23
Breach Stats

Alert Logic: Realities of Security in the Cloud

Embed Size (px)

Citation preview

Page 1: Alert Logic: Realities of Security in the Cloud

Breach Stats

Page 2: Alert Logic: Realities of Security in the Cloud

REALITIES OF SECURITY IN THE CLOUD

James BrownVice President of Technology Services

Page 3: Alert Logic: Realities of Security in the Cloud

SECURITY IS A CHALLENGE

Page 4: Alert Logic: Realities of Security in the Cloud

Infrastructure Has Changed

EARLY 2000’s MID 2000’s NOW

Buying Hardware

Page 5: Alert Logic: Realities of Security in the Cloud

Infrastructure Has Changed

EARLY 2000’s MID 2000’s NOW

Infrastructure As a ServiceBuying Hardware

Page 6: Alert Logic: Realities of Security in the Cloud

Cybercrime Has Also ChangedSingle Actors

EARLY 2000’s MID 2000’s NOW

Page 7: Alert Logic: Realities of Security in the Cloud

Cybercrime Has Also ChangedSingle Actors Highly Organized Groups

EARLY 2000’s MID 2000’s NOW

Page 8: Alert Logic: Realities of Security in the Cloud

Cybercrime is Flourishing

508 is the average number of

applicationsin an enterprise

Evolution of AdversariesExpanding Attack Surfaces Overwhelmed Defenses

37% of US companies face 50,000+ alerts

per month

390,000 new malicious programs

every day with a viable ecosystem

Forbes, 2014FireEye, 2015

AV-TEST, 2016

Page 9: Alert Logic: Realities of Security in the Cloud

Who is being targeted?

Page 10: Alert Logic: Realities of Security in the Cloud

Who is being targeted?

Page 11: Alert Logic: Realities of Security in the Cloud

Today’s Attacks Have Several Stages

Page 12: Alert Logic: Realities of Security in the Cloud

THE GOOD NEWS

Page 13: Alert Logic: Realities of Security in the Cloud

The Cloud Can be Secure

“Public cloud workloads can be at least as secure as those in your own data center, likely better.”

Neil McDonald – Garter Security and Risk Management SummitLondon Sept 2015

Page 14: Alert Logic: Realities of Security in the Cloud

Cloud Security – New Approach

The Principles of security do not change but your Approach to security needs to change:

• Security best practices are no different in the cloud

• You need to apply the same security standards to cloud workloads as applied to on-premises

• Understand the Shared Responsibility of Cloud Security

Page 15: Alert Logic: Realities of Security in the Cloud

Security in the Cloud is a Shared Responsibility

PROVIDES

• Secure coding and best practices• Software and virtual patching• Configuration management

• Access management• Application level attack monitoring

• Access management• Patch management• Configuration hardening• Security monitoring• Log analysis

• Network threat detection• Security monitoring

• Logical network segmentation• Perimeter security services• External DDoS, spoofing, and scanning prevented

• Hardened hypervisor• System image library• Root access for customer

• Configuration best practices

Page 16: Alert Logic: Realities of Security in the Cloud

Challenges of being Secure in the Cloud

SECURITY TOOLS AREComplicated to use

Difficult to deploy

Expensive to manage and tune

HUMAN EXPERTISE ISHard to find

Harder to keep

Very expensive

THREAT INTELLIGENCE AND SECURITY CONTENTGets stale quickly

Requires specificknow-how

Validation required to avoid false positives

Page 17: Alert Logic: Realities of Security in the Cloud

ALERT LOGIC HAS A SOLUTION

Page 18: Alert Logic: Realities of Security in the Cloud

Alert Logic Provides

Realtime Security Monitoring of Network and Logs

Analytics Engine to find potential threats

Review and Escalation by our Security Analysts

Visibility of the AWS Environment

AWS Best Practices

Vulnerabilities on the InstancesAWS

Config / Inspector

AWS CloudTrail

Research into generic and AWS threats

Audit and Compliance reporting

Page 19: Alert Logic: Realities of Security in the Cloud

Alert Logic – a Leader in Forrester’s 2016 NA MSSP WAVETM

“Alert Logic has a head start in the cloud, and it shows.

