Asset Criticality Intelligence (ACI)
Asset Criticality Intelligence (ACI) RSA Archer GRC RSA NetWitness Bali Kuchipudi November 2012 Copyright 2012 EMC Corporation. All rights reserved. 1
Reducing Attacker Free Time Attacker Surveillance Attack Begins Attack Set-up Target Analysis Access Probe System Intrusion Discovery/ Persistence Leap Frog Attacks Cover-up Complete Starts Cover-up Complete Maintain foothold TIME ATTACKER FREE TIME TIME Physical Security Monitoring & Controls Threat Analysis Attack Forecast Defender Discovery Source: NERC HILF Report, June 2010 (http://www.nerc.com/files/HILF.pdf) Copyright 2012 EMC Corporation. All rights reserved. Containment & Eradication Incident Reporting Attack Identified Impact Analysis Damage Identification Response Recovery System Reaction 2
Today’s IT Operations and SOC IT Operations SOC CMDB 1 Incident Mgmt. Spreadsheet Analytics CMDB 2 Visibility Copyright 2012 EMC Corporation. All rights reserved. 3
RSA Security Management & Compliance Delivers Visibility, Intelligence and Governance Copyright 2012 EMC Corporation. All rights reserved. 4
Business Context and Investigations RSA Archer GRC RSA NetWitness Asset Intelligence Enterprise Management, Business Context, Asset Information Copyright 2012 EMC Corporation. All rights reserved. Event & Log Capture, Analytics, Investigations 5
Prioritize Security Analyst Efforts Threat Intelligence Asset Intelligence Analyst Prioritizations Event Capture Investigations Copyright 2012 EMC Corporation. All rights reserved. 6
RSA Archer Enterprise Management Solution Copyright 2012 EMC Corporation. All rights reserved. Business Hierarchy Product & Services Business Processes Applications Information Devices Facilities Technologies 7
Asset Criticality Business Process Application Devices Copyright 2012 EMC Corporation. All rights reserved. 8
ACI Overview RSA ACI Asset Intelligence IT Info Asset List Biz Context Device Owner Device Type Business Device Owner Content Business Unit CMDBs Biz Process Vuln. Scans RPO / RTO Copyright 2012 EMC Corporation. All rights reserved. RSA Archer Criticality Rating IP Address Criticality Rating Business Unit Facility RSA NetWitness Security analysts now have asset intelligence and business context to better analyze and prioritize alerts. 9
RSA NetWitness Informer Define Rules for Dashboards, Alerts and Reports Create Dashboards Define Alerts Generate Reports Define Rules for High Criticality Assets Copyright 2012 EMC Corporation. All rights reserved. 10
RSA NetWitness Investigator Investigate Events Related to High Criticality Assets Investigate Events and Activity Related to High Criticality Assets Copyright 2012 EMC Corporation. All rights reserved. 11
ACI Demo
RSA Archer Incident Management Solution Copyright 2012 EMC Corporation. All rights reserved. Incidents Investigations Ethics Violations Response Procedures Status Impact Monitoring Incident Resolutions Contacts 13
Incident Management Workflow Automatically Create Incidents Based on Security Events Manage Incident Assignment Status Resolution Create Incident Time stamp Increment counter RSA Archer Rule Critical Asset access to suspicious IP Event # 1 Event #2 RSA NetWitness Access to Investigator Session and Packet Data Copyright 2012 EMC Corporation. All rights reserved. 14
More Information For more information on ACI – https://community.emc.com/docs/DOC-17359 Join the RSA Archer Community – https://community.emc.com/docs/DOC-16360 Copyright 2012 EMC Corporation. All rights reserved. 15
GRC Roadshows CITY DATE Charlotte Nov. Washington, D.C. Nov. Boston Nov. Dallas Dec. Houston Dec. Denver Dec. New York City Dec. Philadelphia Dec. San Francisco Dec. 15 28 29 3 4 11 12 13 14 LOCATION Deloitte CSC Genzyme American Airlines KPMG Accuvant Time Inc. Deloitte eBay Join your colleagues for the ‘free, full-day’ GRC Roadshows within various city locations within the US and Europe. The events provide a unique networking forum that foster engagement with fellow risk and compliance professionals to discuss GRC trends, challenges and opportunities. https://community.emc.com/community/connect/grc ecosystem Copyright 2012 EMC Corporation. All rights reserved. 16
RSA NetWitness Asset List Device Type Device Content CMDBs Vuln. Scans IT Info Criticality Rating Device Owner Business Owner Business Unit Biz Process RPO / RTO Biz Context RSA Archer Asset Intelligence IP Address Criticality Rating Business Unit Facility Security analysts now have asset intelligence and business context to
The ACI Manual of Concrete Practice is a seven-part compilation of current ACI standards and committee reports. Part 1—ACI 117-10 to ACI 228.1R-03 Part 2—ACI 228.2R-13 to ACI 314R-11 Part 3—ACI 318-14 to ACI 346-09 Part 4—ACI 347R-14 to ACI 355.2-07 Part 5—ACI 355.3R-11 to ACI 440R-07 Part 6—ACI 440.1R-06 to ACI 533.1R-02
Cracking: ACI 224.1R, ACI 562, ACI 364.1R, and ACI RAP Bulletins Spalling/scaling: ACI 562, ACI 364.1R, ACI 506R, and ACI RAP Bulletins AMP should reference criteria used to determine which inspection results will require either: An Action Request
Nuclear Criticality Safety Directed Self-Study Learning Objective When you finish this section, you will be able to: 4.1.1 Define nuclear criticality safety. NUCLEAR CRITICALITY SAFETY Introduction Nuclear criticality safety has been defined as the protection against the conseque
- ACI 304R-00, Guide for Measuring, Mixing, Transporting, and Placing Concrete - ACI 305R-10, Guide to Hot Weather Concreting - ACI 306R-10, Guide to Cold Weather Concreting - ACI 308R-01, Guide to Curing Concrete - ACI 309R-05, Guide for Consolidation of Concrete - ACI 311.4R-05, Guide for Concrete Construction - ACI 318-08/318R-08,
Requisitos de Reglamento para Concreto Estructural (ACI 318S-05) y Comentario (ACI 318SR-05) (Versión en español y en sistema métrico) Es un Estándar del ACI Producido por el Comité ACI 318 american concrete institute P.O. BOX 9094 FARMINGTON HILLS, MICHIGAN 48333-9094 USA ACI 318S-05 ACI 318SR-05 .
A. American Concrete Institute (ACI): 1. ACI 214-77 2. ACI 506R-90 3. ACI 506.2-90 4. ACI 506.3R-91 5. ACI 305R-91 6. ACI 306R-88 . acceptance a proposed mix design for the shotcrete with the tolerances of any variable components identified. The design shall include a complete list of materials and copies of test
APIC Controller Overview of the ACI Fabric ACI Spine Nodes ACI Leaf Nodes ACI Fabric Features - ACI Spine Layer -Provides bandwidth and redundancy between Leaf Nodes ACI Leaf Layer -Provides all connectivity outside the fabric - including servers, service devices, other networks Optimized Traffic Flows -Accommodates new E-W traffic patterns in simple, scalable, non-blocking design
2019 HPVC Rules September 23, 2018 Page 2 of 55 . Safety Inspection and Demonstration 16 Safety Video 16 Modifications Affecting Safety 16 Disqualification of Unsafe Vehicles 17 Entry and Registration 17 Team Eligibility 17 Team Member Eligibility and Certification 17 Vehicle Design, Analysis, and Construction 17 Driver Requirement Exceptions 17 Submittal of Final Entries 18 Late Entries 18 .
