1
2
3
4	About Ingram Micro Ingram Micro Inc. is the world’s largest technology distributor and a leading technology sales, marketing and logistics company. The company offers a broad array of technology solutions and services to nearly 165,000 resellers by distributing and marketing hundreds of thousands of IT products worldwide from nearly 1,400 suppliers. Ingram Micro serves 100 countries and is the only global IT distributor with operations in Asia. Ingram Micro employees approximately 10,000 associates and has annual sales of approximately $27Billion per year. Ingram Micro is a Fortune 75 company and trades on NYSE under the symbol IM
5
6	What’s New? Theft is still Theft Fraud is still Fraud Extortion is still Extortion Violence is still Violence Uncontrolled Substances are still Uncontrolled Substances
7
8
9
10
11
12	Industry Standards ISO 17799 – Computer Controls Standard FERC Cyber Security Standard National Institute of Standards and Technology (NIST)800-14 – Generally Accepted Principles and Practices for Securing Information Technology 􀂋
13	Risk Management Frameworks
14	Leverage Corporate Security Practice Investigation Methods Interview Techniques Monitoring Chain of evidence protection Forensics Partnership with Law Enforcement Awareness and Training Self-directed work force Global Presence Crisis Escalation Risk Assessments Self Assessments, Risk Assessment, Gap Analysis Identification of high value assets Background checks on employees Physical/mental protection of employees
15
16	Clearly Define the Roles
17	Ensure It’s Leadership Driven
18	Realize That Process is Required to Deliver the Service
19	Use Core IT Processes To Enable The Service
20	Here’s What The Model Can Look Like
21
22	"Firewalls are only one access..." Firewalls are only one access point into the network VPN Wireless Modem Dedicated ISDN connections Firewalls managed by different resources, different policy or inconsistent configurations are a high risk Firewalls with 200-500 rules are not unheard of – and they create high risk for the corporation Application of technology should support an overall architecture or standard
23	"They may have more to..." They may have more to lose, but don’t confuse competency with professionalism or maturity Many IT resources have vertical skills without operational experience For many IT resources, IT is a job, not a profession Because they are usually resource constrained and the nature of the technology is very complex, IT resources tend to mimic the practice and behavior of IT leadership in order to be safe. Therefore, mentorship through responsible IT leadership is critical for a successful IT operation Organization can drive behaviors, so a defined organization for managing perimeter devices and security is required for consistency and best practice.
24	"People" People, Process and Technology will be forever inextricably connected in the computer field. Don’t invest in technology without defining a work-flow or process to support it. Overlay the organizational requirement onto the work-flow to ensure proper staffing. Good technology applied well in one location does not mean the entire network is protected. The weakest link theory continues to be a force in the security field.
25	"Unfortunately" Unfortunately, IT Security is such a hot market now, it is a job for many, and not a profession. Many resources from big vendors such as IBM, E&Y, PWC, CA, or D&T are just learning the field. Check their resumes as a matter of practice. Security is a multifaceted discipline; many resource have not had the years or diversity of experience to understand the implications of their recommendations or actions. Certifications such as CISSP or CISA are differentiators Know Where Products Best Fit and How To Use Them What is the typical Life-Cycle of the product or service in question? What are critical success factors for usage?
26	"It doesn’t have to be..." It doesn’t have to be found on the hacker sites to be used by hackers (though it usually is talked about there) Shareware, frequently used by IT to defer costs, can be a conduit for the hacker (check out DameWare, widely used remote control freeware that is known and exploited by hackers) IT technicians often times use hacker software to test for vulnerabilities, but do not properly control the deployment or usage. Hackers need jobs too – some work as technicians for IT organizations and steal legitimate license keys. In 2003, Unlicensed software losses totaled over $28B, per Reuters, July 7, 2004.