Alert Logic is an excellent fit for clients looking to secure their current or planned cloud migrations, clients requiring a provider than can span seamlessly between hybrid architectures, and those that demand strong API capabilities for integrations.”

- Forrester WAVETM Report

Page 20: Alert Logic: Realities of Security in the Cloud

How Cloud Defender Works in AWS

AWS Service Log Collection Web and Network Security Events,Application & server logs

Continuous Vulnerability ScanningConfiguration Assessments, and Environment

Visibility

AWS SERVICES INSTANCES & APPLICATIONS

Analytics Platform Threat Intel & Context Expert Analysis

Threat Detection with Remediation Tactics

YOUR TEAM

Vulnerability & Configuration Issues

Page 21: Alert Logic: Realities of Security in the Cloud

Vulnerability and AWS-Specific Checks Included

AWS ACCOUNTSPasswords complexityNon-expiring passwordsNo users with API keysNo MFA No key rotationInactive user accountsEC2 instance not using IAM roles

S3 BUCKETSUpload permissions not restrictedDelete permissions not restrictedUnrestricted list access

AWS RDS Secure database settings Data encryption

OVER 80,000 VULNERABILITY AND CONFIGURATION CHECKS

NETWORK TOPOLOGYUnrestricted inbound/outboundDirect inbound/ outbound access to DBInsecure services open to InternetMultiple functions on a single host (Web and DB server)

ELB SECURITYInsecure cipher or protocolListener not using secure protocolUnapproved cipherMissing security groupsUnapproved port access

Page 22: Alert Logic: Realities of Security in the Cloud

Almost 4,000 Organizations Worldwide Trust Alert Logic

MILLIONS of devices secured

PETABYTES of log data undermanagement

HUNDREDSOF MILLIONS of security eventscorrelatedper month

THOUSANDS of incidents identified and reviewed per month

Page 23: Alert Logic: Realities of Security in the Cloud

Thank you.


Constructed Realities

Constructed Realities

Documents
Legal Realities

Legal Realities

Documents
AWS CloudTrail & Alert Logic Log Manager

AWS CloudTrail & Alert Logic Log Manager

Technology
This Data Processing Agreement (DPA Alert Logic Data … · 2021. 1. 28. · Alert Logic - Data Protection Agreement – Version Date January 2021 P a g e | 3 3.1 GDPR a. The Parties’

This Data Processing Agreement (DPA Alert Logic Data … · 2021. 1. 28. · Alert Logic - Data Protection Agreement – Version Date January 2021 P a g e | 3 3.1 GDPR a. The Parties’

Documents
CLOUD SECURITY - Aptum Logic... · CLOUD SECURITY REPORT 2015 4 INTRODUCTION Alert Logic provides managed security and compliance solutions for over 3,000 customers around the globe

CLOUD SECURITY - Aptum Logic... · CLOUD SECURITY REPORT 2015 4 INTRODUCTION Alert Logic provides managed security and compliance solutions for over 3,000 customers around the globe

Documents
Nimbo/Alert Logic - Azure in the Cloud

Nimbo/Alert Logic - Azure in the Cloud

Internet
***MEDIA ALERT***MEDIA ALERT***MEDIA ALERT***prod.omnianightclub.com.s3-us-west-1.amazonaws.com/... · ***media alert***media alert***media alert*** for immediate release omnia nightclub

***MEDIA ALERT***MEDIA ALERT***MEDIA ALERT***prod.omnianightclub.com.s3-us-west-1.amazonaws.com/... · ***media alert***media alert***media alert*** for immediate release omnia nightclub

Documents
Alert Logic for HIPAA Compliance...Alert Logic for HIPAA Compliance HIAAHITECH SOLUTIONS MAING Threat Manager contains over 45 dashboards and 100 reports to help you manage compliance

Alert Logic for HIPAA Compliance...Alert Logic for HIPAA Compliance HIAAHITECH SOLUTIONS MAING Threat Manager contains over 45 dashboards and 100 reports to help you manage compliance

