Upload File

valuendo 25 things not to do (march 2009) handout

  • Home
  • Business
  • Valuendo 25 Things Not To Do (March 2009) Handout
16
1 25 tips & tricks Marc Vael InfoSecurity 2009 Valuendo March 2009 © 2009 Valuendo. All rights reserved. 1 INFORMATION CLASSIFICATION = PUBLIC 25 Examples of what you should not do March 2009 Mr. Marc Vael Managing Director Valuendo © 2009 Valuendo. All rights reserved. 2 INFORMATION CLASSIFICATION = PUBLIC Agenda • Introduction • Concept • 25 Statements • Conclusion

Upload: marc-vael

Post on 13-Jan-2015

298 views

Category:

Business


0 download

Report

Tags:

DESCRIPTION

Voting presentation on 25 security statements.

TRANSCRIPT

Page 1: Valuendo 25 Things Not To Do (March 2009) Handout

1

25 tips & tricks

Marc Vael InfoSecurity 2009Valuendo March 2009

© 2009 Valuendo. All rights reserved. 1INFORMATION CLASSIFICATION = PUBLIC

25 Examples of what you should not do

March 2009

Mr. Marc VaelManaging Director

Valuendo

© 2009 Valuendo. All rights reserved. 2INFORMATION CLASSIFICATION = PUBLIC

Agenda

• Introduction• Concept• 25 Statements• Conclusion

Page 2: Valuendo 25 Things Not To Do (March 2009) Handout

2

25 tips & tricks

Marc Vael InfoSecurity 2009Valuendo March 2009

© 2009 Valuendo. All rights reserved. 3INFORMATION CLASSIFICATION = PUBLIC

• Marc Vael• Managing Director Valuendo (“value & do”) since July 2001• Education

– Master Applied Economics (UAntwerp)– Master Information Management (UHasselt)– Master+ Applied Economics & ICT (KUL)

• Core Services– Enterprise Risk Management– IT Governance–– Information Security ManagementInformation Security Management– Data Privacy & Protection– Business Continuity / Disaster Recovery – Crisis Management– IT Audit & Compliance

