Nonprofit IT Security Readiness for 2017
-
Upload
community-it-innovators -
Category
Technology
-
view
58 -
download
0
Transcript of Nonprofit IT Security Readiness for 2017
![Page 1: Nonprofit IT Security Readiness for 2017](https://reader036.fdocuments.net/reader036/viewer/2022070519/58ecde561a28ab06538b457f/html5/thumbnails/1.jpg)
Security Readiness
WebinarSeries
March 2017
![Page 2: Nonprofit IT Security Readiness for 2017](https://reader036.fdocuments.net/reader036/viewer/2022070519/58ecde561a28ab06538b457f/html5/thumbnails/2.jpg)
About Community IT
Advancing mission through the effective use
of technology.
100% Employee Owned
![Page 3: Nonprofit IT Security Readiness for 2017](https://reader036.fdocuments.net/reader036/viewer/2022070519/58ecde561a28ab06538b457f/html5/thumbnails/3.jpg)
Presenter
Matthew EshlemanCTO
![Page 4: Nonprofit IT Security Readiness for 2017](https://reader036.fdocuments.net/reader036/viewer/2022070519/58ecde561a28ab06538b457f/html5/thumbnails/4.jpg)
Background Reading
• Co-sponsored Idealware Security Report in 2016• http://www.idealware.org/reports/nonprofits-
need-know-security-practical-guide-managing-risk/
• Community IT Security Playbook• http://www.communityit.com/blog/security-pl
aybook/
• Security webinars• http://www.communityit.com/resources/2016-
jan-it-security-threats/• http://www.communityit.com/resources/webi
nar-february-18-2016-backups-and-disaster-recovery-for-nonprofits/
• 20 Critical Security Controls• https://citidc.sharepoint.com/sites/SecurityArc
hitecture/Shared%20Documents/Community%20IT%20Security%20Controls.docx?web=1
![Page 5: Nonprofit IT Security Readiness for 2017](https://reader036.fdocuments.net/reader036/viewer/2022070519/58ecde561a28ab06538b457f/html5/thumbnails/5.jpg)
Current Landscape
• Increased sophistication in attacks• Financially motivated hacking• Credential trading• Increased organization awareness of risks of
security breach• IT controls part of financial audit• Complex security solution landscape
![Page 6: Nonprofit IT Security Readiness for 2017](https://reader036.fdocuments.net/reader036/viewer/2022070519/58ecde561a28ab06538b457f/html5/thumbnails/6.jpg)
![Page 7: Nonprofit IT Security Readiness for 2017](https://reader036.fdocuments.net/reader036/viewer/2022070519/58ecde561a28ab06538b457f/html5/thumbnails/7.jpg)
$1.2 Billion Paid in Ransomware
- 201798% of Malware found on only 1
systemBuild your own ransomware system for
$400
![Page 8: Nonprofit IT Security Readiness for 2017](https://reader036.fdocuments.net/reader036/viewer/2022070519/58ecde561a28ab06538b457f/html5/thumbnails/8.jpg)
![Page 9: Nonprofit IT Security Readiness for 2017](https://reader036.fdocuments.net/reader036/viewer/2022070519/58ecde561a28ab06538b457f/html5/thumbnails/9.jpg)
![Page 10: Nonprofit IT Security Readiness for 2017](https://reader036.fdocuments.net/reader036/viewer/2022070519/58ecde561a28ab06538b457f/html5/thumbnails/10.jpg)
![Page 11: Nonprofit IT Security Readiness for 2017](https://reader036.fdocuments.net/reader036/viewer/2022070519/58ecde561a28ab06538b457f/html5/thumbnails/11.jpg)
![Page 12: Nonprofit IT Security Readiness for 2017](https://reader036.fdocuments.net/reader036/viewer/2022070519/58ecde561a28ab06538b457f/html5/thumbnails/12.jpg)
![Page 13: Nonprofit IT Security Readiness for 2017](https://reader036.fdocuments.net/reader036/viewer/2022070519/58ecde561a28ab06538b457f/html5/thumbnails/13.jpg)
![Page 14: Nonprofit IT Security Readiness for 2017](https://reader036.fdocuments.net/reader036/viewer/2022070519/58ecde561a28ab06538b457f/html5/thumbnails/14.jpg)
![Page 15: Nonprofit IT Security Readiness for 2017](https://reader036.fdocuments.net/reader036/viewer/2022070519/58ecde561a28ab06538b457f/html5/thumbnails/15.jpg)
Security Breaches
to date
![Page 16: Nonprofit IT Security Readiness for 2017](https://reader036.fdocuments.net/reader036/viewer/2022070519/58ecde561a28ab06538b457f/html5/thumbnails/16.jpg)
Brute Force Attacks• Brute Force attacks via RDP• Staff Accounts• Service Accounts
![Page 17: Nonprofit IT Security Readiness for 2017](https://reader036.fdocuments.net/reader036/viewer/2022070519/58ecde561a28ab06538b457f/html5/thumbnails/17.jpg)
Credential Theft• Credential Theft• W2 Scam• Job Offer Scam
![Page 18: Nonprofit IT Security Readiness for 2017](https://reader036.fdocuments.net/reader036/viewer/2022070519/58ecde561a28ab06538b457f/html5/thumbnails/18.jpg)
Compromised Partner• Compromised Partner• Account for Network Service• Account for printer
![Page 19: Nonprofit IT Security Readiness for 2017](https://reader036.fdocuments.net/reader036/viewer/2022070519/58ecde561a28ab06538b457f/html5/thumbnails/19.jpg)
Security Awareness Training• SANS Securing the Human –
Resources1 – No Awareness Program2 – Compliance Focused3 – Promotes Awareness & Change4 – Long – Term Sustainment5 – Metrics Framework
• Focus Security Training
• Use Likelihood x Impact to identify biggest risks
![Page 20: Nonprofit IT Security Readiness for 2017](https://reader036.fdocuments.net/reader036/viewer/2022070519/58ecde561a28ab06538b457f/html5/thumbnails/20.jpg)
Best Practices
• Password Policy• 8 characters minimum• 90 day age• Account lockout after 5 failed attempts,
10 min reset• 2FA for Cloud
• SSO for Cloud Applications• Rename Admin Account• Complex Service Account Passwords• Disable inactive & unused accounts• Remote access
• Enable NLA for RDP• Restricted Access for Server Admin RDP• RDP behind Firewall/RD Gateway• Direct Access/VPN• Go Cloud
• Security Awareness Training for Staff
![Page 21: Nonprofit IT Security Readiness for 2017](https://reader036.fdocuments.net/reader036/viewer/2022070519/58ecde561a28ab06538b457f/html5/thumbnails/21.jpg)
Community IT Security Toolkit
• Windows and 3rd Party Patching• Barracuda Email Security• Webroot AntiVirus• 3rd Party Malware Scanner with
Autoremediation• Reporting in LabTech
• Active Directory PasswordAge• Active Directory PrivilegedUserReport• Successful Logon with Geolocation
• Crowdstrike Falcon Host with Overwatch• Security Awareness Training
• Phishing test• Online learning
![Page 22: Nonprofit IT Security Readiness for 2017](https://reader036.fdocuments.net/reader036/viewer/2022070519/58ecde561a28ab06538b457f/html5/thumbnails/22.jpg)
UpcomingWebinar
Single Sign On (SSO)Wednesday April 19 4:00 – 5:00 PM EST