Information Risk Management

(1)

The information contained herein is of a general nature and is not intended to address the circumstances of any particular individual or entity. Although we endeavour to provide accurate and timely information, there can be no guarantee that such information is accurate as of the date it is received or that it will continue to be accurate in the future. No one should act on such information without appropriate professional advice after a thorough examination of the particular situation.

© 2015 <COMPANY> Advisory N.V., registered with the trade register in The Netherlands under number 33263682, is a member firm of the <COMPANY> network of independent member firms affiliated with <COMPANY> International Cooperative (‘<COMPANY>

The <COMPANY> name, logo and ‘cutting through complexity’ are registered trademarks of <COMPANY> International.

”Prepare, Partner, Evolve”

EMC Conference 10 February 2016 Dennis van Ham

(2)

International Cooperative (‘KPMG International’), a Swiss entity. All rights reserved. Printed in the Netherlands. The KPMG name, logo and ‘cutting through complexity’ are registered trademarks of KPMG International.

KEY SECURITY TRENDS

Rapid technology change

1 Digital transformation dramatically expands threat landscape Technology increasingly becomes an integral part of even the most mundane everyday activities, resulting in an expanded and more complex threat landscape.

Governments intervene

2 Governments become increasingly interventionist

Governments adopt a more intrusive approach to organisations, which is often justified as combating organised crime or deterring anti-competitive practices.

Beyond protection

3

Ability to protect is progressively compromised

Established methods of information risk management are eroded or compromised by internal or external non-malicious actors.

Source: ISF Threat Horizon 2018 January 2016

(3)

INFORMATION RISK MANAGEMENT CONSIDERATIONS

Protection &

Defense

Response

Human factor is weakest link,

unless…

Cooperation is required

ISAC, Sector, Government, (IT-) partners

How to react if you are hacked (and

you will)…

Shift from prevent to

detect &

respond Protect your

“crown jewels”

(4)

Beyond protection

INFORMATION RISK MANAGEMENT BEYOND PROTECTION

Protect &

Defend

Technical Controls

Behavioural Controls

Respond

Immediate Incident Response

Investigations

(5)

5

© 2015 KPMG Advisory N.V., registered with the trade register in the Netherlands under number 33263682, is a member firm of the KPMG network of independent member firms affiliated with KPMG International Cooperative (‘KPMG International’), a Swiss entity. All rights reserved. Printed in the Netherlands. 55

DIGITAL FORENSIC READINESS (DFR)

…the state in which you are properly prepared to handle upcoming digital incidents.”

DFR “

PREPARE

(6)

6

WHY

IMPACT MITIGATION & FUTURE PREVENTION

6

REGULATORY COMPLIANCE

 EU: GENERAL DATA PROTECTION REGULATION

 THE USA SEC: MATERIAL DATA BREACHES DISCLOSURE

DFR?

 INCREASED SITUATIONAL AWARENESS WITHIN A COMPANY

 LESSONS LEARNED FROM THE PAST INCIDENT EXPERIENCES

 VOLUNTARILY SHARING INCIDENT INFORMATION ACROSS INDUSTRIES

(7)

7

WHY

COST EFFICIENCY

7

REPUTATION

 RESTORE THE CONFIDENCE & TRUST OF KEY STAKEHOLDERS

DFR?

 TIMELY VS. SPEEDY INCIDENT RESPONSE

 SKILLED TEAMS FOR ANALYSIS, RESPONSE & RECOVERY

SUSTAINABILITY

 INDUSTRIAL CONTROL SYSTEMS & SCADA INCIDENTS

 SUSTAINABLE SECURITY PRACTICES

(8)

STEP 1

PREPARE

Strategic

Operational Tactical Roles

Skills

Locations

Comms Analysis

Logs

Playbooks

Sources Approach

(9)

PLAYBOOK

RECIPE FOR A SUCCESSFUL RESPONSE

(10)

STEP 2 PARTNER

Digital Forensic Readiness combines:

- Business Continuity Management

- Incident Response - Forensics

- Public Relations - Legal

YOU CANNOT DO ALL BY YOURSELF!

(11)

STEP 2

KPN AS BUSINESS CONTINUITY PARTNER

Direct and scalable capacity

Multi platform support

Bundeling with co location, hosting,

CloudNL...

BCM as-a-service

Dutch laws and regulations

Storage in Dutch datacenters Nr. 1 in Nederland

with 35 years of experience

Extension with KPN security portfolio

(12)

STEP 2

FIND THE RIGHT PARTNERS FOR YOUR ECOSYSTEM

• Cyber security advisory

• Training

• Runbooks

• Hardware

• Tooling

• Technology

• BC/DR templates supportive tooling

• Managed Back Up

& DR Services

Synergy

(13)

STEP 3 EVOLVE

Discuss &

rehearse with peers and partners

Adjust forensic readiness based on the lessons learned

Discuss &

rehearse internally

Evaluate feedback Keep track

of all past incidents

(14)

AND IF IT HAPPENS...

Whatever comes your way, there will be no nasty surprises.

Costs and damage from the

incident are kept to a minimum.

You will remain in control.

(15)

15

QUESTIONS

Looking forward to meeting you at our booth

Dennis van Ham Tel: +31 6 8364 6787 [email protected]

Thijs Timmerman Tel: +31 6 1188 5032 [email protected]

Jeroen de Wit +31 6 4674 8684 [email protected]