Harvard Business Review recently published a very insightful piece I highly recommend you read in its entirety called “Cybersecurity’s Human Factor: Lessons from the Pentagon” .

For those of you who just want the highlights, here is a quick synopsis of what I found to be the most fascinating aspects of the article.

From Bumbling Colossus to Nimble Defender

In the not-so-long-ago dark days of network security, the US military struggled to identify and defend against threats.  All that has changed and from September 2014 to June 2015 the military rebuffed 30 million malicious attacks! Still a few got through but only 0.1% compromised systems in any way. An impressive record given the State sponsored adversaries the military must repel day in and day out.

While technical fortifications are important, what has really set the military on its trajectory to invulnerability has been its focus on eliminating human error. If you have read this blog for any length of time you know that we consistently emphasize not only the best technology but also the best in processes for this very reason.

Learning from the Admiral Himself

The US Navy Nuclear program has long been the quintessential example of a well-run, mistake free organization, what is nowadays referred to as an HRO or High Reliability Organization. The fundamental principles of the Navy Nuke program have since been transferred to other industries such as airlines, air traffic control, space flight and others. Admiral Hyman Rickover, the “Father of the Nuclear Navy” demanded excellence and adherence to process and for the span of his career personally interviewed all applying Officer Candidates.

Six Principles Every Organization Should Adopt to Ensure Security

1. Integrity – Never depart from protocols and report errors immediately

2. Depth of Knowledge – Fully understand the system’s you are responsible and their vulnerabilities

3. Procedural Compliance – Follow protocols to the letter

4. Forceful Backup – All critical activities should be closely monitored

5. A questioning Attitude – While unquestioning compliance to procedure is necessary questioning things that appear outside of the norm is equally important

6. Formality in Communication – Familiarity and slang lead to miscommunication, Formality in communication eliminates these misunderstandings.

Examples of Cyber Security Failures and the Policies that Were Violated

What the authors have found is that Cybersecurity breaches caused by human mistakes nearly always involve the violation of one or more of these six principles.  As you read them you will undoubtedly recognize some of the same behaviors in your own organization or at least easily imagine that they might very well be happening without your knowledge.

Here’s a sample of some the Defense Department uncovered during routine testing exercises:

  • A polite headquarters staff officer held the door for another officer, who was really an intruder carrying a fake identification card. Once inside, the intruder could have installed malware on the organization’s network. Principles violated: procedural compliance and a questioning attitude.
  • A system administrator, surfing the web from his elevated account, which had fewer automatic restrictions, downloaded a popular video clip that was “viral” in more ways than one. Principles violated: integrity and procedural compliance.
  • A staff officer clicked on a link in an e-mail promising discounts for online purchases, which was actually an attempt by the testers to plant a phishing back door on her workstation. Principles violated: a questioning attitude, depth of knowledge, and procedural compliance.
  • A new network administrator installed an update without reading the implementation guide and with no supervision. As a result, previous security upgrades were “unpatched.” Principles violated: depth of knowledge, procedural compliance, and forceful backup.
  • A network help desk reset a connection in an office without investigating why the connection had been deactivated in the first place—even though the reason might have been an automated shutdown to prevent the connection of an unauthorized computer or user. Principles violated: procedural compliance and a questioning attitude.

A Holistic Approach

At Konsultek we don’t just slap in “black boxes” and hope that security happens. Sure we build custom technical solutions that utilize the best technology available, but we also work outside the IT department to make sure that the business processes are in place to limit the impact of human error on the security of your information and network. If you are looking to upgrade your security, give us a call and begin a dialogue with us.

 

read more

October 2016 ForeScout CounterACT Training

On January 26th, 2016, posted in: Training by konweb

ForeScout CounterACT Training

Learn the practical real-world skills you need to properly configure, protect and maintain ForeScout CounterACT.

Konsultek consistently ranks as one of the top ForeScout resellers in the nation. Our instructors are experienced ForeScout security experts and will bring you the knowledge you need to maximize your ForeScout investment.

Highlights

Lab Focused | Training in a real network environment

Certified Professionals | Service engineers with real world experience implementing and troubleshooting ForeScout CounterACT

Hands-On | Learn the best practices for configuring, deploying and maintaining CounterACT

Flexible Scheduling | Onsite training provides a private learning experience for your team with discussions centering on your unique needs.

For More Info.

Additional information on this training program can be found here.

