3 hours 20 minutes
Hey, everyone. My name is Peter Sip alone. And this is the network Security course. This is going to be the conclusion. Video off module three.
So the prerequisites for this video are modules 12 and all of module three. Up until this point.
Simple. Because this is the conclusion. Video of module three.
So what do we What do we learn so far in model three in the information application section of the network security pyramid? Well, we learned about data leakage prevention.
You know, we took a look at the data leakage prevention process, which goes through the entire cycle of finding data defining data, creating policies to protect the data toe, monitor the data and to block the data from leaking or from going places It shouldn't. We also took a look at data encryption.
Whether the data is at rest,
in transit or being used, it could be encrypted in all three steps, and we took a look at the proper disposal of data how to dispose of it correctly in a safe manner, usually using disk wiping or dig awesome.
We also took a look at incident response. We took a look at the incident response process and teams the people that are associated with that process. The team members being HR public relations incident handlers, managers I t.
People like that have also took a look at the disaster recovery plans,
which focused on I t infrastructure after a disaster, getting that back up and running as quickly as possible and also business continuity plans. These plans therefore other critical business operational aspects.
We've also taken a look at risk management. We saw the risk management process and how to calculate a risk assessment by preparation, taking the assessment and then really communicate your findings in order to handle the risk effectively, we saw how to
calculate risk. We saw
the risk matrix determine whether risk could be considered low, medium or high. And we also saw several formulas for putting a dollar sign amount to this risk through single loss expectancy and annualized loss expectancy.
And lastly, we also took a look how to medicate the risk properly. But whether it be through mitigation, where we kind of put in some more controls and get rid of it transference, where we transfer the risk to 1/3 party
avoidance where we just completely step aside and don't even touch the risk. Or we can do risk acceptance where the probability is not that high. That happening, so is okay. If we accept that risk in the organization
why does all this matter?
This'll matters because of data breaches, because it's important for people to know, be familiar with network security to make sure they don't become victims. At the end of this video here, I just wanted to introduce a little lessons from the field, as I like to call it, the
good examples off why
information security is very important and the things we've learned in this module, why they are important and why they should be applied.
So in this, in this lesson here from the field, I want to take a quick look at the Marriott data breach. So this Madeira Marriott data breach Sure everyone's heard of at this point happened in 2018 or was discovered in 2018
and had up to 500 million guests impacted.
that's a lot of people.
That's a lot of people. And, you know, most people have stayed in a Marriott hotel. At least one thorough life. I know I have. And this data breach took place from 2014 through 2018. That's four years for
four years off, bad guys coming in and out of Marriotts
Data's systems, using their stuff
without, um without Marriott, even even knowing that this was going on four years. So what happened? How did this happen?
It's not very clear that information has not really been revealed as to how exactly this breach took place. But here's what didn't happen.
First thing that didn't happen was data leakage prevention.
Whole point of DLP is to prevent data from leaving, and Elks, like data, has been leaving the Marriott organization for four years,
and that's that's a really long time.
What also didn't happen was that there wasn't any really good risk management going on. The whole point of risk management is discovering risk. Discovering what's at ST, discovering the potential impacts and the fallout, discovering
the likelihood of something happening, the probability what the exposure factor is.
All right, all these play a part in the risk, and this is didn't happen. Something of this magnitude should have been deemed a high risk for it to get involved and you know it. It wasn't so for some reason, this risk wasn't picked up on, but the Attackers picked up on it.
And from there they were able to exploit one thing or maybe even exploit several things.
Um, and they were able to get the data and they were successful for four years. And that's why this chapter is very important, especially when it comes to data leakage, prevention and risk management.
I really hope you guys learned a lot in this module and I will see next time.