mfmahler

Webbster I'm glad that you have a good security person to work with. Treasure that person.

Thank you, Kurt H. We want to learn so much and find 24 hours a day is not enough.

jswan Thank you for sharing the IPFIX information and its cross-platform features.

michael stump In my organization (I hope others are different ), almost not an exception, when there was a VM trouble, people approached us as "network problem". I admitted that one time it was due to the HP OpenView SNMP crashed out the switch CPU. But most of the time, it wasn't. Well, you can say it's the network…

Good to know, ZibaK. That means you guys don't allow BYOD.

Encrypting everything is not far from impractical. We no longer need specialized ASIC to perform encryption/decryption; the x86 processors are more than fast enough.

Jim, business first, definitely. But it won't hurt with business needs and more: we just enabled two 10G internet circuits this afternoon; it's good timing for the World Cup live streaming starting tomorrow.

michael stump And hopefully the fact of cost of insufficient security surfaces before the company makes a headline news due to security breach. Dr Who was always right.

Good points. I see that with any of those different routes an organization to take the total would not be small.

Certainly. Companies won't see the value (a the big price tag) of external DDoS mitigation providers until they get hit hard by DDoS. The detection and mitigation of DDoS are so labour and resource intensive; not many companies can handle this kind of attacks by their own teams alone.

Jim, pretty good story and well said! Since MDM is so new (some may not even know what MDM is) that we are learning how to deploy it correctly. It's an evolving process. I understand the reason to swing the personal devices to the internet in order to separate the company owned and the personal devices. IPS on the internet…

donwraysx4 Welcome to the awesome Thwack community!!! My hat's off to you of your mindset for your team! I remembered I asked the NSA guy what's his secret in keeping forward when I took the SANS Incident Handling class, he replied, "Practice, practice, practice". I'm pretty sure he didn't just refer to playing Doom (yeah,…

Kurt H, yours is a good way to lock down the BYOD access. I'm glad that your organization is able to enforce such a policy. Many other organization can't do that due to business reasons.

michael stump When you mentioned InfoSec and Maryland, it reminded me that when I took a SAN training in New Orleans, the guy sitting behind me was from NSA... You are right! Home labs! With the powerful personal computers today and the convenient virtualization software, learning is right at the fingertips.

Aaron Denning It may be time to sell NetFlow to your infosec guys instead.

That's cool and simple. I don't know what iOS 8's randomized MAC addresses before connection will bring to us for management.

@Jfrazier Thanks. Hope this article would trigger you to explore more on NetFlow.

Well put, esther! Beside good information security software and hardware ($$$$$), we also need good information security personnel ($$$).

Agreed!

byrona We can show our executives how much it costed Target (I'm sure that Target was well protected, but still...) : Target said it can't yet estimate how much the data breach will cost it in total. But in the fourth quarter, it said the breach resulted in $17 million of net expenses, with $61 million of total expenses…

Thank you for sharing these two articles!

Hari Pala Would you share a little more of your thoughts?

Well said, DirtySouth. Well said. You provided pretty good insights. I've seen more and more organizations allowing BYOD implement self registration portal for identification and auditing purposes.

belthasarx You are right on spot with the backups analogy. Self-assessment and training better users are critical. Your organization is pretty solid in those areas. You mentioned that the pen testing would be a good motivation to persuade the upper management to spend $$$ on security. Would you share one or two of your…

Aaron Denning Thank you for the kind words.

prowessa Thank you for the kind words. I am humbled. We've been having great conversations here this week.

bruce.jarrett My team owns, implemented, and maintains NetFlow and its analyzer. We started NetFlow as a security tool, as my team is network security. The data is always there. Yesterday an executive wanted a report for our WAN links utilization. The report is right at our fingertips. As ecklerwr1 mentioned somewhere in…

Thank you! Is your company ready for DDoS attacks or not? I appreciate it if you can share more here.

Jfrazier You are right. Security starts with $$. When we deployed the web proxy system, it took us a couple of months to grant exceptions and to stabilize the environment. Don't ask me about the beginning of our IPS/IDS deployment. I consider you are lucky one of not being involving the BYOD excitement.

Hari Pala, would you spend some time here and elaborate? Thanks!