SlideShare a Scribd company logo

IBM per la sicurezza del Datacenter

Anna Landolfi
Anna Landolfi

Soluzioni IBM per la sicurezza del vostro Datacenter e per proteggere i dati e gli accessi dei vostri clienti

Technology
1 of 44
Download to read offline
Giovanni Todaro IBM Security Systems Leader IBM Security Systems Smarter Security per MSP
© 2013 IBM Corporation2 Bring your own IT Social business Cloud e virtualizzazione 1 Miliardo di lavoratori mobile 1.000 miliardi di oggetti collegati Le tecnologie Innovative stanno cambiando tutto attorno a noi…
© 2013 IBM Corporation3 Attacchi: Motivazioni e raffinatezza sono in rapida evoluzione Sicurezza Nazionale Nazioni – Stati Cyberwar Stuxnet Spionaggio, Attivismo Competitors e Hacktivists Aurora Guadagno Finaziario Criminalità Organizzata Zeus Vendetta, Curiosità Insiders and Script-kiddies Code Red
© 2013 IBM Corporation4 Il mondo sta diventando più digitalizzato ed interconnesso, aprendo la porta alle minacce emergenti e le perdite di dati… L'età dei Big Data - l'esplosione di informazioni digitali - è arrivata ed è facilitata dalla pervasività delle applicazioni accessibili da ovunque EVERYTHING IS EVERYWHERE Con l'avvento di Enterprise 2.0 e di social business, la linea tra le ore di uso personale e professionale, i dispositivi e dei dati è scomparso CONSUMERIZATION OF IT Le organizzazioni continuano a muoversi a nuove piattaforme compresi cloud, virtualizzazione, mobile, social business e molto altro ancora DATA EXPLOSION La velocità e la destrezza degli attacchi è aumentata accoppiata con nuove motivazioni della criminalità informatica ATTACK SOPHISTICATION SECURITY INTELLIGENCE MOBILE SECURITY CLOUD SECURITY ADVANCED THREAT IBM Security Solutions Focus
© 2013 IBM Corporation5 IBM Vi porta nell’Era della Security Intelligence 13 Miliardi di eventi di Security gestiti giornalmente 1,000 Security Patents 9 Security Operations Centers 600 Security Sales Professionals 11 Laboratori di sviluppo per Soluzioni di Security IBM Security Solutions Le organizzazioni hanno bisogno di un nuovo approccio alla sicurezza che sfrutta l'intelligenza per stare al passo con l'innovazione. IBM Security Intelligence guida il cambiamento da una strategia "point-product" ad un framework integrato di sicurezza aziendale: La traduzione dei dati di Security in conoscenze fruibili: •Riduce i rischi ed i costi commerciali •Innovazione con agilità e sicurezza • Migliora la continuità operativa
© 2013 IBM Corporation6 IBM Security: Fornire l'intelligenza, l'integrazione e le competenze in un Framework completo Incrementa la Accuratezza e la consapevolezza nella Security Individuare e prevenire minacce avanzate Una maggiore visibilità e consapevolezza della situazione Condurre indagini complete sugli incidenti Semplicità di Gestione Semplificare la gestione del rischio e il processo decisionale Migliorare le capacità di controllo e di accesso Riduzione dei costi e complessità Fornire una rapida installazione, un minore TCO lavorando con un unico partner strategico, con un ampio portafoglio integrato Incrementa la Accuratezza e la consapevolezza nella Security Individuare e prevenire minacce avanzate Una maggiore visibilità e consapevolezza della situazione Condurre indagini complete sugli incidenti Semplicità di Gestione Semplificare la gestione del rischio e il processo decisionale Migliorare le capacità di controllo e di accesso Riduzione dei costi e complessità Fornire una rapida installazione, un minore TCO lavorando con un unico partner strategico, con un ampio portafoglio integrato Intelligence ● Integration ● ExpertiseIntelligence ● Integration ● Expertise
© 2013 IBM Corporation7 La sicurezza è una delle preoccupazioni principali del cloud, in quanto i clienti drasticamente ripensano il modo in cui sono state progettate, distribuite e consumate le risorse IT. 2. Cloud Computing Fattori chiave che influenzano il business del sw di sicurezza Sofisticati, attacchi mirati, volti a ottenere l'accesso continuo alle informazioni critiche, sono in aumento nella severità e nella ricorrenza. 4. Regulations and Compliance 1. Advanced Threats Non è più sufficiente proteggere il perimetro - attacchi sofisticati stanno aggirando le difese tradizionali, le risorse IT sono in movimento al di fuori del firewall, e le applicazioni aziendali ed i dati sono sempre più distribuite su diversi dispositivi Come gestire dispositivi di proprietà dei dipendenti e garantire connettività alle applicazioni aziendali sono esigenze da indirizzare per i CIO ampliando il supporto per dispositivi mobili. 3. Mobile Computing Advanced Persistent Threats Stealth Bots Designer Malware Targeted Attacks Zero-days Enterprise Customers Le pressioni normative e le conformità continuano ad aumentare insieme alla necessità di memorizzare i dati sensibili e le aziende diventano suscettibili ai fallimenti di audit.
© 2013 IBM Corporation8 La sicurezza è una delle preoccupazioni principali del cloud, in quanto i clienti drasticamente ripensano il modo in cui sono state progettate, distribuite e consumate le risorse IT. 2. Cloud Computing Sofisticati, attacchi mirati, volti a ottenere l'accesso continuo alle informazioni critiche, sono in aumento nella severità e nella ricorrenza. 4. Regulations and Compliance 1. Advanced Threats Non è più sufficiente proteggere il perimetro - attacchi sofisticati stanno aggirando le difese tradizionali, le risorse IT sono in movimento al di fuori del firewall, e le applicazioni aziendali ed i dati sono sempre più distribuite su diversi dispositivi Come gestire dispositivi di proprietà dei dipendenti e garantire connettività alle applicazioni aziendali sono esigenze da indirizzare per i CIO ampliando il supporto per dispositivi mobili. 3. Mobile Computing Advanced Persistent Threats Stealth Bots Designer Malware Targeted Attacks Zero-days Enterprise Customers Le pressioni normative e le conformità continuano ad aumentare insieme alla necessità di memorizzare i dati sensibili e le aziende diventano suscettibili ai fallimenti di audit. BIG DATA Fattori chiave che influenzano il business del sw di sicurezza
© 2013 IBM Corporation9 Una migliore protezione contro gli attacchi più sofisticati On the Network Across the Enterprise Across the World 0day Exploit Malicious PDF SQL Injection Brute Force Botnet Communication Malicious Insider Vulnerable Server Misconfigured Firewall Phishing Campaign Infected Website Spammer IBM Advanced Threat Protection IBM QRadar Security Intelligence IBM X-Force® Threat Intelligence
© 2013 IBM Corporation10 IBM offre Soluzioni di Security in tutte le aree della Cloud Security IBM protegge contro i rischi di cloud comuni con un ampio portafoglio di soluzioni flessibili e di livelli di sicurezza Protezione contro le minacce, riconquistare visibilità e dimostrare la compliance con il monitoraggio delle attività, il rilevamento delle anomalie e la Security Intelligence IBM Security Federated Identity Manager IBM Security Key Lifecycle Manager
© 2013 IBM Corporation11 Mettere in sicurezza il Mobile Enterprise con le soluzioni IBM
© 2013 IBM Corporation12 La strategia IBM per la Data Security Governance, Security Intelligence, AnalyticsGovernance, Security Intelligence, Analytics Data Discovery and ClassificationData Discovery and Classification Policy-based Access and EntitlementsPolicy-based Access and Entitlements Audit, Reporting, and MonitoringAudit, Reporting, and Monitoring at Endpoint (workstations, laptops, mobile,…) over Network (SQL, HTTP, SSH, FTP, email,. …) Stored (Databases, File Servers, Big Data, Data Warehouses, Application Servers, Cloud/Virtual ..) SecuritySolutionsSecuritySolutions IT&BusinessProcessIT&BusinessProcess integrate integrate • Proteggere i dati in qualsiasi forma, in qualsiasi luogo, da minacce interne o esterne • Semplificare i processi di Compliance • Ridurre i costi operativi circa la protezione dei dati Data Security
© 2013 IBM Corporation13 Partner Programs (3rd party) Partner Programs (3rd party) Security Ecosystem Standards Un Portfolio completo in tutti i domini di sicurezza
© 2013 IBM Corporation14 Temi Chiave… Standardized IAM and Compliance Management Expand IAM vertically to provide identity and access intelligence to the business; Integrate horizontally to enforce user access to data, app, and infrastructure Secure Cloud, Mobile, Social Interaction Enhance context-based access control for cloud, mobile and SaaS access, as well as integration with proofing, validation and authentication solutions Insider Threat and IAM Governance Continue to develop Privileged Identity Management (PIM) capabilities and enhanced Identity and Role management IBM Identity and Access Management - Visione e Strategia
© 2013 IBM Corporation15 Temi Chiave… Reduced Total Cost of Ownership Expanded support for databases and unstructured data, automation, handling and analysis of large volumes of audit records, and new preventive capabilities Enhanced Compliance Management Enhanced Database Vulnerability Assessment (VA) and Database Protection Subscription Service (DPS) with improved update frequency, labels for specific regulations, and product integrations Dynamic Data Protection Data masking capabilities for databases (row level, role level) and for applications (pattern based, form based) to safeguard sensitive and confidential data Data Security Vision Across Multiple Deployment Models QRadar Integration
© 2013 IBM Corporation16 Temi Chiave… Coverage for Mobile applications and new threats Continue to identify and reduce risk by expanding scanning capabilities to new platforms such as mobile, as well as introducing next generation dynamic analysis scanning and glass box testing Simplified interface and accelerated ROI New capabilities to improve customer time to value and consumability with out-of-the-box scanning, static analysis templates and ease of use features Security Intelligence Integration Automatically adjust threat levels based on knowledge of application vulnerabilities by integrating and analyzing scan results with SiteProtector and the QRadar Security Intelligence Platform Application Security Vision
© 2013 IBM Corporation17 Temi Chiave… Security for Mobile Devices Provide security for and manage traditional endpoints alongside mobile devices such as Apple iOS, Google Android, Symbian, and Microsoft Windows Phone - using a single platform Expansion of Security Content Continued expansion of security configuration and vulnerability content to increase coverage for applications, operating systems, and industry best practices Security Intelligence Integration Improved usage of analytics - providing valuable insights to meet compliance and IT security objectives, as well as further integration with SiteProtector and the QRadar Security Intelligence Platform Infrastructure Protection – Endpoint Vision
© 2013 IBM Corporation18 Temi Chiave… Advanced Threat Protection Platform Helps to prevent sophisticated threats and detect abnormal network behavior by using an extensible set of network security capabilities - in conjunction with real-time threat information and Security Intelligence Expanded X-Force Threat Intelligence Increased coverage of world-wide threat intelligence harvested by X- Force and the consumption of this data to make smarter and more accurate security decisions Security Intelligence Integration Tight integration between the Advanced Threat Protection Platform and QRadar Security Intelligence platform to provide unique and meaningful ways to detect, investigate and remediate threats Log Manager SIEM Network Activity Monitor Risk Manager Vulnerability Data Malicious Websites Malware Information Intrusion Prevention Content and Data Security Web Application Protection IBM Network Security Security Intelligence Platform Threat Intelligence and Research Advanced Threat Protection Future Future Network Anomaly Detection IP Reputation Application Control Future Threat Protection Vision
