Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Data security @ the personal level

428 views

Published on

Protecting data assets is a real problem and not just the job of the IT department

Published in: Technology
  • Be the first to comment

  • Be the first to like this

Data security @ the personal level

  1. 1. Data Security (@ the personal level) Arnon Rotem-Gal-Oz
  2. 2. So what’s so important about “information security”?
  3. 3. Security is a real problem www.informationisbeautiful.net/visualizations/worlds-biggest-data-breaches-hacks/
  4. 4. Information security? Not MY problem - IT should figure it out
  5. 5. We’ve met the enemy and he is us
  6. 6. Hardware Software PeopleProcedures Data
  7. 7. Formal threat analysis The STRIDE model Also see • OWASP https://www.owasp.org/ • https://www.owasp.org/index.php/Threat_Risk_Modeling#STRIDE • Common Criteria https://www.commoncriteriaportal.org/
  8. 8. Spoofing (of user identity) Tampering Repudiation Information disclosure Denial of service Elevation of privilege
  9. 9. On the other hand…
  10. 10. Passwords
  11. 11. 2016 is just as bad
  12. 12. Physical theft/loss
  13. 13. Protect your assets
  14. 14. Pay attention to email/text recipient address
  15. 15. Malware
  16. 16. It is up to you!
  17. 17. •Be mindful •Be careful who you trust •Secure your devices •Report problems

×