Академический Документы
Профессиональный Документы
Культура Документы
"2015"GuidePoint"Security,"LLC""""""
CONFIDENTIAL"AND"PROPRIETARY"""
Agenda
"2013"GuidePoint"Security"
"2015"GuidePoint"Security,"LLC""""""
CONFIDENTIAL"AND"PROPRIETARY"""
About Me
Bryan Orme
Principal, Information Assurance Services for
GuidePoint Security
Previously Director of Information Security at Capital
One
Extensive background in Application Security,
Mobile Security, PCI DSS compliance, Security
Program and Strategy
Degrees and Certifications:
Certified Information Systems Security Professional
(CISSP)
Certified Information Systems Manager (CISM)
Qualified Security Assessor (QSA)
"2015"GuidePoint"Security,"LLC""""""
CONFIDENTIAL"AND"PROPRIETARY"""
"2015"GuidePoint"Security,"LLC""""""
CONFIDENTIAL"AND"PROPRIETARY"""
AWS Overview
Attractive to organizations because of...
Easier Administration
Lower Cost
Improved Collaboration
Improved data handling (...and security!?)
"2015"GuidePoint"Security,"LLC""""""
CONFIDENTIAL"AND"PROPRIETARY"""
CONFIDENTIAL"AND"PROPRIETARY"
AWS Overview
Unattractive to organizations because of...
Lack of Knowledge
Increased or New Costs
Data Security
Lack of Trust
Lack of Control
"2015"GuidePoint"Security,"LLC""""""
CONFIDENTIAL"AND"PROPRIETARY"""
AWS Overview
"2015"GuidePoint"Security,"LLC""""""
CONFIDENTIAL"AND"PROPRIETARY"""
Puppet (www.puppetlabs.com)
Chef (www.opscode.com/chef)
Fabric/Cuisine (www.fabfile.org)
CFEngine (www.cfengine.com)
SCM
(technet.microsoft.com/en-us/library/cc677002.aspx)
"2015"GuidePoint"Security,"LLC""""""
CONFIDENTIAL"AND"PROPRIETARY"""
"2015"GuidePoint"Security,"LLC""""""
CONFIDENTIAL"AND"PROPRIETARY"""
"2015"GuidePoint"Security,"LLC""""""
CONFIDENTIAL"AND"PROPRIETARY"""
Dynamic (BGP)
Cisco, Juniper, Yamaha, Astaro, PAN, Vyatta
"2015"GuidePoint"Security,"LLC""""""
CONFIDENTIAL"AND"PROPRIETARY"""
Ionic Security
S3 Server Side Encryption
Client-side Encryption (AWS
SDKs for Java & Ruby)
OS Level (e.g. TrueCrypt,
BitLocker)
Transparent Data Encryption
(MSSQL & Oracle)
SSL/TLS
Data Leakage Prevention
CloudLock (SaaS)
Elastica (SaaS)
Verdasys (SaaS)
Websense (SaaS)
"2015"GuidePoint"Security,"LLC""""""
CONFIDENTIAL"AND"PROPRIETARY"""
OS Firewall Management
CloudPassage
Puppet
MSFT Powershell
"2015"GuidePoint"Security,"LLC""""""
CONFIDENTIAL"AND"PROPRIETARY"""
Questions?
"2013"GuidePoint"Security"
"2015"GuidePoint"Security,"LLC""""""
CONFIDENTIAL"AND"PROPRIETARY"""