© 2013 IBM Corporation19 X-Force database – il più esteso catalogo di vulnerabilità Web filter database – il DB relativo a Siti infetti o malevoli IP Reputation – botnets, anonymous proxies, bad actors Application Identification – web application information Vulnerability Research – le + aggiornate vulnerabilità e protezioni Security Services – gestiscono IPS più di 3000 Clienti X-Force Threat Intelligence: The IBM Differentiator X-Force Threat Intelligence Cloud
© 2013 IBM Corporation20 Security Intelligence: L'integrazione tra silos IT Extensive Data Sources Deep Intelligence Exceptionally Accurate and Actionable Insight+ = JK2012-04-26 High Priority Offenses Event Correlation Activity Baselining & Anomaly Detection Offense Identification Database Activity Servers & Hosts User Activity Vulnerability Info Configuration Info Security Devices Network & Virtual Activity Application Activity
© 2013 IBM Corporation21 Tutti i domini alimentano la Security Intelligence Endpoint Management vulnerabilities enrich QRadar’s vulnerability database AppScan Enterprise AppScan vulnerability results feed QRadar SIEM for improved asset risk assessment Tivoli Endpoint Manager Guardium Identity and Access Management IBM Security Network Intrusion Prevention System Flow data into QRadar turns NIPS devices into activity sensors Identity context for all security domains w/ QRadar as the dashboard Database assets, rule logic and database activity information Correlate new threats based on X-Force IP reputation feeds Hundreds of 3rd party information sources
Luigi Perrone IBM SWG - Security Systems & z/OS Security IBM Qradar La Security Intelligence per la protezione dei Data Center
© 2013 IBM Corporation23 Qradar overview Demo Considerazioni finali Agenda
© 2013 IBM Corporation24 Perché una Security Intelligence ? • Risposta alle esigenze di auditing • Automazione e snellimento dei processi di raccolta eventi • Collezionamento eventi multi-sorgente • Gestione e archiviazione sicura dei dati di log (conformità alle normative) • Aggregazione dati e correlazione eventi • Monitor ed analisi dati per: - identificazione scoperture/anomalie di sicurezza - attivazione allarmi - avvio processi investigativi - report di conformità
© 2013 IBM Corporation25 Le fasi che riguardano il ciclo di vita degli eventi
© 2013 IBM Corporation26 1 - Un efficiente gestione degli eventi Forte acquisizione, profonda analisi, elevata reattività Event Flows Log Event jflow sflow nflow qflow syslog snmp odbc wmi ftp/sftp snare wincollectjdbc IDS-IPS FirewallSwitch-Router • Auto-discovery of log sources • Auto-discovery of applications • Auto-discovery of assets • Auto-grouping of assets • Centralized log management VA Scanner Server Database Applications • Registrazione in tempo reale • Facilità di configurazione • Modalità agent-less • Integrazione standard di molteplici dispositivi MONITOR & ASSET DISCOVERY
© 2013 IBM Corporation27 2 - Un potente motore di elaborazione e correlazione Auto-tuning Auto-detect threats Thousands of pre-defined rules Easy-to-use event filtering Advanced security analytics ANALYSYS Un potente motore di correlazione analisi investigativa e reportistica avanzata per l’identificazione di eventi critici e loro immediata risoluzione
© 2013 IBM Corporation28 3 - Allarmi in tempo reale e profondità investigativa • Controllo chiaro e completo di tutte le attività di rete con monitoraggio in tempo reale • Avvisi ed individuazione di eventi insoliti rispetto alla condizione di normalità • Analisi investigativa e reportistica avanzata • Report di sicurezza standard integrati e di facile personalizzazione • Thousands of predefined reports • Asset-based prioritization • Auto-update of threats • Auto-response • Directed remediation ACTIONS & REPORTS
© 2013 IBM Corporation29 Qradar: le componenti • Turnkey log management • Upgradeable to enterprise SIEM • Sophisticated event analytics • Asset profiling and flow analytics • Network analytics • Behavioral and anomaly detection • Predictive threat modeling & simulation • Scalable configuration monitoring & audit • Event processors • Network activity processors • Layer 7 application monitoring • Content capture Log Management SIEM Network Activity and Anomaly Detection Risk Management Scale Visibility
© 2013 IBM Corporation30
© 2013 IBM Corporation31
Salvatore Sollami IBM Security Systems Technical Sales and Solutions Next Generation IPS
© 2013 IBM Corporation33 The challenging state of network security Social media sites present productivity, privacy and security risks including new threat vectors SOCIAL NETWORKING Streaming media sites are consuming large amounts of bandwidth STREAMING MEDIA Point solutions are siloed with minimal integration or data sharing POINT SOLUTIONSURL Filtering • IDS / IPS IM / P2P • Web App Protection Vulnerability Management Increasingly sophisticated attacks are using multiple attack vectors and increasing risk exposure SOPHISTICATED ATTACKS Stealth Bots • Targeted Attacks Worms • Trojans • Designer Malware
© 2013 IBM Corporation34 Network Defense: Traditional solutions not up to today’s challenges Internet Firewall/VPN – port and protocol filtering Web Gateway – securing web traffic only, port 80 / 443 Email Gateway – message and attachment security only Threats continue to evolve and standard methods of detection are not enough Streaming media sites and Web applications introduce new security challenges Basic “Block Only” mode limits innovative use of streaming and new Web apps Poorly integrated solutions create “security sprawl”, lower overall levels of security, and raise cost and complexity Requirement: Multi-faceted Protection 0-day threat protection tightly integrated with other technologies i.e. network anomaly detection Ability to reduce costs associated with non- business use of applications Controls to restrict access to social media sites by a user’s role and business need Augment point solutions to reduce overall cost and complexity Stealth Bots Worms, Trojans Targeted Attacks Designer Malware Current Limitations Everything Else Multi-faceted Network Protection – security for all traffic, applications and users
© 2013 IBM Corporation35 Block attachments on all outgoing emails and chats Allow marketing and sales teams to access social networking sites Advanced inspection of web application traffic destined to my web servers Allow, but don’t inspect, traffic to financial and medical sites Block known botnet servers and phishing sites A more strict security policy is applied to traffic from countries where I do not do business Client-Side Protection Network Awareness Reputation Web Protection Botnet Protection Web Category Protection Access Control Protocol Aware Intrusion Protection Web Applications Non-web Applications The Need to Understand the Who, What, and When Server Geography User or Group Reputation Network 172.29.230.15, Bob, Alice 80, 443, 21, webmail, social networks Who What PolicyTraffic Controls July
© 2013 IBM Corporation36 Advanced Threat Protection Platform Ability to prevent sophisticated threats and detect abnormal network behavior by leveraging an extensible set of network security capabilities - in conjunction with real-time threat information and Security Intelligence Expanded X-Force Threat Intelligence Increased coverage of world-wide threat intelligence harvested by X-Force and the consumption of this data to make smarter and more accurate security decisions across the IBM portfolio Security Intelligence Integration Tight integration between the Advanced Threat Protection Platform and QRadar Security Intelligence platform to provide unique and meaningful ways to detect, investigate and remediate threats Vulnerability Data Malicious Websites Malware Information IP Reputation Intrusion Prevention Content and Data Security Web Application Protection Network Anomaly Detection IBM Network Security Threat Intelligence and Research Advanced Threat Protection Platform Application Control The Advanced Threat Protection Platform Log Manager SIEM Network Activity Monitor Risk Manager Security Intelligence Platform Vulnerability Manager NEW
© 2013 IBM Corporation37 Next Generation Network IPS
© 2013 IBM Corporation38 Understanding who, what, and when Immediately discover which applications and web sites are being accessed Quickly Identify misuse by application, website, user, and group Understand who and what are consuming bandwidth on the network Superior detection of advanced threats through integration with QRadar for network anomaly and event details Network flows can be sent to QRadar for enhanced analysis, correlation and anomaly detection Identity context ties users and groups with their network activity - going beyond IP address only policies Application context fully classifies network traffic, regardless of port, protocol or evasion techniques Increase Security Reduce Costs Enable Innovation
© 2013 IBM Corporation39 Ensure appropriate application and network use Understand the Who, What and When for all network activity Extensible, 0-Day protection powered by X-Force® Next Gen IPS: IBM Security Network Protection XGS 5100 PROVEN SECURITY ULTIMATE VISIBILITY COMPLETE CONTROL IBM Security Network Protection XGS 5100 builds on the proven security of IBM intrusion prevention solutions by delivering the addition of next generation visibility and control to help balance security and business requirements NEW WITH XGS NEW WITH XGS
© 2013 IBM Corporation40 Proven Security: Extensible, 0-Day Protection Powered by X-Force® IBM Security Network Protection XGS 5000 IBM Security Threat Protection – Backed by X-Force® – 15 years+ of vulnerability research and development – Trusted by the world’s largest enterprises and government agencies – True protocol-aware intrusion prevention, not reliant on signatures – Specialized engines • Exploit Payload Detection • Web Application Protection • Content and File Inspection Ability to protect against the threats of today and tomorrow Next Generation IPS powered by X-Force® Research protects weeks or even months “ahead of the threat” Full protocol, content and application aware protection goes beyond signatures Expandable protection modules defend against emerging threats such as malicious file attachments and Web application attacks
© 2013 IBM Corporation41 QRadar Network Anomaly Detection QRadar Network Anomaly Detection is a purpose built version of QRadar for IBM’s intrusion prevention portfolio The addition of QRadar’s behavioral analytics and real-time correlation helps better detect and prioritize stealthy attacks Supplements visibility provided by IBM Security Network Protection’s Local Management (LMI) Integration with IBM Security Network Protection including the ability to send network flow data from XGS to QRadar
© 2013 IBM Corporation42 IBM X-Force® Threat Information Center Real-time Security Overview w/ IP Reputation Correlation Identity and User Context Real-time Network Visualization and Application Statistics Inbound Security Events
© 2013 IBM Corporation43 IBM Security Network Protection XGS 5100IBM Security Network Protection XGS 5100 The XGS 5100: The Best Solution for Threat Prevention Internet Firewall/VPN – port and protocol filtering Web Gateway – securing web traffic only, port 80 / 443 Email Gateway – message and attachment security only Everything Else Better Network Control Natural complement to current Firewall and VPN Not rip-and-replace – works with your existing network and security infrastructure More flexibility and depth in security and control over users, groups, networks and applications Better Threat Protection True Protocol aware Network IPS Higher level of overall security and protection More effective against 0-day attacks Best of both worlds – true protocol and heuristic- based protection with customized signature support Stealth Bots Worms, Trojans Targeted Attacks Designer Malware Proven Security Ultimate Visibility Complete Control
IBM per la sicurezza del Datacenter

