TOP SECURITY THREATS TO YOUR ORGANIZATION ANDREW YSASI, MS, FIP, FIIM, CIPM, CIPP, CISM, PMP, CRM, IGP, CIP VICE PRESIDENT, ADVOCACY ARMA Florida Sunshine Conference February 21, 2020 Copyrighted Andrew Ysasi. All Rights Reserved. 2020.
TOP SECURITY THREATS TO YOUR ORGANIZATION
ANDREW YSASI, MS, FIP, FIIM, CIPM, CIPP, CISM, PMP, CRM, IGP, CIP
VICE PRESIDENT, ADVOCACY
ARMA Florida Sunshine ConferenceFebruary 21, 2020
Copyrighted Andrew Ysasi. All Rights Reserved. 2020.
DISCLAIMER
No endorsements are made by me and especially Vital Records Control (VRC). Logos and information can be found online at the respective source organization’s website. Information may have changed by the time it was researched. Andrew is not an attorney and does not provide legal advice.
Andrew is a past member of the Board of Directors of i-SIGMA (PRISM/NAID) the ICRM.
ABOUT ANDREW…• Advocacy = MELV (Mentoring, Educating, Lobbying, Volunteering)
• ICRM Parts 1-6 Mentor
• Writer for ARMA’s Information Governance Body of Knowledge (IGBOK) and Information Governance: Concepts, Strategies and Best Practices - Wiley
• Former Adjunct Instructor at Davenport University
• Global Project Management and Technology Capstone
• ICRM Exam Development Committee – 2012-2017
• i-SIGMA (PRISM/NAID) International Board Member – 2016-2019
• Inside the Record Room guest personality
• Founder IG GURU: Information Governance News
• Masters in Administration from Central Michigan University
(ILA) I LOVE ACRONYMS!
FIP – Fellow of Information Privacy (IAPP)
FIIM – Fellow Institute of Information Management (IIM-Africa)
CIPM – Certified Information Privacy Manager (IAPP)
CIPP – Certified Information Privacy Professional (IAPP)
CISM – Certified Information Security Manager (ISACA)
PMP – Project Management Professional (PMI)
CRM – Certified Records Manager (ICRM)
IGP – Information Governance Professional (ARMA)
CIP – Certified Information Professional (AIIM)
Security+, CDIA+, Project+, A+, MCTS, MCSA, ITIL
Criminal Hackers
Ransomware
IOT and Hardware
Phishing
RogueGovernmentCyberAttacks
Software Updates –Supply Chain Attacks
Vendors
Cloud Technology
Employees
Social Engineering
Drones
Unknown TechnologyAssets
Old RiskProfile
Data Leaks
Where do we go?
Skills
Training andAccountability
DigitalEcosystem
UpdateControls &Audit
Courtesy of Chris Roberts via LinkedIn.com
“No one entity can really tackle this issue alone (cyber threats)” –Special Agent M.K. Palmore - FBI
ARMA IGBOK
• Covers variety of topics:• RIM & IG
• Privacy
• Academic Research
• Technology/E-Discovery
• Information Governance
IG GURU
• Educational Resource for Information Governance Professionals
• www.igguru.net
• Free to sign up!
IG WORLD MAGAZINE
• Covers major facets of IG, uniting them under the umbrella of a common vision
• https://infogovworld.com/
FOR YOUR RIM/IG LIBRARY
FOR YOUR OTHER LIBRARY
COMPANY OVERVIEW
Vital Records Control was founded in Memphis, Tennessee in 1988. Since then, we’ve grown to become a national leader in information management with more than 60 locations nationwide.
INFORMATION MANAGEMENT
DOCUMENT STORAGE
DOCUMENT DESTRUCTION
IMAGING & HOSTING
RELEASE OF INFORMATION
GRACIAS!
E-mail: [email protected]
Twitter:
@andrewysasi @vitalrecordctrl@admovio @1gguru
LinkedIn: www.linkedin.com/in/andrewysasi/
Twitter: www.twitter.com/andrewysasi
SOURCES
• 7 mobile security threats you should take seriously in 2019 - https://www.csoonline.com/article/3241727/7-mobile-security-threats-you-should-take-seriously-in-2019.html
• 9 biggest information security threats through 2018 - http://www.cio.com/article/3046760/security/9-biggest-information-security-threats-through-2018.html -Retrieved 08/08/2017
• Top 10 Security Predictions Through 2020 - https://www.forbes.com/sites/gartnergroup/2016/08/18/top-10-security-predictions-through-2020/#3f9235ba5b39 –Retrieved 08/08/2017
• Gartner 7 Top Security Predictions for 2019 - https://www.information-age.com/gartner-security-and-risk-management-trends-123480056/
• 5 Trends in Cyber Security for 2017 and 2018 - http://www.gartner.com/smarterwithgartner/5-trends-in-cybersecurity-for-2017-and-2018/
• SANS Institute Survey Finds ICS Security Risks Continue to Rise and Evolve - https://www.sans.org/press/announcement/2017/07/05/1 - Retrieved 08/08/2018
• RSA 2019: SANS shares top new security threats – and what to do about them - https://www.healthcareitnews.com/news/rsa-2019-sans-shares-top-new-security-threats-%E2%80%93-and-what-do-about-them
• DNS Photo - https://www.znetlive.com/blog/wp-content/uploads/2016/04/domains-imaes.png