O slideshow foi denunciado.
Utilizamos seu perfil e dados de atividades no LinkedIn para personalizar e exibir anúncios mais relevantes. Altere suas preferências de anúncios quando desejar.

Cybersecurity Risk Assessment - 'All Done' with WISER

338 visualizações

Publicada em

A practical Demo session showcasing CyberWISER Light, the online tool designed to help small organisations assess their cyber risk exposure and vulnerabilities. The demo also features a sneak preview of CyberWISER Essential, an upgrade service with real-time monitoring and advanced assessment of cyber risk through specific sensors deployed on the target infrastructure.

Publicada em: Internet
  • Seja o primeiro a comentar

  • Seja a primeira pessoa a gostar disto

Cybersecurity Risk Assessment - 'All Done' with WISER

  1. 1. WISER “WIDE-IMPACT CYBER SECURITY RISK FRAMEWORK” www.cyberwiser.eu @cyberwiser Co-funded by the European Commission Horizon 2020 – Grant # 653321 Cybersecurity Risk Assessment – ‘All done’ with WISER Riga – 27th October, 2016 Presentation at DSS ITSEC DEMO 1 Antonio Álvarez Romero Atos Spain
  2. 2. Outline CyberWISER Services Introduction to CyberWISER-Light Introduction to CyberWISER-Essential Conclusions © WISER 2015 www.cyberwiser.eu - @cyberwiser 2
  3. 3. CyberWISER Services CyberWISER Light – self-assessment of cyber risks and vulnerabilities in IT system. User-friendly service - suited to every type of organisation. Especially good for time- and resource-constrained SMEs. CyberWISER Essential – Risk Platform as a Service (RPaaS) for self-assessment of exposure levels with continuous, quasi-real-time monitoring Standardised mitigation plan CyberWISER Plus – RPaaS + Customised approach to cyber risk assessment Face-to-face support in self-assessment phase Deployment support & mitigation plan tailored to your organisation www.cyberwiser.eu 3© WISER 2016 www.cyberwiser.eu - @cyberwiser
  4. 4. CyberWISER Services © WISER 2016 www.cyberwiser.eu - @cyberwiser 4 CyberWISER-Light (CWL) Two versions: CWL Fast-track and Complete Software as a Service Online Questionnaire Online Vulnerability scanner Produces Aggregated Report CyberWISER-Essential (CWE) CyberWISER-Plus (CWP)
  5. 5. CyberWISER Services © WISER 2016 www.cyberwiser.eu - @cyberwiser 5 CyberWISER-Light (CWL) CyberWISER-Essential (CWE) Risk Management PaaS Sensors deployed at client produce data Risk Assessment services in the Cloud Dashboard showing real-time data and information CyberWISER-Plus (CWP)
  6. 6. CyberWISER Services © WISER 2016 www.cyberwiser.eu - @cyberwiser 6 CyberWISER-Light (CWL) CyberWISER-Essential (CWE) CyberWISER-Plus (CWP) Extended with more specific Risk Models Extended with specific application-level sensors
  7. 7. Outline CyberWISER Services Introduction to CyberWISER-Light Introduction to CyberWISER-Essential Conclusions © WISER 2015 www.cyberwiser.eu - @cyberwiser 7
  8. 8. CyberWISER-Light © WISER 2016 www.cyberwiser.eu - @cyberwiser 8
  9. 9. CyberWISER-Light Demo © WISER 2015 www.cyberwiser.eu - @cyberwiser 9
  10. 10. Questionnaire © WISER 2015 www.cyberwiser.eu - @cyberwiser 10
  11. 11. Vulnerability test © WISER 2015 www.cyberwiser.eu - @cyberwiser 11
  12. 12. Vulnerability test
  13. 13. CyberWISER-Light Demo © WISER 2015 www.cyberwiser.eu - @cyberwiser 13
  14. 14. Outline © WISER 2015 www.cyberwiser.eu - @cyberwiser 14 CyberWISER Services Introduction to CyberWISER-Light Introduction to CyberWISER-Essential Conclusions
  15. 15. CyberWISER-Essential © WISER 2016 www.cyberwiser.eu - @cyberwiser 15 Dashboard with a set of sections Risk Reporting Configuration Monitoring Modelling Testing
  16. 16. CyberWISER-Essential © WISER 2016 www.cyberwiser.eu - @cyberwiser 16 Risk reporting
  17. 17. CyberWISER-Essential © WISER 2016 www.cyberwiser.eu - @cyberwiser 17 Configuration
  18. 18. CyberWISER-Essential © WISER 2016 www.cyberwiser.eu - @cyberwiser 18 Monitoring
  19. 19. CyberWISER-Essential © WISER 2016 www.cyberwiser.eu - @cyberwiser 19 Modelling
  20. 20. CyberWISER-Essential © WISER 2016 www.cyberwiser.eu - @cyberwiser 20 Testing
  21. 21. CyberWISER-Essential Demo Scenario © WISER 2015 www.cyberwiser.eu - @cyberwiser 21 Simulation of an incident The attacker uses Kali Linux from public IP address The attacker executes a Hydra script Wiser Agent detects the attack with Snort sensor (/var/log/snort/snort.alert) Wiser Agent sends events to DWH Show events received by Monitoring Engine from DWH via RabbitMQ Show Alarm received in the RAE and how it is triggered the risk assessment • Risk models selected • DEXI instantiation • Qualitative risk assessment per risk and target • Aggregations: • Overall • By sections • By risks • Mitigation measures
  22. 22. CyberWISER-Essential Demo Scenario © WISER 2015 www.cyberwiser.eu - @cyberwiser 22
  23. 23. Outline © WISER 2015 www.cyberwiser.eu - @cyberwiser 23 CyberWISER Services Introduction to CyberWISER-Light Introduction to CyberWISER-Essential Conclusions
  24. 24. CyberWISER: What’s in it for my organisation? © WISER 2016 www.cyberwiser.eu - @cyberwiser 24 Affordable cyber risk assessment services depending on customer needs & budget. Due to the real-time monitoring and the increase of automatization of this assessment, prices could be more competitive, and be affordable for segments as SMEs, that have a low budget for these types of services. Effective, efficient, and user-friendly solutions. This is going to be achieved by means of an Online-centred delivery model, which is found at www.cyberwiser.eu Customised approach and a team of experts “on-call” (where applicable), to overcome the intrinsic shortfalls of the one-fits- all solution. A “Cyber Security for all” approach!
  25. 25. www.cyberwiser.eu @cyberwiser Thank you for your attentions! Questions? Contact Antonio Álvarez Romero Atos Spain antonio.alvarez@atos.net

×