Recommended

Solutions for PCI DSS Compliance
Solutions for PCI DSS ComplianceSolutions for PCI DSS Compliance
Solutions for PCI DSS ComplianceTrend Micro
 
Security of,for & by cloud
Security of,for & by cloudSecurity of,for & by cloud
Security of,for & by cloudLakshmi Subramanian
 
Microsoft India - Forefront Value Of Identity And Security Offerings Presenta...
Microsoft India - Forefront Value Of Identity And Security Offerings Presenta...Microsoft India - Forefront Value Of Identity And Security Offerings Presenta...
Microsoft India - Forefront Value Of Identity And Security Offerings Presenta...Microsoft Private Cloud
 
Ibm security overview 2012 jan-18 sellers deck
Ibm security overview 2012 jan-18 sellers deckIbm security overview 2012 jan-18 sellers deck
Ibm security overview 2012 jan-18 sellers deckArrow ECS UK
 
Seeing Through the Clouds – the Vision of the CTO Office, Joe Baguley - Chief...
Seeing Through the Clouds – the Vision of the CTO Office, Joe Baguley - Chief...Seeing Through the Clouds – the Vision of the CTO Office, Joe Baguley - Chief...
Seeing Through the Clouds – the Vision of the CTO Office, Joe Baguley - Chief...Arrow ECS UK
 
FROM STRATEGY TO ACTION - Vasil Tsvimitidze
FROM STRATEGY TO ACTION - Vasil Tsvimitidze FROM STRATEGY TO ACTION - Vasil Tsvimitidze
FROM STRATEGY TO ACTION - Vasil Tsvimitidze DataExchangeAgency
 
Empowering the business while efficiently mitigating risks - Eva Chen (Trend ...
Empowering the business while efficiently mitigating risks - Eva Chen (Trend ...Empowering the business while efficiently mitigating risks - Eva Chen (Trend ...
Empowering the business while efficiently mitigating risks - Eva Chen (Trend ...Minh Le
 
SYMCAnnual
SYMCAnnualSYMCAnnual
SYMCAnnualfinance40
 

Recommended

Solutions for PCI DSS Compliance
Solutions for PCI DSS ComplianceSolutions for PCI DSS Compliance
Solutions for PCI DSS ComplianceTrend Micro
 
Security of,for & by cloud
Security of,for & by cloudSecurity of,for & by cloud
Security of,for & by cloudLakshmi Subramanian
 
Microsoft India - Forefront Value Of Identity And Security Offerings Presenta...
Microsoft India - Forefront Value Of Identity And Security Offerings Presenta...Microsoft India - Forefront Value Of Identity And Security Offerings Presenta...
Microsoft India - Forefront Value Of Identity And Security Offerings Presenta...Microsoft Private Cloud
 
Ibm security overview 2012 jan-18 sellers deck
Ibm security overview 2012 jan-18 sellers deckIbm security overview 2012 jan-18 sellers deck
Ibm security overview 2012 jan-18 sellers deckArrow ECS UK
 
Seeing Through the Clouds – the Vision of the CTO Office, Joe Baguley - Chief...
Seeing Through the Clouds – the Vision of the CTO Office, Joe Baguley - Chief...Seeing Through the Clouds – the Vision of the CTO Office, Joe Baguley - Chief...
Seeing Through the Clouds – the Vision of the CTO Office, Joe Baguley - Chief...Arrow ECS UK
 
FROM STRATEGY TO ACTION - Vasil Tsvimitidze
FROM STRATEGY TO ACTION - Vasil Tsvimitidze FROM STRATEGY TO ACTION - Vasil Tsvimitidze
FROM STRATEGY TO ACTION - Vasil Tsvimitidze DataExchangeAgency
 
Empowering the business while efficiently mitigating risks - Eva Chen (Trend ...
Empowering the business while efficiently mitigating risks - Eva Chen (Trend ...Empowering the business while efficiently mitigating risks - Eva Chen (Trend ...
Empowering the business while efficiently mitigating risks - Eva Chen (Trend ...Minh Le
 
SYMCAnnual
SYMCAnnualSYMCAnnual
SYMCAnnualfinance40
 
VSD Infotech
VSD InfotechVSD Infotech
VSD InfotechVSD infotech
 
Trend Micro: Security Challenges and Solutions for the Cloud (Saas) & Cloud S...
Trend Micro: Security Challenges and Solutions for the Cloud (Saas) & Cloud S...Trend Micro: Security Challenges and Solutions for the Cloud (Saas) & Cloud S...
Trend Micro: Security Challenges and Solutions for the Cloud (Saas) & Cloud S...Ingram Micro Cloud
 
Symantec 2006_Annual_Report
Symantec 2006_Annual_ReportSymantec 2006_Annual_Report
Symantec 2006_Annual_Reportfinance40
 
Security in the cloud planning guide
Security in the cloud planning guideSecurity in the cloud planning guide
Security in the cloud planning guideYury Chemerkin
 
Cloud Security: Perception Vs. Reality
Cloud Security: Perception Vs. RealityCloud Security: Perception Vs. Reality
Cloud Security: Perception Vs. RealityInternap
 
IT Security Bedrohungen optimal abwehren_Tom Turner und Andreas Wespi
IT Security Bedrohungen optimal abwehren_Tom Turner und Andreas WespiIT Security Bedrohungen optimal abwehren_Tom Turner und Andreas Wespi
IT Security Bedrohungen optimal abwehren_Tom Turner und Andreas WespiIBM Switzerland
 
Ibm Mobile Device Security Datasheet V2.0
Ibm Mobile Device Security Datasheet V2.0Ibm Mobile Device Security Datasheet V2.0
Ibm Mobile Device Security Datasheet V2.0wendyking63
 
Trend Micro - Targeted attacks: Have you found yours?
Trend Micro - Targeted attacks: Have you found yours?Trend Micro - Targeted attacks: Have you found yours?
Trend Micro - Targeted attacks: Have you found yours?Global Business Events
 
Trend Micro - 13martie2012
Trend Micro - 13martie2012Trend Micro - 13martie2012
Trend Micro - 13martie2012Agora Group
 
Aensis Cyber_Sec 2017
Aensis Cyber_Sec 2017Aensis Cyber_Sec 2017
Aensis Cyber_Sec 2017José Carlos Álvarez
 
eircom Managed Security
eircom Managed Securityeircom Managed Security
eircom Managed Securityeircom
 
IBM Security Software Solutions
IBM Security Software Solutions IBM Security Software Solutions
IBM Security Software Solutions Thierry Matusiak
 
Ibm security products portfolio
Ibm security products portfolioIbm security products portfolio
Ibm security products portfolioPatrick Bouillaud
 
The Charter of Trust
The Charter of TrustThe Charter of Trust
The Charter of TrustDefCamp
 
