Secure Food Production and Delivery System Environments with Military Grade Cyber Security

CYBER SECURITY, EVOLVED Secure Food Production and Delivery System Environments with Military Grade Cyber Security The Food and Agriculture Sector Cyber Challenge Our world has been radically transformed by digital technology – smart phones, tablets, and web-enabled devices have altered the way we manage production and do commerce. At the same time, technology has enabled a new generation of criminals to gain access to information assets. As the “farm-to-fork continuum” assesses potential cyber vulnerabilities in its critical infrastructure, escalating cyber security threats, advancing technologies and increasingly stringent U.S. Department of Agriculture (USDA) cyber security requirements call for immediate action. Regulated food and agriculture sector facilities, producers, processors and distributers of all sizes are expected to have voluntarily adopted and implemented a functional food defense plan by 2015, according to Jessica Pulz, the Director of the Food Defense Assessment Staff for the USDA Food Safety and Inspection Service (FSIS). The Government Coordinating Council (GCC) and Sector Coordinating Council (SCC) are collaborating to ensure safety and business continuity in the current cyber threat environment. The Goal: “A public-private effort that protects public health and that builds and sustains a protected national food supply chain where the U.S. Food and agriculture infrastructure is secure, resilient and prepared.” Verizon’s 2014 Data Breach Investigations Report (DBIR) identified manufacturing systems as one of the most vulnerable industries to hackers, with companies of all sizes equally targeted. According to this report, web application attacks made possible by credentials stolen through email phishing scams are by far the most widespread types of data loss. Criminals are “getting better and faster at what they do, more quickly than organizations can address the threats.” The Solution The transition of business processes to the cloud and proliferation of connected endpoints will increase the vulnerability of critical infrastructure to outside threats. IT managers must implement more comprehensive policies regarding the secure handling and transmission of data. The four key components of a solid internet and data security program include: EdgeWave Food and Agriculture Sector Cyber Security Guide • Advanced Threat Defense • Data Protection Services • Endpoint Security • Education of Employees and Vendors EdgeWave EPIC2 is a Military-Grade approach to cyber security that combines expert analyst review, advanced technology and a rigorous cyber operations approach to deliver real-time, active defense against cyber threats. CYBER SECURITY, EVOLVED Advanced Threat Defense Email is a primary threat vector by which hackers access your systems It’s easier for a hacker to send out an email than to hack a firewall – it takes just one unsuspecting staff member to open the wrong email or click a bad link to punch a hole in your network defense. EdgeWave’s ePrism Email Security Suite includes the powerful tools you need to assure the protection of private data and the efficient delivery of legitimate email. ePrism offers fully hosted in-the-cloud services that require minimal management, are affordable, and can scale easily to fit any size network. ePrism includes a multi-layered approach that stops emerging threats before they can get near your network. Our exclusive EdgeWave Enhanced Precision and Integrated Cyber Capabilities TM – EPIC2 -- combines human threat review and automated intelligence to identify and stop advanced threats in real time. Humans can identify the intent of inbound threats in a way an algorithm can’t – that’s why every cyber security plan must include human analysis. In the first quarter of 2014 alone, EPIC2’s human review process has blocked over 100 million malicious emails per day with customized rules and human analysis. The 2014 Verizon Data Breach report promised “We may be able to reduce the majority of attacks by focusing on a handful of attack patterns.” EdgeWave’s EPIC2 leads the market with this capability. Data Protection Services Data Loss Protection - ePrism includes a content analysis and policy engine that uses proprietary technology to detect private information transmitted via outgoing email. This data protection technology analyzes data in motion, and using compliance-based rules, detects and blocks any sensitive private data trying to leave your network. This solution is easily managed from the ePrism Central Dashboard giving you the powerful tools you need to ensure the safety of your most valuable corporate assets. Encryption - EdgeWave Email Encryption assures the secure delivery of email to anyone outside your network, with next-generation technology that eliminates the cost and complexity associated with many traditional encryption services. As a completely hosted service, there is no hardware or software to implement and encryption can be easily enabled on a per user basis or as part of an automated routing policy. In addition, because it is integrated into the ePrism Hosted Email Security and Data Loss Protection services, your outgoing email is inspected for malware, viruses, inappropriate content, compliance breaches and violations of your acceptable use policy (AUP). You can manually encrypt messages or configure to automatically encrypt per a variety of factors; such as sender, recipient, or when DLP problems are detected. Endpoint Security Laptops, smartphones and tablets have improved productivity and efficiency by empowering managers to keep tabs on resources and processes at the swipe of a finger, while freeing up workers to exercise greater independence and mobility. But this also brings risks. Ponemon Institute’s Global Study on Mobility Risks reports that a majority (59 percent) of companies have had employees “circumvent or disengage security features” in their company-sponsored mobile devices, and 51 percent have experienced data loss due to improperly secured mobile data. iPrism Web Security can help you mitigate endpoint risk with Cloud-Based Remote Web Filtering and Mobile Device Security. These security solutions employ proprietary technology to bring powerful Enterprise Web Filtering to all staff and devices, even outside the network. You receive comprehensive Military Grade protection from web-based threats, granular policy controls, and selective data wiping -- all with centralized administration and reporting. Suitable for both corporate and BYOD devices, iPrism provides anytime, anywhere any device security for iPads, iPhones, Android devices, Windows laptops and Macbooks. EdgeWave Food and Agriculture Sector Cyber Security Guide CYBER SECURITY, EVOLVED 15333 Avenue of Science, Suite 100 San Diego, CA 92128 Give us a call 1-855-881-2004 Send us an email: [email protected] For more info, visit us at: www.EdgeWave.com Education of Employees and Vendors The internet and data security technologies described above are only as effective as the training and policies that enforce their use. Here are 5 steps to get you started on the path to ensuring your organization will support your security efforts: 1. Integrate a defense-in-depth security strategy with every plan and initiative. Isolate valuable assets and restrict who has access to them. 2. Empower employees with targeted, plain-English security training. The food and agriculture sector is highly regulated, and educated employees are the best way to ensure safety and compliance. 3. Implement and enforce strong organizational/IT policies regarding social media and portable devices. 4. Ensure all employees and vendors know how to guard authentication credentials. Require a signed and sealed agreement of understanding and adherence to access and device usage policies. 5. Employ an agile, robust, platform-agnostic, advanced threat detection system that includes encryption. EdgeWave’s award winning EPIC2 Military Grade solutions have helped over 6,500 organizations protect their data and networks. Let us create and implement your cyber security strategy and keep your environment protected and processes secure. Click here for information about the importance of having a functional food defense plan and to access the FSIS Food Defense and Recall Preparedness Exercise Tool. EdgeWave Food and Agriculture Sector Cyber Security Guide