Milan Koppen, Senior Solution Specialist, Secunia
In July 2013 the US Department of Energy suffered a breach caused by a known vulnerability in one of the applications used to store personal data from employees and their family members. A total of 104,000 records were exposed. Following the incident, the department investigated the chain of events that led to the breach.
The case illustrates some of the common challenges that organizations face when attempting to maintain the security of their technology environments.
The challenges include: fragmented infrastructures and heterogeneous environments; competing priorities between business units; unclear lines of responsibility and undocumented processes; lack of urgency and awareness over cyber security issues and the skills to assess risk; inadequate authority; and ineffective internal communication and coordination.
The in-depth scrutiny of the causes and consequences of this breach gives us the opportunity to reflect upon the challenges we face within our own organization. A case such as this shows that, while basic security principles seem obvious and easy to implement – and many of us assume they are in place – reality can sometimes prove to be very different to theory and best practice recommendations.
Join us, when we analyze the case and the data showing the importance of maintaining an overview and control over IT environments.
-Insights into the common challenges that organizations face when implementing an IT security strategy
-Data on the cost and consequences of data breaches
-Best practices for implementing a security baseline
-The importance of vulnerability intelligence to support risk assessment
-The importance of mitigating actions to avoid security breaches
- Q&A session