Sådan undgår du misbrug af kundedata og fortrolig information
Sådan undgår du misbrug af kundedata og fortrolig informationSådan undgår du misbrug af kundedata og fortrolig information
Sådan undgår du misbrug af kundedata og fortrolig informationIBM Danmark
 
IDBI Intech - Information security consulting
IDBI Intech - Information security consultingIDBI Intech - Information security consulting
IDBI Intech - Information security consultingIDBI Intech
 
Information Security By Design
Information Security By DesignInformation Security By Design
Information Security By DesignNalneesh Gaur
 
Using the IncMan Suite to Manage the Reporting of Cyber Security Risks and In...
Using the IncMan Suite to Manage the Reporting of Cyber Security Risks and In...Using the IncMan Suite to Manage the Reporting of Cyber Security Risks and In...
Using the IncMan Suite to Manage the Reporting of Cyber Security Risks and In...DFLABS SRL
 
IBM Security Software Solutions - One Pager
IBM Security Software Solutions - One PagerIBM Security Software Solutions - One Pager
IBM Security Software Solutions - One PagerThierry Matusiak
 
What i learned at issa international summit 2019
What i learned at issa international summit 2019What i learned at issa international summit 2019
What i learned at issa international summit 2019Ulf Mattsson
 
(Legado 2016) Capacitação em planejamento estratégico Dia 3
(Legado 2016) Capacitação em planejamento estratégico Dia 3(Legado 2016) Capacitação em planejamento estratégico Dia 3
(Legado 2016) Capacitação em planejamento estratégico Dia 3Ink_conteudos
 
How is life like changing weather
How is life like changing weatherHow is life like changing weather
How is life like changing weatherKatie Vanko
 

More Related Content

What's hot

Trend Micro: Security Challenges and Solutions for the Cloud (Saas) & Cloud S...
Trend Micro: Security Challenges and Solutions for the Cloud (Saas) & Cloud S...Trend Micro: Security Challenges and Solutions for the Cloud (Saas) & Cloud S...
Trend Micro: Security Challenges and Solutions for the Cloud (Saas) & Cloud S...Ingram Micro Cloud
 
Symantec 2006_Annual_Report
Symantec 2006_Annual_ReportSymantec 2006_Annual_Report
Symantec 2006_Annual_Reportfinance40
 
Security in the cloud planning guide
Security in the cloud planning guideSecurity in the cloud planning guide
Security in the cloud planning guideYury Chemerkin
 
Cloud Security: Perception Vs. Reality
Cloud Security: Perception Vs. RealityCloud Security: Perception Vs. Reality
Cloud Security: Perception Vs. RealityInternap
 
IT Security Bedrohungen optimal abwehren_Tom Turner und Andreas Wespi
IT Security Bedrohungen optimal abwehren_Tom Turner und Andreas WespiIT Security Bedrohungen optimal abwehren_Tom Turner und Andreas Wespi
IT Security Bedrohungen optimal abwehren_Tom Turner und Andreas WespiIBM Switzerland
 
Ibm Mobile Device Security Datasheet V2.0
Ibm Mobile Device Security Datasheet V2.0Ibm Mobile Device Security Datasheet V2.0
Ibm Mobile Device Security Datasheet V2.0wendyking63
 
Trend Micro - Targeted attacks: Have you found yours?
Trend Micro - Targeted attacks: Have you found yours?Trend Micro - Targeted attacks: Have you found yours?
Trend Micro - Targeted attacks: Have you found yours?Global Business Events
 
Trend Micro - 13martie2012
Trend Micro - 13martie2012Trend Micro - 13martie2012
Trend Micro - 13martie2012Agora Group
 
eircom Managed Security
eircom Managed Securityeircom Managed Security
eircom Managed Securityeircom
 
IBM Security Software Solutions
IBM Security Software Solutions IBM Security Software Solutions
IBM Security Software Solutions Thierry Matusiak
 
Ibm security products portfolio
Ibm security products portfolioIbm security products portfolio
Ibm security products portfolioPatrick Bouillaud
 
The Charter of Trust
The Charter of TrustThe Charter of Trust
The Charter of TrustDefCamp
 
Sådan undgår du misbrug af kundedata og fortrolig information
Sådan undgår du misbrug af kundedata og fortrolig informationSådan undgår du misbrug af kundedata og fortrolig information
Sådan undgår du misbrug af kundedata og fortrolig informationIBM Danmark
 
IDBI Intech - Information security consulting
IDBI Intech - Information security consultingIDBI Intech - Information security consulting
IDBI Intech - Information security consultingIDBI Intech
 
Information Security By Design
Information Security By DesignInformation Security By Design
Information Security By DesignNalneesh Gaur
 
Using the IncMan Suite to Manage the Reporting of Cyber Security Risks and In...
Using the IncMan Suite to Manage the Reporting of Cyber Security Risks and In...Using the IncMan Suite to Manage the Reporting of Cyber Security Risks and In...
Using the IncMan Suite to Manage the Reporting of Cyber Security Risks and In...DFLABS SRL
 
IBM Security Software Solutions - One Pager
IBM Security Software Solutions - One PagerIBM Security Software Solutions - One Pager
IBM Security Software Solutions - One PagerThierry Matusiak
 
What i learned at issa international summit 2019
What i learned at issa international summit 2019What i learned at issa international summit 2019
What i learned at issa international summit 2019Ulf Mattsson
 

What's hot (20)

VSD Infotech
VSD InfotechVSD Infotech
VSD Infotech
 
Trend Micro: Security Challenges and Solutions for the Cloud (Saas) & Cloud S...
Trend Micro: Security Challenges and Solutions for the Cloud (Saas) & Cloud S...Trend Micro: Security Challenges and Solutions for the Cloud (Saas) & Cloud S...
Trend Micro: Security Challenges and Solutions for the Cloud (Saas) & Cloud S...
 
Symantec 2006_Annual_Report
Symantec 2006_Annual_ReportSymantec 2006_Annual_Report
Symantec 2006_Annual_Report
 
Security in the cloud planning guide
Security in the cloud planning guideSecurity in the cloud planning guide
Security in the cloud planning guide
 
Cloud Security: Perception Vs. Reality
Cloud Security: Perception Vs. RealityCloud Security: Perception Vs. Reality
Cloud Security: Perception Vs. Reality
 
IT Security Bedrohungen optimal abwehren_Tom Turner und Andreas Wespi
IT Security Bedrohungen optimal abwehren_Tom Turner und Andreas WespiIT Security Bedrohungen optimal abwehren_Tom Turner und Andreas Wespi
IT Security Bedrohungen optimal abwehren_Tom Turner und Andreas Wespi
 
Ibm Mobile Device Security Datasheet V2.0
Ibm Mobile Device Security Datasheet V2.0Ibm Mobile Device Security Datasheet V2.0
Ibm Mobile Device Security Datasheet V2.0
 
Trend Micro - Targeted attacks: Have you found yours?
Trend Micro - Targeted attacks: Have you found yours?Trend Micro - Targeted attacks: Have you found yours?
Trend Micro - Targeted attacks: Have you found yours?
 
Trend Micro - 13martie2012
Trend Micro - 13martie2012Trend Micro - 13martie2012
Trend Micro - 13martie2012
 
Aensis Cyber_Sec 2017
Aensis Cyber_Sec 2017Aensis Cyber_Sec 2017
Aensis Cyber_Sec 2017
 
eircom Managed Security
eircom Managed Securityeircom Managed Security
eircom Managed Security
 
IBM Security Software Solutions
IBM Security Software Solutions IBM Security Software Solutions
IBM Security Software Solutions
 
Ibm security products portfolio
Ibm security products portfolioIbm security products portfolio
Ibm security products portfolio
 
The Charter of Trust
The Charter of TrustThe Charter of Trust
The Charter of Trust
 
Sådan undgår du misbrug af kundedata og fortrolig information
Sådan undgår du misbrug af kundedata og fortrolig informationSådan undgår du misbrug af kundedata og fortrolig information
Sådan undgår du misbrug af kundedata og fortrolig information
 
IDBI Intech - Information security consulting
IDBI Intech - Information security consultingIDBI Intech - Information security consulting
IDBI Intech - Information security consulting
 
Information Security By Design
Information Security By DesignInformation Security By Design
Information Security By Design
 
Using the IncMan Suite to Manage the Reporting of Cyber Security Risks and In...
Using the IncMan Suite to Manage the Reporting of Cyber Security Risks and In...Using the IncMan Suite to Manage the Reporting of Cyber Security Risks and In...
Using the IncMan Suite to Manage the Reporting of Cyber Security Risks and In...
 