Register Here

Event Details

DATES: Tuesday, October 18 thru Friday, October 21, 2016

LOCATION:
Randall Point Executive Center
2250 Point Boulevard, 4th Floor
Elgin, IL 60123

WHAT TO BRING:
Laptop Capable of Connecting via RDP

COST:
$3,500 per person

read more

August 2016 ForeScout CounterACT Training

On January 26th, 2016, posted in: Training by konweb

ForeScout CounterACT Training

Learn the practical real-world skills you need to properly configure, protect and maintain ForeScout CounterACT.

Konsultek consistently ranks as one of the top ForeScout resellers in the nation. Our instructors are experienced ForeScout security experts and will bring you the knowledge you need to maximize your ForeScout investment.

Highlights

Lab Focused | Training in a real network environment

Certified Professionals | Service engineers with real world experience implementing and troubleshooting ForeScout CounterACT

Hands-On | Learn the best practices for configuring, deploying and maintaining CounterACT

Flexible Scheduling | Onsite training provides a private learning experience for your team with discussions centering on your unique needs.

For More Info.

Additional information on this training program can be found here.

Register Here

Event Details

DATES: Tuesday, August 16 thru Friday, August 19, 2016

LOCATION:
Randall Point Executive Center
2250 Point Boulevard, 4th Floor
Elgin, IL 60123

WHAT TO BRING:
Laptop Capable of Connecting via RDP

COST:
$3,500 per person

read more

ForeScout CounterACT Training

Learn the practical real-world skills you need to properly configure, protect and maintain ForeScout CounterACT.

Konsultek consistently ranks as one of the top ForeScout resellers in the nation. Our instructors are experienced ForeScout security experts and will bring you the knowledge you need to maximize your ForeScout investment.

Highlights

Lab Focused | Training in a real network environment

Certified Professionals | Service engineers with real world experience implementing and troubleshooting ForeScout CounterACT

Hands-On | Learn the best practices for configuring, deploying and maintaining CounterACT

Flexible Scheduling | Onsite training provides a private learning experience for your team with discussions centering on your unique needs.

For More Info.

Additional information on this training program can be found here.

Register Here

Event Details

DATES: Tuesday, June 14 thru Friday, June 17, 2016

LOCATION:
Randall Point Executive Center
2250 Point Boulevard, 4th Floor
Elgin, IL 60123

WHAT TO BRING:
Laptop Capable of Connecting via RDP

COST:
$3,500 per person

read more

April 2016 ForeScout CounterACT Training

On January 26th, 2016, posted in: Training by konweb

ForeScout CounterACT Training

Learn the practical real-world skills you need to properly configure, protect and maintain ForeScout CounterACT.

Konsultek consistently ranks as one of the top ForeScout resellers in the nation. Our instructors are experienced ForeScout security experts and will bring you the knowledge you need to maximize your ForeScout investment.

Highlights

Lab Focused | Training in a real network environment

Certified Professionals | Service engineers with real world experience implementing and troubleshooting ForeScout CounterACT

Hands-On | Learn the best practices for configuring, deploying and maintaining CounterACT

Flexible Scheduling | Onsite training provides a private learning experience for your team with discussions centering on your unique needs.

For More Info.

Additional information on this training program can be found here.

Register Here

Event Details

DATES: Tuesday, April 19 thru Friday, April 22

LOCATION:
Randall Point Executive Center
2250 Point Boulevard, 4th Floor
Elgin, IL 60123

WHAT TO BRING:
Laptop Capable of Connecting via RDP

COST:
$3,500 per person

read more

You’re invited to
Gibsons Steakhouse in Rosemont
Lunch ‘N Learn
F5 and VMWare Horizon View
You’re invited to join Troy Johnson, Avnet’s F5 Technology Consultant, as he discusses how F5 supports the new VMWare Horizon suite, which includes:
  • Horizon View
  • Horizon Mirage
  • Horizon Workspace
Troy will cover how deploying VMWare solutions with F5 provides an accessible, faster, and more secure user experience. 

Cubs Tickets Drawing!

.        The first 30 people to register and attend will be automatically
entered into a drawing for 4 Cubs tickets!

Thursday, June 18
11:30 – 1:00 pm
Gibsons Steakhouse
5464 North River Road
Rosemont, IL 60018
11:30 – 1:00 pm

read more

ForeScout CounterACT Training October 2013 Chicago

ForeScout CounterACT Training

Learn the practical real-world skills you need to properly configure, protect and maintain ForeScout CounterACT.

Konsultek consistently ranks as one of the top ForeScout resellers in the nation. Our instructors are experienced ForeScout security experts and will bring you the knowledge you need to maximize your ForeScout investment.