• Certifications in good standing– CISA / CISM / CISSP / ITIL Service Manager

Introduction

© 2009 Valuendo. All rights reserved. 4INFORMATION CLASSIFICATION = PUBLIC

• First : Statement

• Second : Voting on your current experience

Concept

Page 3: Valuendo 25 Things Not To Do (March 2009) Handout

3

25 tips & tricks

Marc Vael InfoSecurity 2009Valuendo March 2009

© 2009 Valuendo. All rights reserved. 5INFORMATION CLASSIFICATION = PUBLIC

Test : The economic crisis has no impact on the way we handle security

• Fully Agree • Do not agree • Don’t know really

© 2009 Valuendo. All rights reserved. 6INFORMATION CLASSIFICATION = PUBLIC

Lesson 1 : Security > Business needs

•Yes •Not always •No

Page 4: Valuendo 25 Things Not To Do (March 2009) Handout

4

25 tips & tricks

Marc Vael InfoSecurity 2009Valuendo March 2009

© 2009 Valuendo. All rights reserved. 7INFORMATION CLASSIFICATION = PUBLIC

Lesson 2 : It is the CISO who is driving security in our organisation

•Of course. •No, the real driver is someone else •I’m not sure

© 2009 Valuendo. All rights reserved. 8INFORMATION CLASSIFICATION = PUBLIC

Lesson 3 : Security budget is easy to calculate and to defend/present

•Absolutely •Difficult to calculate, but easy to defend / present •Not really

Page 5: Valuendo 25 Things Not To Do (March 2009) Handout

5

25 tips & tricks

Marc Vael InfoSecurity 2009Valuendo March 2009

© 2009 Valuendo. All rights reserved. 9INFORMATION CLASSIFICATION = PUBLIC

Lesson 4 : The security vision is understood by everyone

•Yes and we even have checked this

•We hope so •No

© 2009 Valuendo. All rights reserved. 10INFORMATION CLASSIFICATION = PUBLIC

Lesson 5 : Everybody understands security terminology used

•Yes we know and we even have a glossary •We hope so •No

Page 6: Valuendo 25 Things Not To Do (March 2009) Handout

6

25 tips & tricks

Marc Vael InfoSecurity 2009Valuendo March 2009

© 2009 Valuendo. All rights reserved. 11INFORMATION CLASSIFICATION = PUBLIC

Lesson 6 : Security and risk management are two different professions

•Yes •No •Don’t know really

© 2009 Valuendo. All rights reserved. 12INFORMATION CLASSIFICATION = PUBLIC

Lesson 7 : People recognize security incidents

•Yes and we even have tested this

•We hope so •No

Page 7: Valuendo 25 Things Not To Do (March 2009) Handout

7

25 tips & tricks

Marc Vael InfoSecurity 2009Valuendo March 2009

© 2009 Valuendo. All rights reserved. 13INFORMATION CLASSIFICATION = PUBLIC

Lesson 8 : People know how to classify and secure their information

•Yes and we even have tested this

•We hope so •No

© 2009 Valuendo. All rights reserved. 14INFORMATION CLASSIFICATION = PUBLIC

Lesson 9 : Security audits are essential to determine what’s wrong

•Yes •We hope so •No

Page 8: Valuendo 25 Things Not To Do (March 2009) Handout

8

25 tips & tricks

Marc Vael InfoSecurity 2009Valuendo March 2009

© 2009 Valuendo. All rights reserved. 15INFORMATION CLASSIFICATION = PUBLIC

Lesson 10 : Security awareness posters are the most effective tool

•Yes and we even have checked this

•We hope so •No

© 2009 Valuendo. All rights reserved. 16INFORMATION CLASSIFICATION = PUBLIC

Lesson 11 : People remember all passwords & pin-codes

•Yes and we even have checked this

•We hope so •No

Page 9: Valuendo 25 Things Not To Do (March 2009) Handout

9

25 tips & tricks

Marc Vael InfoSecurity 2009Valuendo March 2009

© 2009 Valuendo. All rights reserved. 17INFORMATION CLASSIFICATION = PUBLIC

Lesson 12 : People always select a strong password

•Yes and we even enforce this

•We hope so •No

© 2009 Valuendo. All rights reserved. 18INFORMATION CLASSIFICATION = PUBLIC

Lesson 13 : People lock their PC information via screen saver

•Yes and we even have checked this

•We hope so •No

Page 10: Valuendo 25 Things Not To Do (March 2009) Handout

10

25 tips & tricks

Marc Vael InfoSecurity 2009Valuendo March 2009

© 2009 Valuendo. All rights reserved. 19INFORMATION CLASSIFICATION = PUBLIC

Lesson 14 : People respect clean desk policy

•Yes and we even have checked this

•We hope so •No

© 2009 Valuendo. All rights reserved. 20INFORMATION CLASSIFICATION = PUBLIC

Lesson 15 : People always use the security tools we give them

•Yes and we even have checked this

•We hope so •No

Page 11: Valuendo 25 Things Not To Do (March 2009) Handout

11

25 tips & tricks

Marc Vael InfoSecurity 2009Valuendo March 2009

© 2009 Valuendo. All rights reserved. 21INFORMATION CLASSIFICATION = PUBLIC

Lesson 16 : IT people give the good example of respecting security rules

•Yes and we even have checked this

•We hope so •No

© 2009 Valuendo. All rights reserved. 22INFORMATION CLASSIFICATION = PUBLIC

Lesson 17 : People only use official authorized software

•Yes and we even have tested this

•We hope so •No

Page 12: Valuendo 25 Things Not To Do (March 2009) Handout

12

25 tips & tricks

Marc Vael InfoSecurity 2009Valuendo March 2009

© 2009 Valuendo. All rights reserved. 23INFORMATION CLASSIFICATION = PUBLIC

Lesson 18 : Only naughty people get naughty spam mails

•Yes •No •Don’t know really

© 2009 Valuendo. All rights reserved. 24INFORMATION CLASSIFICATION = PUBLIC

Lesson 19 : Only dumb people fall for phishing scams / mails