IBM Security Software Solutions - One Pager
IBM Security Software Solutions - One PagerIBM Security Software Solutions - One Pager
IBM Security Software Solutions - One Pager
 
What i learned at issa international summit 2019
What i learned at issa international summit 2019What i learned at issa international summit 2019
What i learned at issa international summit 2019
 

Viewers also liked

(Legado 2016) Capacitação em planejamento estratégico Dia 3
(Legado 2016) Capacitação em planejamento estratégico Dia 3(Legado 2016) Capacitação em planejamento estratégico Dia 3
(Legado 2016) Capacitação em planejamento estratégico Dia 3Ink_conteudos
 
How is life like changing weather
How is life like changing weatherHow is life like changing weather
How is life like changing weatherKatie Vanko
 
Obtaining Advanced Dental Assistant Certification in South Dakota
Obtaining Advanced Dental Assistant Certification in South DakotaObtaining Advanced Dental Assistant Certification in South Dakota
Obtaining Advanced Dental Assistant Certification in South DakotaBrooke Kuecker
 
Pksr2 mt k1 t4
Pksr2 mt k1 t4Pksr2 mt k1 t4
Pksr2 mt k1 t4Ezah Ilias
 
The obligation of production
The obligation of productionThe obligation of production
The obligation of productioncmfindia
 
Iklim dan Budaya Organisasi
Iklim dan Budaya Organisasi Iklim dan Budaya Organisasi
Iklim dan Budaya Organisasi pjj_kemenkes
 
Jad NEHME - Alcatel-Lucent - Report
Jad NEHME - Alcatel-Lucent - ReportJad NEHME - Alcatel-Lucent - Report
Jad NEHME - Alcatel-Lucent - ReportJad Nehme
 
корпоративная культура
корпоративная культуракорпоративная культура
корпоративная культураAlexa aq
 
MyEventApps Conference Deck
MyEventApps Conference DeckMyEventApps Conference Deck
MyEventApps Conference DeckRosemary Vaughan
 

Viewers also liked (18)

(Legado 2016) Capacitação em planejamento estratégico Dia 3
(Legado 2016) Capacitação em planejamento estratégico Dia 3(Legado 2016) Capacitação em planejamento estratégico Dia 3
(Legado 2016) Capacitação em planejamento estratégico Dia 3
 
How is life like changing weather
How is life like changing weatherHow is life like changing weather
How is life like changing weather
 
Obtaining Advanced Dental Assistant Certification in South Dakota
Obtaining Advanced Dental Assistant Certification in South DakotaObtaining Advanced Dental Assistant Certification in South Dakota
Obtaining Advanced Dental Assistant Certification in South Dakota
 
Apresentação darklove day
Apresentação darklove dayApresentação darklove day
Apresentação darklove day
 
Pksr2 mt k1 t4
Pksr2 mt k1 t4Pksr2 mt k1 t4
Pksr2 mt k1 t4
 
How to use turnitin
How to use turnitinHow to use turnitin
How to use turnitin
 
The obligation of production
The obligation of productionThe obligation of production
The obligation of production
 
The first conditional
The first conditionalThe first conditional
The first conditional
 
Iklim dan Budaya Organisasi
Iklim dan Budaya Organisasi Iklim dan Budaya Organisasi
Iklim dan Budaya Organisasi
 
Etapas do projeto
Etapas do projetoEtapas do projeto
Etapas do projeto
 
Waleed et al
Waleed et alWaleed et al
Waleed et al
 
5 hikmah idul
5 hikmah idul5 hikmah idul
5 hikmah idul
 
Jad NEHME - Alcatel-Lucent - Report
Jad NEHME - Alcatel-Lucent - ReportJad NEHME - Alcatel-Lucent - Report
Jad NEHME - Alcatel-Lucent - Report
 
chiefkeya cv
chiefkeya cvchiefkeya cv
chiefkeya cv
 
корпоративная культура
корпоративная культуракорпоративная культура
корпоративная культура
 
MyEventApps Conference Deck
MyEventApps Conference DeckMyEventApps Conference Deck
MyEventApps Conference Deck
 
Amit Bhardwaj
Amit BhardwajAmit Bhardwaj
Amit Bhardwaj
 
Actividad 8 Yisel Recalde
Actividad 8 Yisel RecaldeActividad 8 Yisel Recalde
Actividad 8 Yisel Recalde
 

Similar to IBM per la sicurezza del Datacenter

Why Cloud Security Matters in Today's Business World
Why Cloud Security Matters in Today's Business WorldWhy Cloud Security Matters in Today's Business World
Why Cloud Security Matters in Today's Business WorldCiente
 
The Secure Path to Value in the Cloud by Denny Heaberlin
The Secure Path to Value in the Cloud by Denny HeaberlinThe Secure Path to Value in the Cloud by Denny Heaberlin
The Secure Path to Value in the Cloud by Denny HeaberlinCloud Expo
 
Crucial Layers_ Exploring the Depth of Enterprise Cyber Security.pdf
Crucial Layers_ Exploring the Depth of Enterprise Cyber Security.pdfCrucial Layers_ Exploring the Depth of Enterprise Cyber Security.pdf
Crucial Layers_ Exploring the Depth of Enterprise Cyber Security.pdfseoteameits
 
Security in Cloud Computing
Security in Cloud ComputingSecurity in Cloud Computing
Security in Cloud ComputingAshish Patel
 
Forcepoint Corporate Presentation_Short.pptx
Forcepoint Corporate Presentation_Short.pptxForcepoint Corporate Presentation_Short.pptx
Forcepoint Corporate Presentation_Short.pptxcaesar92
 
Presentation cloud security the grand challenge
Presentation cloud security the grand challengePresentation cloud security the grand challenge
Presentation cloud security the grand challengexKinAnx
 
Top 8 Cloud Computing Security Challenges.pptx
Top 8 Cloud Computing Security Challenges.pptxTop 8 Cloud Computing Security Challenges.pptx
Top 8 Cloud Computing Security Challenges.pptxBluechipComputerSyst
 
Security solutions for a smarter planet
Security solutions for a smarter planetSecurity solutions for a smarter planet
Security solutions for a smarter planetVincent Kwon
 
Rochester Security Event
Rochester Security EventRochester Security Event
Rochester Security Eventcalebbarlow
 
David valovcin big data - big risk
David valovcin big data - big riskDavid valovcin big data - big risk
David valovcin big data - big riskIBM Sverige
 
Cognitive security
Cognitive securityCognitive security
Cognitive securityIqra khalil
 
DSS ITSEC 2013 Conference 07.11.2013 - IBM Security Strategy
DSS ITSEC 2013 Conference 07.11.2013 - IBM Security StrategyDSS ITSEC 2013 Conference 07.11.2013 - IBM Security Strategy
DSS ITSEC 2013 Conference 07.11.2013 - IBM Security StrategyAndris Soroka
 
Cloud Security: What you need to know about IBM SmartCloud Security
Cloud Security: What you need to know about IBM SmartCloud SecurityCloud Security: What you need to know about IBM SmartCloud Security
Cloud Security: What you need to know about IBM SmartCloud SecurityIBM Security
 
Case study financial_services
Case study financial_servicesCase study financial_services
Case study financial_servicesG. Subramanian
 
In Today's Complex Multi Perimeter World, Are You Doing Enough to Secure Acce...
In Today's Complex Multi Perimeter World, Are You Doing Enough to Secure Acce...In Today's Complex Multi Perimeter World, Are You Doing Enough to Secure Acce...
In Today's Complex Multi Perimeter World, Are You Doing Enough to Secure Acce...IBM Security
 
IBM security systems overview v1.0 - rohit nagarajan
IBM security systems overview v1.0 - rohit nagarajanIBM security systems overview v1.0 - rohit nagarajan
IBM security systems overview v1.0 - rohit nagarajanShwetank Jayaswal
 
A New Remedy for the Cyber Storm Approaching
A New Remedy for the Cyber Storm ApproachingA New Remedy for the Cyber Storm Approaching
A New Remedy for the Cyber Storm ApproachingSPI Conference
 
IBM - IAM Security and Trends
IBM - IAM Security and TrendsIBM - IAM Security and Trends
IBM - IAM Security and TrendsIBM Sverige
 

Similar to IBM per la sicurezza del Datacenter (20)

Why Cloud Security Matters in Today's Business World
Why Cloud Security Matters in Today's Business WorldWhy Cloud Security Matters in Today's Business World
Why Cloud Security Matters in Today's Business World
 
The Secure Path to Value in the Cloud by Denny Heaberlin
The Secure Path to Value in the Cloud by Denny HeaberlinThe Secure Path to Value in the Cloud by Denny Heaberlin
The Secure Path to Value in the Cloud by Denny Heaberlin
 
Crucial Layers_ Exploring the Depth of Enterprise Cyber Security.pdf
Crucial Layers_ Exploring the Depth of Enterprise Cyber Security.pdfCrucial Layers_ Exploring the Depth of Enterprise Cyber Security.pdf
Crucial Layers_ Exploring the Depth of Enterprise Cyber Security.pdf
 
IBM Security Strategy Intelligence,
IBM Security Strategy Intelligence,IBM Security Strategy Intelligence,
IBM Security Strategy Intelligence,
 
Security in Cloud Computing
Security in Cloud ComputingSecurity in Cloud Computing
Security in Cloud Computing
 
Forcepoint Corporate Presentation_Short.pptx
Forcepoint Corporate Presentation_Short.pptxForcepoint Corporate Presentation_Short.pptx
Forcepoint Corporate Presentation_Short.pptx
 
Presentation cloud security the grand challenge
Presentation cloud security the grand challengePresentation cloud security the grand challenge
Presentation cloud security the grand challenge
 
Top 8 Cloud Computing Security Challenges.pptx
Top 8 Cloud Computing Security Challenges.pptxTop 8 Cloud Computing Security Challenges.pptx
Top 8 Cloud Computing Security Challenges.pptx
 
Security solutions for a smarter planet
Security solutions for a smarter planetSecurity solutions for a smarter planet
Security solutions for a smarter planet
 
Rochester Security Event
Rochester Security EventRochester Security Event
Rochester Security Event
 
David valovcin big data - big risk
David valovcin big data - big riskDavid valovcin big data - big risk
David valovcin big data - big risk
 
Yakhouba
YakhoubaYakhouba
Yakhouba
 
Cognitive security
Cognitive securityCognitive security
Cognitive security
 
DSS ITSEC 2013 Conference 07.11.2013 - IBM Security Strategy
DSS ITSEC 2013 Conference 07.11.2013 - IBM Security StrategyDSS ITSEC 2013 Conference 07.11.2013 - IBM Security Strategy
DSS ITSEC 2013 Conference 07.11.2013 - IBM Security Strategy
 
Cloud Security: What you need to know about IBM SmartCloud Security
Cloud Security: What you need to know about IBM SmartCloud SecurityCloud Security: What you need to know about IBM SmartCloud Security
Cloud Security: What you need to know about IBM SmartCloud Security
 
Case study financial_services
Case study financial_servicesCase study financial_services
Case study financial_services
 
In Today's Complex Multi Perimeter World, Are You Doing Enough to Secure Acce...
In Today's Complex Multi Perimeter World, Are You Doing Enough to Secure Acce...In Today's Complex Multi Perimeter World, Are You Doing Enough to Secure Acce...
In Today's Complex Multi Perimeter World, Are You Doing Enough to Secure Acce...
 
