I’m in Information Security, So What Do I Do First?
Dennis McCallam
Symposium on Simulation of Systems Security (SSSS'08) (SSSS 2008)
Crowne Plaza Ottawa Hotel, Ottawa, Canada, April 14 -17, 2008
Summary
So, you woke up this morning to begin your new career path in Information Security. And it doesn’t matter if that role is in the monitoring center, as an architect, as a system security officer or even the top dog. Because the biggest question on your mind is what do I do first? This presentation looks at the first 10 things you are going to want to do because each step will provide information to you that will frame out your job and surface the more immediate challenges you will face. These 10 areas (Certifications and Assessments, System configuration, Application Contention, Continuity, Classification, Authentication, Documentation, Audit Trails, Tools and Staffing, Maintenance) are looked at individually with each posing a set of issues that provides not only the type of questions you should be asking but a frame around the depth of data you are getting your arms around. Typical information security revolves around the People-Process-Technology triad and becomes effective security a balance between each of those components reached. The People component deals with the differences in definitions of the syntax people use, the dynamics across different working cultures, and interactions with and across external organizations. Process defines the day to day business operations within each organization, providing approved methods for not only operational tactics and strategies, but also identifying and then providing remediation to risks and limitations. Finally, the Technologies component employs those processes that identify and select the proper tools and techniques that implement, facilitate, monitor and expedite the information assurance function.
The presentation also looks at what is called “the security domino effect” where individual security issues from different parts of a system can be exploited together to make a system more vulnerable. This presentation will look at some domino affects of vulnerabilities of connected system and ways to identify and bound those risks. Where appropriate, some real life examples will be used to illustrate the key points. The goal is for you to walk away with a game plan on how to approach the system knowledge management aspect of the information security job.
|
START
Conference Manager (V2.54.5)
|