Britta NEW Hebe Donna

- NewPlantsandFlowersnewplantsandflowers.com/wp-content/uploads/Hebe-Donna-label.pdfHebe Donna ® Emma ® Hebe Donna® Julia ® Hebe Donna Nikka NEW Hebe Donna® Britta NEW Hebe Donna

Academic Language in the edTPA Abridged from Academic Language 101 by Melanie Hundley.

Academic Language in the edTPA Abridged from Academic Language 101 by Melanie Hundley.

Donna kusemererwa

Donna kusemererwa

Prima Donna

Prima Donna

Donna Yeh_Willy_White

Donna Yeh_Willy_White

Oh Donna : Ritchie Valens Oh donna Oh donna Oh donna Oh donna.

Oh Donna : Ritchie Valens Oh donna Oh donna Oh donna Oh donna.

Donna Calhoun

Donna Calhoun

Donna Battista

Donna Battista

Thal Donna

Thal Donna

Joan Baez Donna Donna - Písničky Akordy

Joan Baez Donna Donna - Písničky Akordy

For Sale: 56 Units - $4 - LoopNet · Donna Marshall Capstone Real Estate Group Vice President 425.422.0954 donna@capstonerealestategroup.com kiddermathews.com HILLHURST LAKEWOOD PARKLAND

For Sale: 56 Units - $4 - LoopNet · Donna Marshall Capstone Real Estate Group Vice President 425.422.0954 [email protected] kiddermathews.com HILLHURST LAKEWOOD PARKLAND

From: Donna Harris Sent: Thursday, 15 February 2018 12:56 ...imos.org.au/.../shared/IMOS_General/APM_2018_PRESENTATIONS/D… · From: Donna Harris Sent: Thursday, 15 February 2018

From: Donna Harris Sent: Thursday, 15 February 2018 12:56 ...imos.org.au/.../shared/IMOS_General/APM_2018_PRESENTATIONS/D… · From: Donna Harris Sent: Thursday, 15 February 2018

Donna Doyker

Donna Doyker

Doctor Donna

Doctor Donna

Presentation By: Carey Bell, Vicki Choy, Tammie Hundley, Sean Ramirez, and Mariah Ramirez.

Presentation By: Carey Bell, Vicki Choy, Tammie Hundley, Sean Ramirez, and Mariah Ramirez.

Donna Macopson

Donna Macopson

Concert: The Songs of Richard Hundley - Digital Commons

Concert: The Songs of Richard Hundley - Digital Commons

Donna Quixote

Donna Quixote