IBM security systems overview v1.0 - rohit nagarajan
IBM security systems overview v1.0 - rohit nagarajanIBM security systems overview v1.0 - rohit nagarajan
IBM security systems overview v1.0 - rohit nagarajan
 
A New Remedy for the Cyber Storm Approaching
A New Remedy for the Cyber Storm ApproachingA New Remedy for the Cyber Storm Approaching
A New Remedy for the Cyber Storm Approaching
 
IBM - IAM Security and Trends
IBM - IAM Security and TrendsIBM - IAM Security and Trends
IBM - IAM Security and Trends
 

More from Anna Landolfi

IBM Security Intelligence
IBM Security IntelligenceIBM Security Intelligence
IBM Security IntelligenceAnna Landolfi
 
IBM SmartCloud Orchestrator
IBM SmartCloud OrchestratorIBM SmartCloud Orchestrator
IBM SmartCloud OrchestratorAnna Landolfi
 
IBM Business Analytics
IBM Business AnalyticsIBM Business Analytics
IBM Business AnalyticsAnna Landolfi
 
SoftLayer Cloud Services
SoftLayer Cloud ServicesSoftLayer Cloud Services
SoftLayer Cloud ServicesAnna Landolfi
 

More from Anna Landolfi (7)

IBM Security Intelligence
IBM Security IntelligenceIBM Security Intelligence
IBM Security Intelligence
 
IBM Power8 announce
IBM Power8 announceIBM Power8 announce
IBM Power8 announce
 
IBM SmartCloud Orchestrator
IBM SmartCloud OrchestratorIBM SmartCloud Orchestrator
IBM SmartCloud Orchestrator
 
IBM PureSystems
IBM PureSystemsIBM PureSystems
IBM PureSystems
 
IBM Business Analytics
IBM Business AnalyticsIBM Business Analytics
IBM Business Analytics
 
IBM Mobile First
IBM Mobile FirstIBM Mobile First
IBM Mobile First
 
SoftLayer Cloud Services
SoftLayer Cloud ServicesSoftLayer Cloud Services
SoftLayer Cloud Services
 

Recently uploaded

Take control of your SAP testing with UiPath Test Suite
Take control of your SAP testing with UiPath Test SuiteTake control of your SAP testing with UiPath Test Suite
Take control of your SAP testing with UiPath Test SuiteDianaGray10
 
What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024Stephanie Beckett
 
CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):comworks
 
Human Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsHuman Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsMark Billinghurst
 
DSPy a system for AI to Write Prompts and Do Fine Tuning
DSPy a system for AI to Write Prompts and Do Fine TuningDSPy a system for AI to Write Prompts and Do Fine Tuning
DSPy a system for AI to Write Prompts and Do Fine TuningLars Bell
 
Unraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfUnraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfAlex Barbosa Coqueiro
 
Vertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsVertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsMiki Katsuragi
 
Streamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project SetupStreamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project SetupFlorian Wilhelm
 
Developer Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLDeveloper Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLScyllaDB
 
Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Scott Keck-Warren
 
Connect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationConnect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationSlibray Presentation
 
Ensuring Technical Readiness For Copilot in Microsoft 365
Ensuring Technical Readiness For Copilot in Microsoft 365Ensuring Technical Readiness For Copilot in Microsoft 365
Ensuring Technical Readiness For Copilot in Microsoft 3652toLead Limited
 
Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?Mattias Andersson
 
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek SchlawackFwdays
 
Story boards and shot lists for my a level piece
Story boards and shot lists for my a level pieceStory boards and shot lists for my a level piece
Story boards and shot lists for my a level piececharlottematthew16
 
"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr Bagan"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr BaganFwdays
 
How to write a Business Continuity Plan
How to write a Business Continuity PlanHow to write a Business Continuity Plan
How to write a Business Continuity PlanDatabarracks
 
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Mark Simos
 
"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii SoldatenkoFwdays
 
H2O.ai CEO/Founder: Sri Ambati Keynote at Wells Fargo Day
H2O.ai CEO/Founder: Sri Ambati Keynote at Wells Fargo DayH2O.ai CEO/Founder: Sri Ambati Keynote at Wells Fargo Day
H2O.ai CEO/Founder: Sri Ambati Keynote at Wells Fargo DaySri Ambati
 

Recently uploaded (20)

Take control of your SAP testing with UiPath Test Suite
Take control of your SAP testing with UiPath Test SuiteTake control of your SAP testing with UiPath Test Suite
Take control of your SAP testing with UiPath Test Suite
 
What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024
 
CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):
 
Human Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsHuman Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR Systems
 
DSPy a system for AI to Write Prompts and Do Fine Tuning
DSPy a system for AI to Write Prompts and Do Fine TuningDSPy a system for AI to Write Prompts and Do Fine Tuning
DSPy a system for AI to Write Prompts and Do Fine Tuning
 
Unraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfUnraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdf
 
Vertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsVertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering Tips
 
Streamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project SetupStreamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project Setup
 
Developer Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLDeveloper Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQL
 
Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024
 
Connect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationConnect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck Presentation
 
Ensuring Technical Readiness For Copilot in Microsoft 365
Ensuring Technical Readiness For Copilot in Microsoft 365Ensuring Technical Readiness For Copilot in Microsoft 365
Ensuring Technical Readiness For Copilot in Microsoft 365
 
Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?
 
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
 
Story boards and shot lists for my a level piece
Story boards and shot lists for my a level pieceStory boards and shot lists for my a level piece
Story boards and shot lists for my a level piece
 
"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr Bagan"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr Bagan
 
How to write a Business Continuity Plan
How to write a Business Continuity PlanHow to write a Business Continuity Plan
How to write a Business Continuity Plan
 
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
 
"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko
 
H2O.ai CEO/Founder: Sri Ambati Keynote at Wells Fargo Day
H2O.ai CEO/Founder: Sri Ambati Keynote at Wells Fargo DayH2O.ai CEO/Founder: Sri Ambati Keynote at Wells Fargo Day
H2O.ai CEO/Founder: Sri Ambati Keynote at Wells Fargo Day
 