Documents
A CASE STUDY FOR: ALERT LOGIC71914c29be388eb17d53-1badda977a4c2fdd79981f21e7c1ca8c.r28.cf2.… · A CASE STUDY FOR: ALERT LOGIC ... Managing IT infrastructure and platform takes a

A CASE STUDY FOR: ALERT LOGIC71914c29be388eb17d53-1badda977a4c2fdd79981f21e7c1ca8c.r28.cf2.… · A CASE STUDY FOR: ALERT LOGIC ... Managing IT infrastructure and platform takes a

Documents
AppSec USA 2014 Denver, Colorado Auto Scaling Web Application Security in the Cloud Misha Govshteyn Alert Logic

AppSec USA 2014 Denver, Colorado Auto Scaling Web Application Security in the Cloud Misha Govshteyn Alert Logic

Documents
Alert logic cloud security report

Alert logic cloud security report

Technology
ENERGY REALITIES

ENERGY REALITIES

Documents
Ground Realities

Ground Realities

Documents
EAL-TIME ALERT MANAGER · Agent Logic z Real-Time Alert Manager 3.0 User’s Guide 11 SYSTEM ARCHITECTURE PREFACE System Architecture. RTAM. is a web application that runs as a Java

EAL-TIME ALERT MANAGER · Agent Logic z Real-Time Alert Manager 3.0 User’s Guide 11 SYSTEM ARCHITECTURE PREFACE System Architecture. RTAM. is a web application that runs as a Java

Documents
Hypnotic realities

Hypnotic realities

Health & Medicine
Alternate Realities

Alternate Realities

Education
Big Data & Cloud Security on AWS with Alert Logic

Big Data & Cloud Security on AWS with Alert Logic

Technology
AP Examination Alert The APCS Examination includes a variety of Boolean Logic questions. Many questions require indirect knowledge of Boolean Logic, and

AP Examination Alert The APCS Examination includes a variety of Boolean Logic questions. Many questions require indirect knowledge of Boolean Logic, and

Documents
Virtual Realities

Virtual Realities

Documents
Alert Logic Security and Compliance Solutions for vCloud Air

Alert Logic Security and Compliance Solutions for vCloud Air

Documents
PCI Solutions From Alert Logic

PCI Solutions From Alert Logic

Technology
8-SESSION SEVEN REALITIES FOR SEVEN REALITIES FOR GOD

8-SESSION SEVEN REALITIES FOR SEVEN REALITIES FOR GOD

Documents
Remote Sensing Realities | June 2008 Remote Sensing Realities

Remote Sensing Realities | June 2008 Remote Sensing Realities

Documents
CASE STUDY: BCS, THE CHARTERED INSTITUTE FOR IT · WHY ALERT LOGIC? BCS discovered Alert Logic a year ago and it was the first time its executives had decided to work with an outsourced

CASE STUDY: BCS, THE CHARTERED INSTITUTE FOR IT · WHY ALERT LOGIC? BCS discovered Alert Logic a year ago and it was the first time its executives had decided to work with an outsourced

Documents
Imagined Realities

Imagined Realities

Documents
Educational Realities

Educational Realities

Documents
Unreal Realities

Unreal Realities

Technology
The Total Economic Impact Of Alert Logic SIEMless Threat … · 3 | The Total Economic Impact Of Alert Logic SIEMless Threat Management TEI Framework And Methodology From the information

The Total Economic Impact Of Alert Logic SIEMless Threat … · 3 | The Total Economic Impact Of Alert Logic SIEMless Threat Management TEI Framework And Methodology From the information

Documents
SECURITY-AS-A-SERVICE BUILT FOR AWS - Alert Logic · PDF fileAlert Logic Security-as-a-Service solutions integrate ... with lightweight agents and auto-scaling ... on app security

SECURITY-AS-A-SERVICE BUILT FOR AWS - Alert Logic · PDF fileAlert Logic Security-as-a-Service solutions integrate ... with lightweight agents and auto-scaling ... on app security

Documents
12 realities

12 realities

Entertainment & Humor