Professional Documents
Culture Documents
Jon Murray
1
Go to View/Master/Slide Master to type in
header
information information
growth information regulations more growth:
uses information stored on disk arrays growing ~60%
in 2006
more types:
transactions, documents, forms, web, images,
voice, messages, reports ...
more uses:
ERP, CRM, RFID, collaboration, data mining,
discovery …
information
types more regulations:
SEC 17a-4, NASD 3010,Sarbanes-Oxley, Basel
II, UK Metadata, eSign Act, 21 CFR Part 11
(more coming!)
2
Go to View/Master/Slide Master to type in
header
CIO’s Dilemma:
How to manage all the information
growth with limited resources?
3
Go to View/Master/Slide Master to type in
header
Security Today
An Amalgamation of Point Products Across IT
Anitvirus
LAN SAN
Disk Storage
Authentication Web Firewall
Filtering Authentication
Antivirus Encryption
Change/Patch Vault
Management Recovery
Management Tape
Spyware
5
Go to View/Master/Slide Master to type in
header
6
Go to View/Master/Slide Master to type in
header
7
Go to View/Master/Slide Master to type in
header
Information-centric Security
– An inside-out view of how to secure information
Begins with securing the data itself
Moves out through layers of
increasingly intelligent infrastructure
Relies on our ability to leverage
the interaction between data and
infrastructure
Important Technology
• Data-level access control
• Open policy decision points
• Enforcement at point of use
8
Go to View/Master/Slide Master to type in
header
Information
Information
Security
Security
and
Protection
Information
Information Information
Information Information
Information
Confidentiality
Confidentiality Integrity
Integrity Availability
Availability
EMC’s Heritage
9
Go to View/Master/Slide Master to type in
header
• CEO-level Mandate
Dedicated
DedicatedFocus
Focus • Information Security Leadership Team
• Company-wide Goals and Objectives
10
Go to View/Master/Slide Master to type in
header
EMC ISM
Applications Systems Information People
Security Risk Management
Vulnerability Vulnerability Assessment
Management Patching
Security Configuration
Security Event Management / Managed Security
Threat Firewall / VPN
Management Intrusion Detect / Prevent
Threat Appliances
Anti-Virus/Malware
Secure Secure Messaging
Content Web Filtering
Encryption
Encryption Digital Rights Mgmt
File / Database Security
ID and Access Authentication Authentication
Management Authentication Mgmt Authentication Mgmt
Provisioning
Security Services
11
Go to View/Master/Slide Master to type in
header
EMC Strategy
Expose key native capabilities
Repurpose existing technologies for security “use cases”
Develop new products, solutions, and service offerings
Partner and acquire to complete portfolio
12
Go to View/Master/Slide Master to type in
header
?
Hard to know
where to start
13
Go to View/Master/Slide Master to type in
header
Information
Object
s
ACL
C L
MA
4 g2
EAL a Testin s
ri ce
o n Crite nt Servi
m te
Com ted Con
Trus
14
Go to View/Master/Slide Master to type in
header
ESG Strategy
Common forRecord
Archiving Enterprise Archiving
and Storage (CARS)
Secure, scalable, and unified archive for all types of
content
Desktop & Classify
SharePoint
File System Retain
Migrate
Email / IM Discover
Applications
& Reports
Paper Web
Rich Media
15
Go to View/Master/Slide Master to type in
header
Recovery Œ Archive
process Production process
Ž Ž
Not for regulatory compliance— Useful for compliance and should take
though some are forced to use into account information-retention policy
17
Go to View/Master/Slide Master to type in
header
Continuity
Reduce Total Cost Improve Business Value
18
Go to View/Master/Slide Master to type in
header
CDP to
Disk
Snap /
Effectiveness
Clone
Operational
Backup
to Disk
Backup
to Tape
CommonDecreased
RecoveryRecovery
Management
Time / Services
Automated andIncreased
SimplifiedRecovery
Management Disaster
Point Recovery, Operational
Granularity
Recovery, and Testing/Migration
20
Go to View/Master/Slide Master to type in
header
Remote Multi-site
Remote processing
Recovery Information
Backup
Platform
Local Remote
21
Go to View/Master/Slide Master to type in
header
AutoStart Family
NetWorker
Celerra Replicator
RepliStor
Multi-site
TimeFinder Family Increasing
SnapView Remote distance
processing
EMC SnapSure Remote Automatic
improves
PowerPath protection
Information processing
Recovery All critical data resumption:
Backup Quick,
Frequent, safe at remote “lights out”
Platform accurate, location
consistent, predictable
Storage, non-
switch, and recovery
disruptive
server backups
protection
Local Remote
22
Go to View/Master/Slide Master to type in
header
Site Type Warm site Hot site Standby site Standby site
(manual failover) (automatic failover)
RTO +/- <72 hours up to (+/-) <5 days +/- 24 hours up to (+/-) 3 days +/- 6 hours up to (+/-) 12 hours +/- 1 hours up to (+/-) 3 hours
RPO +/- 24 hours up to (+/-) 3 days +/- 24 hours up to (+/-) 3 days Sync = 0 data loss Sync = 0 data loss
Async = acceptable data loss Async = acceptable data
*(Potential for 0 data loss for loss
Async)
Recovery Service OS: restored from tape and OS: restored from tape and OS: ready OS: ready
validated validated Application: ready Application: ready
Application: restored from tape Application: restored from Data: ready Data: ready
and validated tape and validated
Connectivity: repoint network Connectivity: repoint
Data: restored from tape and Data: restored from tape network
validated and validated Redundancy of data: store
and forward, tape back up of Redundancy of data: store
Connectivity: restored and Connectivity: restored and site and forward, tape backup of
validated validated site
Recovery plans: ready
Redundancy of data: recover Redundancy of data: Redundant site: ready
lost transaction and validate recover lost transaction and Testing: quarterly after
validate significant Recovery plans: ready
Redundant site: ready (warm
site) Testing: quarterly after
significant
Recovery plans: ready
Application Type Desktop applications Some desktop applications Accounting systems (ERP) Accounting systems (ERP)
Corporate tax systems Corporate tax system Inventory control / distribution Inventory control /
Travel systems Travel systems Credit card processing distribution
Human resources Payroll Cash management Credit card processing
Document imaging Cash management
23
Go to View/Master/Slide Master to type in
header
Customer Needs
Tiered Storage that Is Optimized for Business Requirements
ERP
CRM
Exchange
Archive
where to start
?
define establish identify create monitor
requirements services catalog gaps plan effectiveness
25
Go to View/Master/Slide Master to type in
header
Next-Generation
Information
Infrastructure
27