IBM per la sicurezza del Datacenter

  • 1. Giovanni Todaro IBM Security Systems Leader IBM Security Systems Smarter Security per MSP
  • 2. © 2013 IBM Corporation2 Bring your own IT Social business Cloud e virtualizzazione 1 Miliardo di lavoratori mobile 1.000 miliardi di oggetti collegati Le tecnologie Innovative stanno cambiando tutto attorno a noi…
  • 3. © 2013 IBM Corporation3 Attacchi: Motivazioni e raffinatezza sono in rapida evoluzione Sicurezza Nazionale Nazioni – Stati Cyberwar Stuxnet Spionaggio, Attivismo Competitors e Hacktivists Aurora Guadagno Finaziario Criminalità Organizzata Zeus Vendetta, Curiosità Insiders and Script-kiddies Code Red
  • 4. © 2013 IBM Corporation4 Il mondo sta diventando più digitalizzato ed interconnesso, aprendo la porta alle minacce emergenti e le perdite di dati… L'età dei Big Data - l'esplosione di informazioni digitali - è arrivata ed è facilitata dalla pervasività delle applicazioni accessibili da ovunque EVERYTHING IS EVERYWHERE Con l'avvento di Enterprise 2.0 e di social business, la linea tra le ore di uso personale e professionale, i dispositivi e dei dati è scomparso CONSUMERIZATION OF IT Le organizzazioni continuano a muoversi a nuove piattaforme compresi cloud, virtualizzazione, mobile, social business e molto altro ancora DATA EXPLOSION La velocità e la destrezza degli attacchi è aumentata accoppiata con nuove motivazioni della criminalità informatica ATTACK SOPHISTICATION SECURITY INTELLIGENCE MOBILE SECURITY CLOUD SECURITY ADVANCED THREAT IBM Security Solutions Focus
  • 5. © 2013 IBM Corporation5 IBM Vi porta nell’Era della Security Intelligence 13 Miliardi di eventi di Security gestiti giornalmente 1,000 Security Patents 9 Security Operations Centers 600 Security Sales Professionals 11 Laboratori di sviluppo per Soluzioni di Security IBM Security Solutions Le organizzazioni hanno bisogno di un nuovo approccio alla sicurezza che sfrutta l'intelligenza per stare al passo con l'innovazione. IBM Security Intelligence guida il cambiamento da una strategia "point-product" ad un framework integrato di sicurezza aziendale: La traduzione dei dati di Security in conoscenze fruibili: •Riduce i rischi ed i costi commerciali •Innovazione con agilità e sicurezza • Migliora la continuità operativa
  • 6. © 2013 IBM Corporation6 IBM Security: Fornire l'intelligenza, l'integrazione e le competenze in un Framework completo Incrementa la Accuratezza e la consapevolezza nella Security Individuare e prevenire minacce avanzate Una maggiore visibilità e consapevolezza della situazione Condurre indagini complete sugli incidenti Semplicità di Gestione Semplificare la gestione del rischio e il processo decisionale Migliorare le capacità di controllo e di accesso Riduzione dei costi e complessità Fornire una rapida installazione, un minore TCO lavorando con un unico partner strategico, con un ampio portafoglio integrato Incrementa la Accuratezza e la consapevolezza nella Security Individuare e prevenire minacce avanzate Una maggiore visibilità e consapevolezza della situazione Condurre indagini complete sugli incidenti Semplicità di Gestione Semplificare la gestione del rischio e il processo decisionale Migliorare le capacità di controllo e di accesso Riduzione dei costi e complessità Fornire una rapida installazione, un minore TCO lavorando con un unico partner strategico, con un ampio portafoglio integrato Intelligence ● Integration ● ExpertiseIntelligence ● Integration ● Expertise
  • 7. © 2013 IBM Corporation7 La sicurezza è una delle preoccupazioni principali del cloud, in quanto i clienti drasticamente ripensano il modo in cui sono state progettate, distribuite e consumate le risorse IT. 2. Cloud Computing Fattori chiave che influenzano il business del sw di sicurezza Sofisticati, attacchi mirati, volti a ottenere l'accesso continuo alle informazioni critiche, sono in aumento nella severità e nella ricorrenza. 4. Regulations and Compliance 1. Advanced Threats Non è più sufficiente proteggere il perimetro - attacchi sofisticati stanno aggirando le difese tradizionali, le risorse IT sono in movimento al di fuori del firewall, e le applicazioni aziendali ed i dati sono sempre più distribuite su diversi dispositivi Come gestire dispositivi di proprietà dei dipendenti e garantire connettività alle applicazioni aziendali sono esigenze da indirizzare per i CIO ampliando il supporto per dispositivi mobili. 3. Mobile Computing Advanced Persistent Threats Stealth Bots Designer Malware Targeted Attacks Zero-days Enterprise Customers Le pressioni normative e le conformità continuano ad aumentare insieme alla necessità di memorizzare i dati sensibili e le aziende diventano suscettibili ai fallimenti di audit.
  • 8. © 2013 IBM Corporation8 La sicurezza è una delle preoccupazioni principali del cloud, in quanto i clienti drasticamente ripensano il modo in cui sono state progettate, distribuite e consumate le risorse IT. 2. Cloud Computing Sofisticati, attacchi mirati, volti a ottenere l'accesso continuo alle informazioni critiche, sono in aumento nella severità e nella ricorrenza. 4. Regulations and Compliance 1. Advanced Threats Non è più sufficiente proteggere il perimetro - attacchi sofisticati stanno aggirando le difese tradizionali, le risorse IT sono in movimento al di fuori del firewall, e le applicazioni aziendali ed i dati sono sempre più distribuite su diversi dispositivi Come gestire dispositivi di proprietà dei dipendenti e garantire connettività alle applicazioni aziendali sono esigenze da indirizzare per i CIO ampliando il supporto per dispositivi mobili. 3. Mobile Computing Advanced Persistent Threats Stealth Bots Designer Malware Targeted Attacks Zero-days Enterprise Customers Le pressioni normative e le conformità continuano ad aumentare insieme alla necessità di memorizzare i dati sensibili e le aziende diventano suscettibili ai fallimenti di audit. BIG DATA Fattori chiave che influenzano il business del sw di sicurezza
  • 9. © 2013 IBM Corporation9 Una migliore protezione contro gli attacchi più sofisticati On the Network Across the Enterprise Across the World 0day Exploit Malicious PDF SQL Injection Brute Force Botnet Communication Malicious Insider Vulnerable Server Misconfigured Firewall Phishing Campaign Infected Website Spammer IBM Advanced Threat Protection IBM QRadar Security Intelligence IBM X-Force® Threat Intelligence
  • 10. © 2013 IBM Corporation10 IBM offre Soluzioni di Security in tutte le aree della Cloud Security IBM protegge contro i rischi di cloud comuni con un ampio portafoglio di soluzioni flessibili e di livelli di sicurezza Protezione contro le minacce, riconquistare visibilità e dimostrare la compliance con il monitoraggio delle attività, il rilevamento delle anomalie e la Security Intelligence IBM Security Federated Identity Manager IBM Security Key Lifecycle Manager
  • 11. © 2013 IBM Corporation11 Mettere in sicurezza il Mobile Enterprise con le soluzioni IBM
  • 12. © 2013 IBM Corporation12 La strategia IBM per la Data Security Governance, Security Intelligence, AnalyticsGovernance, Security Intelligence, Analytics Data Discovery and ClassificationData Discovery and Classification Policy-based Access and EntitlementsPolicy-based Access and Entitlements Audit, Reporting, and MonitoringAudit, Reporting, and Monitoring at Endpoint (workstations, laptops, mobile,…) over Network (SQL, HTTP, SSH, FTP, email,. …) Stored (Databases, File Servers, Big Data, Data Warehouses, Application Servers, Cloud/Virtual ..) SecuritySolutionsSecuritySolutions IT&BusinessProcessIT&BusinessProcess integrate integrate • Proteggere i dati in qualsiasi forma, in qualsiasi luogo, da minacce interne o esterne • Semplificare i processi di Compliance • Ridurre i costi operativi circa la protezione dei dati Data Security
  • 13. © 2013 IBM Corporation13 Partner Programs (3rd party) Partner Programs (3rd party) Security Ecosystem Standards Un Portfolio completo in tutti i domini di sicurezza
  • 14. © 2013 IBM Corporation14 Temi Chiave… Standardized IAM and Compliance Management Expand IAM vertically to provide identity and access intelligence to the business; Integrate horizontally to enforce user access to data, app, and infrastructure Secure Cloud, Mobile, Social Interaction Enhance context-based access control for cloud, mobile and SaaS access, as well as integration with proofing, validation and authentication solutions Insider Threat and IAM Governance Continue to develop Privileged Identity Management (PIM) capabilities and enhanced Identity and Role management IBM Identity and Access Management - Visione e Strategia
  • 15. © 2013 IBM Corporation15 Temi Chiave… Reduced Total Cost of Ownership Expanded support for databases and unstructured data, automation, handling and analysis of large volumes of audit records, and new preventive capabilities Enhanced Compliance Management Enhanced Database Vulnerability Assessment (VA) and Database Protection Subscription Service (DPS) with improved update frequency, labels for specific regulations, and product integrations Dynamic Data Protection Data masking capabilities for databases (row level, role level) and for applications (pattern based, form based) to safeguard sensitive and confidential data Data Security Vision Across Multiple Deployment Models QRadar Integration
  • 16. © 2013 IBM Corporation16 Temi Chiave… Coverage for Mobile applications and new threats Continue to identify and reduce risk by expanding scanning capabilities to new platforms such as mobile, as well as introducing next generation dynamic analysis scanning and glass box testing Simplified interface and accelerated ROI New capabilities to improve customer time to value and consumability with out-of-the-box scanning, static analysis templates and ease of use features Security Intelligence Integration Automatically adjust threat levels based on knowledge of application vulnerabilities by integrating and analyzing scan results with SiteProtector and the QRadar Security Intelligence Platform Application Security Vision
  • 17. © 2013 IBM Corporation17 Temi Chiave… Security for Mobile Devices Provide security for and manage traditional endpoints alongside mobile devices such as Apple iOS, Google Android, Symbian, and Microsoft Windows Phone - using a single platform Expansion of Security Content Continued expansion of security configuration and vulnerability content to increase coverage for applications, operating systems, and industry best practices Security Intelligence Integration Improved usage of analytics - providing valuable insights to meet compliance and IT security objectives, as well as further integration with SiteProtector and the QRadar Security Intelligence Platform Infrastructure Protection – Endpoint Vision
  • 18. © 2013 IBM Corporation18 Temi Chiave… Advanced Threat Protection Platform Helps to prevent sophisticated threats and detect abnormal network behavior by using an extensible set of network security capabilities - in conjunction with real-time threat information and Security Intelligence Expanded X-Force Threat Intelligence Increased coverage of world-wide threat intelligence harvested by X- Force and the consumption of this data to make smarter and more accurate security decisions Security Intelligence Integration Tight integration between the Advanced Threat Protection Platform and QRadar Security Intelligence platform to provide unique and meaningful ways to detect, investigate and remediate threats Log Manager SIEM Network Activity Monitor Risk Manager Vulnerability Data Malicious Websites Malware Information Intrusion Prevention Content and Data Security Web Application Protection IBM Network Security Security Intelligence Platform Threat Intelligence and Research Advanced Threat Protection Future Future Network Anomaly Detection IP Reputation Application Control Future Threat Protection Vision