•Yes •No •Don’t know really

Page 13: Valuendo 25 Things Not To Do (March 2009) Handout

13

25 tips & tricks

Marc Vael InfoSecurity 2009Valuendo March 2009

© 2009 Valuendo. All rights reserved. 25INFORMATION CLASSIFICATION = PUBLIC

Lesson 20 : People mention their backups in their OOO when unavailable

•Yes •No •Don’t know really

© 2009 Valuendo. All rights reserved. 26INFORMATION CLASSIFICATION = PUBLIC

Lesson 21 : People suggest alternative communication channels when unavailable

•Yes •No •Don’t know really

Page 14: Valuendo 25 Things Not To Do (March 2009) Handout

14

25 tips & tricks

Marc Vael InfoSecurity 2009Valuendo March 2009

© 2009 Valuendo. All rights reserved. 27INFORMATION CLASSIFICATION = PUBLIC

Lesson 22 : People know & respect security rules when at other companies

•Yes •No •Don’t know really

© 2009 Valuendo. All rights reserved. 28INFORMATION CLASSIFICATION = PUBLIC

Lesson 23 : People need full internet access for professional reasons

•Yes •No •Don’t know really

Page 15: Valuendo 25 Things Not To Do (March 2009) Handout

15

25 tips & tricks

Marc Vael InfoSecurity 2009Valuendo March 2009

© 2009 Valuendo. All rights reserved. 29INFORMATION CLASSIFICATION = PUBLIC

Lesson 24 : People know how to secure their wired & wireless network access

•Yes •No •Don’t know really

© 2009 Valuendo. All rights reserved. 30INFORMATION CLASSIFICATION = PUBLIC

Lesson 25 : Security is still better on paper than on digital format

•Yes •No •Don’t know really

Page 16: Valuendo 25 Things Not To Do (March 2009) Handout

16

25 tips & tricks

Marc Vael InfoSecurity 2009Valuendo March 2009

© 2009 Valuendo. All rights reserved. 31INFORMATION CLASSIFICATION = PUBLIC

Conclusion

© 2009 Valuendo. All rights reserved. 32INFORMATION CLASSIFICATION = PUBLIC

Mr. Marc Vael, Mr. Marc Vael, CISA, CISM, CISSP, ITILCISA, CISM, CISSP, ITIL

Managing DirectorManaging Director

ValuendoValuendoKriebrugstraat 33Kriebrugstraat 331760 Roosdaal1760 RoosdaalBelgiumBelgium

T: +32 5 433 61 93T: +32 5 433 61 93M: +32 473 99 30 31M: +32 473 99 30 31M: M: mvael@[email protected]: W: www.valuendo.comwww.valuendo.com

Contact information


CS106B Handout 24 Winter 2019 March 8, 2019 Assignment 7 ... · CS106B Winter 2019 Handout 24 March 8, 2019 Assignment 7: Calligraphy _____ Assignment by Ashley Taylor and Keith Schwarz

First Things March 2002 - Fred Heeren

Microsoft Word - Agenda · Web viewHandout #1 Handout #5 Handout #10 Handout #18 Handout #13 Handout #4 Handout #9 Handout #17 Handout #8 Handout #12 Handout #3 Handout #16 Handout

A Practical Approach 2nd March 2012 Handout Slides

January-March 2014 Wild Things

Internet of Things, March 27th, 2008 (Zurich)

Handout: 'The Internet of Things' (BDPA Cincinnati, June 2015)

2016 March Good Things

March 14th, 2008: The Deeper Things of Christ

Shabbat Handout March 9, 2013

The POS Handout - March

EMC Solutions for the Internet of Things and Industrie 4.0 - Platforms (Handout EN)

[12/2014] HANDOUT 1 – Historical Archaeology · [12/2014] HANDOUT 1 – Historical Archaeology . Reading & Reference List . ... 1996 In Small Things Forgotten: An Archaeology of

Eric Roberts Handout #50A CS 106B March 9, 2015 Answers to

First things first – FYE conference handout

Chris Piech Handout #32 CS 106A March 8, 2017 Assignment ... · Chris Piech Handout #32 CS 106A March 8, 2017 Assignment #7—FacePamphlet Due: 5PM on Friday, March 17th Note: No

Welcome 2 things to do - the Conference Exchangeaahperd.confex.com › aahperd › 2015 › webprogram › Handout...Welcome—2 things to do ... AND Complete the SEXTING squares sheet…NO

Things to Get: Things to Get: The handout from the table in the front of the room The handout from the table in the front of the room Notebook paper Notebook

London Knowledge Cafe Handout 19 March 2009

Ordinary People Doing Extraordinary Things March 2015

All Things Local Ripley Edition - February/March 2014

8.1 handout pythagorean theorem and its converse.notebook Pythagorean... · 8.1 handout pythagorean theorem and its converse.notebook 1 March 14, 2016 Geometry Ch. 8 Handout 8.1

Internet of Things Cyber Insights Magazine_3 March

4 - Bill Taylor_healthcare_23 Tocpa_usa_21-22 Handout March 2016

Wild Things - January - March 2012

January-March 2013 Wild Things

slavCS110 Handout 13 Winter 2014 March 21 Winter 2014: … · 2021. 3. 2. · slavCS110 Handout 13 Winter 2014 March 21st, 2014 Winter 2014: CS110 Final Examination This is a closed

Getting Things Done...Getting Things Done Virginia Sharp March May 27, 2020. Virginia Sharp March

Rohit Talwar - Future of Travel - ITB Berlin - 11th March 2009 Handout

3 Things You Don't Know - ton - MDGFOA - 06-16-11 - HANDOUT

Handout entrep finance epilogue march 2012

Links Manchester 9th March Handout

Ten amazing things about Red-Tailsredtail.com.au/uploads/file/latestnews/handout 10 things 8-9-10.pdf · Ten amazing things about Red-Tails Photo: Bob McPherson. ... day in a crop

Soccer Standards Handout March 2013 2

Investor Handout - maybank.com · Investor Handout Invest ASEAN 2018 Singapore 27 –28 March 2018 Humanising Financial Services. 1 ... *As at 29th December 2017 ^As at 9th March