Highlights

Lab Focused | Training in a real network environment

Certified Professionals | Service engineers with real world experience implementing and troubleshooting ForeScout CounterACT

Hands-On | Learn the best practices for configuring, deploying and maintaining CounterACT

Flexible Scheduling | Onsite training provides a private learning experience for your team with discussions centering on your unique needs.

For More Info.

Additional information on this training program can be found here.

Register Here

Event Details

DATES: Tuesday, December 17th thru Friday, December 20th

LOCATION:
Randall Point Executive Center
2205 Point Blvd # 160
Elgin, IL 60123

WHAT TO BRING:
Laptop Capable of Connecting via RDP

COST:
$3,500 per person

Register Here


read more

 

ForeScout CounterACT Training

Learn the practical real-world skills you need to properly configure, protect and maintain ForeScout CounterACT.

Konsultek consistently ranks as one of the top ForeScout resellers in the nation. Our instructors are experienced ForeScout security experts and will bring you the knowledge you need to maximize your ForeScout investment.

Highlights

Lab Focused | Training in a real network environment

Certified Professionals | Service engineers with real world experience implementing and troubleshooting ForeScout  CounterACT

Hands-On | Learn the best practices for configuring, deploying and maintaining CounterACT

Flexible Scheduling | Onsite training provides a private learning experience for your team with discussions centering on your unique needs.

For More Info.

Additional information on this training program can be found here.

Register Here

Event Details

DATES: Tuesday, June 18th thru Friday, June 21st

LOCATION:
Randall Point Executive Center
2205 Point Blvd # 160
Elgin, IL 60123

WHAT TO BRING:
Laptop Capable of Connecting via RDP

COST:
$3,500 per person

Register Here

read more

Konsultek Presents

ForeScout Technical User Group – Best Practices Seminar

  • Advance your product knowledge
  • Learn proven approaches to accelerate results
  • Gain expert implementation and scale out advice
  • Discover what’s new and what’s coming
  • Voice your opinion and suggestions
  • Meet industry peers and share your experience

What: Two Technically-Packed Days of Expert and Peer Interaction
Where: Arlington Heights, IL (Exact Location TBD)
When: Tuesday April 16th and Wednesday April 17th 2013
Who: Technical security personnel and authorized partners using CounterAct
Cost: No cost – facility, food and lively discussion included (except for your travel and lodging expenses) 

Register Here to reserve your spot!

Day One Day Two
Registration and introductions(9am) Breakfast Networking (9am)
New and Improved
- Quick overview of v. 6.3.4
- Critical fixes and updates
- Upgrade scenarios
CounterAct Now and Future 

- Current products and respective models
- Licensing overview and options

- Near-term roadmap and upcoming releases

Optimizing Visibility
- Classification
- Clarification; managing unclassifieds 

- Fingerprinting; unique assets, VMs, Mobile…

- Classification tools and troubleshooting

End Point Compliance
- Dashboards, asset portal, reports & customization 

- Remediation options including custom scripts

- Managing external devices e.g. USB

- CounterAct for auditing and supporting SOC/NOC

NAC Policy Best Practices
- Policy Wizard, management & troubleshooting 

- Real-world policy writing/deployment mistakes
- Managing contractors, guests & non-corp. assets

- The 5 scenarios of guest management

- Remediation options including custom scripts

Deployment Success
- Deployment; centralized vs. decentralized, HA 

- Remote inspection vs. SecureConnector
- Mirror ports and channel config. (Layer 2 vs. 3)

- Virtual Firewall, VLANS and ACL blocking

- Deployment and administrative gotchas

Threat Management / IPS 

- How ActiveReponse™ works; identification of malicious endpoints, scanners, malicious

- CounterAct AR config. & enforcement options

- Overview of CounterAct Edge Threat Manager

Troubleshooting 

- Common problem scenarios

- Help tools, audit logs and FSTOOL review

- Customer portal and opening a support ticket

- Capturing a snapshot & enabling Remote Support

BYOD and Mobile Devices 

-Discussion about the challenges of BYOD

- Review of the various methods for securing mobile devices

- Managing mobile devices with the CounterACT solution

Solution Rollout  

- Selling the solution to other business units

- Auditing the infrastructure & setting baselines

- Aligning enforcement and remediation processes

- Staging the rollout and scale out options

- Creating success metrics and gauging ROI

Networking Dinner hosted by ForeScout Ends at 4pm 


Register Here to reserve your spot!

read more