  • 19. © 2013 IBM Corporation19 X-Force database – il più esteso catalogo di vulnerabilità Web filter database – il DB relativo a Siti infetti o malevoli IP Reputation – botnets, anonymous proxies, bad actors Application Identification – web application information Vulnerability Research – le + aggiornate vulnerabilità e protezioni Security Services – gestiscono IPS più di 3000 Clienti X-Force Threat Intelligence: The IBM Differentiator X-Force Threat Intelligence Cloud
  • 20. © 2013 IBM Corporation20 Security Intelligence: L'integrazione tra silos IT Extensive Data Sources Deep Intelligence Exceptionally Accurate and Actionable Insight+ = JK2012-04-26 High Priority Offenses Event Correlation Activity Baselining & Anomaly Detection Offense Identification Database Activity Servers & Hosts User Activity Vulnerability Info Configuration Info Security Devices Network & Virtual Activity Application Activity
  • 21. © 2013 IBM Corporation21 Tutti i domini alimentano la Security Intelligence Endpoint Management vulnerabilities enrich QRadar’s vulnerability database AppScan Enterprise AppScan vulnerability results feed QRadar SIEM for improved asset risk assessment Tivoli Endpoint Manager Guardium Identity and Access Management IBM Security Network Intrusion Prevention System Flow data into QRadar turns NIPS devices into activity sensors Identity context for all security domains w/ QRadar as the dashboard Database assets, rule logic and database activity information Correlate new threats based on X-Force IP reputation feeds Hundreds of 3rd party information sources
  • 22. Luigi Perrone IBM SWG - Security Systems & z/OS Security IBM Qradar La Security Intelligence per la protezione dei Data Center
  • 23. © 2013 IBM Corporation23 Qradar overview Demo Considerazioni finali Agenda
  • 24. © 2013 IBM Corporation24 Perché una Security Intelligence ? • Risposta alle esigenze di auditing • Automazione e snellimento dei processi di raccolta eventi • Collezionamento eventi multi-sorgente • Gestione e archiviazione sicura dei dati di log (conformità alle normative) • Aggregazione dati e correlazione eventi • Monitor ed analisi dati per: - identificazione scoperture/anomalie di sicurezza - attivazione allarmi - avvio processi investigativi - report di conformità
  • 25. © 2013 IBM Corporation25 Le fasi che riguardano il ciclo di vita degli eventi
  • 26. © 2013 IBM Corporation26 1 - Un efficiente gestione degli eventi Forte acquisizione, profonda analisi, elevata reattività Event Flows Log Event jflow sflow nflow qflow syslog snmp odbc wmi ftp/sftp snare wincollectjdbc IDS-IPS FirewallSwitch-Router • Auto-discovery of log sources • Auto-discovery of applications • Auto-discovery of assets • Auto-grouping of assets • Centralized log management VA Scanner Server Database Applications • Registrazione in tempo reale • Facilità di configurazione • Modalità agent-less • Integrazione standard di molteplici dispositivi MONITOR & ASSET DISCOVERY
  • 27. © 2013 IBM Corporation27 2 - Un potente motore di elaborazione e correlazione Auto-tuning Auto-detect threats Thousands of pre-defined rules Easy-to-use event filtering Advanced security analytics ANALYSYS Un potente motore di correlazione analisi investigativa e reportistica avanzata per l’identificazione di eventi critici e loro immediata risoluzione
  • 28. © 2013 IBM Corporation28 3 - Allarmi in tempo reale e profondità investigativa • Controllo chiaro e completo di tutte le attività di rete con monitoraggio in tempo reale • Avvisi ed individuazione di eventi insoliti rispetto alla condizione di normalità • Analisi investigativa e reportistica avanzata • Report di sicurezza standard integrati e di facile personalizzazione • Thousands of predefined reports • Asset-based prioritization • Auto-update of threats • Auto-response • Directed remediation ACTIONS & REPORTS
  • 29. © 2013 IBM Corporation29 Qradar: le componenti • Turnkey log management • Upgradeable to enterprise SIEM • Sophisticated event analytics • Asset profiling and flow analytics • Network analytics • Behavioral and anomaly detection • Predictive threat modeling & simulation • Scalable configuration monitoring & audit • Event processors • Network activity processors • Layer 7 application monitoring • Content capture Log Management SIEM Network Activity and Anomaly Detection Risk Management Scale Visibility
  • 30. © 2013 IBM Corporation30
  • 31. © 2013 IBM Corporation31
  • 32. Salvatore Sollami IBM Security Systems Technical Sales and Solutions Next Generation IPS
  • 33. © 2013 IBM Corporation33 The challenging state of network security Social media sites present productivity, privacy and security risks including new threat vectors SOCIAL NETWORKING Streaming media sites are consuming large amounts of bandwidth STREAMING MEDIA Point solutions are siloed with minimal integration or data sharing POINT SOLUTIONSURL Filtering • IDS / IPS IM / P2P • Web App Protection Vulnerability Management Increasingly sophisticated attacks are using multiple attack vectors and increasing risk exposure SOPHISTICATED ATTACKS Stealth Bots • Targeted Attacks Worms • Trojans • Designer Malware
  • 34. © 2013 IBM Corporation34 Network Defense: Traditional solutions not up to today’s challenges Internet Firewall/VPN – port and protocol filtering Web Gateway – securing web traffic only, port 80 / 443 Email Gateway – message and attachment security only Threats continue to evolve and standard methods of detection are not enough Streaming media sites and Web applications introduce new security challenges Basic “Block Only” mode limits innovative use of streaming and new Web apps Poorly integrated solutions create “security sprawl”, lower overall levels of security, and raise cost and complexity Requirement: Multi-faceted Protection 0-day threat protection tightly integrated with other technologies i.e. network anomaly detection Ability to reduce costs associated with non- business use of applications Controls to restrict access to social media sites by a user’s role and business need Augment point solutions to reduce overall cost and complexity Stealth Bots Worms, Trojans Targeted Attacks Designer Malware Current Limitations Everything Else Multi-faceted Network Protection – security for all traffic, applications and users
  • 35. © 2013 IBM Corporation35 Block attachments on all outgoing emails and chats Allow marketing and sales teams to access social networking sites Advanced inspection of web application traffic destined to my web servers Allow, but don’t inspect, traffic to financial and medical sites Block known botnet servers and phishing sites A more strict security policy is applied to traffic from countries where I do not do business Client-Side Protection Network Awareness Reputation Web Protection Botnet Protection Web Category Protection Access Control Protocol Aware Intrusion Protection Web Applications Non-web Applications The Need to Understand the Who, What, and When Server Geography User or Group Reputation Network 172.29.230.15, Bob, Alice 80, 443, 21, webmail, social networks Who What PolicyTraffic Controls July
  • 36. © 2013 IBM Corporation36 Advanced Threat Protection Platform Ability to prevent sophisticated threats and detect abnormal network behavior by leveraging an extensible set of network security capabilities - in conjunction with real-time threat information and Security Intelligence Expanded X-Force Threat Intelligence Increased coverage of world-wide threat intelligence harvested by X-Force and the consumption of this data to make smarter and more accurate security decisions across the IBM portfolio Security Intelligence Integration Tight integration between the Advanced Threat Protection Platform and QRadar Security Intelligence platform to provide unique and meaningful ways to detect, investigate and remediate threats Vulnerability Data Malicious Websites Malware Information IP Reputation Intrusion Prevention Content and Data Security Web Application Protection Network Anomaly Detection IBM Network Security Threat Intelligence and Research Advanced Threat Protection Platform Application Control The Advanced Threat Protection Platform Log Manager SIEM Network Activity Monitor Risk Manager Security Intelligence Platform Vulnerability Manager NEW
  • 37. © 2013 IBM Corporation37 Next Generation Network IPS
  • 38. © 2013 IBM Corporation38 Understanding who, what, and when Immediately discover which applications and web sites are being accessed Quickly Identify misuse by application, website, user, and group Understand who and what are consuming bandwidth on the network Superior detection of advanced threats through integration with QRadar for network anomaly and event details Network flows can be sent to QRadar for enhanced analysis, correlation and anomaly detection Identity context ties users and groups with their network activity - going beyond IP address only policies Application context fully classifies network traffic, regardless of port, protocol or evasion techniques Increase Security Reduce Costs Enable Innovation
  • 39. © 2013 IBM Corporation39 Ensure appropriate application and network use Understand the Who, What and When for all network activity Extensible, 0-Day protection powered by X-Force® Next Gen IPS: IBM Security Network Protection XGS 5100 PROVEN SECURITY ULTIMATE VISIBILITY COMPLETE CONTROL IBM Security Network Protection XGS 5100 builds on the proven security of IBM intrusion prevention solutions by delivering the addition of next generation visibility and control to help balance security and business requirements NEW WITH XGS NEW WITH XGS
  • 40. © 2013 IBM Corporation40 Proven Security: Extensible, 0-Day Protection Powered by X-Force® IBM Security Network Protection XGS 5000 IBM Security Threat Protection – Backed by X-Force® – 15 years+ of vulnerability research and development – Trusted by the world’s largest enterprises and government agencies – True protocol-aware intrusion prevention, not reliant on signatures – Specialized engines • Exploit Payload Detection • Web Application Protection • Content and File Inspection Ability to protect against the threats of today and tomorrow Next Generation IPS powered by X-Force® Research protects weeks or even months “ahead of the threat” Full protocol, content and application aware protection goes beyond signatures Expandable protection modules defend against emerging threats such as malicious file attachments and Web application attacks
  • 41. © 2013 IBM Corporation41 QRadar Network Anomaly Detection QRadar Network Anomaly Detection is a purpose built version of QRadar for IBM’s intrusion prevention portfolio The addition of QRadar’s behavioral analytics and real-time correlation helps better detect and prioritize stealthy attacks Supplements visibility provided by IBM Security Network Protection’s Local Management (LMI) Integration with IBM Security Network Protection including the ability to send network flow data from XGS to QRadar
  • 42. © 2013 IBM Corporation42 IBM X-Force® Threat Information Center Real-time Security Overview w/ IP Reputation Correlation Identity and User Context Real-time Network Visualization and Application Statistics Inbound Security Events
  • 43. © 2013 IBM Corporation43 IBM Security Network Protection XGS 5100IBM Security Network Protection XGS 5100 The XGS 5100: The Best Solution for Threat Prevention Internet Firewall/VPN – port and protocol filtering Web Gateway – securing web traffic only, port 80 / 443 Email Gateway – message and attachment security only Everything Else Better Network Control Natural complement to current Firewall and VPN Not rip-and-replace – works with your existing network and security infrastructure More flexibility and depth in security and control over users, groups, networks and applications Better Threat Protection True Protocol aware Network IPS Higher level of overall security and protection More effective against 0-day attacks Best of both worlds – true protocol and heuristic- based protection with customized signature support Stealth Bots Worms, Trojans Targeted Attacks Designer Malware Proven Security Ultimate Visibility Complete Control