Cisco Blogs

Cisco Blog > Energy - Oil & Gas and Utilities

Incidence Response – Safety, Reliability and Recovery for Industry and Workers

Dan O’Malley talks about Cisco Systems offerings that are resonating in the Energy Industry and elsewhere. Cisco helps customers pre-plan for storms and to respond to disasters with sophisticated collaboration and device connectivity enabling technologies.

Many new technologies enable worker safety and visibility using 2-way radios, smart devices, and mobile broadband “connecting people and devices and work crews together smartly over the internet”. In the video Dan talks about the challenges customers face and how Cisco is helping them get ‘positive business outcomes’.

Yes – I know what you mean – what does that really mean? Well, mother nature doesn’t always cooperate, so getting outages dealt with as quickly as possible is one positive outcome. Keeping in touch with workers, especially those in dangerous areas, and warning them if safety issues occur is another. And maybe even having ‘wearable’ biometric devices attached to workers to see how they’re doing physically, and monitoring their vitals in real time by operations centers. That’s another.

Just keeping track of field workers is a challenge – and making best use of a constrained ‘expert pool’ might be another. Some newer ‘millennial’ devices are, of course, part of the architectural approach, but so are traditional two-way radios and other devices – so that everyone can communicate and collaborate to get the job done. And it’s getting the job done that really gives good business outcomes – ask any customer!

So, in the words of Dan:

It’s about smartly connecting people, and devices and work-crews together smartly over the internet. That’s what we do.

…and providing the best business outcomes possible: Read More »

Tags: , , , , ,

Engaging All Layers of Defense: Incident Response in Action

The Cisco 2015 Annual Security Report highlights many creative techniques that attackers are exploiting to conceal malicious activity, often taking advantage of gaps in security programs. They are continually refining and developing new techniques to gain a foothold in environments and, increasingly, they are relying on users and IT teams as enablers of attacks to persistently infect and hide in plain sight on machines.

Given this complex and dynamic threat landscape, organizations need a mature and adaptable incident response process.

Read More »

Tags: , , , ,

Responsive Security in Action

In 2013, our internal Information Security team carried out a series of controlled anti-phishing exercises. The purpose was to raise employees’ awareness of potential spear phishing attacks through emails. Spear phishing has been a common first step for Advanced Persistent Threat (APT) attacks to gain access to a user’s system before launching further attacks at internal targets. As such, if employees are vigilant against such attack patterns, we should effectively reduce the risk of successful APT attacks involving email phishing.

Through a series specially designed phishing emails executed over the four quarters, at one to two emails each month, the team captured an average “click” rate of 26%. The lowest click rate was 5%, and a highest was 61%. However, month over month, there was no discernible trend, as some months were low and others suddenly shot up. What was the data telling us? Did the users’ awareness rise or remain indifferent because of this exercise?

Read More »

Tags: , , ,

Getting More Responsive Security by Learning From Disaster Responses

Editor’s Note: In the two previous blogs, we discussed some of the issues and dilemmas found within information security knowledge and practice domains. Those challenges arise fundamentally from the traditional approach that many organizations have adopted to address information security requirements. In this fourth installment, we look at how good preparation can improve security outcomes, as illustrated in a few case examples.

As the Dutch philosopher Erasmus once said, “prevention is better than cure.” Most organizations’ security approaches have focused primarily on erecting defensive systems to prevent attackers from compromising information and systems through exploiting security weaknesses associated with technology, process, or people in the organization.

Read More »

Tags: , , ,

Issues and Dilemmas in Information Security Practices

Editor’s note: In A Circular Problem in Current Information Security Principles, we highlighted one of the challenges in our knowledge domain that contributes to the ineffectiveness of today’s information security practices. In this third installment, we review the issues and dilemmas that are common in our practice environment.

One of the challenges information security management teams face is justifying their value proposition to the business to ensure that security requirements receive adequate resource allocations. The paradox here is that if security management within an organization is effective, the results typically show no observable outcome (i.e., no security incident). Interestingly, even if a security incident is not present, it does not necessarily mean that good security management practices are in place. They might be missing because of a security detection mechanism flaw, or simply because the attacker has no interest in carrying out an attack during that time period.

On the other hand, when a security breach occurs, the security manager is often questioned for failure to anticipate and prevent the incident. Security managers therefore often fall back on past or external incidents as a form of justification. Business managers frown on these explanations because they normally do not believe they are no better than their peers or competitors in the industry. Read More »

Tags: , , ,