eBooks/eGuides

28 Ransomware Defense For Dummies, Cisco Special Edition These materials are © 2017 John Wiley & Sons, Inc. Any dissemination, distribution, or unauthorized use is strictly prohibited. HOW A GLOBAL MEDICAL MANUFACTURER ROUTS OUT RANSOMWARE The challenge: Fighting infinite security challenges with finite resources In the decades since its 1983 founding, Octapharma has steadily become one of the world's largest human protein manufacturers. With a corporate initiative designed to double production capacity and increase overall efficiencies by 2019 now underway, however, the company is experiencing unprecedented expansion. The impact of this growth spurt is evident throughout the organization — even at the network level. "As we add more employ- ees in more locations using more mobile devices and cloud services, we also add new network security vulnerabilities," says Octapharma Global Senior Network Engineer Jason Hancock. "We've seen a spike in a variety of malicious activities, including ransomware." "Rather than trying to cover any exposures by hiring the kind of trained security practitioners already in short supply, identifying new solutions to address those vulnerabilities and aligning with organiza- tion efficiency objectives has been a priority," he adds. "In keeping with that focus," says Hancock, "first we needed to keep the network from going down every 15 minutes and improve efficien- cies both for our team and users. When I joined the company in 2014, my initial objective was to get things stabilized so I could focus on pre- venting incrementally more aggressive malware, such as a CryptoLocker breach that we encountered." The solution: Functionality that fits "Before I came to Octapharma, the team had been working for some time to migrate from on-premises web security appliances to the same vendor's cloud service, selected by a predecessor. I was initially tasked with completing that deployment," recalls Hancock. "As soon as I saw what I was being asked to work with, I knew it wasn't going to meet our needs."

• Cover
• Title Page
• Copyright Page
• Table of Contents
• Introduction
• About This Book
• Foolish Assumptions
• Icons Used in This Book
• Beyond the Book
• Chapter 1 What Is Ransomware?
• Defining Ransomware
• Recognizing Ransomware in the Modern Threat Landscape
• Understanding How Ransomware Operates
• Chapter 2 Implementing Best Practices to Reduce Ransomware Risks
• Before an Attack: Discover, Enforce, Harden
• During an Attack: Detect, Block, and Defend
• After an Attack: Scope, Contain, and Remediate
• Chapter 3 Building the "New Best-of-Breed" Security Architecture
• Recognizing the Limitations of Current Security Designs
• Defining the "New Best-of-Breed" Security Architecture
• Chapter 4 Deploying Cisco Ransomware Defense
• Leveraging DNS as the First Line of Defense in the Cloud
• Securing Endpoints and Addressing Email Threats
• Cisco Advanced Malware Protection (AMP) for Endpoints
• Cisco Email Security with Advanced Malware Protection (AMP)
• Protecting the Network with Next-Generation Firewalls and Segmentation
• Cisco Firepower Next-Generation Firewall (NGFW)
• Use the network as a sensor and enforcer
• Streamlining Deployments and Bolstering Incident Response
• Chapter 5 Ten Key Ransomware Defense Takeaways
• Ransomware Is Evolving
• Ransomware-as-a-Service Is an Emerging Threat
• Paying a Ransom Doesn't Solve Your Security Problems
• Build a Layered Security Architecture Based on Open Standards
• Deploy Integrated, Best-of-Breed Solutions
• Embed Security throughout Your Network Environment
• Reduce Complexity in Your Security Environment
• Leverage Cloud-Based, Real-Time Threat Intelligence
• Automate Security Actions to Reduce Response Time
• See Something, Say Something
• EULA