Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
System Compliance on a Budget
Search
paulh
June 04, 2012
Technology
0
26
System Compliance on a Budget
AUCTC, Saint Mary's University. 2012
paulh
June 04, 2012
Tweet
Share
More Decks by paulh
See All by paulh
Beginners Guide to OSINT
paulh
1
300
squert – an open source UI for NSM data
paulh
0
47
squert - an open source UI for NSM data
paulh
0
140
Internet Safety
paulh
0
98
Situational Awareness with Open Source Tools
paulh
0
92
Network Security Monitoring with Open Source Tools
paulh
0
120
Other Decks in Technology
See All in Technology
負荷テスト on AWS のすすめ (AWS Summit Japan 2024 - Ministage session)
mabuchs
0
100
AI Risk Solution Study
tkhresk
0
110
Columinity (旧Scrum Team Survey) を使ってチームの継続的な改善活動を始めよう / Scrum Fest Osaka 2024
ama_ch
1
120
Refactoring in Angular via Metrics, Modularity & Testing
rainerhahnekamp
0
210
iPaaS入門&自社サービスで利用してみた
ippei2480
0
140
デジタルアイデンティティ技術 認可・ID連携・認証 基礎
oidfj
0
460
半年かけてPHP5.6からPHP7.4までバージョンアップした苦労と工夫 PHPカンファレンス福岡2024
kechiiin
1
140
OpenTelemetry Meetup 2024-06 - ABEMA と分散トレーシングのあゆみ
tetsuya28
0
190
見えないユーザの声はログに埋もれている! ~ログから具体的なユーザの体験を数値化した事例紹介~
navitimejapan
PRO
3
850
State of Amazon Location Service
dayjournal
0
110
こんなに違うよ MySQLとPostgreSQL /
sakaik
17
10k
フロントエンドの Monorepo をやめてリポジトリ分割したワケ / Why did we stop using Monorepo on the frontend and split the repository?
kaminashi
5
1.9k
Featured
See All Featured
Making Projects Easy
brettharned
110
5.6k
Building Applications with DynamoDB
mza
89
5.8k
Intergalactic Javascript Robots from Outer Space
tanoku
266
26k
Bash Introduction
62gerente
606
210k
VelocityConf: Rendering Performance Case Studies
addyosmani
321
23k
Mobile First: as difficult as doing things right
swwweet
218
8.7k
Web development in the modern age
philhawksworth
203
10k
Thoughts on Productivity
jonyablonski
62
4k
StorybookのUI Testing Handbookを読んだ
zakiyama
14
4.8k
The Power of CSS Pseudo Elements
geoffreycrofte
63
5.1k
Gamification - CAS2011
davidbonilla
77
4.8k
Typedesign – Prime Four
hannesfritz
36
2.2k
Transcript
None
the question: what is the security posture of our devices?
what we used to try and get the answer: McAfee
ePO Nessus Build something
our Experience
McAfee ePO
problems with McAfee ePO complex inaccuracies cumbersome reports blackbox (customizations,
waiting)
Nessus
problems with Nessus tedious overkill inconsistent results hosts accounted for:
76%
our problems in general timing transient devices deepfreeze
our kick at the can
None
what we collect (currently) antivirus windows updates asset info
None
None
None
None
None
the backend host host antivirus antivirus windows updates windows updates
asset info asset info active directory active directory …? …? …? …? other.. other..
the backend host host antivirus antivirus windows updates windows updates
asset info asset info active directory active directory compliance history compliance history problem frequency problem frequency other.. other.. SHAZAM! SHAZAM!
the script (patch_status.vbs) what it does how it evolved where
it’s headed
what it does deployment scheduled task information gathering transport
how it evolved primarily driven by trial and error a
lot of: “wouldn’t this be neat” what works? what doesn’t? dealing with problems
what it has changed Managed AV Microsoft update Maintenance window
where it’s headed deployment strategy refne/improve installer target other OS’s
where it’s headed additional metrics ids alert data device usage
java version flash version
where it’s headed helpdesk integration automated ticket generation
thoughts?